Computing Reviews
Today's Issue Hot Topics Search Browse Recommended My Account Log In
Review Help
Search
Challenges and preparedness of SDN-based firewalls
Dixit V., Kyung S., Zhao Z., Doupé A., Shoshitaishvili Y., Ahn G.  SDN-NFV Security 2018 (Proceedings of the 2018 ACM International Workshop on Security in Software Defined Networks & Network Function Virtualization, Tempe, AZ, Mar 21, 2018)33-38.2018.Type:Proceedings
Date Reviewed: Nov 2 2018

The constant increase in data traffic over carrier networks has led to the design of more complex networks. This has generated a need for efficient technologies to handle traffic in large-scale networks. Software-defined networking (SDN) is one such technology that separates the data plane from the control plane and allows dynamic network configuration through a centralized network controller. Every network requires an efficient defense mechanism for robust and reliable functioning. A firewall allows for the enforcement of security policies in the network, thus controlling network traffic.

Firewalls have been used in traditional networks for a long time, and the same concept is adapted for SDN-based networks. However, because of changes in network architecture and functionality, legacy firewall designs do not suit SDN-based networks. It is essential that the firewall solutions developed for SDN-based networks keep the network controller’s design and functionality in mind. The challenge here is that there are no implementation standards for network controllers, and often the network controllers are implemented differently. This paper presents challenges to the design and implementation of SDN-based firewalls and studies their preparedness in achieving network security and reliability. The authors compare the capabilities of the seven most popular SDN-based firewall solutions and implement one of them (FlowGuard) in a practical network to study its capabilities and performance.

The paper gives an overview of SDN-based firewall designs for enterprise and large-scale networks without discussing implementation details. It will prove helpful to designers of firewall solutions for SDN-based network controllers and researchers working on SDN security.

Reviewer:  Rinki Sharma Review #: CR146304 (1902-0026)
Bookmark and Share
  Reviewer Selected
 
 
Security and Protection (C.2.0 ... )
 
Would you recommend this review?
yes
no
Other reviews under "Security and Protection": Date
Introduction to data security and controls (2nd ed.)
Edward R. I., QED Information Sciences, Inc., Wellesley, MA, 1991. Type: Book (9780894353864)
Aug 1 1992
Security for computer networks: an introduction to data security in teleprocessing and electronic funds transfer
Davies D., Price W., John Wiley & Sons, Inc., New York, NY, 1984. Type: Book (9780471900634)
Oct 1 1985
The development and proof of a formal specification for a multilevel secure system
Glasgow J., Macewen G. ACM Transactions on Computer Systems 5(2): 151-184, 1987. Type: Article
Oct 1 1987
more...

E-Mail This Printer-Friendly
Send Your Comments
Contact Us
Reproduction in whole or in part without permission is prohibited.   Copyright 1999-2024 ThinkLoud®
Terms of Use
| Privacy Policy