Department of Computer Engineering, Sharif University of Technology, Tehran, Iran
The advent of Software Defined Network (SDN) brings a set of concepts of network organizing techniques. The emergence of OpenFlow-capable switches decouples control plane from the data flow plane so that they support programmable network and allow network administrators to have programmable central control of network traffic via a controller. Traditional network architectures are ill-suited to meet the requirements of today’s enterprises, carriers, and end users. They are not capable of handling man in the middle (MITM) Attacks like ARP poisoning, DDoS Attacks etc. Due to an increase in internal attacks on computer networks, this paper provides the feasibility study of ARP Poisioning attack and defense protection strategies in SDN security research. A new module has been proposed and implemented in controller to prevent this attack. An experiment has been conducted to evaluate the proposed method. Our results show that the new SDN-based method can prevent ARP poisoning and other attacks exploiting it.