Authentication for resilience: the case of SDN

Authentication for resilience: the case of SDN. Yu, D., Moore, A. W., Hall, C., & Anderson, R. In Cambridge International Workshop on Security Protocols, volume 8263 LNCS, pages 39–44, Jan, 2013. Springer.
doi abstract bibtex

Software Defined Networks (SDN) aim to deconstruct current routers into a small number of controllers, which are general purpose machines, and a large number of switches that contain programmable forwarding engines. The vision is that, instead of the ad-hoc mechanisms used in current routers, we can build programmable networks using proper computer science abstractions. This technology is now at the startup stage, and is being deployed in the data centres of large web service firms. We are interested in protecting a future SDN. The current designs follow traditional security assumptions and do not consider many likely deployment scenarios. We discuss how SDN architecture can be structured to offer more security, the auxiliary services that such a network will require and the advantages that it can offer. © Springer-Verlag 2013.

@InProceedings{Yu2013Authentication,
  author            = {Yu, Dongting and Moore, Andrew W. and Hall, Chris and Anderson, Ross},
  booktitle         = {Cambridge International Workshop on Security Protocols},
  title             = {{Authentication for resilience: the case of SDN}},
  year              = {2013},
  month             = {Jan},
  organization      = {Springer},
  pages             = {39--44},
  volume            = {8263 LNCS},
  abstract          = {Software Defined Networks (SDN) aim to deconstruct current routers into a small number of controllers, which are general purpose machines, and a large number of switches that contain programmable forwarding engines. The vision is that, instead of the ad-hoc mechanisms used in current routers, we can build programmable networks using proper computer science abstractions. This technology is now at the startup stage, and is being deployed in the data centres of large web service firms. We are interested in protecting a future SDN. The current designs follow traditional security assumptions and do not consider many likely deployment scenarios. We discuss how SDN architecture can be structured to offer more security, the auxiliary services that such a network will require and the advantages that it can offer. © Springer-Verlag 2013.},
  day               = {1},
  doi               = {10.1007/978-3-642-41717-7_6},
  eissn             = {1611-3349},
  isbn              = {9783642417160},
  issn              = {0302-9743},
  journal           = {Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)},
  publicationstatus = {published},
}

