Security: a Killer App for SDN?

Yu, Dongting; Moore, Andrew W.; Hall, Chris; Anderson, Ross

Security: a Killer App for SDN?

Active / Technical Report | Accession Number: ADA613601 |

Open PDF

Abstract:

Software Defined Networking SDN has been developed rapidly and is now used by early adopters such as data centres. It offers immediate capital cost savings by replacing proprietary routers with commodity switches and controllers the use of computer science abstractions in network management offers operational cost savings, with performance and functionality improvements too. However, there is a third class of benefits, that will come into their own once SDN is deployed in less controlled environments and that is security. Traditional network architectures have many points of serious failure the compromise of a single router can lead to significant attacks. SDN enables network designers to limit the damage that compromised switches can do, and thus can support more resilient and survivable networks in environments where opponents may have access to some of the infrastructure. In this paper we discuss the security aspects of SDN, and the possible opportunities that result.

Author(s):

Yu, Dongting ; Moore, Andrew W. ; Hall, Chris ; Anderson, Ross

Author Organization(s):

INDIANA UNIV AT BLOOMINGTON

Descriptive Note:

Technical paper Jan 2013-Jan 2014

Supplementary Note:

DOI: 10.21236/ADA613601

Pagination:

0007

Security Markings

DOCUMENT & CONTEXTUAL SUMMARY

Distribution:

Approved For Public Release

Distribution Statement:

Approved For Public Release; Distribution Is Unlimited.

RECORD

Collection: TR

Identifying Numbers

Report Number(s):

AFRL-RI-RS-TP-2014-048

Contract/Grant Number(s):

FA8750-13-2-0023

Task Number(s):

ED

Project Number(s):

PROC

Monitor Series:

TP-2014-048, AFRL/RI

Subject Terms

Joint Capability Areas:

JCA_5_Command and Control; JCA_4.1_Deployment and Distribution; JCA_5.6.1_Assess Compliance with Guidance; JCA_5.6_Monitor; JCA_1.2.3_Educating

Modernization Areas:

Fully Networked C3

Communities of Interest:

Energy and Power Technologies

Descriptor(s):

*NETWORK ARCHITECTURE, COMPUTER PROGRAMS, COST REDUCTION, ROUTING, SECURITY

Field(s)/Group(s):

Computer Systems

Keyword(s):

SOFTWARE DEFINED NETWORK, NETWORK ROUTING, PE62303E, WUPROCEDUI

Report Date:

2014 Oct 01

Creation Date:

2015 Mar 23