TY - GEN
T1 - Security policy transition framework for Software Defined networks
AU - Cox, Jacob H.
AU - Clark, Russell J.
AU - Owen, Henry L.
N1 - Publisher Copyright:
© 2016 IEEE.
PY - 2017/5/4
Y1 - 2017/5/4
N2 - Controllers for software defined networks (SDNs) are quickly maturing to offer network operators more intuitive programming frameworks and greater abstractions for network application development. Likewise, many security solutions now exist within SDN environments for detecting and blocking clients who violate network policies. However, many of these solutions stop at triggering the security measure and give little thought to amending it. As a consequence, once the violation is addressed, no clear path exists for reinstating the flagged client beyond having the network operator reset the controller or manually implement a state change via an external command. This presents a burden for the network and its clients and administrators. Hence, we present a security policy transition framework for revoking security measures in an SDN environment once said measures are activated.
AB - Controllers for software defined networks (SDNs) are quickly maturing to offer network operators more intuitive programming frameworks and greater abstractions for network application development. Likewise, many security solutions now exist within SDN environments for detecting and blocking clients who violate network policies. However, many of these solutions stop at triggering the security measure and give little thought to amending it. As a consequence, once the violation is addressed, no clear path exists for reinstating the flagged client beyond having the network operator reset the controller or manually implement a state change via an external command. This presents a burden for the network and its clients and administrators. Hence, we present a security policy transition framework for revoking security measures in an SDN environment once said measures are activated.
KW - NAC
KW - NOS
KW - Network Access Control
KW - Network Operating System
KW - Network Security Policies
KW - RYU
KW - Ryuretic
KW - SDN
KW - Security Policy Transitions
KW - Software Defined Networks
UR - http://www.scopus.com/inward/record.url?scp=85019665883&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85019665883&partnerID=8YFLogxK
U2 - 10.1109/NFV-SDN.2016.7919476
DO - 10.1109/NFV-SDN.2016.7919476
M3 - Conference contribution
AN - SCOPUS:85019665883
T3 - 2016 IEEE Conference on Network Function Virtualization and Software Defined Networks, NFV-SDN 2016
SP - 56
EP - 61
BT - 2016 IEEE Conference on Network Function Virtualization and Software Defined Networks, NFV-SDN 2016
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 2016 IEEE Conference on Network Function Virtualization and Software Defined Networks, NFV-SDN 2016
Y2 - 7 November 2016 through 10 November 2016
ER -