Modeling software defined security using multi-level security mechanism for SDN environment
Title | Modeling software defined security using multi-level security mechanism for SDN environment |
Publication Type | Conference Paper |
Year of Publication | 2017 |
Authors | Abdulqadder, I. H., Zou, D., Aziz, I. T., Yuan, B. |
Conference Name | 2017 IEEE 17th International Conference on Communication Technology (ICCT) |
Date Published | Oct. 2017 |
Publisher | IEEE |
ISBN Number | 978-1-5090-3944-9 |
Keywords | authentication, benign flow packets, composability, computer network security, control systems, dual-fuzzy logic design, flow packet, Fuzzy logic, fuzzy logic system, IP networks, Measurement, Metrics, multilevel security mechanism, Networked Control Systems Security, nonbenign flow, OpenFlow, packet features, pubcrawl, quality of service, resilience, Resiliency, risk level, SDN architecture design, SDN environment, SDN-security, secure controller, security based challenges, software defined networking, Software Defined Networking support, Software Defined Security, thirdly controllers, vulnerable threats |
Abstract | Software Defined Networking (SDN) support several administrators for quicker access of resources due to its manageability, cost-effectiveness and adaptability. Even though SDN is beneficial it also exists with security based challenges due to many vulnerable threats. Participation of such threats increases their impact and risk level. In this paper a multi-level security mechanism is proposed over SDN architecture design. In each level the flow packet is analyzed using different metric and finally it reaches a secure controller for processing. Benign flow packets are differentiated from non-benign flow by means of the packet features. Initially routers verify user, secondly policies are verified by using dual-fuzzy logic design and thirdly controllers are authenticated using signature based authentication before assigning flow packets. This work aims to enhance entire security of developed SDN environment. SDN architecture is implemented in OMNeT++ simulation tool that supports OpenFlow switches and controllers. Finally experimental results show better performances in following performance metrics as throughput, time consumption and jitter. |
URL | https://ieeexplore.ieee.org/document/8359852 |
DOI | 10.1109/ICCT.2017.8359852 |
Citation Key | abdulqadder_modeling_2017 |
- packet features
- vulnerable threats
- thirdly controllers
- Software Defined Security
- Software Defined Networking support
- software defined networking
- security based challenges
- secure controller
- SDN-security
- SDN environment
- SDN architecture design
- risk level
- Resiliency
- resilience
- quality of service
- pubcrawl
- authentication
- OpenFlow
- nonbenign flow
- Networked Control Systems Security
- multilevel security mechanism
- Metrics
- Measurement
- IP networks
- fuzzy logic system
- Fuzzy logic
- flow packet
- dual-fuzzy logic design
- control systems
- computer network security
- composability
- benign flow packets