Downloads: 0

{"_id":"uX8tNtvwJmypLqT6E","bibbaseid":"yu-moore-hall-anderson-authenticationforresiliencethecaseofsdn-2013","downloads":0,"creationDate":"2015-03-12T16:55:34.190Z","title":"Authentication for resilience: the case of SDN","author_short":["Yu, D.","Moore, A. W.","Hall, C.","Anderson, R."],"year":2013,"bibtype":"inproceedings","biburl":"www.cl.cam.ac.uk/~awm22/tmp/jabref-master.bib","bibdata":{"bibtype":"inproceedings","type":"inproceedings","author":[{"propositions":[],"lastnames":["Yu"],"firstnames":["Dongting"],"suffixes":[]},{"propositions":[],"lastnames":["Moore"],"firstnames":["Andrew","W."],"suffixes":[]},{"propositions":[],"lastnames":["Hall"],"firstnames":["Chris"],"suffixes":[]},{"propositions":[],"lastnames":["Anderson"],"firstnames":["Ross"],"suffixes":[]}],"booktitle":"Cambridge International Workshop on Security Protocols","title":"Authentication for resilience: the case of SDN","year":"2013","month":"Jan","organization":"Springer","pages":"39–44","volume":"8263 LNCS","abstract":"Software Defined Networks (SDN) aim to deconstruct current routers into a small number of controllers, which are general purpose machines, and a large number of switches that contain programmable forwarding engines. The vision is that, instead of the ad-hoc mechanisms used in current routers, we can build programmable networks using proper computer science abstractions. This technology is now at the startup stage, and is being deployed in the data centres of large web service firms. We are interested in protecting a future SDN. The current designs follow traditional security assumptions and do not consider many likely deployment scenarios. We discuss how SDN architecture can be structured to offer more security, the auxiliary services that such a network will require and the advantages that it can offer. © Springer-Verlag 2013.","day":"1","doi":"10.1007/978-3-642-41717-7_6","eissn":"1611-3349","isbn":"9783642417160","issn":"0302-9743","journal":"Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)","publicationstatus":"published","bibtex":"@InProceedings{Yu2013Authentication,\n author = {Yu, Dongting and Moore, Andrew W. and Hall, Chris and Anderson, Ross},\n booktitle = {Cambridge International Workshop on Security Protocols},\n title = {{Authentication for resilience: the case of SDN}},\n year = {2013},\n month = {Jan},\n organization = {Springer},\n pages = {39--44},\n volume = {8263 LNCS},\n abstract = {Software Defined Networks (SDN) aim to deconstruct current routers into a small number of controllers, which are general purpose machines, and a large number of switches that contain programmable forwarding engines. The vision is that, instead of the ad-hoc mechanisms used in current routers, we can build programmable networks using proper computer science abstractions. This technology is now at the startup stage, and is being deployed in the data centres of large web service firms. We are interested in protecting a future SDN. The current designs follow traditional security assumptions and do not consider many likely deployment scenarios. We discuss how SDN architecture can be structured to offer more security, the auxiliary services that such a network will require and the advantages that it can offer. © Springer-Verlag 2013.},\n day = {1},\n doi = {10.1007/978-3-642-41717-7_6},\n eissn = {1611-3349},\n isbn = {9783642417160},\n issn = {0302-9743},\n journal = {Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)},\n publicationstatus = {published},\n}\n\n","author_short":["Yu, D.","Moore, A. W.","Hall, C.","Anderson, R."],"key":"Yu2013Authentication","id":"Yu2013Authentication","bibbaseid":"yu-moore-hall-anderson-authenticationforresiliencethecaseofsdn-2013","role":"author","urls":{},"metadata":{"authorlinks":{"moore, a":"https://www.cl.cam.ac.uk/~awm22/publications/index.html"}},"downloads":0,"html":""},"search_terms":["authentication","resilience","case","sdn","yu","moore","hall","anderson"],"keywords":[],"authorIDs":["23FvDKJM79risFbvk","2WRdLjsYbtmJQGXTj","3TdN7rFeMEefY9Hk7","3rTL65wF3DnHKjPrH","4D4M2oJhgoxJWmkcN","5e544e2f7a758fde010001b9","5e5456f588d190df01000080","5e546e797f0f44de01000043","5e54722a7f0f44de01000067","5e554f16e89e5fde0100002a","5e56ad6de177dede01000101","5e592f5fe60e02de010000a8","5e5b8cd399fee0df0100052f","5e5d95b05726ecdf0100009d","5e5e61c85f9e7bee010001b2","5e5ecf0f8c261adf010000e3","5e60f44831c7d3de0100009c","5e610d751cc34ede01000001","5e63cd1278da4fdf01000009","5e64eac85fc0b7de01000024","5e657177de41b9df01000190","5e666d8f46e828de010002c0","5e66782c152d6bde010000ad","5e66bc684b4a62de01000140","5e671b0e0355fddf0100001a","5e67421e4d24a6df0100009a","5e680874c1fce0de01000287","5e6902b38457bade0100024c","5e69eebe3aab3cdf0100027c","5e6b02dd69285ede010000d4","6dtSpmYM2v5HiJ9ko","7PYozaA4XxD8TMSWu","7v67D8gAyyrYcYL8n","8FAeKWJrSQzGoH9xE","92btiJpxxLrqAXgMn","9RzNnQ6CDTvwDBvLk","9xFPbGnxzbTckjz9c","AKtnLn9iXuKfsKnvb","BFbxJdJp2sdQE6jab","C42bg96aJPxALZDMj","DtNfHaeJrKpfNoJ6Y","EjCF3Z7mromd37b46","FAdZj59doyPG95Ft6","FS3CaSTZahuktxKRK","FSHFxTSeaaMHc8JFN","FjBPfgDjAs9qKbrk5","FsZDw63cXDZGCg8cM","FyuCzEsmg5eZwps34","G7Zffx7BGjho2AJZF","GWQKt32StcKocqn5B","GkmLPhgRgdfPyWMpr","GuCyBeEq4CLqBYY4e","HEsiueufKRKp7GbNg","HeDJuNtADqRvbfrNq","HjfA3eJtFSPtgMBym","Jqijff5rjodf97X53","KtL6LDN8YAwLxHa65","Mkn8H8agB7ogrFqWN","NzXzmqRTuu45HnK2v","PrcWsJASY7LaFZhBB","PwRjbkKnSWC6H3n5k","R7kWfTSiqEYweDNJJ","RnYAzvE3YT6XCvYbL","RzmZwHWjFC9KDceD6","S2grxY7kvZtXmkWaz","SFyHCv2aSe3LSrsig","T24gLu9jAvzXQKDdi","TetaaoYbFZFGavtxb","TrJkGmeXPf45TAc2W","WtXExMgBkc2WjYBJt","XA7WBWWEgKAXwNJCd","Xx5DKm38fz55YJDuS","YAHhHms8w9X3eEygF","YkX9xP5ow83tk9puf","YxYksTSKXdNyMqJsi","ZL6Dbz49T8BDz5vKk","aFMaT3CuDYnbfTuK2","aYh8WXnpTgutjdTMd","appbKSaMFf3DMDdyh","bPre4gjTqMby95fE9","bwBtZ44dECqBAqL6B","byXTwmgkSDjBepE6s","dQHw4Zt3JvgfJe4LH","fRHmMjA45atDn2XE2","fswYidNG7RDWyDvav","gGhwKTHH8tmmv276q","h2nvFJ6oT6Ts8LGw8","iWm4sAET4pyRiymhf","ij4rWKxtaweP2mmoQ","j399RSNqBHhuysXLG","jBsGo5nSsKF9Aswd7","jE5oX3AQSLtsnWFq5","jQhrZRo2jakTNZXE2","jXnTqkWvn2uys2LvQ","jYoTKtmcqmnjxyeYG","nCcpY7DvabFtejfsb","nmJWcKmR9YysKb2rn","pDgAmdf6bhwdtM7xi","pmYukAPu4EpuZAnZm","qGrsAHNkXL2yfxqju","qsecNeipc9bA8BJCt","r9c22nKBKGFJSB2La","srLPnyAzJWoRtHW8E","tN3iZEGhSw5dfH6Xz","tkFNTSf2DZXQJ2S68","uhtv8BNREAX7LsJYP","uokAikkyvYZZBbmbj","v2nSToyinuWzoQD4m","vhEMZTdeqfxeNkLCx","vve5WiBtmQqb2NB9Z","vwrt7tPuWdGZn9rfW","wbMcKHXZfdcWNjsvh","xBPtJ8k7YjPfQvS3C","xnzKrBDzkkPg97c7S","y8abYWAnJv92KiDwR","ycjRe3yAeg8atdvL6","ycyAerqYNXsBXxcPX","ykErHr8DwXQjFCSFG","zyNiT5NQSkPSNGs43"],"dataSources":["P4oCWtW2FaLzS5ueC","Z2XGYjE5q4GTmpP4E","LoreFsEEN9tXGMfht","d8e849HkrdPEWFP7g"]}