New SDN-Oriented Authentication and Access Control Mechanism

Fahad Nife , Zbigniew Kotulski


Software-Defined Network (SDN) is recognized as one of the most important future networking area. SDN architecture is a revolutionary new idea that, moving the traditional network to be software-based, provides more flexibility, high degree of automation and shorter provision time. SDN architecture dynamically separates the control plane from the data (forwarding) plane of the network, which provides centralized view of the entire network and makes it easier for managing and for monitoring the network’s resources. However, the initial design of the SDN, with its centralized point of control, does not consider sufficiently the security requirements, which makes the security issues additional challenges. In this paper we propose a new access control system for the SDN architecture, working as a controller application used to verify the identity of a host upon connection to the network. The proposed mechanism, which denies the access attempts from unauthorized hosts and defines different levels of privileges for each host, according to its authentication credentials, is implemented using a POX controller. Our approach neither needs a support of new protocols, nor requires additional configuration of hosts or routers.
Author Fahad Nife (FEIT / IT)
Fahad Nife,,
- The Institute of Telecommunications
, Zbigniew Kotulski (FEIT / IT)
Zbigniew Kotulski,,
- The Institute of Telecommunications
Publication size in sheets0.5
Book Gaj Piotr, Sawicki Michał, Suchacka Grażyna, Kwiecień Andrzej (eds.): Proceedings of the 25th International Science Conference on Computer Networks - CN 2018, Communications in Computer and Information Science, vol. 860, 2018, Springer, ISBN 978-3-319-92458-8, [978-3-319-92459-5], 458 p., DOI:10.1007/978-3-319-92459-5
Keywords in EnglishSoftware-Defined Networking, IEEE 802.1x, Port-based authentication, Network security Radius
ASJC Classification2600 General Mathematics; 1700 General Computer Science
projectThe Develpment of Digital Communicatios. Project leader: Siuzdak Jerzy, , Phone: +48 22 234-7868, start date 07-06-2017, end date 30-11-2018, IT/2017/statut, Completed
WEiTI Działalność statutowa
Languageen angielski
2018 Fahad Kotulski New SDN-Oriented Authentication.pdf 1.1 MB
Score (nominal)15
ScoreMinisterial score = 15.0, BookChapterSeriesAndMatConfByIndicator
Ministerial score (2013-2016) = 15.0, BookChapterSeriesAndMatConfByIndicator
Publication indicators WoS Citations = 0; Scopus Citations = 1; Scopus SNIP (Source Normalised Impact per Paper): 2016 = 0.317
Citation count*1 (2019-03-25)
Share Share

Get link to the record

* presented citation count is obtained through Internet information analysis and it is close to the number calculated by the Publish or Perish system.