| Title | Risk-driven Security Metrics Development for Software-defined Networking |
| Publication Type | Conference Paper |
| Year of Publication | 2018 |
| Authors | Savola, Reijo M., Savolainen, Pekka |
| Conference Name | Proceedings of the 12th European Conference on Software Architecture: Companion Proceedings |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-6483-6 |
| Keywords | Metrics, pubcrawl, risk analysis, security metrics, software-defined networking |
| Abstract | Introduction of SDN (Software-Defined Networking) into the network management turns the formerly quite rigid networks to programmatically reconfigurable, dynamic and high-performing entities, which are managed remotely. At the same time, introduction of the new interfaces evidently widens the attack surface, and new kind of attack vectors are introduced threatening the QoS even critically. Thus, there is need for a security architecture, drawing from the SDN management and monitoring capabilities, and eventually covering the threats posed by the SDN evolution. For efficient security-architecture implementation, we analyze the security risks of SDN and based on that propose heuristic security objectives. Further, we decompose the objectives for effective security control implementation and security metrics definition to support informed security decision-making and continuous security improvement. |
| URL | http://doi.acm.org/10.1145/3241403.3241461 |
| DOI | 10.1145/3241403.3241461 |
| Citation Key | savola_risk-driven_2018 |
Risk-driven Security Metrics Development for Software-defined Networking