The design principles of the resear

The design principles of the research team do not specifically demand the use of extended
security functionality, but recommend the use of added hardware as final suggestion [8].
Whether it is social engineering or the hijacking of BYOD devices, an attacker has many
possibilities to find a way to access the internal network hosts. Although the controller
may be able to detect attacks based on patterns in PACKET IN messages as demonstrated
in the preceding chapters, securing the entire network traffic and individual hosts poses a
challenge. Redirecting all traffic through the controller itself consumes resources and stresses
the control plane. The data plane on the other hand lacks the intelligence to detect and repel
attacks, unless highly specialised modifications such as AVANT-GUARD (see Section 4.3.3)
are implemented. Although firewalls are possible in the native OpenFlow design, the lack of
inherent ability to perform intrusion detection or prevention, control-independent stateful
firewalls, and deep-packet-inspection risks exposure to sophisticated attacks. Anomalous
traffic and single packets must quickly be identified and eradicated to avert actual asset
damage. As a consequence, at least one instance of middleboxes and UTM is yet still required
to fully protect the software-defined networks. The SDN structure provides an opportunity
to significantly amplify the reach and features of security appliances, as the controller can
quickly enact or prepare reactive measures. A further advantage is the ability to construct
security paths and redirect traffic to specialised inspection centres, thus avoiding the need
to carefully consider the placement of middleboxes. [135] Depending on its properties and tags, traffic could be carried dynamically through a chain of service boxes distributed in the
network, instead of having to pass through a physically static demarcation point.