AC-PROT: An access control model to improve software-defined networking security

Wei Wu; Renping Liu; Wei Ni; Dali Kaafar; Xiaojing Huang

doi:10.1109/VTCSpring.2017.8108543

AC-PROT

An access control model to improve software-defined networking security

Wei Wu, Renping Liu, Wei Ni, Dali Kaafar, Xiaojing Huang

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution

Abstract

The logically-centralized controllers have largely operated as the coordination points in software-defined networking(SDN), through which applications submit network operations to manage the global network resource. Therefore, the validity of these network operations from SDN applications are critical for the security of SDN. In this paper, we analyze the mechanism that generates network operations in SDN, and present a fine-grained access control model, called Access Control Protector(AC-PROT),that employs an attribute-based signature scheme for network applications. The simulation result demonstrates that AC-PROT can efficiently identify and reject unauthorized network operations generated by applications.

Original language	English
Title of host publication	VTC Spring 2017
Subtitle of host publication	Proceedings of the 2017 IEEE 85th Vehicular Technology Conference
Place of Publication	Piscataway, NJ
Publisher	Institute of Electrical and Electronics Engineers (IEEE)
Number of pages	5
ISBN (Electronic)	9781509059324
ISBN (Print)	9781509059331
DOIs	https://doi.org/10.1109/VTCSpring.2017.8108543
Publication status	Published - 14 Nov 2017
Externally published	Yes
Event	85th IEEE Vehicular Technology Conference, VTC Spring 2017 - Sydney, Australia Duration: 4 Jun 2017 → 7 Jun 2017

Conference

Conference	85th IEEE Vehicular Technology Conference, VTC Spring 2017
Country	Australia
City	Sydney
Period	4/06/17 → 7/06/17

Keywords

Access control
Attribute-based signature
Software-defined networking

Access to Document

10.1109/VTCSpring.2017.8108543

Link to publication in Scopus

Fingerprint Dive into the research topics of 'AC-PROT: An access control model to improve software-defined networking security'. Together they form a unique fingerprint.

Cite this

Wu, W., Liu, R., Ni, W., Kaafar, D., & Huang, X. (2017). AC-PROT: An access control model to improve software-defined networking security. In VTC Spring 2017: Proceedings of the 2017 IEEE 85th Vehicular Technology Conference Piscataway, NJ: Institute of Electrical and Electronics Engineers (IEEE). https://doi.org/10.1109/VTCSpring.2017.8108543

@inproceedings{87ee1a4a262f438e9c7976129b739c9f,

title = "AC-PROT: An access control model to improve software-defined networking security",

abstract = "The logically-centralized controllers have largely operated as the coordination points in software-defined networking(SDN), through which applications submit network operations to manage the global network resource. Therefore, the validity of these network operations from SDN applications are critical for the security of SDN. In this paper, we analyze the mechanism that generates network operations in SDN, and present a fine-grained access control model, called Access Control Protector(AC-PROT),that employs an attribute-based signature scheme for network applications. The simulation result demonstrates that AC-PROT can efficiently identify and reject unauthorized network operations generated by applications.",

keywords = "Access control, Attribute-based signature, Software-defined networking",

author = "Wei Wu and Renping Liu and Wei Ni and Dali Kaafar and Xiaojing Huang",

year = "2017",

month = "11",

day = "14",

doi = "10.1109/VTCSpring.2017.8108543",

language = "English",

isbn = "9781509059331",

booktitle = "VTC Spring 2017",

publisher = "Institute of Electrical and Electronics Engineers (IEEE)",

address = "United States",

}

Wu, W, Liu, R, Ni, W, Kaafar, D & Huang, X 2017, AC-PROT: An access control model to improve software-defined networking security. in VTC Spring 2017: Proceedings of the 2017 IEEE 85th Vehicular Technology Conference. Institute of Electrical and Electronics Engineers (IEEE), Piscataway, NJ, 85th IEEE Vehicular Technology Conference, VTC Spring 2017, Sydney, Australia, 4/06/17. https://doi.org/10.1109/VTCSpring.2017.8108543

AC-PROT : An access control model to improve software-defined networking security. / Wu, Wei; Liu, Renping; Ni, Wei; Kaafar, Dali; Huang, Xiaojing.

VTC Spring 2017: Proceedings of the 2017 IEEE 85th Vehicular Technology Conference. Piscataway, NJ : Institute of Electrical and Electronics Engineers (IEEE), 2017.

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution

TY - GEN

T1 - AC-PROT

T2 - An access control model to improve software-defined networking security

AU - Wu, Wei

AU - Liu, Renping

AU - Ni, Wei

AU - Kaafar, Dali

AU - Huang, Xiaojing

PY - 2017/11/14

Y1 - 2017/11/14

N2 - The logically-centralized controllers have largely operated as the coordination points in software-defined networking(SDN), through which applications submit network operations to manage the global network resource. Therefore, the validity of these network operations from SDN applications are critical for the security of SDN. In this paper, we analyze the mechanism that generates network operations in SDN, and present a fine-grained access control model, called Access Control Protector(AC-PROT),that employs an attribute-based signature scheme for network applications. The simulation result demonstrates that AC-PROT can efficiently identify and reject unauthorized network operations generated by applications.

AB - The logically-centralized controllers have largely operated as the coordination points in software-defined networking(SDN), through which applications submit network operations to manage the global network resource. Therefore, the validity of these network operations from SDN applications are critical for the security of SDN. In this paper, we analyze the mechanism that generates network operations in SDN, and present a fine-grained access control model, called Access Control Protector(AC-PROT),that employs an attribute-based signature scheme for network applications. The simulation result demonstrates that AC-PROT can efficiently identify and reject unauthorized network operations generated by applications.

KW - Access control

KW - Attribute-based signature

KW - Software-defined networking

UR - http://www.scopus.com/inward/record.url?scp=85040600723&partnerID=8YFLogxK

U2 - 10.1109/VTCSpring.2017.8108543

DO - 10.1109/VTCSpring.2017.8108543

M3 - Conference proceeding contribution

SN - 9781509059331

BT - VTC Spring 2017

PB - Institute of Electrical and Electronics Engineers (IEEE)

CY - Piscataway, NJ

ER -