Secure and dependable software defined networks

详细信息    查看全文

• 作者：Adnan Akhunzada^a ; ^{a.adnan@siswa.um.edu.my" class="auth_mail" title="E-mail the corresponding author} ; Abdullah Gani^a ; ^{abdullahgani@ieee.org" class="auth_mail" title="E-mail the corresponding author} ; Nor Badrul Anuar^a ; ^{badrul@um.edu.my" class="auth_mail" title="E-mail the corresponding author} ; Ahmed Abdelaziz^a ; ^{ahmedaziz@siswa.um.edu.my" class="auth_mail" title="E-mail the corresponding author} ; Muhammad Khurram Khan^b ; ^{mkhurram@ksu.edu.sa" class="auth_mail" title="E-mail the corresponding author} ; Amir Hayat^c ; ^{amir.hayat@comsats.edu.pk" class="auth_mail" title="E-mail the corresponding author} ; Samee U. Khan^d ; ^{samee.khan@ndsu.edu" class="auth_mail" title="E-mail the corresponding author}
• 关键词：Software defined networks ; Programmable networks ; Open Flow ; Policy enforcement ; Middle-boxes
• 刊名：Journal of Network and Computer Applications
• 出版年：2016
• 出版时间：February 2016
• 年：2016
• 卷：61
• 期：Complete
• 页码：199-221
• 全文大小：2754 K

文摘

The revolutionary concept of Software Defined Networks (SDNs) potentially provides flexible and well-managed next-generation networks. All the hype surrounding the SDNs is predominantly because of its centralized management functionality, the separation of the control plane from the data forwarding plane, and enabling innovation through network programmability. Despite the promising architecture of SDNs, security was not considered as part of the initial design. Moreover, security concerns are potentially augmented considering the logical centralization of network intelligence. Furthermore, the security and dependability of the SDN has largely been a neglected topic and remains an open issue. The paper presents a broad overview of the security implications of each SDN layer/interface. This paper contributes further by devising a contemporary layered/interface taxonomy of the reported security vulnerabilities, attacks, and challenges of SDN. We also highlight and analyze the possible threats on each layer/interface of SDN to help design secure SDNs. Moreover, the ensuing paper contributes by presenting the state-of-the-art SDNs security solutions. The categorization of solutions is followed by a critical analysis and discussion to devise a comprehensive thematic taxonomy. We advocate the production of secure and dependable SDNs by presenting potential requirements and key enablers. Finally, in an effort to anticipate secure and dependable SDNs, we present the ongoing open security issues, challenges and future research directions.