Towards secure and dependable software-defined networks

Diego Kreutz, Fernando M.V. Ramos, Paulo Verissimo

Research output: Chapter in Book/Report/Conference proceedingConference contribution

629 Scopus citations

Abstract

Software-defined networking empowers network operators with more flexibility to program their networks. With SDN, network management moves from codifying functionality in terms of low-level device configurations to building software that facilitates network management and debugging. By separating the complexity of state distribution from network specification, SDN provides new ways to solve long-standing problems in networking - routing, for instance - while simultaneously allowing the use of security and dependability techniques, such as access control or multi-path. However, the security and dependability of the SDN itself is still an open issue. In this position paper we argue for the need to build secure and dependable SDNs by design. As a first step in this direction we describe several threat vectors that may enable the exploit of SDN vulnerabilities. We then sketch the design of a secure and dependable SDN control platform as a materialization of the concept here advocated. We hope that this paper will trigger discussions in the SDN community around these issues and serve as a catalyser to join efforts from the networking and security & dependability communities in the ultimate goal of building resilient control planes. © 2013 ACM.
Original languageEnglish (US)
Title of host publicationHotSDN 2013 - Proceedings of the 2013 ACM SIGCOMM Workshop on Hot Topics in Software Defined Networking
Pages55-60
Number of pages6
DOIs
StatePublished - Sep 16 2013
Externally publishedYes

Fingerprint

Dive into the research topics of 'Towards secure and dependable software-defined networks'. Together they form a unique fingerprint.

Cite this