Modelling and verification of security rules in an OpenFlow environment with Coloured Petri Nets

The discussion of alternatives to the Internet architecture has been the subject of research for several years, resulting in a number of solutions and mechanisms that can help even the current approach. Within this context, the paradigm of Software Defined Networking (SDN) is becoming popular due to...

Full description

Saved in:
Bibliographic Details
Main Authors: Torrez Rojas, Marco Antonio, Takeo Ueda, Eduardo, Melo de Brito Carvalho, Tereza Cristina
Format: Conference Proceeding
Language:English
Subjects:
Analytical models
Coloured Petri Nets
Computational modeling
Data models
Internet
OpenFlow
Petri nets
SDN
Security
Software
Validate security rules
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:The discussion of alternatives to the Internet architecture has been the subject of research for several years, resulting in a number of solutions and mechanisms that can help even the current approach. Within this context, the paradigm of Software Defined Networking (SDN) is becoming popular due to recent initiatives based on OpenFlow. This article presents an analysis of security policy rules applied in an environment based on OpenFlow. The analysis of the security policy rules is realized based on data obtained from a simulation of a scenario, modeled using Colored Petri Nets (CPN), and validated by the state space generated from the outputs of this model. The collected results are for a specific scenario. However, the approach is useful to analyze several types of systems. Thus, this research demonstrates that is feasible to employ CPN to model and validate security rules in an OpenFlow-based SDN.
ISSN:2166-0727
DOI:10.1109/CISTI.2014.6876890