A Survey on Emerging SDN and NFV Security Mechanisms for IoT Systems

被引:268
作者
Farris, Ivan [1 ]
Taleb, Tarik [1 ,2 ]
Khettab, Yacine [1 ]
Song, Jaeseung [2 ]
机构
[1] Aalto Univ, Dept Commun & Networking, Sch Elect Engn, Espoo 02150, Finland
[2] Sejong Univ, Comp & Informat Secur Dept, Seoul 143747, South Korea
来源
IEEE COMMUNICATIONS SURVEYS AND TUTORIALS | 2019年 / 21卷 / 01期
基金
新加坡国家研究基金会; 欧盟地平线“2020”;
关键词
Internet of Things; security; SDN; NFV; cloud; edge computing; WIRELESS SENSOR NETWORKS; SOFTWARE-DEFINED NETWORKING; OF-THE-ART; CYBER SECURITY; INTRUSION DETECTION; PHYSICAL ATTACKS; INTERNET; THINGS; SERVICE; ARCHITECTURE;
D O I
10.1109/COMST.2018.2862350
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The explosive rise of Internet of Things (IoT) systems have notably increased the potential attack surfaces for cybercriminals. Accounting for the features and constraints of IoT devices, traditional security countermeasures can be inefficient in dynamic IoT environments. In this vein, the advantages introduced by software defined networking (SDN) and network function virtualization (NFV) have the potential to reshape the landscape of cybersecurity for IoT systems. To this aim, we provide a comprehensive analysis of security features introduced by NFV and SDN, describing the manifold strategies able to monitor, protect, and react to IoT security threats. We also present lessons learned in the adoption of SDN/NFV-based protection approaches in IoT environments, comparing them with conventional security countermeasures. Finally, we deeply discuss the open challenges related to emerging SDN- and NFV-based security mechanisms, aiming to provide promising directives to conduct future research in this fervent area.
引用
收藏
页码:812 / 837
页数:26
相关论文
共 203 条
[1]  
Abomhara M., 2015, J. Cyber Secur. Mobil, V4, P65, DOI [10.13052/jcsm2245-1439.414, DOI 10.13052/JCSM2245-1439.414]
[2]   Security in Software Defined Networks: A Survey [J].
Ahmad, Ijaz ;
Namal, Suneth ;
Ylianttila, Mika ;
Gurtov, Andrei .
IEEE COMMUNICATIONS SURVEYS AND TUTORIALS, 2015, 17 (04) :2317-2346
[3]   On Enabling 5G Automotive Systems Using Follow Me Edge-Cloud Concept [J].
Aissioui, Abdelkader ;
Ksentini, Adlen ;
Gueroui, Abdelhak Mourad ;
Taleb, Tarik .
IEEE TRANSACTIONS ON VEHICULAR TECHNOLOGY, 2018, 67 (06) :5302-5316
[4]   Toward Secure Software Defined Vehicular Networks: Taxonomy, Requirements, and Open Issues [J].
Akhunzada, Adnan ;
Khan, Muhammad Khurram .
IEEE COMMUNICATIONS MAGAZINE, 2017, 55 (07) :110-118
[5]   Wireless sensor networks: a survey [J].
Akyildiz, IF ;
Su, W ;
Sankarasubramaniam, Y ;
Cayirci, E .
COMPUTER NETWORKS, 2002, 38 (04) :393-422
[6]   SD-NFV as an Energy Efficient Approach for M2M Networks Using Cloud-Based 6LoWPAN Testbed [J].
Al-Kaseem, Bilal R. ;
Al-Raweshidy, Hamed S. .
IEEE INTERNET OF THINGS JOURNAL, 2017, 4 (05) :1787-1797
[7]   Internet of Things security: A survey [J].
Alaba, Fadele Ayotunde ;
Othman, Mazliza ;
Hashem, Ibrahim Abaker Targio ;
Alotaibi, Faiz .
JOURNAL OF NETWORK AND COMPUTER APPLICATIONS, 2017, 88 :10-28
[8]   A Survey of Securing Networks Using Software Defined Networking [J].
Ali, Syed Taha ;
Sivaraman, Vijay ;
Radford, Adam ;
Jha, Sanjay .
IEEE TRANSACTIONS ON RELIABILITY, 2015, 64 (03) :1086-1097
[9]   Security and Privacy Analysis of National Science Foundation Future Internet Architectures [J].
Ambrosin, Moreno ;
Compagno, Alberto ;
Conti, Mauro ;
Ghali, Cesar ;
Tsudik, Gene .
IEEE COMMUNICATIONS SURVEYS AND TUTORIALS, 2018, 20 (02) :1418-1442
[10]   Toward Unified Control of Networks of Switches and Sensors Through a Network Operating System [J].
Anadiotis, Angelos-Christos G. ;
Milardo, Sebastiano ;
Morabito, Giacomo ;
Palazzo, Sergio .
IEEE INTERNET OF THINGS JOURNAL, 2018, 5 (02) :895-904
12345678910