SDN Security Tools and Technologies?

asked 2017-07-19 10:50:22 -0800

mark72 gravatar image

Hey all! Hopefully this is the right place to ask this or someone can tell me where a better place to reach out is if not.

My co-worker and I are currently trying to utilize SDN for security; in short, the goal is to have a tool that allows an administrator to redirect attacker traffic to a controlled clone of a target. In other words, the attacker will be fooled into thinking they are on a target system but they are on a controlled clone so that it is easier to identify attacker behavior without their knowledge. To start, we developed a prototype using Floodlight and Open vSwitch. This works but is also very kludgy as you must specify OVS ports and MAC addresses of all players explicitly. This is not a scalable solution. Since then, we have switched gears to more market research. Midonet seems to fit the bill but are there other solutions that can provide similar functionality? I can provide more information if there are still questions. Thanks in advance for your input!

edit retag flag offensive close merge delete