Securing the Control Plane: A Comprehensive Review of IDS Approaches in SDN Environments

In today's rapidly digitizing world, characterized by wide area network connectivity and data exchange, network security is of paramount importance. As we become increasingly dependent on networked systems and cloud-based services, traditional security measures are no longer sufficient to combat the complexity of today's cyber threats. Therefore, innovative approaches are required that can adaptively detect and mitigate emerging security vulnerabilities before they can cause major problems for the network. This requires an active and proactive network defense strategy that can keep pace with the rapid changes within complex systems. The use of SDN networks is therefore becoming more widespread. In this type of network, all management and monitoring tasks are located in the central part, the so-called control plane. The open problem today is this centralized part, which makes the entire network insecure. To combat this type of threat, intrusion detection systems (IDS) are used to effectively detect unauthorized access and unusual attacks. IDS have an effective rule to prevent information misuse and data theft. In this overview, we will examine various intrusion detection options in SDNs.