On the Design and Implementation of a Security Architecture for Software Defined Networks

机译：软件定义网络安全体系结构的设计与实现

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

In this paper, we propose techniques for securing Software Defined Networks(SDN). We describe the design of a security architecture that makes use of security applications on top of the SDN Controller to specify fine granular security policies based on domain wide knowledge of the domain and Security Agents to enforce these policies in the switches in the data plane. We have extended the Open Flow protocol to enable communication of the security policies between the security applications in the Controller to the agents in the switches. We have implemented the security architecture using POX Controller and demonstrated the operation of our architecture in a range of scenarios such as enforcing specific security policies for different traffic with different services, counteracting attacks such as Heartbleed and Shellshock as well as spoofing attacks, and protecting Content Management Systems(CMS) from data confidentiality attacks.

机译：在本文中，我们提出了用于保护软件定义网络（SDN）的技术。我们描述一种安全体系结构的设计，该体系结构将使用SDN控制器之上的安全应用程序基于域和安全代理的全域知识来指定精细的安全策略，以在数据平面的交换机中实施这些策略。我们扩展了开放流协议，以使Controller中的安全应用程序与交换机中的代理之间的安全策略通信成为可能。我们已经使用POX Controller实现了安全体系结构，并在各种情况下演示了我们体系结构的操作，例如针对具有不同服务的不同流量实施特定的安全策略，应对Heartbleed和Shellshock等攻击以及欺骗性攻击以及保护内容管理系统（CMS）免受数据机密性攻击。

著录项

来源
《IEEE International Conference on High Performance Computing and Communications;IEEE International Conference on Smart City;IEEE International Conference on Data Science and Systems》|2016年|671-678|共8页
会议地点
作者
Kallol Krishna Karmakar; Vijay Varadharajan; Udaya Tupakula;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Control systems; Access control; Databases; Computer architecture; Software; IP networks;

机译：控制系统;访问控制;数据库;计算机体系结构;软件; IP网络;

相似文献

外文文献
中文文献
专利

1. Design and Implementation of a Software-Defined Mobility Architecture for IP Networks [J] . Wang You, Bi Jun, Zhang Keyao Mobile networks & applications . 2015,第1期

机译：IP网络的软件定义的移动性体系结构的设计和实现
2. Security Policy Scheme for an Efficient Security Architecture in Software-Defined Networking [J] . Woosik Lee, Namgi Kim Information . 2017,第2期

机译：软件定义网络中高效安全体系结构的安全策略方案
3. Software defined networking architecture, traffic management, security, and placement: A survey [J] . Priyadarsini M., Bera P. Computer networks . 2021,第Juna19期

机译：软件定义了网络架构，流量管理，安全性和放置：调查
4. Design and Implementation of a Security Control Architecture for Software-Defined Networking [C] . Tie-jun LIU, Zhao-wen LIN, Jie XU International Conference on Computer Networks and Communication Technology . 2017

机译：软件定义网络安全控制架构的设计与实现
5. Implications of Implementing Software Defined Networking to Improve Cybersecurity for Operational Technology Networks [D] . Tommey, Charles R. 2018

机译：实施软件定义网络以提高运营技术网络的网络安全性的意义
6. On the Design of Efficient Hierarchic Architecture for Software Defined Vehicular Networks [O] . Muhammad Adnan, Jawaid Iqbal, Abdul Waheed, 2021

机译：关于软件定义车辆网络的高效分层体系结构设计
7. Design and Implementation of a Security Control Architecture for Software-Defined NetworkingDesign and Implementation of a Security Control Architecture for Software-Defined Networking [O] . Tie-jun LIU, Zhao-wen LIN, Jie XU 2017

机译：用于软件定义网络的安全控制架构的设计与实现，以及用于软件定义网络的安全控制架构的实施

On the Design and Implementation of a Security Architecture for Software Defined Networks

摘要

著录项

相似文献

相关主题

期刊订阅