Abstract
| Original language | English |
|---|---|
| Title of host publication | ECSA '18 |
| Subtitle of host publication | Proceedings of the 12th European Conference on Software Architecture |
| Publisher | Association for Computing Machinery ACM |
| ISBN (Electronic) | 978-1-4503-6483-6 |
| DOIs | |
| Publication status | Published - 24 Sep 2018 |
| MoE publication type | Not Eligible |
| Event | 12th European Conference on Software Architecture, ECSA 2018 - Madrid, Spain Duration: 24 Sep 2018 → 28 Sep 2018 Conference number: 12 |
Conference
| Conference | 12th European Conference on Software Architecture, ECSA 2018 |
|---|---|
| Abbreviated title | ECSA 2018 |
| Country | Spain |
| City | Madrid |
| Period | 24/09/18 → 28/09/18 |
Fingerprint
Keywords
- Risk analysis
- Security metrics
- Software-Defined Networking
Cite this
}
Risk-driven security metrics development for software-defined networking. / Savola, Reijo M.; Savolainen, Pekka.
ECSA '18: Proceedings of the 12th European Conference on Software Architecture. Association for Computing Machinery ACM, 2018. a56.Research output: Chapter in Book/Report/Conference proceeding › Conference article in proceedings › Scientific › peer-review
TY - GEN
T1 - Risk-driven security metrics development for software-defined networking
AU - Savola, Reijo M.
AU - Savolainen, Pekka
PY - 2018/9/24
Y1 - 2018/9/24
N2 - Introduction of SDN (Software-Defined Networking) into the network management turns the formerly quite rigid networks to programmatically reconfigurable, dynamic and high-performing entities, which are managed remotely. At the same time, introduction of the new interfaces evidently widens the attack surface, and new kind of attack vectors are introduced threatening the QoS even critically. Thus, there is need for a security architecture, drawing from the SDN management and monitoring capabilities, and eventually covering the threats posed by the SDN evolution. For efficient security-architecture implementation, we analyze the security risks of SDN and based on that propose heuristic security objectives. Further, we decompose the objectives for effective security control implementation and security metrics definition to support informed security decision-making and continuous security improvement.
AB - Introduction of SDN (Software-Defined Networking) into the network management turns the formerly quite rigid networks to programmatically reconfigurable, dynamic and high-performing entities, which are managed remotely. At the same time, introduction of the new interfaces evidently widens the attack surface, and new kind of attack vectors are introduced threatening the QoS even critically. Thus, there is need for a security architecture, drawing from the SDN management and monitoring capabilities, and eventually covering the threats posed by the SDN evolution. For efficient security-architecture implementation, we analyze the security risks of SDN and based on that propose heuristic security objectives. Further, we decompose the objectives for effective security control implementation and security metrics definition to support informed security decision-making and continuous security improvement.
KW - Risk analysis
KW - Security metrics
KW - Software-Defined Networking
UR - http://www.scopus.com/inward/record.url?scp=85055716769&partnerID=8YFLogxK
U2 - 10.1145/3241403.3241461
DO - 10.1145/3241403.3241461
M3 - Conference article in proceedings
AN - SCOPUS:85055716769
BT - ECSA '18
PB - Association for Computing Machinery ACM
ER -