This work focuses on a multi-stage security detection and mitigation of two types of address resolution protocol (ARP) based attacks in software defined network (SDN), namely ARP storm and spoofing attacks. The proposed algorithm aims to secure the SDN by suppressing ARP broadcast traffic and offer protection to the SDN controller and all hosts from ARP based attacks, while at the same time ensuring the scalability issue of ARP broadcast traffic.

#video