Towards a dynamic policy enhanced integrated security architecture for SDN infrastructure

Research output: Chapter in Book/Report/Conference proceedingConference proceeding contribution

Abstract

Enterprise networks are increasingly moving towards Software Defined Networking, which is becoming a major trend in the networking arena. With the increased popularity of SDN, there is a greater need for security measures for protecting the enterprise networks. This paper focuses on the design and implementation of an integrated security architecture for SDN based enterprise networks. The integrated security architecture uses a policy-based approach to coordinate different security mechanisms to detect and counteract a range of security attacks in the SDN. A distinguishing characteristic of the proposed architecture is its ability to deal with dynamic changes in the security attacks as well as changes in trust associated with the network devices in the infrastructure. The adaptability of the proposed architecture to dynamic changes is achieved by having feedback between the various security components/mechanisms in the architecture and managing them using a dynamic policy framework. The paper describes the prototype implementation of the proposed architecture and presents security and performance analysis for different attack scenarios. We believe that the proposed integrated security architecture provides a significant step towards achieving a secure SDN for enterprises.

Original languageEnglish
Title of host publicationProceedings of IEEE/IFIP Network Operations and Management Symposium 2020
Subtitle of host publicationManagement in the Age of Softwarization and Artificial Intelligence, NOMS 2020
Place of PublicationPiscataway, NY
PublisherInstitute of Electrical and Electronics Engineers (IEEE)
Number of pages9
ISBN (Electronic)9781728149738
DOIs
Publication statusPublished - 2020
Event2020 IEEE/IFIP Network Operations and Management Symposium, NOMS 2020 - Budapest, Hungary
Duration: 20 Apr 202024 Apr 2020

Publication series

NameProceedings of IEEE/IFIP Network Operations and Management Symposium 2020: Management in the Age of Softwarization and Artificial Intelligence, NOMS 2020

Conference

Conference2020 IEEE/IFIP Network Operations and Management Symposium, NOMS 2020
CountryHungary
CityBudapest
Period20/04/2024/04/20

Keywords

  • Enterprise Network Security
  • Network Attacks
  • Policy-based Security Architecture
  • SDN Security

Fingerprint Dive into the research topics of 'Towards a dynamic policy enhanced integrated security architecture for SDN infrastructure'. Together they form a unique fingerprint.

  • Cite this

    Karmakar, K. K., Varadharajan, V., Tupakula, U., & Hitchens, M. (2020). Towards a dynamic policy enhanced integrated security architecture for SDN infrastructure. In Proceedings of IEEE/IFIP Network Operations and Management Symposium 2020: Management in the Age of Softwarization and Artificial Intelligence, NOMS 2020 (Proceedings of IEEE/IFIP Network Operations and Management Symposium 2020: Management in the Age of Softwarization and Artificial Intelligence, NOMS 2020). Piscataway, NY: Institute of Electrical and Electronics Engineers (IEEE). https://doi.org/10.1109/NOMS47738.2020.9110405