Fraunhofer-Gesellschaft

Publica

Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

Security Analysis of FloodLight, ZeroSDN, Beacon and POX SDN Controllers

 
: Ilyas, Q.; Khondoker, R.

:

Khondoker, R.:
SDN and NFV Security. Security Analysis of Software-Defined Networking and Network Function Virtualization
Cham: Springer International Publishing, 2018 (Lecture Notes in Networks and Systems 30)
ISBN: 978-3-319-71760-9 (Print)
ISBN: 978-3-319-71761-6 (Online)
pp.85-98
English
Book Article
Fraunhofer SIT ()

Abstract
Software-defined network (SDN) is an emerging approach to replace legacy network’s (coupled software and hardware) control and management by decoupling the control plane (software) from the data plane (hardware). SDN provides flexibility to the developers by making the central control plane directly programmable. Some new challenges, such as single point of failure, might be encountered due to the central control plane. SDN focused on flexibility where as the security of the network was primarily not considered. Decoupling of control plane (software) from data plane (hardware) is a great step for innovation and research. Centralized control plane may cause the single point of failure and compromising the controller means the whole network is compromised. Many organizations and data centers are moving towards SDN. Now, security is their primary concern. Security issues of the four controllers including FloodLight, ZeroSDN, Beacon and POX are analyzed with STRIDE threat modeling technique. We found that SE-FloodLight is the most secure controller because it is the most resilient controller as compared to the other controllers.

: http://publica.fraunhofer.de/documents/N-581361.html