SDN Access Control for the Masses

11/20/2018
by   Nicolae Paladi, et al.
0

The evolution of Software-Defined Networking (SDN) has so far been predominantly geared towards defining and refining the abstractions on the forwarding and control planes. However, despite a maturing south-bound interface and a range of proposed network operating systems, the network management application layer is yet to be specified and standardized. It has currently poorly defined access control mechanisms that could be exposed to network applications. Available mechanisms allow only rudimentary control and lack procedures to partition resource access across multiple dimensions. We address this by extending the SDN north-bound interface to provide control over shared resources to key stakeholders of network infrastructure: network providers, operators and application developers. We introduce a taxonomy of SDN access models, describe a comprehensive design for SDN access control and implement the proposed solution as an extension of the ONOS network controller intent framework.

READ FULL TEXT

page 1

page 2

page 3

page 4

research
11/01/2021

B-DAC: A Decentralized Access Control Framework on Northbound Interface for Securing SDN Using Blockchain

Software-Defined Network (SDN) is a new arising terminology of network a...
research
01/05/2022

Benchmarking the ONOS Intent interfaces to ease 5G service management

The use cases of the upcoming 5G mobile networks introduce new and compl...
research
10/08/2020

Strategies for Integrating Controls Flows in Software-Defined In-Vehicle Networks and Their Impact on Network Security

Current In-Vehicle Networks (IVNs) connect Electronic Control Units (ECU...
research
01/30/2018

Optical Network Models and their Application to Software-Defined Network Management

Software-defined networking is finding its way into optical networks. He...
research
10/15/2017

Modeling and Analysis of SDN Control Applications using Vector Spaces

Unlike traditional networks which are statically configured, SDN control...
research
10/09/2020

Logical peering for interdomain networking on testbeds

Research testbed fabrics have potential to support long-lived, evolving,...
research
10/25/2017

SD-WISE: A Software-Defined WIreless SEnsor network

SD-WISE is a complete software-defined solution for wireless sensor (and...

Please sign up or login with your details

Forgot password? Click here to reset