New SDN-Oriented Authentication and Access Control Mechanism

Fahad Nife , Zbigniew Kotulski

Abstract

Software-Defined Network (SDN) is recognized as one of the most important future networking area. SDN architecture is a revolutionary new idea that, moving the traditional network to be software-based, provides more flexibility, high degree of automation and shorter provision time. SDN architecture dynamically separates the control plane from the data (forwarding) plane of the network, which provides centralized view of the entire network and makes it easier for managing and for monitoring the network’s resources. However, the initial design of the SDN, with its centralized point of control, does not consider sufficiently the security requirements, which makes the security issues additional challenges. In this paper we propose a new access control system for the SDN architecture, working as a controller application used to verify the identity of a host upon connection to the network. The proposed mechanism, which denies the access attempts from unauthorized hosts and defines different levels of privileges for each host, according to its authentication credentials, is implemented using a POX controller. Our approach neither needs a support of new protocols, nor requires additional configuration of hosts or routers.
Author Fahad Nife (FEIT / IT)
Fahad Nife,,
- The Institute of Telecommunications
, Zbigniew Kotulski (FEIT / IT)
Zbigniew Kotulski,,
- The Institute of Telecommunications
Pages74-78
Publication size in sheets0.5
Book Gaj Piotr, Sawicki Michał, Suchacka Grażyna, Kwiecień Andrzej (eds.): Proceedings of the 25th International Science Conference on Computer Networks - CN 2018, Communications in Computer and Information Science, vol. 860, 2018, Springer, ISBN 978-3-319-92458-8, [978-3-319-92459-5], 458 p., DOI:10.1007/978-3-319-92459-5
Keywords in EnglishSoftware-Defined Networking, IEEE 802.1x, Port-based authentication, Network security Radius
DOIDOI:10.1007/978-3-319-92459-5_7
Languageen angielski
File
2018 Fahad Kotulski New SDN-Oriented Authentication.pdf 1.1 MB
Score (nominal)0
Citation count*1 (2018-11-14)
Cite
Share Share

Get link to the record


* presented citation count is obtained through Internet information analysis and it is close to the number calculated by the Publish or Perish system.
Back