Secure and dependable software defined networks

Akhunzada, Adnan; Gani, Abdullah; Anuar, Nor Badrul; Abdelaziz, Ahmed; Khan, Muhammad Khurram; Hayat, Amir; Khan, Samee U.

doi:10.1016/j.jnca.2015.11.012

Cited by 103 publications

(58 citation statements)

References 94 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…1) SDN security: Security can be viewed as an assurance of data authenticity, integrity and confidentiality [12]. Security is one of the driving force of SDN due to the sharp rise in sophisticated attacks on the networks [16].…”

Section: B Sdn Security and Trustmentioning

confidence: 99%

“…Consequently, danger can be posed when a hacker exploit the network programmability to take over the control of the entire networks in which traffic can be rerouted or even duplicated to carry out unauthorized operations. In particular, the interaction between the SDN controller and the various applications (either user, third-party or network service applications [12][13] [19]) that runs atop the network infrastructure poses great risks. Applications like intrusion detection system could request the network to filter traffic or a MapReduce-style application could request bandwidth guarantees to improve performance [1] [12].…”

Section: B Sdn Security and Trustmentioning

confidence: 99%

“…Unfortunately, SDN has not yet matured towards mitigating several attacks. Though several security measures have been proposed and developed such as authentication, authorization, auditing and access control [1][12] [13], several challenges still exist such as the establishment of trust between SDN entities [12] [13]. Presently, mechanisms to certify network devices exist but trust establishment mechanisms to certify SDN applications are still lacking [12] [13].…”

mentioning

confidence: 99%

“…Presently, mechanisms to certify network devices exist but trust establishment mechanisms to certify SDN applications are still lacking [12] [13]. Furthermore, there are no existing mechanisms to identify if an application is a user, third-party or a network service application [12]. Therefore, proactive security measure is indispensable to protect the controller and other critical entities of the networks.…”

mentioning

confidence: 99%

See 3 more Smart Citations

Trust Establishment in SDN: Controller and Applications

Isong¹,

Kgogo²,

Lugayizi³

2017

IJCNIS

View full text Add to dashboard Cite

Abstract-Software Defined Networks (SDNs) is a network technology developed to deal with several limitations faced by the current traditional networks. However, SDN itself is confronted with security challenges which emanates specifically from its platform, given the explosive growth in network attacks and threats. Though many solutions have been developed and proposed, the continual lack of trust between the SDN controller and the applications running atop the control plane poses a great security challenge. SDN controller can easily be attacked by malicious/compromised applications which can result in network failure as the controller represents a single point of failure. Though trust mechanisms to certify network devices exist, mechanisms to certify management applications are still not well developed. Therefore, this paper proposes a novel direct trust establishment framework between an OpenFlow-based SDN controller and applications. The objective is to ensure that SDN controller is protected and diverse applications that consumes network resources are always trusted throughout their lifetime. Additionally, the paper introduce the concept of trust access matrix and application identity to ensure efficient control of network resources. We believe that, if the proposed trust model is adopted in the OpenFlow architecture, it could go a long way to improve the security of the SDN.

show abstract

Section: B Sdn Security and Trustmentioning

confidence: 99%

Section: B Sdn Security and Trustmentioning

confidence: 99%

mentioning

confidence: 99%

mentioning

confidence: 99%

See 2 more Smart Citations

Trust Establishment in SDN: Controller and Applications

Isong¹,

Kgogo²,

Lugayizi³

2017

IJCNIS

View full text Add to dashboard Cite

show abstract

“…Similarly, when we design a software, do not forget diverse security concerns (Akhunzada et al, 2015d, Akhunzada et al, 2015a to ensure that the software design supports penetration testing (ethical hacking) against hacking (Chang and Ramachandran, 2016).…”

Section: Introductionmentioning

confidence: 99%

A survey on Test Suite Reduction frameworks and tools

Khan

Lee

Ahmad

et al. 2016

International Journal of Information Management

Self Cite

View full text Add to dashboard Cite

Abstract-Software testing is a widely accepted practice that ensures the quality of a System under Test (SUT). However, the gradual increase of the test suite size demands high portion of testing budget and time. Test Suite Reduction (TSR) is considered a potential approach to deal with the test suite size problem. Moreover, a complete automation support is highly recommended for software testing to adequately meet the challenges of a resource constrained testing environment. Several TSR frameworks and tools have been proposed to efficiently address the test-suite size problem. The main objective of the paper is to comprehensively review the state-of-the-art TSR frameworks to highlights their strengths and weaknesses. Furthermore, the paper focuses on devising a detailed thematic taxonomy to classify existing literature that helps in understanding the underlying issues and proof of concept. Moreover, the paper investigates critical aspects and related features of TSR frameworks and tools based on a set of defined parameters. We also rigorously elaborated various testing domains and approaches followed by the extant TSR frameworks. The results reveal that majority of TSR frameworks focused on randomized unit testing, and a considerable number of frameworks lacks in supporting multi-objective optimization problems. Moreover, there is no generalized framework, effective for testing applications developed in any programming domain. Conversely, Integer Linear Programming (ILP) based TSR frameworks provide an optimal solution for multi-objective optimization problems and improve execution time by running multiple ILP in parallel. The study concludes with new insights and provides an unbiased view of the state-of-the-art TSR frameworks. Finally, we present potential research issues for further investigation to anticipate efficient TSR frameworks.

show abstract

Introduction to IoT Security

Jurcut¹,

Ranaweera²,

Xu³

2019

Wiley 5G Ref

View full text Add to dashboard Cite

In a world with “things” and devices interconnected at every level, from wearables to home and building automation, to smart cities and infrastructure, to smart industries, and to smart‐everything, the Internet of Things (IoT) security plays a central role with no margin for error or shortage on supply. Securing, including authentication of these devices, will become everyone's priority, from manufacturers to silicon vendors (or IP developers), to software and application developers, and to the final consumer, the beneficiaries of the security “recipe” that will accompany these IoT products. Together, all consumers of these products need to adapt to the market demands, innovate, and improve processes, grasp new skills and learn new methods, raise awareness and embrace new training and curricula programs. In this article, we provide a thorough survey and classification of the existing vulnerabilities, exploitable attacks, possible countermeasures as well as access control mechanisms including authentication and authorization. These challenges are addressed in detail considering both the technologies and the architecture used. Furthermore, this work also focuses also on IoT intrinsic vulnerabilities as well as the security challenges at every layer. In addition, solutions for remediation of the compromised security, as well as methods for risk mitigation, with prevention and suggestions for improvement are discussed.

show abstract

Secure and dependable software defined networks

Cited by 103 publications

References 94 publications

Trust Establishment in SDN: Controller and Applications

Trust Establishment in SDN: Controller and Applications

A survey on Test Suite Reduction frameworks and tools

Introduction to IoT Security

Contact Info

Product

Resources

About