Towards a secure controller platform for openflow applications


The OpenFlow (OF) paradigm embraces third-party development efforts, and therefore suffers from potential trust issue on OF applications (apps). The abuse of such trust could lead to various types of attacks impacting the entire network. In this paper, we propose PermOF, a fine-grained permission system, as the first line of defense, in order to apply minimum privilege on apps. We summarize a set of 18 permissions to be enforced at the API entry of the controller. To accommodate the isolation requirements, we propose a customized isolation mechanism, which achieves comprehensive resource isolation and access control.

DOI: 10.1145/2491185.2491212

Extracted Key Phrases

2 Figures and Tables

Citations per Year

64 Citations

Semantic Scholar estimates that this publication has 64 citations based on the available data.

See our FAQ for additional information.

Cite this paper

@inproceedings{Wen2013TowardsAS, title={Towards a secure controller platform for openflow applications}, author={Xitao Wen and Yan Chen and Chengchen Hu and Chao Shi and Yi Wang}, booktitle={HotSDN}, year={2013} }