Data protection intents for software-defined networking

Benjamin E. Ujcich; William H. Sanders

doi:10.1109/NETSOFT.2019.8806684

Data protection intents for software-defined networking

Benjamin E. Ujcich, William H. Sanders

Electrical and Computer Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

The rise of intent-based networking (IBN) allows enterprises to use software-defined networking (SDN) architectures to specify what network requirements are needed rather than specify how such requirements will be implemented. For enterprises that process personal data, those network requirements must necessarily consider data protection by design to comply with new regulations such as the European Union's GDPR. We argue that the centralized data plane view of SDN architectures and the network intent abstractions of IBN can aid in the design of systems that require data protection. We propose a data protection intent framework that leverages SDN and network intents. We use the GDPR as a representative data protection framework and identify the applicable regulatory requirements for system and network design. Based on those requirements, we design an SDN-based architecture for data protection intents that allows data services to request network resources by using data protection abstractions. We implement a proof-of-concept network application for the ONOS SDN controller and explain how our framework can be useful in a representative data breach case study to aid in responding to regulator requests.

Original language	English (US)
Title of host publication	Proceedings of the 2019 IEEE Conference on Network Softwarization
Subtitle of host publication	Unleashing the Power of Network Softwarization, NetSoft 2019
Editors	Christian Jacquenet, Filip De Turck, Prosper Chemouil, Flavio Esposito, Olivier Festor, Walter Cerroni, Stefano Secci
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	271-275
Number of pages	5
ISBN (Electronic)	9781538693766
DOIs	https://doi.org/10.1109/NETSOFT.2019.8806684
State	Published - Jun 2019
Event	5th IEEE Conference on Network Softwarization, NetSoft 2019 - Paris, France Duration: Jun 24 2019 → Jun 28 2019

Publication series

Name	Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019

Conference

Conference	5th IEEE Conference on Network Softwarization, NetSoft 2019
Country/Territory	France
City	Paris
Period	6/24/19 → 6/28/19

Keywords

GDPR
IBN
SDN
data protection
intent-based networking
logging
network intent
regulatory compliance
software-defined networking

ASJC Scopus subject areas

Safety, Risk, Reliability and Quality
Computer Networks and Communications
Software

Online availability

10.1109/NETSOFT.2019.8806684

Library availability

Discover UIUC Full Text

Cite this

Ujcich, B. E., & Sanders, W. H. (2019). Data protection intents for software-defined networking. In C. Jacquenet, F. De Turck, P. Chemouil, F. Esposito, O. Festor, W. Cerroni, & S. Secci (Eds.), Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019 (pp. 271-275). [8806684] (Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/NETSOFT.2019.8806684

Data protection intents for software-defined networking. / Ujcich, Benjamin E.; Sanders, William H.

Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019. ed. / Christian Jacquenet; Filip De Turck; Prosper Chemouil; Flavio Esposito; Olivier Festor; Walter Cerroni; Stefano Secci. Institute of Electrical and Electronics Engineers Inc., 2019. p. 271-275 8806684 (Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Ujcich, BE & Sanders, WH 2019, Data protection intents for software-defined networking. in C Jacquenet, F De Turck, P Chemouil, F Esposito, O Festor, W Cerroni & S Secci (eds), Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019., 8806684, Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019, Institute of Electrical and Electronics Engineers Inc., pp. 271-275, 5th IEEE Conference on Network Softwarization, NetSoft 2019, Paris, France, 6/24/19. https://doi.org/10.1109/NETSOFT.2019.8806684

Ujcich BE, Sanders WH. Data protection intents for software-defined networking. In Jacquenet C, De Turck F, Chemouil P, Esposito F, Festor O, Cerroni W, Secci S, editors, Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019. Institute of Electrical and Electronics Engineers Inc. 2019. p. 271-275. 8806684. (Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019). doi: 10.1109/NETSOFT.2019.8806684

Ujcich, Benjamin E. ; Sanders, William H. / Data protection intents for software-defined networking. Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019. editor / Christian Jacquenet ; Filip De Turck ; Prosper Chemouil ; Flavio Esposito ; Olivier Festor ; Walter Cerroni ; Stefano Secci. Institute of Electrical and Electronics Engineers Inc., 2019. pp. 271-275 (Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019).

