	US 11,838,197 B2
	Methods and system for securing a SDN controller from denial of service attack
Pankaj Bhimrao Thorat, Bangalore (IN); Vivek Soni, Bangalore (IN); Satya Kumar Vankayala, Bangalore (IN); and Rajesh Challa, Bangalore (IN)
Assigned to Samsung Electronics Co., Ltd., Suwon-si (KR)
Filed by Samsung Electronics Co., Ltd., Suwon-si (KR)
Filed on Oct. 28, 2021, as Appl. No. 17/513,123.
Application 17/513,123 is a continuation of application No. PCT/KR2021/015156, filed on Oct. 27, 2021.
Claims priority of application No. 202041047322 (IN), filed on Oct. 29, 2020; and application No. 2020 41047322 (IN), filed on Oct. 5, 2021.
Prior Publication US 2022/0141118 A1, May 5, 2022
Int. Cl. H04L 43/16 (2022.01); H04L 47/2483 (2022.01); H04L 9/40 (2022.01)

CPC H04L 43/16 (2013.01) [H04L 47/2483 (2013.01); H04L 63/1458 (2013.01); H04L 2463/141 (2013.01)]

20 Claims

1. A method for managing data flows in a Software-Defined Networking (SDN) network, the method comprising:

sending, by a networking device, data packets pertaining to a flow to a SDN controller, upon determining that the flow does not match any flow entry included in a first flow table of the networking device; and

receiving, by the networking device, a flow configuration from the SDN controller,

wherein the flow configuration causes installation of a flooding prevention entry in a second flow table of the networking device based on the network device transmitting a message to the SDN controller, the message comprising one or more header fields of the data packets, the message being free of a payload portion of the data packets, and

wherein the flooding prevention entry enables the networking device to drop subsequent data packets pertaining to the flow until a flow entry matching the flow is installed in the first flow table of the networking device.