Data protection intents for software-defined networking

Benjamin E. Ujcich, William H Sanders

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

The rise of intent-based networking (IBN) allows enterprises to use software-defined networking (SDN) architectures to specify what network requirements are needed rather than specify how such requirements will be implemented. For enterprises that process personal data, those network requirements must necessarily consider data protection by design to comply with new regulations such as the European Union's GDPR. We argue that the centralized data plane view of SDN architectures and the network intent abstractions of IBN can aid in the design of systems that require data protection. We propose a data protection intent framework that leverages SDN and network intents. We use the GDPR as a representative data protection framework and identify the applicable regulatory requirements for system and network design. Based on those requirements, we design an SDN-based architecture for data protection intents that allows data services to request network resources by using data protection abstractions. We implement a proof-of-concept network application for the ONOS SDN controller and explain how our framework can be useful in a representative data breach case study to aid in responding to regulator requests.

Original languageEnglish (US)
Title of host publicationProceedings of the 2019 IEEE Conference on Network Softwarization
Subtitle of host publicationUnleashing the Power of Network Softwarization, NetSoft 2019
EditorsChristian Jacquenet, Filip De Turck, Prosper Chemouil, Flavio Esposito, Olivier Festor, Walter Cerroni, Stefano Secci
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages271-275
Number of pages5
ISBN (Electronic)9781538693766
DOIs
StatePublished - Jun 2019
Event5th IEEE Conference on Network Softwarization, NetSoft 2019 - Paris, France
Duration: Jun 24 2019Jun 28 2019

Publication series

NameProceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019

Conference

Conference5th IEEE Conference on Network Softwarization, NetSoft 2019
CountryFrance
CityParis
Period6/24/196/28/19

Fingerprint

Data privacy
Software defined networking
Industry
Controllers

Keywords

  • GDPR
  • IBN
  • SDN
  • data protection
  • intent-based networking
  • logging
  • network intent
  • regulatory compliance
  • software-defined networking

ASJC Scopus subject areas

  • Safety, Risk, Reliability and Quality
  • Computer Networks and Communications
  • Software

Cite this

Ujcich, B. E., & Sanders, W. H. (2019). Data protection intents for software-defined networking. In C. Jacquenet, F. De Turck, P. Chemouil, F. Esposito, O. Festor, W. Cerroni, & S. Secci (Eds.), Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019 (pp. 271-275). [8806684] (Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/NETSOFT.2019.8806684

Data protection intents for software-defined networking. / Ujcich, Benjamin E.; Sanders, William H.

Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019. ed. / Christian Jacquenet; Filip De Turck; Prosper Chemouil; Flavio Esposito; Olivier Festor; Walter Cerroni; Stefano Secci. Institute of Electrical and Electronics Engineers Inc., 2019. p. 271-275 8806684 (Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Ujcich, BE & Sanders, WH 2019, Data protection intents for software-defined networking. in C Jacquenet, F De Turck, P Chemouil, F Esposito, O Festor, W Cerroni & S Secci (eds), Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019., 8806684, Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019, Institute of Electrical and Electronics Engineers Inc., pp. 271-275, 5th IEEE Conference on Network Softwarization, NetSoft 2019, Paris, France, 6/24/19. https://doi.org/10.1109/NETSOFT.2019.8806684
Ujcich BE, Sanders WH. Data protection intents for software-defined networking. In Jacquenet C, De Turck F, Chemouil P, Esposito F, Festor O, Cerroni W, Secci S, editors, Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019. Institute of Electrical and Electronics Engineers Inc. 2019. p. 271-275. 8806684. (Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019). https://doi.org/10.1109/NETSOFT.2019.8806684
Ujcich, Benjamin E. ; Sanders, William H. / Data protection intents for software-defined networking. Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019. editor / Christian Jacquenet ; Filip De Turck ; Prosper Chemouil ; Flavio Esposito ; Olivier Festor ; Walter Cerroni ; Stefano Secci. Institute of Electrical and Electronics Engineers Inc., 2019. pp. 271-275 (Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019).
@inproceedings{9f70e9c0d3804c00b88b2bfb3fd12c2b,
title = "Data protection intents for software-defined networking",
abstract = "The rise of intent-based networking (IBN) allows enterprises to use software-defined networking (SDN) architectures to specify what network requirements are needed rather than specify how such requirements will be implemented. For enterprises that process personal data, those network requirements must necessarily consider data protection by design to comply with new regulations such as the European Union's GDPR. We argue that the centralized data plane view of SDN architectures and the network intent abstractions of IBN can aid in the design of systems that require data protection. We propose a data protection intent framework that leverages SDN and network intents. We use the GDPR as a representative data protection framework and identify the applicable regulatory requirements for system and network design. Based on those requirements, we design an SDN-based architecture for data protection intents that allows data services to request network resources by using data protection abstractions. We implement a proof-of-concept network application for the ONOS SDN controller and explain how our framework can be useful in a representative data breach case study to aid in responding to regulator requests.",
keywords = "GDPR, IBN, SDN, data protection, intent-based networking, logging, network intent, regulatory compliance, software-defined networking",
author = "Ujcich, {Benjamin E.} and Sanders, {William H}",
year = "2019",
month = "6",
doi = "10.1109/NETSOFT.2019.8806684",
language = "English (US)",
series = "Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
pages = "271--275",
editor = "Christian Jacquenet and {De Turck}, Filip and Prosper Chemouil and Flavio Esposito and Olivier Festor and Walter Cerroni and Stefano Secci",
booktitle = "Proceedings of the 2019 IEEE Conference on Network Softwarization",
address = "United States",

