期刊文献+

A Survey: Typical Security Issues of Software-Defined Networking 被引量:12

A Survey: Typical Security Issues of Software-Defined Networking
下载PDF
导出
摘要 Software-Defined Networking (SDN) has been a hot topic for future network development, which implements the different layers of control plane and data plane respectively. Despite providing high openness and programmability, the “three-layer two-interface” architecture of SDN changes the traditional network and increases the network attack nodes, which results in new security issues. In this paper, we firstly introduced the background, architecture and working process of SDN. Secondly, we summarized and analyzed the typical security issues from north to south: application layer, northbound interface, control layer, southbound interface and data layer. Another contribution is to review and analyze the existing solutions and latest research progress of each layer, mainly including: authorized authentication module, application isolation, DoS/DDoS defense, multi-controller deployment and flow rule consistency detection. Finally, a conclusion about the future works of SDN security and an idealized global security architecture is proposed. Software-Defined Networking(SDN) has been a hot topic for future network development, which implements the different layers of control plane and data plane respectively. Despite providing high openness and programmability, the "three-layer two-interface" architecture of SDN changes the traditional network and increases the network attack nodes, which results in new security issues. In this paper, we firstly introduced the background, architecture and working process of SDN. Secondly, we summarized and analyzed the typical security issues from north to south: application layer, northbound interface, control layer, southbound interface and data layer. Another contribution is to review and analyze the existing solutions and latest research progress of each layer, mainly including: authorized authentication module,application isolation, DoS/DDoS defense,multi-controller deployment and flow rule consistency detection. Finally, a conclusion about the future works of SDN security and an idealized global security architecture is proposed.
出处 《China Communications》 SCIE CSCD 2019年第7期13-31,共19页 中国通信(英文版)
基金 supported by the Wuhan Frontier Program of Application Foundation (No.2018010401011295) National High Technology Research and Development Program of China (“863” Program) (Grant No. 2015AA016002)
关键词 software-defined NETWORKING network SECURITY global SECURITY SECURITY THREAT software-defined networking network security global security security threat
  • 相关文献

参考文献11

二级参考文献147

共引文献605

同被引文献66

引证文献12

二级引证文献46

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部