• DocumentCode
    3704055
  • Title

    A Secure Northbound Interface for SDN Applications

  • Author

    Christian Banse;Sathyanarayanan Rangarajan

  • Author_Institution
    Fraunhofer AISEC, Garching, Germany
  • Volume
    1
  • fYear
    2015
  • Firstpage
    834
  • Lastpage
    839
  • Abstract
    Software-Defined Networking (SDN) promises to introduce flexibility and programmability into networks by offering a northbound interface (NBI) for developers to create SDN applications. However, current designs and implementations have several drawbacks, including the lack of extended security features. In this paper, we present a secure northbound interface, through which an SDN controller can offer network resources, such as statistics, flow information or topology data, via a REST-like API to registered SDN applications. A trust manager ensures that only authenticated and trusted applications can utilize the interface. Furthermore, a permission system allows for fine-grained authorization and access control to the aforementioned resources. We present a prototypical implementation of our interface and developed example applications using our interface, including an SDN management dashboard.
  • Keywords
    "Switches","Topology","Network topology","Access control","Protocols"
  • Publisher
    ieee
  • Conference_Titel
    Trustcom/BigDataSE/ISPA, 2015 IEEE
  • Type

    conf

  • DOI
    10.1109/Trustcom.2015.454
  • Filename
    7345362