ASTRAEA: Towards an effective and usable application permission system for SDN

Cited 3 time in webofscience Cited 0 time in scopus
  • Hit : 414
  • Download : 0
DC FieldValueLanguage
dc.contributor.authorKang, Heedoko
dc.contributor.authorYoon, Changhoonko
dc.contributor.authorShin, Seungwonko
dc.date.accessioned2019-06-17T06:50:17Z-
dc.date.available2019-06-17T06:50:17Z-
dc.date.created2019-06-12-
dc.date.created2019-06-12-
dc.date.created2019-06-12-
dc.date.issued2019-05-
dc.identifier.citationCOMPUTER NETWORKS, v.155, pp.1 - 14-
dc.identifier.issn1389-1286-
dc.identifier.urihttp://hdl.handle.net/10203/262630-
dc.description.abstractToday, Software-defined networking (SDN), which decouples the control plane from the data plane, has quickly emerged as a new promising networking architecture. In SDN, a centralized control plane (a.k.a., SDN controller) manages the entire network; hence, the security of this control plane has become increasingly important. One of the critical security issues, recently raised, is that an SDN application can unrestrictedly access SDN resources, manipulate the operations of an SDN controller, and finally destroy the network. To address this issue, researchers have proposed permission-based access control models for an SDN controller, and well-known SDN controllers have recently started employing these ideas. However, permission-based access control mechanisms can be evaded by excessively/insufficiently privileged applications (i.e., permission gap), and SDN controllers employing such mechanisms are no exception. In addition, it is possible that the permissions required for an application are not clearly presented to an administrator (i.e., semantic gap). Since an SDN controller directly manages a network, the damage caused by this problem would be much more serious. To address this issue, in this paper, we introduce a novel and usable security mechanism called ASTRAEA that can effectively help SDN operators avoid such potentially dangerous SDN applications. (C) 2019 Published by Elsevier.B.V.-
dc.languageEnglish-
dc.publisherELSEVIER SCIENCE BV-
dc.titleASTRAEA: Towards an effective and usable application permission system for SDN-
dc.typeArticle-
dc.identifier.wosid000466252000001-
dc.identifier.scopusid2-s2.0-85063257307-
dc.type.rimsART-
dc.citation.volume155-
dc.citation.beginningpage1-
dc.citation.endingpage14-
dc.citation.publicationnameCOMPUTER NETWORKS-
dc.identifier.doi10.1016/j.comnet.2019.03.007-
dc.contributor.localauthorShin, Seungwon-
dc.description.isOpenAccessN-
dc.type.journalArticleArticle-
dc.subject.keywordAuthorSoftware-defined networking security-
dc.subject.keywordAuthorPermission system-
Appears in Collection
EE-Journal Papers(저널논문)
Files in This Item
There are no files associated with this item.
This item is cited by other documents in WoS
⊙ Detail Information in WoSⓡ Click to see webofscience_button
⊙ Cited 3 items in WoS Click to see citing articles in records_button

qr_code

  • mendeley

    citeulike


rss_1.0 rss_2.0 atom_1.0