Please use this identifier to cite or link to this item:
Title: Analysis of policy-based security management system in software-defined networks
Contributor(s): Sood, Keshav (author); Karmakar, Kallol Krishna (author); Varadharajan, Vijay (author); Tupakula, Uday  (author)orcid ; Yu, Shui (author)
Publication Date: 2019-04
Early Online Version: 2019-02-13
DOI: 10.1109/LCOMM.2019.2898864
Handle Link:

In software-defined networks, policy-based security management or architecture (PbSA) is an ideal way to dynamically control the network. We observe that on the one hand, this enables security capabilities intelligently and enhance fine-grained control over end user behavior. But, on the other hand, dynamic variations in network, rapid increases in security attacks, geographical distribution of nodes, complex heterogeneous networks, and so on have serious effects on the performance of PbSAs. These affect the flow specific quality of service requirements with further degradation of the performance of the security context. Hence, in this letter, PbSA's performance is evaluated. The key factors including a number of rules, rule-table size, position of rules, flow arrival rate, and CPU utilization are examined, and found to have considerable impact on the performance of PbSAs.

Publication Type: Journal Article
Source of Publication: IEEE Communications Letters, 23(4), p. 612-615
Publisher: Institute of Electrical and Electronics Engineers
Place of Publication: United States of America
ISSN: 1558-2558
Fields of Research (FoR) 2020: 460407 System and network security
Socio-Economic Objective (SEO) 2020: 220405 Cybersecurity
Peer Reviewed: Yes
HERDC Category Description: C1 Refereed Article in a Scholarly Journal
Publisher/associated links:
WorldCat record:
Appears in Collections:Journal Article
School of Science and Technology

Show full item record


checked on May 25, 2024

Page view(s)

checked on May 5, 2024
Google Media

Google ScholarTM



Items in Research UNE are protected by copyright, with all rights reserved, unless otherwise indicated.