Abstract Software-defined networking empowers network operators with more flexibility to program their networks. With SDN, network management moves from codifying functionality in terms of low-level device configurations to building software that facilitates network management and debugging. By separating the complexity of state distribution from network specification, SDN provides new ways to solve long-standing problems in networking --- routing, for instance --- while simultaneously allowing the use of security and dependability techniques, such as access control or multi-path. However, the security and dependability of the SDN itself is still an open issue. In this position paper we argue for the need to build secure and dependable SDNs by design. As a first step in this direction we describe several threat vectors that may enable the exploit of SDN vulnerabilities. We then sketch the design of a secure and dependable SDN control platform as a materialization of the concept here advocated. We hope that this paper will trigger discussions in the SDN community around these issues and serve as a catalyser to join efforts from the networking and security dependability communities in the ultimate goal of building resilient control planes.
Address Hong Kong, China  +
Author Diego Kreutz + , Fernando Ramos + , Paulo Verissimo +
Booktitle ACM SIGCOMM Workshop on Hot Topics in Software Defined Networking (HotSDN)  +
Document Document for Publication-Kreutz13SDN.pdf +
Key Kreutz13SDN  +
Month aug  +
NumPubDate 2,013.08  +
Project Project:SecFuNet + , Project:TRONE +
ResearchLine Fault and Intrusion Tolerance in Open Distributed Systems (FIT) +
Title Towards Secure and Dependable Software-Defined Networks  +
Type inproceedings  +
Year 2013  +
Has improper value forThis property is a special property in this wiki. Url  +
Categories Publication  +
Modification dateThis property is a special property in this wiki. 27 June 2013 11:29:32  +
