Blessing or curse? Revisiting security aspects of Software-Defined Networking

Schehlmann, Lisa; Abt, Sebastian; Baier, Harald

doi:10.1109/cnsm.2014.7014199

Cited by 58 publications

(37 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Networks running under the SDN paradigm still have the same security requirements as traditional network settings, as it is likely that they will be carrying at times, private and confidential information [7]. SDN completely changes the architecture and the inter-communicative aspects of the components in the network -from this arises a completely new platform for attackers looking to perform security-breaching attacks.…”

Section: Threats To Security In Sdn Environmentsmentioning

confidence: 99%

A Review of Solutions for SDN-Exclusive Security Issues

Spooner¹,

Zhu²

2016

ijacsa

View full text Add to dashboard Cite

Abstract-Software Defined Networking is a paradigm still in its emergent stages in the realm of production-scale networks. Centralisation of network control introduces a new level of flexibility for network administrators and programmers. Security is a huge factor contributing to consumer resistance to implementation of SDN architecture. Without addressing the issues inherent from SDNs centralised nature, the benefits in performance and network configurative flexibility cannot be harnessed. This paper explores key threats posed to SDN environments and comparatively analyses some of the mechanisms proposed as mitigations against these threats -it also provides some insight into the future works which would enable a securer SDN architecture.

show abstract

Section: Threats To Security In Sdn Environmentsmentioning

confidence: 99%

A Review of Solutions for SDN-Exclusive Security Issues

Spooner¹,

Zhu²

2016

ijacsa

View full text Add to dashboard Cite

show abstract

“…In the following we discuss these in detail. Availability: Schehlmann et al [63] state that the availability of the network controller can compromise the correct operation of network functions. To address the availability aspects of the network controller with respect to security, Li et al [60] propose a novel SDN architecture based on BFT (Byzantine Fault Tolerant) [67] mechanisms to withstand malicious attacks on the control plane.…”

Section: Securitymentioning

confidence: 99%

Resilience support in software-defined networking: A survey

et al. 2015

View full text Add to dashboard Cite

Software-Defined Networking (SDN) is an architecture for computer networking that provides a clear separation between network control functions and forwarding operations. The abstractions supported by this architecture are intended to simplify the implementation of several tasks that are critical to network operation, such as routing and network management. Computer networks have an increasingly important societal role, requiring them to be resilient to a range of challenges. Previously, research into network resilience has focused on the mitigation of several types of challenges, such as natural disasters and attacks. Capitalising on its benefits, including increased programmability and a clearer separation of concerns, significant attention has recently focused on the development of resilience mechanisms that use software-defined networking approaches. In this article, we present a survey that provides a structured overview of the resilience support that currently exists in this important area. We categorize the most recent research on this topic with respect to a number of resilience disciplines. Additionally, we discuss the lessons learned from this investigation, highlight the main challenges faced by SDNs moving forward, and outline the research trends in terms of solutions to mitigate these challenges . 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 This article presents a survey on the support for network resilience in SoftwareDefined Networking (SDN). This has been the subject of intense investigation by the academic and industrial community in the past few years, as evidenced by the number of papers included in our survey (159 references in total). Capitalizing on the benefits of SDN, including increased programmability and a clearer separation of concerns, significant attention has recently focused on the development of resilience mechanisms that use software-defined networking approaches. Thus, a wide range of solutions to classical network problems have been revisited using this architecture, but many problems continue to be challenging.Our survey investigates the resilience support that currently exists in this important area, and categorizes the most recent research on this topic with respect to a number of resilience disciplines. Additionally, we discuss the lessons learned from this investigation, highlight the main challenges faced by SDNs moving forward, and outline the research trends in terms of solutions to mitigate these challenges. The aim of the survey is to offer to the reader a structured view of network resilience in the SDN spectrum, and how resilience aspects are supported in these architectures.We believe that this subject material is closely aligned with the objectives of the journal. Please be assured that:1. This paper has not been published or accepted for publication w...

show abstract

“…Switch level security in [42] is improved with spam detection, packet inspection and intrusion detection. www.ijacsa.thesai.org Research work in [16]- [17], [33], [41] provide countermeasures to security issues with control layer. They have more impact on security with automatic user authentication [16], virtual IP allocated to host [17], monitoring with varied granularity [18], avoidance of conflicts in rules [33], and with detection and tracking capabilities [37].…”

Section: Security Control In Multiple Layersmentioning

confidence: 99%

“…Scripting language used in development of security applications. Controller program for monitoring and configuration of policies [40], an advance language for network policies for control architecture Procera [41], and network security policy in human readable language for responding to alerts in OpenSec framework [42] represent few of the research work in policy language.…”

Section: B Enforcing Network Wide Security Policiesmentioning

confidence: 99%

Security in OpenFlow Enabled Cloud Environment

Alameen¹,

Rubab²,

Dhupia³

et al. 2017

ijacsa

View full text Add to dashboard Cite

Abstract-Inception of flow tables as data plane abstraction, and forwarding rules that are managed by centralized controllers in emerging Software Defined Networks (SDN) has stemmed significant progress in OpenFlow based architectures. SDN is particularly fueled by data center networking and cloud computing. OpenFlow coupled with cloud solutions provide dynamic networking capabilities. With the benefits obtained from network services, security enforcement become more important and need powerful techniques for its implementation. Extensive researches in cloud security bring forward numerous methods of leveraging the SDN architecture with efficient security enforcement. The future of SDN and mobile networks is also enlightened if security models are satisfactory to cover dynamic and flexible requirements of evolving networks. This paper presents a survey of the state of the art research on security techniques in OpenFlow based cloud environments. Security is one of the main aspect of any network. A fair study and evaluation of these methods are carried out in the paper along with the security considerations in SDN and its enforcement. The security issues and recommendations for 5g network are covered briefly. This work provides an understanding of the problem, its current solution space, and anticipated future research directions.

show abstract

Blessing or curse? Revisiting security aspects of Software-Defined Networking

Cited by 58 publications

References 21 publications

A Review of Solutions for SDN-Exclusive Security Issues

A Review of Solutions for SDN-Exclusive Security Issues

Resilience support in software-defined networking: A survey

Security in OpenFlow Enabled Cloud Environment

Contact Info

Product

Resources

About