Abstract
Over the last decade, cloud computing, software-defined networking (SDN), and network functions virtualization (NFV) technologies have been developed to address the inefficiency of IT infrastructures, the complexity of network manual configuration and management, the inability of the Internet to provision services on demand, and the rigidity of telecom service providers. However, clouds, SDN, and NFV bring with them not only their common security issues but also their domain-specific security issues. Furthermore, clouds, SDN, and NFV overlap in both architectures and shared resources. Software-defined infrastructure (SDI) is an approach that overcomes those problems and provides an environment for provisioning rapid and on-demand services. This chapter focuses on existing and emerging security challenges and solutions of cloud, SDN, and NFV and their integrated software-defined infrastructure as well as the security of the underlying virtualization technology. The chapter also reviews and discusses the development of a promising software-defined security (SDSec) approach.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
Albaroodi H, Manickam S, Singh P (2014) Critical review of openstack security: issues and weaknesses. J Comp Sci 10(1):23
Alliance ODC (2013) Open data center alliance master usage model: software-defined networking rev. 2.0
Berde P, Gerola M, Hart J, Higuchi Y, Kobayashi M, Koide T, Lantz B, O’Connor B, Radoslavov P, Snow W (2014) ONOS: towards an open, distributed SDN OS. In: Proceedings of the third workshop on Hot topics in software defined networking, ACM, pp 1–6
CSA (2011) Security guidance for critical areas of focus in cloud computing V3.0
CSA (2016) CLOUD SECURITY ALLIANCE The Treacherous 12 – Cloud Computing Top Threats
Cui B, Xi T (2015) Security analysis of openstack keystone. In: Innovative Mobile and Internet Services in Ubiquitous Computing (IMIS), 2015. In: 9th international conference on, IEEE, pp 283–288
Darabseh A, Al-Ayyoub M, Jararweh Y, Benkhelifa E, Vouk M, Rindos A (2015) SDSecurity: a software defined security experimental framework. In: 2015 IEEE International Conference on Communication Workshop (ICCW), 8–12 June 2015. pp 1871–1876
ETSI G (2014) 003,“Network Functions Virtualisation (NFV); terminology for main concepts in NFV”
Govindarajan K, Meng KC, Ong H A (2013) literature review on software-defined networking (SDN) research topics, challenges and solutions. In: 2013 Fifth International Conference on Advanced Computing (ICoAC), IEEE, pp 293–299
Habiba U, Masood R, Shibli MA, Niazi MA (2014) Cloud identity management security issues & solutions: a taxonomy. Complex Adapt Syst Model 2(1):5
Hoang D (2015) Software defined networking–shaping up for the next disruptive step? Aust J Telecommun Digital Econ 3(4):48–62
Jararweh Y, Al-Ayyoub M, Benkhelifa E, Vouk M, Rindos A (2016) Software defined cloud: survey, system and evaluation. Futur Gener Comput Syst 58:56–74
Jim Metzler AMA (2016) The 2016 guide to SDN and NFV – part 4: Network Functions Virtualization (NFV) a status update
Kecskemeti G, Kertesz A, Nemeth Z (2016) Developing interoperable and federated cloud architecture. IGI Global, Hershey, pp 1–398
Le N, Hoang D (2016) Can maturity models support cyber security? In: The IEEE international workshop on Communication, Computing, and Networking in Cyber Physical Systems (CCN-CPS)
Marinescu DC (2013) Cloud computing: theory and practice. Morgan Kaufmann, Newnes
Mell P, Grance T (2011) The NIST definition of cloud computing National Institute of Standards and Technology, Gaithersburg
Milenkoski A, Jaeger B, Raina K, Harris M, Chaudhry S, Chasiri S, David V, Liu W (2016) Security position paper network function virtualization. Cloud Security Alliance-Virtualization Working Group
Networks C (2014) Catbird® 6.0: private cloud security
Networks v (2015) vArmour distributed security system: protecting assets in the world without perimeters
OpenStack (2015) OpenStack-Networking Guide
Pham M, Hoang DB (2016) SDN applications-The intent-based Northbound Interface realisation for extended applications. In: NetSoft Conference and Workshops (NetSoft), 2016 IEEE, pp 372–377
Ranjbar A, Antikainen M, Aura T (2015) Domain isolation in a multi-tenant software-defined network. In: 2015 IEEE/ACM 8th international conference on Utility and Cloud Computing (UCC), IEEE, pp 16–25
Ristov S, Gusev M, Donevski A (2013) Openstack cloud security vulnerabilities from inside and outside. Cloud Comp :101–107
Sahoo J, Mohapatra S, Lath R (2010) Virtualization: a survey on concepts, taxonomy and associated security issues. In: Computer and Network Technology (ICCNT), 2010 Second international conference on, IEEE, pp 222–226
Schubert L, Jeffery K (2012) Advances in clouds. Report of the cloud computing expert working group, vol 1. European Commission
Scott-Hayward S, Natarajan S, Sezer S (2015) A survey of security in software defined networks. IEEE Commun Surv Tutorials 18(1):623–654
SDxCentral (2017) SDN security challenges in SDN environments. https://www.sdxcentral.com/security/definitions/security-challenges-sdn-software-defined-networks/
Slipetskyy R (2011) Security issues in OpenStack. Master’s thesis, Norwegian University of Science and Technology
Stallings W (2015) Foundations of modern networking: SDN, NFV, QoE, IoT, and cloud. Addison-Wesley Professional, Boston
Superuser O (2016) OpenStack security, piece by piece
Virtualization NF (2014) NFV security problem statement. ETSI NFV-SEC 1
Viswanathan A, Neuman B (2009) A survey of isolation techniques. University of Southern California, Information Sciences Institute, Los Angeles
VMware (2013) VMware vCloud networking and security overview
Xing Y, Zhan Y (2012) Virtualization and cloud computing. In: Future wireless networks and information systems. Springer, Dordrecht, pp 305–312
Young C (2016) Information security science-measuring the vulnerability to data compromises, 1st edn. Syngress Elsevier, Cambridge, MA
Zhou M, Zhang R, Zeng D, Qian W (2010) Services in the cloud computing era: a survey. In: Universal Communication Symposium (IUCS), 2010 4th International, IEEE, pp 40–46
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2017 Springer International Publishing AG
About this chapter
Cite this chapter
Hoang, D.B., Farahmandian, S. (2017). Security of Software-Defined Infrastructures with SDN, NFV, and Cloud Computing Technologies. In: Zhu, S., Scott-Hayward, S., Jacquin, L., Hill, R. (eds) Guide to Security in SDN and NFV. Computer Communications and Networks. Springer, Cham. https://doi.org/10.1007/978-3-319-64653-4_1
Download citation
DOI: https://doi.org/10.1007/978-3-319-64653-4_1
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-64652-7
Online ISBN: 978-3-319-64653-4
eBook Packages: Computer ScienceComputer Science (R0)