Risk Assessment Approach to Secure Northbound Interface of SDN Networks
- Resource Type
- Conference
- Authors
- Niemiec, Marcin; Jaglarz, Piotr; Jekot, Marcin; Cholda, Piotr; Borylo, Piotr
- Source
- 2019 International Conference on Computing, Networking and Communications (ICNC) Computing, Networking and Communications (ICNC), 2019 International Conference on. :164-169 Feb, 2019
- Subject
- Communication, Networking and Broadcast Technologies
Computing and Processing
Risk management
Network topology
Topology
Optimization
Security
Conferences
Estimation
security
SDN
risk assessment
Northbound-API
- Language
The most significant threats to networks usually originate from external entities. As such, the Northbound interface of SDN networks which ensures communication with external applications requires particularly close attention. In this paper we propose the Risk Assessment and Management approach to SEcure SDN (RAMSES). This novel solution is able to estimate the risk associated with traffic demand requests received via the Northbound-API in SDN networks. RAMSES quantifies the impact on network cost incurred by expected traffic demands and specifies the likelihood of adverse requests estimated using the reputation system. Accurate risk estimation allows SDN network administrators to make the right decisions and mitigate potential threat scenarios. This can be observed using extensive numerical verification based on an network optimization tool and several scenarios related to the reputation of the sender of the request. The verification of RAMSES confirmed the usefulness of its risk assessment approach to protecting SDN networks against threats associated with the Northbound-API.