Article Details

Copyright Statement: This is an open access article licensed under a Creative Commons Attribution 4.0 International License, which permits unrestricted use, distribution, and reproduction in any medium, even commercially as long as the original work is properly cited.

Security Enhancement in Software Defined Networking (SDN): A Threat Model

Author 1: Pradeep Kumar Sharma
Author 2: S. S Tyagi

Download PDF

Digital Object Identifier (DOI) : 10.14569/IJACSA.2021.0120925

Article Published in International Journal of Advanced Computer Science and Applications(IJACSA), Volume 12 Issue 9, 2021.

Abstract: Software Defined Networking (SDN) has emerged as a technology which can replace the prevalent vendor based proprietary CLI networking devices. SDN has introduced applications based network control and provided various opportunities and challenges for research and innovation in these networks. Despite many advantages and opportunities in SDN, security is a matter of concern for developers who want to invest in SDN. In this paper we are analyzing the SDN security issues with their countermeasures. We have generalized four use cases threat model that should cover security requirements of SDN. These use cases are: (I) protect controllers from applications, (II) inter-controller protection, (III) protecting data plane or switches from controller, (IV) protecting controllers from malicious switches. We found that these SDN components are inter-related if one is secure another one is already secure. We also compared the SDN and traditional network security in terms of these four use cases and provide the insights for protection mechanism and security enhancements. A framework for the development of a SDN security application has been presented based on ryu controller. We believe that our threat model will help various researchers and developers to understand current security requirements and provide a ready reference to tackle vulnerabilities and threats in this area. Finally, we identify some open research problems and future research directions with a proposed security architecture.

Keywords: Software defined networking (SDN); openflow; control plane; data plane; controller; programmability

Pradeep Kumar Sharma and S. S Tyagi, “Security Enhancement in Software Defined Networking (SDN): A Threat Model” International Journal of Advanced Computer Science and Applications(IJACSA), 12(9), 2021. http://dx.doi.org/10.14569/IJACSA.2021.0120925

@article{Sharma2021,
title = {Security Enhancement in Software Defined Networking (SDN): A Threat Model},
journal = {International Journal of Advanced Computer Science and Applications},
doi = {10.14569/IJACSA.2021.0120925},
url = {http://dx.doi.org/10.14569/IJACSA.2021.0120925},
year = {2021},
publisher = {The Science and Information Organization},
volume = {12},
number = {9},
author = {Pradeep Kumar Sharma and S. S Tyagi}
}

IJACSA

Upcoming Conferences

IntelliSys 2021

2-3 September 2021

Future Technologies Conference (FTC) 2021

28-29 October 2021

Future of Information and Communication Conference (FICC) 2022

3-4 March 2022

Computing Conference 2022

14-15 July 2022