Security Evaluation Methodology for Software Defined Network Solutions

2019 International Conference on Platform Technology and Service (PlatCon) Pub Date : 2019-01-01 DOI:10.1109/PLATCON.2019.8669405

Jean Claude Nikoue, S. Butakov, Yasir Malik

{"title":"Security Evaluation Methodology for Software Defined Network Solutions","authors":"Jean Claude Nikoue, S. Butakov, Yasir Malik","doi":"10.1109/PLATCON.2019.8669405","DOIUrl":null,"url":null,"abstract":"Software Defined Networking (SDN) has introduced both innovative opportunities and additional risks in the computer networking. Among disadvantages of SDNs one can mention their susceptibility to vulnerabilities associated with both virtualization and the traditional networking. Selecting a proper controller for an organization may not be a trivial task as there is a variety of SDN controllers on the market and each of them may come with its own pros and cons from the security point of view. This research proposes a comprehensive methodology for organizations to evaluate security-related features available in SDN controllers. The methodology can serve as a guideline in the decisions related to SDN choice. The proposed security assessment follows a structured approach to evaluate each layer of the SDN architecture and each metrics defined in presented research has been matched with the security controls defined in NIST 800-53. Through the tests on actual controllers the paper provides an example on how the proposed methodology can be used to evaluate existing SDN solutions.","PeriodicalId":364838,"journal":{"name":"2019 International Conference on Platform Technology and Service (PlatCon)","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2019-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 International Conference on Platform Technology and Service (PlatCon)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/PLATCON.2019.8669405","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

Abstract

Software Defined Networking (SDN) has introduced both innovative opportunities and additional risks in the computer networking. Among disadvantages of SDNs one can mention their susceptibility to vulnerabilities associated with both virtualization and the traditional networking. Selecting a proper controller for an organization may not be a trivial task as there is a variety of SDN controllers on the market and each of them may come with its own pros and cons from the security point of view. This research proposes a comprehensive methodology for organizations to evaluate security-related features available in SDN controllers. The methodology can serve as a guideline in the decisions related to SDN choice. The proposed security assessment follows a structured approach to evaluate each layer of the SDN architecture and each metrics defined in presented research has been matched with the security controls defined in NIST 800-53. Through the tests on actual controllers the paper provides an example on how the proposed methodology can be used to evaluate existing SDN solutions.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

软件定义网络解决方案的安全评估方法

软件定义网络(SDN)给计算机网络带来了创新的机会和额外的风险。在sdn的缺点中，可以提到它们容易受到与虚拟化和传统网络相关的漏洞的影响。为组织选择合适的控制器可能不是一件小事，因为市场上有各种各样的SDN控制器，从安全的角度来看，每种控制器都有自己的优缺点。本研究为组织评估SDN控制器中可用的安全相关功能提供了一种全面的方法。该方法可以作为SDN选择相关决策的指导方针。拟议的安全评估遵循结构化方法来评估SDN体系结构的每一层，所提出的研究中定义的每个指标都与NIST 800-53中定义的安全控制相匹配。通过对实际控制器的测试，本文提供了一个示例，说明所提出的方法如何用于评估现有的SDN解决方案。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2019 International Conference on Platform Technology and Service (PlatCon)

自引率

0.00%

发文量