Security analysis of OpenDaylight, ONOS, Rosemary and Ryu SDN controllers | IEEE Conference Publication | IEEE Xplore

Security analysis of OpenDaylight, ONOS, Rosemary and Ryu SDN controllers


Abstract:

There is an immense expectation on Software-Defined Networking (SDN) in industry as a novel approach towards potentially replacing conventional network management and con...Show More

Abstract:

There is an immense expectation on Software-Defined Networking (SDN) in industry as a novel approach towards potentially replacing conventional network management and control. However, SDN is not immune to security vulnerabilities which currently exist in the legacy systems or which may newly arise due to change in the network design. Since the beginning of SDN development, primary focus of research was on separation of control plane from data plane by keeping performance and operational flexibility unchanged. In the due course of achieving this, security aspects of an SDN have taken a back seat. Even though separation of control plane from a data plane is a great step towards simplification of network management, it subjects the network into a potential two way target for intruders to gain control. Due to the centralized design of SDN, compromising security of a controller will be as good as compromising the security of a whole network. Enterprises which are moving towards adapting SDN are concerned about security issues and the resulting problems. In this paper, we analyze the security issues of few of the widely used controllers. We found that the OpenDaylight controller is the most secure one compared to the other controllers. In addition, this paper also provides a snapshot of current development in security aspect of SDN controllers such that it may help SDN controller developers to identify the issues and rectify the same in future releases.
Date of Conference: 26-28 September 2016
Date Added to IEEE Xplore: 24 November 2016
ISBN Information:
Conference Location: Montreal, QC, Canada

References

References is not available for this document.