A novel security mechanism for software defined network based on Blockchain

The decoupling of the data plane and control in Software- Defined Network (SDN) can increase flexibility network management operation. And it reduce limitations caused by hardware. However, centralized scheme SDN also introduce some other security issues such as single point failure, consistency multiple-controller environment spoofing attack initiated a malicious device plane. To solve these problems, framework for based on Blockchain (BCSDN) is proposed this paper. BCSDN adopts physically distributed logically multi-controller architecture. LLDP protocol periodically used to obtain link state information network, Merkle tree establised according collected signature generate KSI each that submitted switch main controller selected using PoW mechanism. Such, dynamic change topology recorded Blockchian among multiple controllers be guaranteed. corresponding checks legitimate verifying when requests flow rule table from later. verification ensures authenticated communication between switch. Finally, simulation new implemented Mininet platform emulation experiments are done verify our novel solution tool. we informally analysis attributes provided BCSDN.