10.1007/978-3-319-61176-1_16
https://zenodo.org/records/894412
oai:zenodo.org:894412
Cuppens, Nora
Nora
Cuppens
IMT Atlantique
Zerkane, Salaheddine
Salaheddine
Zerkane
IMT Atlantique, BCOM, Lab-STICC
Li, Yanhuang
Yanhuang
Li
IMT Atlantique
Espes, David
David
Espes
BCOM, Lab-STICC
Le Parc, Phhilippe
Phhilippe
Le Parc
BCOM, Lab-STICC
Cuppens, Frédéric
Frédéric
Cuppens
IMT Atlantique, BCOM
Firewall Policies Provisioning Through SDN in the Cloud
Zenodo
2017
Security policies
Software Defined Networking
Cloud computing
Orchestration
Firewall
OpenFlow
Service providers
ABAC
2017-07-21
https://zenodo.org/communities/supercloud
https://zenodo.org/communities/eu
Creative Commons Attribution Non Commercial 4.0 International
The evolution of the digital world drives cloud computing to be a key infrastructure for data and services. This breakthrough is transforming Software Defined Networking into the cloud infrastructure backbone because of its advantages such as programmability, abstraction and flexibility. As a result, many cloud providers select SDN as a cloud network service and offer it to their customers. However, due to the rising number of network cloud providers and their security offers, network cloud customers strive to find the best provider candidate who satisfies their security requirements. In this context, we propose a negotiation and an enforcement framework for SDN firewall policies provisioning. Our solution enables customers and SDN providers to express their firewall policies and to negotiate them via an orchestrator. Then, it reinforces these security requirements using the holistic view of the SDN controllers and it deploys the generated firewall rules into the network elements. We evaluate the performance of the solution and demonstrate its advantages.
European Commission
10.13039/501100000780
643964
USER-CENTRIC MANAGEMENT OF SECURITY AND DEPENDABILITY IN CLOUDS OF CLOUDS