Back
  1. Home
  3. Detailled Reference
Request a copy
Article (Scientific journals)
The KISS principle in Software-Defined Networking: a framework for secure communications
Kreutz, Diego; Yu, Jiangshan; Verissimo, Paulo et al.
2018In IEEE Security & Privacy Magazine, 16 (05), p. 60-70
Peer reviewed
Permalink
https://hdl.handle.net/10993/33915
DOI
10.1109/MSP.2018.3761717
 

Files (1)Send toDetailsStatisticsBibliographySimilar publications

Files

Full Text
KISS_IEEE_CS_08490167.pdf
Publisher postprint (612.43 kB)
Request a copy

All documents in ORBilu are protected by a user license.

Send to


Details


Keywords :
software-defined networking; SDN; security; cryptographic primitives; integrated device verification value (iDVV); perfect forward secrecy; performance; system architecture
Abstract :
[en] Security is an increasingly fundamental requirement in Software-Defined Networking (SDN). However, the pace of adoption of secure mechanisms has been slow, which we estimate to be a consequence of the performance overhead of traditional solutions and of the complexity of their support infrastructure. To address these challenges we propose KISS, a secure SDN control plane communications architecture that includes innovative solutions in the context of key distribution and secure channel support. Core to our contribution is the integrated device verification value (iDVV), a deterministic but indistinguishable-from-random secret code generation protocol that allows local but synchronized generation/verification of keys at both ends of the control channel, even on a per-message basis. We show that our solution, while offering the same security properties, outperforms reference alternatives, with performance improvements up to 30% over OpenSSL, and improvement in robustness based on a code footprint one order of magnitude smaller.
Research center :
Interdisciplinary Centre for Security, Reliability and Trust (SnT) > Critical and Extreme Security and Dependability Research Group (CritiX)
Disciplines :
Computer science
Author, co-author :
Kreutz, Diego ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Yu, Jiangshan 
Verissimo, Paulo ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Ramos, Fernando
Magalhaes, Catia
External co-authors :
yes
Language :
English
Title :
The KISS principle in Software-Defined Networking: a framework for secure communications
Publication date :
October 2018
Journal title :
IEEE Security & Privacy Magazine
ISSN :
1540-7993
Publisher :
IEEE
Volume :
16
Issue :
05
Pages :
60-70
Peer reviewed :
Peer reviewed
Focus Area :
Security, Reliability and Trust
Additional URL :
https://www.computer.org/csdl/mags/sp/2018/05/msp2018050060.html
European Projects :
H2020 - 643964 - SUPERCLOUD - USER-CENTRIC MANAGEMENT OF SECURITY AND DEPENDABILITY IN CLOUDS OF CLOUDS
FnR Project :
FNR8149128 - Strategic Rtnd Program On Information Infrastructure Security And Dependability, 2014 (01/01/2015-31/12/2021) - Marcus Völp
Name of the research project :
IIS&D - Information Infrastructure Security and Dependability
Funders :
FNR - Fonds National de la Recherche [LU]
CE - Commission Européenne [BE]
Available on ORBilu :
since 11 January 2018

Statistics

Number of views
166 (24 by Unilu)
Number of downloads
4 (2 by Unilu)
More statistics
Scopus citations®
 
10
Scopus citations®
without self-citations
9
WoS citations
 
8

Bibliography

Similar publications


Contact ORBilu