Los ataques de denegación de servicio (DOS) en la seguridad de redes definidas por software (SDN).
| dc.contributor.advisor | Echeverria Suarez, Tomas Efraín | |
| dc.contributor.author | Tierra Reinoso, Nixon Javier | |
| dc.date.accessioned | 2025-04-25T20:41:44Z | |
| dc.date.available | 2025-04-25T20:41:44Z | |
| dc.date.issued | 2025 | |
| dc.identifier.uri | http://dspace.utb.edu.ec/handle/49000/17942 | |
| dc.description | Software-defined networks (SDN), unlike traditional networks, centralize traffic management through a single controller, which has enabled an evolution in network architecture. Despite the advantages of this centralization architecture, it is vulnerable to various cyber attacks, especially Denial of Service (DoS) attacks, these threats aim to saturate the network and affect the availability of the service, compromising the security of the information being transmitted. This research analyzes in detail the vulnerabilities that by nature have SDN networks in its three fundamental layers (application, control and data), identifies the main types of DoS attacks according to their vulnerabilities and their impacts on the technological infrastructure in each of the layers of the network. Additionally, several strategies for detecting and mitigating the DoS attacks found in the study are proposed, using monitoring tools, strong authentication, load balancing and data encryption. The results obtained show that the implementation of appropriate security measures, such as intrusion detection systems (IDS) and distributed controllers, considerably reduce the impact of attacks on SDN networks. In conclusion, it is indicated that a combination of multi-layered security approaches and good configuration practices ensures the resilience and stability of SDN networks. | es_ES |
| dc.description | Software-defined networks (SDN), unlike traditional networks, centralize traffic management through a single controller, which has enabled an evolution in network architecture. Despite the advantages of this centralization architecture, it is vulnerable to various cyber attacks, especially Denial of Service (DoS) attacks, these threats aim to saturate the network and affect the availability of the service, compromising the security of the information being transmitted. This research analyzes in detail the vulnerabilities that by nature have SDN networks in its three fundamental layers (application, control and data), identifies the main types of DoS attacks according to their vulnerabilities and their impacts on the technological infrastructure in each of the layers of the network. Additionally, several strategies for detecting and mitigating the DoS attacks found in the study are proposed, using monitoring tools, strong authentication, load balancing and data encryption. The results obtained show that the implementation of appropriate security measures, such as intrusion detection systems (IDS) and distributed controllers, considerably reduce the impact of attacks on SDN networks. In conclusion, it is indicated that a combination of multi-layered security approaches and good configuration practices ensures the resilience and stability of SDN networks. | es_ES |
| dc.description.abstract | Las redes definidas por software (SDN) a diferencia de las redes tradicionales centralizan la gestión del tráfico por medio de un único controlador, lo que ha permitido una evolución en la arquitectura de redes. A pesar de las ventajas que posee esta arquitectura de centralización es vulnerable a diversos ataques cibernéticos, de manera especial a los ataques de Denegación de Servicio (DoS), estas amenazas tienen como objetivo saturar la red y afectar la disponibilidad del servicio, comprometiendo la seguridad de la información que se transmite. Esta investigación analiza detalladamente las vulnerabilidades que por naturaleza poseen las redes SDN en sus tres capas fundamentales (aplicación, control y datos), identifica los principales tipos de ataques DoS según sus vulnerabilidades y sus impactos en la infraestructura tecnológica en cada una de las capas de la red. Adicionalmente se realiza la propuesta de diversas estrategias de detección y mitigación de los ataques DoS encontrados en el estudio, mediante herramientas de monitoreo, autenticación reforzada, balanceo de carga y cifrado de datos. Los resultados obtenidos permiten demostrar que la implementación de medidas de seguridad adecuadas, como sistemas de detección de intrusos (IDS) y controladores distribuidos, reducen considerablemente el impacto de los ataques en redes SDN. En conclusión, se indica que una combinación de enfoques de seguridad multicapa y buenas prácticas de configuración es garantiza la resiliencia y estabilidad de las redes SDN. | es_ES |
| dc.format.extent | 46 p. | es_ES |
| dc.language.iso | es | es_ES |
| dc.publisher | Babahoyo: UTB-FAFI. 2025 | es_ES |
| dc.rights | Attribution-NonCommercial-NoDerivs 3.0 United States | * |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/3.0/us/ | * |
| dc.subject | Redes definidas por software | es_ES |
| dc.subject | Amenazas | es_ES |
| dc.subject | Vulnerabilidades | es_ES |
| dc.subject | Ataques de denegación de servicio | es_ES |
| dc.subject.other | Sistemas de Información | es_ES |
| dc.title | Los ataques de denegación de servicio (DOS) en la seguridad de redes definidas por software (SDN). | es_ES |
| dc.type | bachelorThesis | es_ES |
Files in this item
This item appears in the following Collection(s)
Except where otherwise noted, this item's license is described as Attribution-NonCommercial-NoDerivs 3.0 United States