Software Defined Networking (SDN) provides new functionalities to efficiently manage the network traffic, which can be used to enhance the networking capabilities to support the growing communication demands today. But at the same time, it introduces new attack vectors that can be exploited by attackers. Hence, evaluating and selecting countermeasures to optimize the security of the SDN is of paramount importance. However, one should also take into account the trade-off between security and performance of the SDN. In this paper, we present a security optimization approach for the SDN taking into account the trade-off between security and performance. We evaluate the security of the SDN using graphical security models and metrics, and use queuing models to measure the performance of the SDN. Further, we use Genetic Algorithms, namely NSGA-II, to optimally select the countermeasure with performance and security constraints. Our experimental analysis results show that the proposed approach can efficiently compute the countermeasures that will optimize the security of the SDN while satisfying the performance constraints.
|Title of host publication||Proceedings 2019 18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE)|
|Place of Publication||United States|
|Publisher||IEEE, Institute of Electrical and Electronics Engineers|
|Number of pages||8|
|Publication status||Published - 2019|
|Event||18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE 2019) - Rotorua, New Zealand|
Duration: 5 Aug 2019 → 8 Aug 2019
|Conference||18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE 2019)|
|Abbreviated title||TrustCom/BigDataSE 2019|
|Period||5/08/19 → 8/08/19|
|Other||The 18th IEEE International Conference on Trust, Security and Privacy in Computing and Communications / 13th IEEE International Conference on Big Data Science and Engineering (TrustCom/BigDataSE) 2019 Conference and Exhibition will be held in Rotorua, New Zealand from 5 - 8 August, 2019.|
It follows the success of TrustCom’18 in New York, United States of America, TrustCom'17 in Sydney, Australia, TrustCom'16 in Tianjin, China, TrustCom'15 in Helsinki, Finland, TrustCom'14 in Beijing, China, TrustCom'13 in Melbourne, Australia, TrustCom'12 in Liverpool, United Kingdom, and so on. The conference aims at bringing together researchers and practitioners in the world working on trusted computing and communications, with regard to trust, security, privacy, reliability, dependability, survivability, availability, and fault tolerance aspects of computer systems and networks, and providing a forum to present and discuss emerging ideas and trends in this highly challenging research field.