Software-Defined Networking: An Evolving Network Architecture—Programmability and Security Perspective

<table class="table-group" id="tab1"><tr><td><table class="table"><tr><td class="thead-hr" colspan="2"><hr/></td></tr><tr class="thead"><td class="align_left">Possible security weak points</td><td class="align_center">Reason to classify weak points</td></tr><tr><td class="thead-hr" colspan="2"><hr/></td></tr><tr><td class="align_left">Flow table—data plane</td><td class="align_center">The flow table in the forwarding devices, if compromised, will mislead the ingress and egress data flow in the network and could cause vital damage irrespective of how scalable, resilient, redundant, and efficient a network is.</td></tr><tr><td class="align_left">Controller—control plane</td><td class="align_center">The controller, as addressed earlier, being the central authority could cause a high impact over the flow of the network if compromised (in this case, we are discussing more focused on a single controller scenario; however, an SDN architecture could support distributed controllers within a network).</td></tr><tr><td class="align_left">Applications—application plane</td><td class="align_center">The applications which are customized for the network could lead to a devastating result if compromised.</td></tr><tr class="table-tr"><td colspan="2"><hr class="tbody-hr"/></td></tr></table></td></tr></table>

Security and Communication Networks

tab1

Table 1

Table 1: Software-Defined Networking: An Evolving Network Architecture—Programmability and Security Perspective 