Risk-driven security metrics development for software-defined networking

Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

Abstract

Introduction of SDN (Software-Defined Networking) into the network management turns the formerly quite rigid networks to programmatically reconfigurable, dynamic and high-performing entities, which are managed remotely. At the same time, introduction of the new interfaces evidently widens the attack surface, and new kind of attack vectors are introduced threatening the QoS even critically. Thus, there is need for a security architecture, drawing from the SDN management and monitoring capabilities, and eventually covering the threats posed by the SDN evolution. For efficient security-architecture implementation, we analyze the security risks of SDN and based on that propose heuristic security objectives. Further, we decompose the objectives for effective security control implementation and security metrics definition to support informed security decision-making and continuous security improvement.
Original languageEnglish
Title of host publicationECSA '18
Subtitle of host publicationProceedings of the 12th European Conference on Software Architecture
PublisherAssociation for Computing Machinery ACM
ISBN (Electronic)978-1-4503-6483-6
DOIs
Publication statusPublished - 24 Sep 2018
MoE publication typeNot Eligible
Event12th European Conference on Software Architecture, ECSA 2018 - Madrid, Spain
Duration: 24 Sep 201828 Sep 2018
Conference number: 12

Conference

Conference12th European Conference on Software Architecture, ECSA 2018
Abbreviated titleECSA 2018
CountrySpain
CityMadrid
Period24/09/1828/09/18

Fingerprint

Network management
Quality of service
Decision making
Software defined networking
Monitoring

Keywords

  • Risk analysis
  • Security metrics
  • Software-Defined Networking

Cite this

Savola, R. M., & Savolainen, P. (2018). Risk-driven security metrics development for software-defined networking. In ECSA '18: Proceedings of the 12th European Conference on Software Architecture [a56] Association for Computing Machinery ACM. https://doi.org/10.1145/3241403.3241461
Savola, Reijo M. ; Savolainen, Pekka. / Risk-driven security metrics development for software-defined networking. ECSA '18: Proceedings of the 12th European Conference on Software Architecture. Association for Computing Machinery ACM, 2018.
@inproceedings{d66541bbcdd64ee69a3dfbf943dd56f4,
title = "Risk-driven security metrics development for software-defined networking",
abstract = "Introduction of SDN (Software-Defined Networking) into the network management turns the formerly quite rigid networks to programmatically reconfigurable, dynamic and high-performing entities, which are managed remotely. At the same time, introduction of the new interfaces evidently widens the attack surface, and new kind of attack vectors are introduced threatening the QoS even critically. Thus, there is need for a security architecture, drawing from the SDN management and monitoring capabilities, and eventually covering the threats posed by the SDN evolution. For efficient security-architecture implementation, we analyze the security risks of SDN and based on that propose heuristic security objectives. Further, we decompose the objectives for effective security control implementation and security metrics definition to support informed security decision-making and continuous security improvement.",
keywords = "Risk analysis, Security metrics, Software-Defined Networking",
author = "Savola, {Reijo M.} and Pekka Savolainen",
year = "2018",
month = "9",
day = "24",
doi = "10.1145/3241403.3241461",
language = "English",
booktitle = "ECSA '18",
publisher = "Association for Computing Machinery ACM",
address = "United States",

}

Savola, RM & Savolainen, P 2018, Risk-driven security metrics development for software-defined networking. in ECSA '18: Proceedings of the 12th European Conference on Software Architecture., a56, Association for Computing Machinery ACM, 12th European Conference on Software Architecture, ECSA 2018, Madrid, Spain, 24/09/18. https://doi.org/10.1145/3241403.3241461

Risk-driven security metrics development for software-defined networking. / Savola, Reijo M.; Savolainen, Pekka.

ECSA '18: Proceedings of the 12th European Conference on Software Architecture. Association for Computing Machinery ACM, 2018. a56.

Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

TY - GEN

T1 - Risk-driven security metrics development for software-defined networking

AU - Savola, Reijo M.

AU - Savolainen, Pekka

PY - 2018/9/24

Y1 - 2018/9/24

N2 - Introduction of SDN (Software-Defined Networking) into the network management turns the formerly quite rigid networks to programmatically reconfigurable, dynamic and high-performing entities, which are managed remotely. At the same time, introduction of the new interfaces evidently widens the attack surface, and new kind of attack vectors are introduced threatening the QoS even critically. Thus, there is need for a security architecture, drawing from the SDN management and monitoring capabilities, and eventually covering the threats posed by the SDN evolution. For efficient security-architecture implementation, we analyze the security risks of SDN and based on that propose heuristic security objectives. Further, we decompose the objectives for effective security control implementation and security metrics definition to support informed security decision-making and continuous security improvement.

AB - Introduction of SDN (Software-Defined Networking) into the network management turns the formerly quite rigid networks to programmatically reconfigurable, dynamic and high-performing entities, which are managed remotely. At the same time, introduction of the new interfaces evidently widens the attack surface, and new kind of attack vectors are introduced threatening the QoS even critically. Thus, there is need for a security architecture, drawing from the SDN management and monitoring capabilities, and eventually covering the threats posed by the SDN evolution. For efficient security-architecture implementation, we analyze the security risks of SDN and based on that propose heuristic security objectives. Further, we decompose the objectives for effective security control implementation and security metrics definition to support informed security decision-making and continuous security improvement.

KW - Risk analysis

KW - Security metrics

KW - Software-Defined Networking

UR - http://www.scopus.com/inward/record.url?scp=85055716769&partnerID=8YFLogxK

U2 - 10.1145/3241403.3241461

DO - 10.1145/3241403.3241461

M3 - Conference article in proceedings

AN - SCOPUS:85055716769

BT - ECSA '18

PB - Association for Computing Machinery ACM

ER -

Savola RM, Savolainen P. Risk-driven security metrics development for software-defined networking. In ECSA '18: Proceedings of the 12th European Conference on Software Architecture. Association for Computing Machinery ACM. 2018. a56 https://doi.org/10.1145/3241403.3241461