Article Preview
Top1.Introduction
The internet of things is developed from the concept of connection created by cloud computing and leads to the empowering of physical resources. The ability to connect one computer to the next irrespective of distance and control processes remotely leads to the IoT. An embedded system consisting of sensors and actuators connected through cloud computing is a remarkable discovery in the current century (Khan et al.,2017). Nevertheless, some security concerns continue to derail the expansion of cloud computing-based IoT systems in all parts of human life. Irrespective of how wonderful the technology continues to become with matters of application intelligence and data analytics, the query of how to protect information sufficiently emerges most of the time (De Donno et al.,2019). Companies and even government stores, enormous amounts of data in clouds for ease of use, and the servers used in the processes are invaluable to many people. These factors attract malicious parties to attack and extract information.
Security issues are among the most significant worries in companies that rely on cloud computing to do business; the businesses' management states that unauthorized activities affect business flow. Moreover, the risk increases when the company outsources these cloud storage services through a vendor (Marotta et al., 2019). Third-party vendors in cloud computing are standard practice in the corporate world (Stergiou et al., 2019). All these companies are at least if the vendor suffers from security breaches.
IoT technology comes with difficulties in protecting the privacy and safety of data. Organizations with interest in IoT technology should train their staff about safety measures and ways of detecting cyber-attacks. The organization should ensure they use robust protection measures while installing and operating their servers and other connected systems (Conti et al.,2019). Information and network security systems help protect the confidentiality of people's lives that employ it during communication; these systems protect the network and the database (Deng et al.,2019). SDN a new network paradigm that improves security in IoT networks. (Muthanna et al., 2019). The basic idea behind SDN is the separation of the network control plane and data plane. It decouples the network control and network forwarding elements. Software systems controlling the hardware must centralize network control on standard servers (Kreutz et al.,2019). SDN is expected to grow with the latest technology, and integration with cloud and IoT is secure and cost-effective (Dey & Yuksel, 2019). Google is one of the major companies which has deployed SDN to manage its data centers (Casado et al., 2019). Scalability and security have become a primary concern now a day in the SDN based IoT network (Al-Hayajneh, & McAndrew,2020).
SDN platform enables load balancing, virtualization, energy-efficient, and secure networking (Priyadarsini et al., 2019). The main security challenges in SDN are central control, virtualization, trust, and IT organizational changes (Wang et al.,2018; Alam et al.,2020). SDN deals with DDoS attacks due to the separation of network control planes and data planes with well-defined Open flow API (Hameed& Ahmed,2018). Researchers (Hameed& Ahmed, 2018; Yao et al.,2019; Abdulqadder et al.,2000) proposed multiple SDN controllers' architectures to address the challenges with a single point failure. The Control plane remains the main component in the networks, and attacking the control will compromise the system. It also suffers from attacks such as the denial of service (DDoS), IP spoofing, man in the middle (MITM), and information modification attacks. Therefore, the security of IoT networks based on multiple SDN controllers' system is evaluated in this work. This work focuses on attack surfaces: denial of service (DDoS) attack, IP spoofing, and man in the middle (MITM). An attacker can exploit SDN vulnerabilities that are located mostly in the control plane, such as control services and messages.