Towards an accountable software-defined networking architecture

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Software-defined networking (SDN) overcomes many limitations of traditional networking architectures because of its programmable and flexible nature. Security applications, for instance, can dynamically reprogram a network to respond to ongoing threats in real time. However, the same flexibility also creates risk, since it can be used against the network. Current SDN architectures potentially allow adversaries to disrupt one or more SDN system components and to hide their actions in doing so. That makes assurance and reasoning about past network events more difficult, if not impossible. In this paper, we argue that an SDN architecture must incorporate various notions of accountability for achieving systemwide cyber resiliency goals. We analyze accountability based on a conceptual framework, and we identify how that analysis fits in with the SDN architecture's entities and processes. We further consider a case study in which accountability is necessary for SDN network applications, and we discuss the limits of current approaches.

Original languageEnglish (US)
Title of host publication2017 IEEE Conference on Network Softwarization
Subtitle of host publicationSoftwarization Sustaining a Hyper-Connected World: en Route to 5G, NetSoft 2017
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages1-5
Number of pages5
ISBN (Electronic)9781509060085
DOIs
StatePublished - Aug 7 2017
Event2017 IEEE Conference on Network Softwarization, NetSoft 2017 - Bologna, Italy
Duration: Jul 3 2017Jul 7 2017

Publication series

Name2017 IEEE Conference on Network Softwarization: Softwarization Sustaining a Hyper-Connected World: en Route to 5G, NetSoft 2017
Volume2017-August

Other

Other2017 IEEE Conference on Network Softwarization, NetSoft 2017
CountryItaly
CityBologna
Period7/3/177/7/17

Fingerprint

Software defined networking

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Software
  • Hardware and Architecture

Cite this

Ujcich, B. E., Miller, A., Bates, A., & Sanders, W. H. (2017). Towards an accountable software-defined networking architecture. In 2017 IEEE Conference on Network Softwarization: Softwarization Sustaining a Hyper-Connected World: en Route to 5G, NetSoft 2017 (pp. 1-5). (2017 IEEE Conference on Network Softwarization: Softwarization Sustaining a Hyper-Connected World: en Route to 5G, NetSoft 2017; Vol. 2017-August). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/NETSOFT.2017.8004206

Towards an accountable software-defined networking architecture. / Ujcich, Benjamin E.; Miller, Andrew; Bates, Adam; Sanders, William H.

2017 IEEE Conference on Network Softwarization: Softwarization Sustaining a Hyper-Connected World: en Route to 5G, NetSoft 2017. Institute of Electrical and Electronics Engineers Inc., 2017. p. 1-5 (2017 IEEE Conference on Network Softwarization: Softwarization Sustaining a Hyper-Connected World: en Route to 5G, NetSoft 2017; Vol. 2017-August).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Ujcich, BE, Miller, A, Bates, A & Sanders, WH 2017, Towards an accountable software-defined networking architecture. in 2017 IEEE Conference on Network Softwarization: Softwarization Sustaining a Hyper-Connected World: en Route to 5G, NetSoft 2017. 2017 IEEE Conference on Network Softwarization: Softwarization Sustaining a Hyper-Connected World: en Route to 5G, NetSoft 2017, vol. 2017-August, Institute of Electrical and Electronics Engineers Inc., pp. 1-5, 2017 IEEE Conference on Network Softwarization, NetSoft 2017, Bologna, Italy, 7/3/17. https://doi.org/10.1109/NETSOFT.2017.8004206
Ujcich BE, Miller A, Bates A, Sanders WH. Towards an accountable software-defined networking architecture. In 2017 IEEE Conference on Network Softwarization: Softwarization Sustaining a Hyper-Connected World: en Route to 5G, NetSoft 2017. Institute of Electrical and Electronics Engineers Inc. 2017. p. 1-5. (2017 IEEE Conference on Network Softwarization: Softwarization Sustaining a Hyper-Connected World: en Route to 5G, NetSoft 2017). https://doi.org/10.1109/NETSOFT.2017.8004206
Ujcich, Benjamin E. ; Miller, Andrew ; Bates, Adam ; Sanders, William H. / Towards an accountable software-defined networking architecture. 2017 IEEE Conference on Network Softwarization: Softwarization Sustaining a Hyper-Connected World: en Route to 5G, NetSoft 2017. Institute of Electrical and Electronics Engineers Inc., 2017. pp. 1-5 (2017 IEEE Conference on Network Softwarization: Softwarization Sustaining a Hyper-Connected World: en Route to 5G, NetSoft 2017).
@inproceedings{e8212e8ff39c44abb1a9e01eaf9cc325,
title = "Towards an accountable software-defined networking architecture",
abstract = "Software-defined networking (SDN) overcomes many limitations of traditional networking architectures because of its programmable and flexible nature. Security applications, for instance, can dynamically reprogram a network to respond to ongoing threats in real time. However, the same flexibility also creates risk, since it can be used against the network. Current SDN architectures potentially allow adversaries to disrupt one or more SDN system components and to hide their actions in doing so. That makes assurance and reasoning about past network events more difficult, if not impossible. In this paper, we argue that an SDN architecture must incorporate various notions of accountability for achieving systemwide cyber resiliency goals. We analyze accountability based on a conceptual framework, and we identify how that analysis fits in with the SDN architecture's entities and processes. We further consider a case study in which accountability is necessary for SDN network applications, and we discuss the limits of current approaches.",
author = "Ujcich, {Benjamin E.} and Andrew Miller and Adam Bates and Sanders, {William H.}",
year = "2017",
month = "8",
day = "7",
doi = "10.1109/NETSOFT.2017.8004206",
language = "English (US)",
series = "2017 IEEE Conference on Network Softwarization: Softwarization Sustaining a Hyper-Connected World: en Route to 5G, NetSoft 2017",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
pages = "1--5",
booktitle = "2017 IEEE Conference on Network Softwarization",
address = "United States",