}

TY - GEN

T1 - Data protection intents for software-defined networking

AU - Ujcich, Benjamin E.

AU - Sanders, William H

PY - 2019/6

Y1 - 2019/6

N2 - The rise of intent-based networking (IBN) allows enterprises to use software-defined networking (SDN) architectures to specify what network requirements are needed rather than specify how such requirements will be implemented. For enterprises that process personal data, those network requirements must necessarily consider data protection by design to comply with new regulations such as the European Union's GDPR. We argue that the centralized data plane view of SDN architectures and the network intent abstractions of IBN can aid in the design of systems that require data protection. We propose a data protection intent framework that leverages SDN and network intents. We use the GDPR as a representative data protection framework and identify the applicable regulatory requirements for system and network design. Based on those requirements, we design an SDN-based architecture for data protection intents that allows data services to request network resources by using data protection abstractions. We implement a proof-of-concept network application for the ONOS SDN controller and explain how our framework can be useful in a representative data breach case study to aid in responding to regulator requests.

AB - The rise of intent-based networking (IBN) allows enterprises to use software-defined networking (SDN) architectures to specify what network requirements are needed rather than specify how such requirements will be implemented. For enterprises that process personal data, those network requirements must necessarily consider data protection by design to comply with new regulations such as the European Union's GDPR. We argue that the centralized data plane view of SDN architectures and the network intent abstractions of IBN can aid in the design of systems that require data protection. We propose a data protection intent framework that leverages SDN and network intents. We use the GDPR as a representative data protection framework and identify the applicable regulatory requirements for system and network design. Based on those requirements, we design an SDN-based architecture for data protection intents that allows data services to request network resources by using data protection abstractions. We implement a proof-of-concept network application for the ONOS SDN controller and explain how our framework can be useful in a representative data breach case study to aid in responding to regulator requests.

KW - GDPR

KW - IBN

KW - SDN

KW - data protection

KW - intent-based networking

KW - logging

KW - network intent

KW - regulatory compliance

KW - software-defined networking

UR - http://www.scopus.com/inward/record.url?scp=85072045130&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85072045130&partnerID=8YFLogxK

U2 - 10.1109/NETSOFT.2019.8806684

DO - 10.1109/NETSOFT.2019.8806684

M3 - Conference contribution

AN - SCOPUS:85072045130

T3 - Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019

SP - 271

EP - 275

BT - Proceedings of the 2019 IEEE Conference on Network Softwarization

A2 - Jacquenet, Christian

A2 - De Turck, Filip

A2 - Chemouil, Prosper

A2 - Esposito, Flavio

A2 - Festor, Olivier

A2 - Cerroni, Walter

A2 - Secci, Stefano

PB - Institute of Electrical and Electronics Engineers Inc.

ER -