A Security assessment framework for software-defined networking소프트웨어 정의 네트워킹을 위한 보안 평가 프레임워크
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.advisor | Shin, Seungwon | - |
| dc.contributor.advisor | 신승원 | - |
| dc.contributor.author | Lee, Seungsoo | - |
| dc.date.accessioned | 2021-05-12T19:46:00Z | - |
| dc.date.available | 2021-05-12T19:46:00Z | - |
| dc.date.issued | 2020 | - |
| dc.identifier.uri | http://library.kaist.ac.kr/search/detail/view.do?bibCtrlNo=924562&flag=dissertation | en_US |
| dc.identifier.uri | http://hdl.handle.net/10203/284473 | - |
| dc.description | 학위논문(박사) - 한국과학기술원 : 정보보호대학원, 2020.8,[v, 80 p. :] | - |
| dc.description.abstract | As Software-Defined Networking (SDN) is getting popular, developing a systematic understanding of the attack surface of SDN is necessary to operate more securely. However, most existing studies depend on empirical methods to evaluate the security of particular SDN elements from their own perspectives. Besides, none of them has carefully inspected network policy inconsistency problems that can cause severe network reliability and security issues in SDN. Hence, this dissertation focuses on how to systematically assess the security problems of SDN by following three subjects: (1) the understanding SDN attack surfaces from control flow perspective, (2) the security evaluation in the SDN layers, and (3) the detection of network policy inconsistencies between the SDN layers. Thus, this dissertation analyzes the various vulnerability cases first, and then propose a first security assessment framework for SDN, and automated detection framework for network policy inconsistencies in SDN, to assess the security of SDN. Even though those systems are not enough to fully assess all kinds of security in the broad SDN infrastructure, we believe that they would be the starting point toward making it more secure. | - |
| dc.language | eng | - |
| dc.publisher | 한국과학기술원 | - |
| dc.subject | Software-Defined Networking▼aNetwork Security Testing▼aNetwork Policy Inconsistency▼aSecurity Testing▼aPenetration Testing | - |
| dc.subject | 소프트웨어 정의 네트워킹▼a네트워크 보안 테스트▼a네트워크 정책 불일치▼a보안 테스팅 | - |
| dc.subject | 침투 테스팅 | - |
| dc.title | A Security assessment framework for software-defined networking | - |
| dc.title.alternative | 소프트웨어 정의 네트워킹을 위한 보안 평가 프레임워크 | - |
| dc.type | Thesis(Ph.D) | - |
| dc.identifier.CNRN | 325007 | - |
| dc.description.department | 한국과학기술원 :정보보호대학원, | - |
| dc.contributor.alternativeauthor | 이승수 | - |
- Appears in Collection
- IS-Theses_Ph.D.(박사논문)
- Files in This Item
- There are no files associated with this item.
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.