TY - GEN
T1 - An autonomic and policy-based authorization framework for OpenFlow networks
AU - Rosendo, Daniel
AU - Endo, Patricia Takako
AU - Sadok, Djamel
AU - Kelner, Judith
N1 - Publisher Copyright:
© 2017 IFIP.
PY - 2017/7/1
Y1 - 2017/7/1
N2 - The Network Access Control (NAC) management is a critical task, especially in current networks that are composed of many heterogeneous things (Internet of Things) connected to share data, resources and Internet access. The Software-Defined Networking (SDN) simplifies the network design and operation, and offers new opportunities (programmability, flexibility, dy-namicity, and standardization) to manage the network. Despite this, the access control management remains a challenge, once managing security policies involves dealing with a large set of access control rules, detecting conflicting policies, defining priorities, delegating rights, and reacting against network state changes and events. This work presents the HACFlow, a novel, autonomic, and policy-based framework for access control management in OpenFlow networks. HACFlow aims to simplify and automate the network management allowing network operators to govern rights of network entities by defining dynamic, fine-grained, and high-level access control policies. We analyzed the performance of HACFlow and compared it against related approaches.
AB - The Network Access Control (NAC) management is a critical task, especially in current networks that are composed of many heterogeneous things (Internet of Things) connected to share data, resources and Internet access. The Software-Defined Networking (SDN) simplifies the network design and operation, and offers new opportunities (programmability, flexibility, dy-namicity, and standardization) to manage the network. Despite this, the access control management remains a challenge, once managing security policies involves dealing with a large set of access control rules, detecting conflicting policies, defining priorities, delegating rights, and reacting against network state changes and events. This work presents the HACFlow, a novel, autonomic, and policy-based framework for access control management in OpenFlow networks. HACFlow aims to simplify and automate the network management allowing network operators to govern rights of network entities by defining dynamic, fine-grained, and high-level access control policies. We analyzed the performance of HACFlow and compared it against related approaches.
KW - Autonomic and cognitive management
KW - Internet of Things networks
KW - Policy-based management
KW - Security management
KW - Software-defined Networks
UR - https://www.scopus.com/pages/publications/85046698614
U2 - 10.23919/CNSM.2017.8255990
DO - 10.23919/CNSM.2017.8255990
M3 - Conference contribution
AN - SCOPUS:85046698614
T3 - 2017 13th International Conference on Network and Service Management, CNSM 2017
SP - 1
EP - 5
BT - 2017 13th International Conference on Network and Service Management, CNSM 2017
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 13th International Conference on Network and Service Management, CNSM 2017
Y2 - 26 November 2017 through 30 November 2017
ER -