Abstract
The widespread adoption and evolution of Software Defined Networking (SDN) have enabled the service providers to successfully simplify network management. Along with the traffic explosion, there is decreasing CAPEX and OPEX as well as an increase in the average revenue per user. However, this wide adoption of SDNs is posing real challenges and concerns in terms of security aspects. The main challenges are how to provide proper authentication, access control, data privacy, and data integrity among others for the API-driven orchestration of network routing. Herein, the Software Defined Perimeter (SDP) is proposed as a framework to provide an orchestration of connections. The expectation is a framework that restricts network access and connections between objects on the SDN-enabled network infrastructures. There are several potential benefits as a result of the integration between SDP systems and SDNs. In particular, it provides a completely scalable and managed security solution. Consequently, it leads to flexible deployment that can be tailored to fit the need of any generic network security perimeter. The proposed Integrated frameworks are examined through virtualized network testbeds. The testing results demonstrate that the proposed framework is malleable to both port scanning (PS) attack and Denial of Service (DoS) bandwidth attack. In addition, it clarifies some interesting potential integration points between the SDP systems and SDNs to further research in this area.
Highlights
Cisco predicts that by 2022 mobile devices will account for 79% of Internet traffic in comparison to the 65% share as of 2017 [1]
RESULT ANALYSIS From Subsection V-C, we can notice that there is insignificance delay by running the Software Defined Perimeter (SDP) components in Software-defined networking (SDN) network compared to the regular network due to a one-time flow control delay time required to find the correct flow between the gateway/client and the SDP controller
The reason behind this is that when a machine is trying to talk to another machine through an SDN switch (OVS in this environment) the switch would search first in its flow tables to find a route to the destination, if the switch cannot find the correct flow it will start a flow control sequence by sending a Packet-in message to the controller
Summary
Cisco predicts that by 2022 mobile devices will account for 79% of Internet traffic in comparison to the 65% share as of 2017 [1]. Traditional hardware-based networks work inadequately operate for consistently changing computing and storage needs in campus environments, data centers, and carrier/service provider environments. Researchers have already presented solutions to some SDN security challenges. These solutions range from controller replication schemes to policy conflict resolution and authentication mechanisms. An equivalent framework is the Software-defined Perimeter (SDP). Similar to the softwaredefined networking, the SDP has emerged as a new concept to replace physical security appliances with logical components that can operate under the control of the application owner. Propose an integrated SDP-SDN architecture to provide a better security networking platform and ensure seamless integration between the two paradigms. The rest of this paper is organized as follows: In Section 2, previous works conducted on SDN security challenges and solutions are reviewed.
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
