New SDN-Oriented Authentication and Access Control Mechanism
Fahad Nife , Zbigniew Kotulski
AbstractSoftware-Defined Network (SDN) is recognized as one of the most important future networking area. SDN architecture is a revolutionary new idea that, moving the traditional network to be software-based, provides more flexibility, high degree of automation and shorter provision time. SDN architecture dynamically separates the control plane from the data (forwarding) plane of the network, which provides centralized view of the entire network and makes it easier for managing and for monitoring the network’s resources. However, the initial design of the SDN, with its centralized point of control, does not consider sufficiently the security requirements, which makes the security issues additional challenges. In this paper we propose a new access control system for the SDN architecture, working as a controller application used to verify the identity of a host upon connection to the network. The proposed mechanism, which denies the access attempts from unauthorized hosts and defines different levels of privileges for each host, according to its authentication credentials, is implemented using a POX controller. Our approach neither needs a support of new protocols, nor requires additional configuration of hosts or routers.
|Publication size in sheets||0.5|
|Book||Gaj Piotr, Sawicki Michał, Suchacka Grażyna, Kwiecień Andrzej (eds.): Proceedings of the 25th International Science Conference on Computer Networks - CN 2018, Communications in Computer and Information Science, vol. 860, 2018, Springer, ISBN 978-3-319-92458-8, [978-3-319-92459-5], 458 p., DOI:10.1007/978-3-319-92459-5|
|Keywords in English||Software-Defined Networking, IEEE 802.1x, Port-based authentication, Network security Radius|
|Citation count*||1 (2018-12-24)|
* presented citation count is obtained through Internet information analysis and it is close to the number calculated by the Publish or Perish system.