Securing Software Defined Networking
Abstract:
Software Defined Networking (SDN) has quickly developed as a technology to manage large-scale rapidly changing network environments at line-speed. This switch to centrally managed network devices potentially brings increased risks to the network infrastructure. If SDN applications can be thought of as programming the network, then SDN controllers must provide a protected environment in the same way that traditional operating systems isolate and protect software. This paper discusses the security concerns of SDN; examines current approaches to incorporating application permissions in SDN controllers, such as security-mode ONOS; and identifies where further work is needed to provide this assurance for operational networks.
AUTHORS
Research Directorate National Security Agency Fort George G. Meade, MD
U.S.A.
Dr. Brett Sovereign is a Security Researcher for the Information Assurance Research Group at the National Security Agency. He has more than 18 years of experience in software security evaluation and secure communications. Prior to joining the NSA, he was the Inaugural NSA Visiting Professor at the U.S. Coast Guard Academy. His current research interests focus on the use of next generation network security protocols.
Published In
Journal of Information Warfare
The definitive publication for the best and latest research and analysis on information warfare, information operations, and cyber crime. Available in traditional hard copy or online.
Quick Links
Archive