• KSII Transactions on Internet and Information Systems
    Monthly Online Journal (eISSN: 1976-7277)

A Systematic Treat Model for Software-Defined Networking

Vol. 15, No. 2, February 28, 2021
10.3837/tiis.2021.02.011, Download Paper (Free):

Abstract

Software-Defined Networking (SDN) has three key features: separation of control and forwarding, centralized control, and network programmability. While improving network management flexibility, SDN has many security issues. This paper systemizes the security threats of SDN using spoofing, tampering, repudiation, information disclosure, denial of service, and elevation of privilege (STRIDE) model to understand the current security status of SDN. First, we introduce the network architecture and data flow of SDN. Second, we analyze security threats of the six types given in the STRIDE model, aiming to reveal the vulnerability mechanisms and assess the attack surface. Then, we briefly describe the corresponding defense technologies. Finally, we summarize the work of this paper and discuss the trends of SDN security research.


Statistics

Show / Hide Statistics

Statistics (Cumulative Counts from December 1st, 2015)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article

[IEEE Style]
W. Zhang, Z. Wu, Q. Wei and H. Yuan, "A Systematic Treat Model for Software-Defined Networking," KSII Transactions on Internet and Information Systems, vol. 15, no. 2, pp. 580-599, 2021. DOI: 10.3837/tiis.2021.02.011.

[ACM Style]
Wenbin Zhang, Zehui Wu, Qiang Wei, and Huijie Yuan. 2021. A Systematic Treat Model for Software-Defined Networking. KSII Transactions on Internet and Information Systems, 15, 2, (2021), 580-599. DOI: 10.3837/tiis.2021.02.011.