Risk-driven security metrics development for software-defined networking

    Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

    Abstract

    Introduction of SDN (Software-Defined Networking) into the network management turns the formerly quite rigid networks to programmatically reconfigurable, dynamic and high-performing entities, which are managed remotely. At the same time, introduction of the new interfaces evidently widens the attack surface, and new kind of attack vectors are introduced threatening the QoS even critically. Thus, there is need for a security architecture, drawing from the SDN management and monitoring capabilities, and eventually covering the threats posed by the SDN evolution. For efficient security-architecture implementation, we analyze the security risks of SDN and based on that propose heuristic security objectives. Further, we decompose the objectives for effective security control implementation and security metrics definition to support informed security decision-making and continuous security improvement.
    Original languageEnglish
    Title of host publicationECSA '18
    Subtitle of host publicationProceedings of the 12th European Conference on Software Architecture
    PublisherAssociation for Computing Machinery ACM
    ISBN (Electronic)978-1-4503-6483-6
    DOIs
    Publication statusPublished - 24 Sep 2018
    MoE publication typeNot Eligible
    Event12th European Conference on Software Architecture, ECSA 2018 - Madrid, Spain
    Duration: 24 Sep 201828 Sep 2018
    Conference number: 12

    Conference

    Conference12th European Conference on Software Architecture, ECSA 2018
    Abbreviated titleECSA 2018
    CountrySpain
    CityMadrid
    Period24/09/1828/09/18

    Fingerprint

    Network management
    Quality of service
    Decision making
    Software defined networking
    Monitoring

    Keywords

    • Risk analysis
    • Security metrics
    • Software-Defined Networking

    Cite this

    Savola, R. M., & Savolainen, P. (2018). Risk-driven security metrics development for software-defined networking. In ECSA '18: Proceedings of the 12th European Conference on Software Architecture [a56] Association for Computing Machinery ACM. https://doi.org/10.1145/3241403.3241461
    Savola, Reijo M. ; Savolainen, Pekka. / Risk-driven security metrics development for software-defined networking. ECSA '18: Proceedings of the 12th European Conference on Software Architecture. Association for Computing Machinery ACM, 2018.
    @inproceedings{d66541bbcdd64ee69a3dfbf943dd56f4,
    title = "Risk-driven security metrics development for software-defined networking",
    abstract = "Introduction of SDN (Software-Defined Networking) into the network management turns the formerly quite rigid networks to programmatically reconfigurable, dynamic and high-performing entities, which are managed remotely. At the same time, introduction of the new interfaces evidently widens the attack surface, and new kind of attack vectors are introduced threatening the QoS even critically. Thus, there is need for a security architecture, drawing from the SDN management and monitoring capabilities, and eventually covering the threats posed by the SDN evolution. For efficient security-architecture implementation, we analyze the security risks of SDN and based on that propose heuristic security objectives. Further, we decompose the objectives for effective security control implementation and security metrics definition to support informed security decision-making and continuous security improvement.",
    keywords = "Risk analysis, Security metrics, Software-Defined Networking",
    author = "Savola, {Reijo M.} and Pekka Savolainen",
    year = "2018",
    month = "9",
    day = "24",
    doi = "10.1145/3241403.3241461",
    language = "English",
    booktitle = "ECSA '18",
    publisher = "Association for Computing Machinery ACM",
    address = "United States",

    }

    Savola, RM & Savolainen, P 2018, Risk-driven security metrics development for software-defined networking. in ECSA '18: Proceedings of the 12th European Conference on Software Architecture., a56, Association for Computing Machinery ACM, 12th European Conference on Software Architecture, ECSA 2018, Madrid, Spain, 24/09/18. https://doi.org/10.1145/3241403.3241461

    Risk-driven security metrics development for software-defined networking. / Savola, Reijo M.; Savolainen, Pekka.

    ECSA '18: Proceedings of the 12th European Conference on Software Architecture. Association for Computing Machinery ACM, 2018. a56.

    Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

    TY - GEN

    T1 - Risk-driven security metrics development for software-defined networking

    AU - Savola, Reijo M.

    AU - Savolainen, Pekka

    PY - 2018/9/24

    Y1 - 2018/9/24

    N2 - Introduction of SDN (Software-Defined Networking) into the network management turns the formerly quite rigid networks to programmatically reconfigurable, dynamic and high-performing entities, which are managed remotely. At the same time, introduction of the new interfaces evidently widens the attack surface, and new kind of attack vectors are introduced threatening the QoS even critically. Thus, there is need for a security architecture, drawing from the SDN management and monitoring capabilities, and eventually covering the threats posed by the SDN evolution. For efficient security-architecture implementation, we analyze the security risks of SDN and based on that propose heuristic security objectives. Further, we decompose the objectives for effective security control implementation and security metrics definition to support informed security decision-making and continuous security improvement.

    AB - Introduction of SDN (Software-Defined Networking) into the network management turns the formerly quite rigid networks to programmatically reconfigurable, dynamic and high-performing entities, which are managed remotely. At the same time, introduction of the new interfaces evidently widens the attack surface, and new kind of attack vectors are introduced threatening the QoS even critically. Thus, there is need for a security architecture, drawing from the SDN management and monitoring capabilities, and eventually covering the threats posed by the SDN evolution. For efficient security-architecture implementation, we analyze the security risks of SDN and based on that propose heuristic security objectives. Further, we decompose the objectives for effective security control implementation and security metrics definition to support informed security decision-making and continuous security improvement.

    KW - Risk analysis

    KW - Security metrics

    KW - Software-Defined Networking

    UR - http://www.scopus.com/inward/record.url?scp=85055716769&partnerID=8YFLogxK

    U2 - 10.1145/3241403.3241461

    DO - 10.1145/3241403.3241461

    M3 - Conference article in proceedings

    AN - SCOPUS:85055716769

    BT - ECSA '18

    PB - Association for Computing Machinery ACM

    ER -

    Savola RM, Savolainen P. Risk-driven security metrics development for software-defined networking. In ECSA '18: Proceedings of the 12th European Conference on Software Architecture. Association for Computing Machinery ACM. 2018. a56 https://doi.org/10.1145/3241403.3241461