{"title":"SDN环境下的网络安全挑战与对策","authors":"A. Hegazy, Minar El-Aasser","doi":"10.1109/SDS54264.2021.9732104","DOIUrl":null,"url":null,"abstract":"The internet has made everything connected and accessible from anywhere. However, conventional TCP/IP networks are complex and very hard to manage. Software-Defined Networking (SDN) is one of the most promising networking paradigms in current and next-generation networks. It promises to change this situation by breaking vertical integration and introduce network programmability. SDN separates control from the network and data plane. The intelligence and brain of the network are logically centralized, and the underlying network infrastructure is abstracted from the application. However, the Control Plane and Data Plane separation opens the door for security challenges and threats. In this paper, we aim to collect, analyze and classify all major security threats and their possible solutions. The security platforms that are used as countermeasures for each attack are described, followed by various security approaches for network-wide security in SDN. As well as classifying security challenges and threats according to different fields, an SDN simulation platform to study and test network performance and attacks countermeasures is also introduced. In short, this paper gathers all the present major SDN security challenges and possible solutions. Furthermore, it studies, classifies and highlights future directions for secure SDN.","PeriodicalId":394607,"journal":{"name":"2021 Eighth International Conference on Software Defined Systems (SDS)","volume":"24 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-12-06","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Network Security Challenges and Countermeasures in SDN Environments\",\"authors\":\"A. Hegazy, Minar El-Aasser\",\"doi\":\"10.1109/SDS54264.2021.9732104\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The internet has made everything connected and accessible from anywhere. However, conventional TCP/IP networks are complex and very hard to manage. Software-Defined Networking (SDN) is one of the most promising networking paradigms in current and next-generation networks. It promises to change this situation by breaking vertical integration and introduce network programmability. SDN separates control from the network and data plane. The intelligence and brain of the network are logically centralized, and the underlying network infrastructure is abstracted from the application. However, the Control Plane and Data Plane separation opens the door for security challenges and threats. In this paper, we aim to collect, analyze and classify all major security threats and their possible solutions. The security platforms that are used as countermeasures for each attack are described, followed by various security approaches for network-wide security in SDN. As well as classifying security challenges and threats according to different fields, an SDN simulation platform to study and test network performance and attacks countermeasures is also introduced. In short, this paper gathers all the present major SDN security challenges and possible solutions. Furthermore, it studies, classifies and highlights future directions for secure SDN.\",\"PeriodicalId\":394607,\"journal\":{\"name\":\"2021 Eighth International Conference on Software Defined Systems (SDS)\",\"volume\":\"24 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-12-06\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2021 Eighth International Conference on Software Defined Systems (SDS)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SDS54264.2021.9732104\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 Eighth International Conference on Software Defined Systems (SDS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SDS54264.2021.9732104","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Network Security Challenges and Countermeasures in SDN Environments
The internet has made everything connected and accessible from anywhere. However, conventional TCP/IP networks are complex and very hard to manage. Software-Defined Networking (SDN) is one of the most promising networking paradigms in current and next-generation networks. It promises to change this situation by breaking vertical integration and introduce network programmability. SDN separates control from the network and data plane. The intelligence and brain of the network are logically centralized, and the underlying network infrastructure is abstracted from the application. However, the Control Plane and Data Plane separation opens the door for security challenges and threats. In this paper, we aim to collect, analyze and classify all major security threats and their possible solutions. The security platforms that are used as countermeasures for each attack are described, followed by various security approaches for network-wide security in SDN. As well as classifying security challenges and threats according to different fields, an SDN simulation platform to study and test network performance and attacks countermeasures is also introduced. In short, this paper gathers all the present major SDN security challenges and possible solutions. Furthermore, it studies, classifies and highlights future directions for secure SDN.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
