On achieving SDN controller diversity for improved network security using coloring algorithm
| Title | On achieving SDN controller diversity for improved network security using coloring algorithm |
| Publication Type | Conference Paper |
| Year of Publication | 2017 |
| Authors | Wang, Z., Hu, H., Zhang, C. |
| Conference Name | 2017 3rd IEEE International Conference on Computer and Communications (ICCC) |
| Date Published | dec |
| Keywords | Color, coloring algorithm, Communication networks, computer network security, distributed control, distributed controllers system, diversity, improved network security, malicious controller, multicontrollers deployment, neighboring controllers, network design, network management, network programmability, pubcrawl, Resiliency, Scalability, scalability issue, SDN control plane, SDN controller diversity, SDN paradigm rings flexibility, SDN security, security, security performance, Silicon, SIS, Software algorithms, software defined networking, Surfaces, Susceptible-Infectious-Susceptible epidemic model, telecommunication control, telecommunication network management |
| Abstract | The SDN (Software Defined Networking) paradigm rings flexibility to the network management and is an enabler to offer huge opportunities for network programmability. And, to solve the scalability issue raised by the centralized architecture of SDN, multi-controllers deployment (or distributed controllers system) is envisioned. In this paper, we focus on increasing the diversity of SDN control plane so as to enhance the network security. Our goal is to limit the ability of a malicious controller to compromise its neighboring controllers, and by extension, the rest of the controllers. We investigate a heterogeneous Susceptible-Infectious-Susceptible (SIS) epidemic model to evaluate the security performance and propose a coloring algorithm to increase the diversity based on community detection. And the simulation results demonstrate that our algorithm can reduce infection rate in control plane and our work shows that diversity must be introduced in network design for network security. |
| URL | https://ieeexplore.ieee.org/document/8322747 |
| DOI | 10.1109/CompComm.2017.8322747 |
| Citation Key | wang_achieving_2017 |
- Scalability
- telecommunication network management
- telecommunication control
- Susceptible-Infectious-Susceptible epidemic model
- Surfaces
- software defined networking
- Software algorithms
- SIS
- Silicon
- security performance
- security
- SDN security
- SDN paradigm rings flexibility
- SDN controller diversity
- SDN control plane
- scalability issue
- Color
- Resiliency
- pubcrawl
- network programmability
- network management
- network design
- neighboring controllers
- multicontrollers deployment
- malicious controller
- improved network security
- diversity
- distributed controllers system
- distributed control
- computer network security
- Communication networks
- coloring algorithm