SDN Issues A Survey (original) (raw)
Related papers
Analysis of Issues in SDN Security and Solutions
Advances in Systems Analysis, Software Engineering, and High Performance Computing
The chapter surveys the analysis of all the security aspects of software-defined network and determines the areas that are prone to security attacks in the given software-defined network architecture. If the fundamental network topology information is poisoned, all the dependent network services will become immediately affected, causing catastrophic problems like host location hijacking attack, link fabrication attack, denial of service attack, man in the middle attack. These attacks affect the following features of SDN: availability, performance, integrity, and security. The flexibility in the programmability of control plane has both acted as a bane as well as a boon to SDN. Like the ARP poisoning in the legacy networks, there are several other vulnerabilities in the SDN architecture as well.
Toward more secure SDN: A Survey
Software-defined Networking (SDN) is a new networking paradigm also referred to as a “radical new idea in networking” [1]. It favors network programmability and flexibility, it relieves network administrators to commit physical changes to the network infrastructure when new services and applications require topological changes in the network. The new firewall can be deployed at the edge of network without the need to overhaul the network in operation. The SDN takes this flexibility even further by utilizing applications that are capable perform regular network maintenance tasks that prior to the SDN was possible by network administrators labor effort. The provided centralized point of control and unified user configuration interface for switches, routers and middle-boxes from diverse vendors.
Software-Defined Network Security
Networks of the Future, 2017
The future networks are expected to lead a hyper-connected society with the promise of high social and economic value. The goal is to solve today's network problems and provide satisfactory security. Thus, the future networks require a flexible infrastructure that is secure against cyberattacks. Software defined networking (SDN) can be considered as one of the building blocks of upcoming networking technologies. In this chapter, first, the limitations of today's networks are presented. Then, solutions to secure the networks with SDN components are given. This concept is referred to as "SDN for Security." While SDN facilitates securing networks in general, it introduces additional challenges, mainly, the vulnerabilities of the SDN components such as the controller have to be addressed. Security for SDN aims at securing SDN assets and is discussed in the sequel. After reading this chapter, readers will obtain a comprehensive overview of the limitations of traditional networks, such as how SDN overcomes those limitations and the security issues thereof.
Security Issues in Software Defined Networking (SDN): Risks, Challenges and Potential Solutions
International Journal of Advanced Computer Science and Applications, 2019
SDN (Software Defined Networking) is an architecture that aims to improve the control of network and flexibility. It is mainly connected with open flow protocol and ODIN V2 for wireless communication. Its architecture is central, agile and programmatically configured. This paper presents a security analysis that enforces the protection of GUI by requiring authentication, SSL/TLS integration and logging/security audit services. The role based authorization FortNOX and ciphers like AES and DES will be used for encryption of data and improving the security of SDN environment. These techniques are useful for enhancing the security framework of the controller.
2013 IEEE SDN for Future Networks and Services (SDN4FNS), 2013
The pull of Software-Defined Networking (SDN) is magnetic. There are few in the networking community who have escaped its impact. As the benefits of network visibility and network device programmability are discussed, the question could be asked as to who exactly will benefit? Will it be the network operator or will it, in fact, be the network intruder? As SDN devices and systems hit the market, security in SDN must be raised on the agenda. This paper presents a comprehensive survey of the research relating to security in software-defined networking that has been carried out to date. Both the security enhancements to be derived from using the SDN framework and the security challenges introduced by the framework are discussed. By categorizing the existing work, a set of conclusions and proposals for future research directions are presented.
A Security Architecture for Software Defined Network (SDN)
2018
Software defined network is emerging network architecture with promising future in network field. It is dynamic, manageable, cost effective, and adaptable networking where control and data plane are decoupled, and control plane is centrally located to control application and data planes. OpenFlow is an example of Software Defined Network (SDN) Southbound, which provides an open standard based interface between the SDN controller and data planes to control how data packets are forwarded through the network. As a result of rapid changes in networking, SDN program-ability and control logic centralization capabilities introduces new fault and easily attack planes, that open doors for threats that where not exist or harder to exploit. The paper present SDN architecture with security control level, this provide secured SDN paradigm with machine learning white/black list, where users application can be easily tested and group accordingly (malicious attack or legitimate packet).
A Preliminary Survey on the Security of Software-Defined Networks
International Journal of Applied Mathematics, Electronics and Computers, 2016
The number of devices connected to the Internet is increasing, data centers are growing continuously and computer networks are getting more complex. Traditional network management approach is becoming more difficult and insufficient. Software-Defined Networks (SDN) is a new generation networking approach which is expected to take place of the traditional computer networks. SDN architecture provides effective management of the large and complex networks. Although SDN have benefits from the network security perspective, it also brings new attack vectors. We believe that the network security problems in SDN architecture need more advanced solutions. In this work, a survey on the SDN security problems is presented, challenges are discussed. In this context, security threats and attack surfaces in SDN are described, the significant SDN security solution examples in the literature are given.
Software defined networking: A view towards security challenges
AIP Conference Proceedings
Software Defined Networking (SDN) is new paradigms type of networking that is a programmable network and overcomes the challenges like, network scalability and management of the traditional networks. While programmable network is growing, the security challenges are increasing for different applications. Software Defined Networking manages control planes and data planes separately, where the controller at control planes decides the path at run time and data plane forwards the packets based on controller's decisions. The applications of software are increasing day by day including in communication traffic in SDN, and therefore different applications of different industries and societies faces various challenges related to it. This paper examines the software defined programmable network and view the challenges due to security issues of programmable networking. Finally, this paper discussed with its security impacts and gives concluding remarks.
Vulnerability of SDN Network Architecture and Proposed Countermeasures on Enhancing Security
International Journal of Recent Technology and Engineering
The current problems raising as a horizon in the computational and networking sector is based on the unimaginable increase of high numbers of users which in turn results in high data traffic, limitations over products which are vendor specific, incurring high expenses in maintaining the existing network. This dilutes a major part of the beneficiaries in the sector to move towards Cloud Networks. All these happenings in the past has quietly increased the risks and challenges in the aspect of security considering both data and the infrastructure accommodating the data. In an attempt to address almost a major portion of the existing above said problems, Software Defined Networking was highly anticipated, however, it was considered as a theoretical approach. After the implementation of SDN networks by industrial giants like Google, the SDN concepts again managed to reach the safer hands of the researchers in the movement of enhancement. A very rapid and high speed research work has been...
Security Challenges and Related Solutions in Software Defined Networks: A Survey
International Journal of Computer Networks and Applications (IJCNA), 2022
In the current digitalized world, everything is interconnected and accessible from everywhere. Although traditional networks are widely adopted, their management is complicated. Therefore, they are not effective in providing services to the future Internet like a wide range of accessibility, high bandwidth, management, and security. On the other hand, Traditional network architecture relies on manual configurations of proprietary devices that are error-prone and inefficient to utilize the network devices properly. Softwaredefined Networking (SDN) has drawn massive changes in the traditional network paradigm by decoupling the network operations from the physical hardware and encouraging network control to be logically centralized. It provides network programmability and improves security by enabling a global view of the entire network and issues handled effectively by the centralized controller. As a result, SDN allows networks to monitor the traffic and detect vulnerabilities more effectively. It also simplifies the deployment of new services with more flexibility at a faster pace. On the other hand, the decoupling of control and the data planes introduces security threats such as Distributed Denial of Service (DDoS) attacks, Man in the Middle attacks, Saturation attacks, etc. As a result, SDN has attracted a lot of interest from both academics and industry. In this paper, we study security vulnerabilities on layers of SDN, the security frameworks that protect each layer, and many security methodologies for network-wide security.