Toward a Trust-Based Authentication Framework of Northbound Interface in Software Defined Networking
作者: Phan The Duy , Do Thi Thu Hien , Nguyen Van Vuong , Nguyen Ngoc Hai Au , Van-Hau Pham
DOI: 10.1007/978-3-030-30149-1_22
关键词:
摘要: Software Defined Networking (SDN) – a new rising terminology of network is recently gained more and interest in both academic industrial field. Not only decoupling its control plane data plane, SDN also provides the whole view entire for better flexible management. Despite benefits global network, with single point failure at controller encounters some drawbacks additional challenge security. A malicious OpenFlow application (OF app) can access to perform illegal activities due lack authentication protocol Northbound interface ensure that trusted, authorized applications critical resources. The information about such as topology data, flow or statistics be retrieved. Even worse controlled from compromised controller. In this paper, we introduce Trust Trident - framework securing trustworthy between controller, controller-independent capability. It gives administrator fully fine-grained observation OF apps communicating Threats counter measurements by our plugin are classified evaluated according threat categories STRIDE methodology.
springer.com
sci-hub.st 参考文章(12)
Phillip Porras, Steven Cheung, Martin Fong, Keith Skinner, Vinod Yegneswaran, Securing the Software Defined Network Control Layer. network and distributed system security symposium. ,(2015) , 10.14722/NDSS.2015.23222
Diego Kreutz, Fernando M. V. Ramos, Paulo Esteves Verissimo, Christian Esteve Rothenberg, Siamak Azodolmolky, Steve Uhlig, Software-Defined Networking: A Comprehensive Survey Proceedings of the IEEE. ,vol. 103, pp. 14- 76 ,(2015) , 10.1109/JPROC.2014.2371999
Philip Porras, Seungwon Shin, Vinod Yegneswaran, Martin Fong, Mabry Tyson, Guofei Gu, A security enforcement kernel for OpenFlow networks acm special interest group on data communication. pp. 121- 126 ,(2012) , 10.1145/2342441.2342466
Sandra Scott-Hayward, Sriram Natarajan, Sakir Sezer, A Survey of Security in Software Defined Networks IEEE Communications Surveys and Tutorials. ,vol. 18, pp. 623- 654 ,(2016) , 10.1109/COMST.2015.2453114
Wenjuan Li, Weizhi Meng, Lam For Kwok, A survey on OpenFlow-based Software Defined Networks Journal of Network and Computer Applications. ,vol. 68, pp. 126- 139 ,(2016) , 10.1016/J.JNCA.2016.04.011
Seungsoo Lee, Changhoon Yoon, Chanhee Lee, Seungwon Shin, Vinod Yegneswaran, Phillip Porras, DELTA: A Security Assessment Framework for Software-Defined Networks network and distributed system security symposium. ,(2017) , 10.14722/NDSS.2017.23457
Aliyu Lawal Aliyu, Peter Bull, Ali Abdallah, A Trust Management Framework for Network Applications within an SDN Environment advanced information networking and applications. pp. 93- 98 ,(2017) , 10.1109/WAINA.2017.100
Yuchia Tseng, Zonghua Zhang, Farid Nait-Abdesselam, ControllerSEPA: A Security-Enhancing SDN Controller Plug-in for OpenFlow Applications parallel and distributed computing: applications and technologies. pp. 268- 273 ,(2016) , 10.1109/PDCAT.2016.064
Bassey Isong, Tebogo Kgogo, Francis Lugayizi, Bennett Kankuzi, Trust establishment framework between SDN controller and applications software engineering artificial intelligence networking and parallel distributed computing. pp. 101- 107 ,(2017) , 10.1109/SNPD.2017.8022707
Changhoon Yoon, Seungsoo Lee, Heedo Kang, Taejune Park, Seungwon Shin, Vinod Yegneswaran, Phillip Porras, Guofei Gu, Flow Wars: Systemizing the Attack Surface and Defenses in Software-Defined Networks IEEE ACM Transactions on Networking. ,vol. 25, pp. 3514- 3530 ,(2017) , 10.1109/TNET.2017.2748159