Software-defined networking security: Pros and cons

Mehiar Dabbagh; Bechir Hamdaoui; Mohsen Guizani; Ammar Rayes

doi:10.1109/MCOM.2015.7120048

Software-defined networking security: Pros and cons

Mehiar Dabbagh
, Bechir Hamdaoui
, Mohsen Guizani
, Ammar Rayes

Research output: Contribution to journal › Article › peer-review

137 Citations (Scopus)

Abstract

Software-defined networking (SDN) is a new networking paradigm that decouples the forwarding and control planes, traditionally coupled with one another, while adopting a logically centralized architecture aiming to increase network agility and programability. While many efforts are currently being made to standardize this emerging paradigm, careful attention needs to be paid to security at this early design stage too, rather than waiting until the technology becomes mature, thereby potentially avoiding previous pitfalls made when designing the Internet in the 1980s. This article focuses on the security aspects of SDN networks. We begin by discussing the new security advantages that SDN brings and by showing how some of the long-lasting issues in network security can be addressed by exploiting SDN capabilities. Then we describe the new security threats that SDN is faced with and discuss possible techniques that can be used to prevent and mitigate such threats.

Original language	English
Article number	7120048
Pages (from-to)	73-79
Number of pages	7
Journal	IEEE Communications Magazine
Volume	53
Issue number	6
DOIs	https://doi.org/10.1109/MCOM.2015.7120048
Publication status	Published - 8 Jun 2015
Externally published	Yes

Access to Document

10.1109/MCOM.2015.7120048

Cite this

@article{32dc40b70def4452b5c9321497b4a7e0,

title = "Software-defined networking security: Pros and cons",

abstract = "Software-defined networking (SDN) is a new networking paradigm that decouples the forwarding and control planes, traditionally coupled with one another, while adopting a logically centralized architecture aiming to increase network agility and programability. While many efforts are currently being made to standardize this emerging paradigm, careful attention needs to be paid to security at this early design stage too, rather than waiting until the technology becomes mature, thereby potentially avoiding previous pitfalls made when designing the Internet in the 1980s. This article focuses on the security aspects of SDN networks. We begin by discussing the new security advantages that SDN brings and by showing how some of the long-lasting issues in network security can be addressed by exploiting SDN capabilities. Then we describe the new security threats that SDN is faced with and discuss possible techniques that can be used to prevent and mitigate such threats.",

author = "Mehiar Dabbagh and Bechir Hamdaoui and Mohsen Guizani and Ammar Rayes",

note = "Publisher Copyright: {\textcopyright} 2015 IEEE.",

year = "2015",

month = jun,

day = "8",

doi = "10.1109/MCOM.2015.7120048",

language = "English",

volume = "53",

pages = "73--79",

journal = "IEEE Communications Magazine",

issn = "0163-6804",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

number = "6",

}

TY - JOUR

T1 - Software-defined networking security

T2 - Pros and cons

AU - Dabbagh, Mehiar

AU - Hamdaoui, Bechir

AU - Guizani, Mohsen

AU - Rayes, Ammar

PY - 2015/6/8

Y1 - 2015/6/8

N2 - Software-defined networking (SDN) is a new networking paradigm that decouples the forwarding and control planes, traditionally coupled with one another, while adopting a logically centralized architecture aiming to increase network agility and programability. While many efforts are currently being made to standardize this emerging paradigm, careful attention needs to be paid to security at this early design stage too, rather than waiting until the technology becomes mature, thereby potentially avoiding previous pitfalls made when designing the Internet in the 1980s. This article focuses on the security aspects of SDN networks. We begin by discussing the new security advantages that SDN brings and by showing how some of the long-lasting issues in network security can be addressed by exploiting SDN capabilities. Then we describe the new security threats that SDN is faced with and discuss possible techniques that can be used to prevent and mitigate such threats.

AB - Software-defined networking (SDN) is a new networking paradigm that decouples the forwarding and control planes, traditionally coupled with one another, while adopting a logically centralized architecture aiming to increase network agility and programability. While many efforts are currently being made to standardize this emerging paradigm, careful attention needs to be paid to security at this early design stage too, rather than waiting until the technology becomes mature, thereby potentially avoiding previous pitfalls made when designing the Internet in the 1980s. This article focuses on the security aspects of SDN networks. We begin by discussing the new security advantages that SDN brings and by showing how some of the long-lasting issues in network security can be addressed by exploiting SDN capabilities. Then we describe the new security threats that SDN is faced with and discuss possible techniques that can be used to prevent and mitigate such threats.

UR - https://www.scopus.com/pages/publications/84933051719

U2 - 10.1109/MCOM.2015.7120048

DO - 10.1109/MCOM.2015.7120048

M3 - Article

AN - SCOPUS:84933051719

SN - 0163-6804

VL - 53

SP - 73

EP - 79

JO - IEEE Communications Magazine

JF - IEEE Communications Magazine

IS - 6

M1 - 7120048

ER -

Software-defined networking security: Pros and cons

Abstract

Access to Document

Other files and links

Fingerprint

Cite this