ABSTRACT

ABSTRACT: The hybrid control model of SDN is designed to improve network productivity by reducing the controller load. When the network is under heavy load, flow rules are installed on a network device by other network devices on behalf of the controller, and in the case of normal load the control is centralized. Thus the controller does not have to program flows to each network equipment one by one, instead it can ask the equipment to spread this flow to other equipment on behalf of the controller. This model is not secure from malicious applications as all the applications are treated in the same way and there is no way to distinguish between a genuine and a malicious application. This paper proposes a permission system to which the applications must subscribe on initialization with the controller and before approving the application commands a permissions check is performed. The priority of the application is also considered while granting the permission in order to deal with policy conflict.This will effectively monitor the working of every application and thus will prevent any unauthorized operations.