@inproceedings{9f70e9c0d3804c00b88b2bfb3fd12c2b,

title = "Data protection intents for software-defined networking",

abstract = "The rise of intent-based networking (IBN) allows enterprises to use software-defined networking (SDN) architectures to specify what network requirements are needed rather than specify how such requirements will be implemented. For enterprises that process personal data, those network requirements must necessarily consider data protection by design to comply with new regulations such as the European Union's GDPR. We argue that the centralized data plane view of SDN architectures and the network intent abstractions of IBN can aid in the design of systems that require data protection. We propose a data protection intent framework that leverages SDN and network intents. We use the GDPR as a representative data protection framework and identify the applicable regulatory requirements for system and network design. Based on those requirements, we design an SDN-based architecture for data protection intents that allows data services to request network resources by using data protection abstractions. We implement a proof-of-concept network application for the ONOS SDN controller and explain how our framework can be useful in a representative data breach case study to aid in responding to regulator requests.",

keywords = "GDPR, IBN, SDN, data protection, intent-based networking, logging, network intent, regulatory compliance, software-defined networking",

author = "Ujcich, {Benjamin E.} and Sanders, {William H.}",

note = "Publisher Copyright: {\textcopyright} 2019 IEEE.; 5th IEEE Conference on Network Softwarization, NetSoft 2019 ; Conference date: 24-06-2019 Through 28-06-2019",

year = "2019",

month = jun,

doi = "10.1109/NETSOFT.2019.8806684",

language = "English (US)",

series = "Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "271--275",

editor = "Christian Jacquenet and {De Turck}, Filip and Prosper Chemouil and Flavio Esposito and Olivier Festor and Walter Cerroni and Stefano Secci",

booktitle = "Proceedings of the 2019 IEEE Conference on Network Softwarization",

address = "United States",

}

TY - GEN

T1 - Data protection intents for software-defined networking

AU - Ujcich, Benjamin E.

AU - Sanders, William H.

PY - 2019/6

Y1 - 2019/6

N2 - The rise of intent-based networking (IBN) allows enterprises to use software-defined networking (SDN) architectures to specify what network requirements are needed rather than specify how such requirements will be implemented. For enterprises that process personal data, those network requirements must necessarily consider data protection by design to comply with new regulations such as the European Union's GDPR. We argue that the centralized data plane view of SDN architectures and the network intent abstractions of IBN can aid in the design of systems that require data protection. We propose a data protection intent framework that leverages SDN and network intents. We use the GDPR as a representative data protection framework and identify the applicable regulatory requirements for system and network design. Based on those requirements, we design an SDN-based architecture for data protection intents that allows data services to request network resources by using data protection abstractions. We implement a proof-of-concept network application for the ONOS SDN controller and explain how our framework can be useful in a representative data breach case study to aid in responding to regulator requests.

AB - The rise of intent-based networking (IBN) allows enterprises to use software-defined networking (SDN) architectures to specify what network requirements are needed rather than specify how such requirements will be implemented. For enterprises that process personal data, those network requirements must necessarily consider data protection by design to comply with new regulations such as the European Union's GDPR. We argue that the centralized data plane view of SDN architectures and the network intent abstractions of IBN can aid in the design of systems that require data protection. We propose a data protection intent framework that leverages SDN and network intents. We use the GDPR as a representative data protection framework and identify the applicable regulatory requirements for system and network design. Based on those requirements, we design an SDN-based architecture for data protection intents that allows data services to request network resources by using data protection abstractions. We implement a proof-of-concept network application for the ONOS SDN controller and explain how our framework can be useful in a representative data breach case study to aid in responding to regulator requests.

KW - GDPR

KW - IBN

KW - SDN

KW - data protection

KW - intent-based networking

KW - logging

KW - network intent

KW - regulatory compliance

KW - software-defined networking

UR - http://www.scopus.com/inward/record.url?scp=85072045130&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85072045130&partnerID=8YFLogxK

U2 - 10.1109/NETSOFT.2019.8806684

DO - 10.1109/NETSOFT.2019.8806684

M3 - Conference contribution

AN - SCOPUS:85072045130

T3 - Proceedings of the 2019 IEEE Conference on Network Softwarization: Unleashing the Power of Network Softwarization, NetSoft 2019

SP - 271

EP - 275

BT - Proceedings of the 2019 IEEE Conference on Network Softwarization

A2 - Jacquenet, Christian

A2 - De Turck, Filip

A2 - Chemouil, Prosper

A2 - Esposito, Flavio

A2 - Festor, Olivier

A2 - Cerroni, Walter

A2 - Secci, Stefano

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 5th IEEE Conference on Network Softwarization, NetSoft 2019

Y2 - 24 June 2019 through 28 June 2019

ER -

Data protection intents for software-defined networking

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this