Bridging the Gap Between Security Tools and SDN Controllers

Wang, Li and Wu, Dinghao (2018) Bridging the Gap Between Security Tools and SDN Controllers. EAI Endorsed Transactions on Security and Safety, 5 (17). e1. ISSN 2032-9393

[thumbnail of eai.10-1-2019.156242.pdf]
Available under License Creative Commons Attribution No Derivatives.

Download (1MB) | Preview


Software-Defined Networking (SDN) is a promising paradigm to improve network security protections. However, current SDN-based security solutions can hardly provide suÿcient protections in a real SDN network, due to several reasons: 1) they are implemented at either the centralized SDN controllers or the decentralized network devices, which are subject to a performance limitation; 2) their designs are confined by the SDN network characteristics and can only provide limited security functions; and 3) many solutions have deployment challenges and compatibility issues. In this paper, we propose SecControl, a practical network protection framework combining the existing security tools and SDN technologies, to produce a comprehensive network security solution in an SDN environment. We implement a SecControl prototype with OpenFlow and evaluate its effectiveness and performance. Our experiment shows that SecControl can cooperate with many mainstream security tools and provide effective defense responses over SDN-supported networks.

Item Type: Article
Uncontrolled Keywords: Software-defined networking (SDN), Network Function Virtualization (NFV), OpenFlow, SDN security application, SDN controller
Subjects: H Social Sciences > H Social Sciences (General)
Q Science > QA Mathematics > QA75 Electronic computers. Computer science
QA75 Electronic computers. Computer science
Depositing User: EAI Editor IV
Date Deposited: 26 Mar 2021 13:58
Last Modified: 26 Mar 2021 13:58

Actions (login required)

View Item
View Item