A Survey of Securing Networks Using Software Defined Networking

被引:122
作者
Ali, Syed Taha [1 ]
Sivaraman, Vijay [2 ]
Radford, Adam [3 ]
Jha, Sanjay [2 ]
机构
[1] Newcastle Univ, Newcastle Upon Tyne NE1 7RU, Tyne & Wear, England
[2] Univ New S Wales, Sydney, NSW 2052, Australia
[3] Cisco Syst, Sydney, NSW 2060, Australia
来源
IEEE TRANSACTIONS ON RELIABILITY | 2015年 / 64卷 / 03期
关键词
Anonymization; data offloading; network functions virtualization; network security; network verification; software defined networking; threat detection; threat remediation; SYSTEM;
D O I
10.1109/TR.2015.2421391
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
Software Defined Networking (SDN) is rapidly emerging as a new paradigm for managing and controlling the operation of networks ranging from the data center to the core, enterprise, and home. The logical centralization of network intelligence presents exciting challenges and opportunities to enhance security in such networks, including new ways to prevent, detect, and react to threats, as well as innovative security services and applications that are built upon SDN capabilities. In this paper, we undertake a comprehensive survey of recent works that apply SDN to security, and identify promising future directions that can be addressed by such research.
引用
收藏
页码:1086 / 1097
页数:12
相关论文
共 92 条
[61]  
Gember A, 2012, PROCEEDINGS OF THE 11TH ACM WORKSHOP ON HOT TOPICS IN NETWORKS (HOTNETS-XI), P7
[62]  
Gu G., 2008, USENIX SEC S, V5, P139
[63]   NOX: Towards an operating system for networks [J].
Gude, Natasha ;
Koponen, Teemu ;
Pettit, Justin ;
Pfaff, Ben ;
Casado, Martin ;
McKeown, Nick ;
Shenker, Scott .
ACM SIGCOMM COMPUTER COMMUNICATION REVIEW, 2008, 38 (03) :105-110
[64]   Machine-Verified Network Controllers [J].
Guha, Arjun ;
Reitblatt, Mark ;
Foster, Nate .
ACM SIGPLAN NOTICES, 2013, 48 (06) :483-494
[65]   Sizzle: A standards-based end-to-end security architecture for the embedded Internet [J].
Gupta, Vipul ;
Wurm, Michael ;
Zhu, Yu ;
Millard, Matthew ;
Fung, Stephen ;
Gura, Nils ;
Eberle, Hans ;
Shantz, Sheueling Chang .
PERVASIVE AND MOBILE COMPUTING, 2005, 1 (04) :425-445
[66]  
Gutz S., 2012, Proceedings of the first workshop on Hot topics in software defined networks, ACM, P79
[67]  
Jafarian J. H., 2012, P 1 WORKSH HOT TOP S, P127, DOI DOI 10.1145/2342441.2342467
[68]   B4: Experience with a Globally-Deployed Software Defined WAN [J].
Jain, Sushant ;
Kumar, Alok ;
Mandal, Subhasree ;
Ong, Joon ;
Poutievski, Leon ;
Singh, Arjun ;
Venkata, Subbaiah ;
Wanderer, Jim ;
Zhou, Junlan ;
Zhu, Min ;
Zolla, Jonathan ;
Hoelzle, Urs ;
Stuart, Stephen ;
Vahdat, Amin .
ACM SIGCOMM COMPUTER COMMUNICATION REVIEW, 2013, 43 (04) :3-14
[69]  
Kavilanz P., 2013, CNN Money
[70]   SOS: Secure Overlay Services [J].
Keromytis, AD ;
Misra, V ;
Rubenstein, D .
ACM SIGCOMM COMPUTER COMMUNICATION REVIEW, 2002, 32 (04) :61-72
12345678910