}

TY - GEN

T1 - Towards an accountable software-defined networking architecture

AU - Ujcich, Benjamin E.

AU - Miller, Andrew

AU - Bates, Adam

AU - Sanders, William H.

PY - 2017/8/7

Y1 - 2017/8/7

N2 - Software-defined networking (SDN) overcomes many limitations of traditional networking architectures because of its programmable and flexible nature. Security applications, for instance, can dynamically reprogram a network to respond to ongoing threats in real time. However, the same flexibility also creates risk, since it can be used against the network. Current SDN architectures potentially allow adversaries to disrupt one or more SDN system components and to hide their actions in doing so. That makes assurance and reasoning about past network events more difficult, if not impossible. In this paper, we argue that an SDN architecture must incorporate various notions of accountability for achieving systemwide cyber resiliency goals. We analyze accountability based on a conceptual framework, and we identify how that analysis fits in with the SDN architecture's entities and processes. We further consider a case study in which accountability is necessary for SDN network applications, and we discuss the limits of current approaches.

AB - Software-defined networking (SDN) overcomes many limitations of traditional networking architectures because of its programmable and flexible nature. Security applications, for instance, can dynamically reprogram a network to respond to ongoing threats in real time. However, the same flexibility also creates risk, since it can be used against the network. Current SDN architectures potentially allow adversaries to disrupt one or more SDN system components and to hide their actions in doing so. That makes assurance and reasoning about past network events more difficult, if not impossible. In this paper, we argue that an SDN architecture must incorporate various notions of accountability for achieving systemwide cyber resiliency goals. We analyze accountability based on a conceptual framework, and we identify how that analysis fits in with the SDN architecture's entities and processes. We further consider a case study in which accountability is necessary for SDN network applications, and we discuss the limits of current approaches.

UR - http://www.scopus.com/inward/record.url?scp=85043701887&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85043701887&partnerID=8YFLogxK

U2 - 10.1109/NETSOFT.2017.8004206

DO - 10.1109/NETSOFT.2017.8004206

M3 - Conference contribution

AN - SCOPUS:85043701887

T3 - 2017 IEEE Conference on Network Softwarization: Softwarization Sustaining a Hyper-Connected World: en Route to 5G, NetSoft 2017

SP - 1

EP - 5

BT - 2017 IEEE Conference on Network Softwarization

PB - Institute of Electrical and Electronics Engineers Inc.

ER -