Topic: Software Defined Networking: Security Issues and Challenges Ahead

Software-defined networking (SDN) is quickly approaching nearly two decades since its inception, at least as a named concept. While the term was most closely associated with the OpenFlow protocol, it is actually a broad concept and has been the source of a foundational transformation in how networks are built and managed. Behind it are three core concepts: 1) Centralized control and automation through APIs; 2) Programmable data planes - both hardware-based and software-based; and 3) Virtualization (covering both isolation and abstractions).

Each of these has led to a substantial impact in the field of networking. Modern data centers are fully software defined as a key technology that has enabled each of the cloud providers to scale and provide the services they have. Wide area networks have been transformed with SD-WAN technology, which is now the standard way to build a network for enterprises. And cellular infrastructure has fully adopted software-defined principles to enable rapid innovation and capabilities in 5G infrastructure.    

In this Special Issue, we focus on the specific impact regarding security, encompassing both the challenges and opportunities. With the advent of new technologies, we also encounter new security concerns. This is evident in the case of SDN, where vulnerabilities in protocols and control software have emerged. However, it's important to note that new technologies also bring about great opportunities. For instance, we can now reduce human errors through infrastructure as code and achieve better scalability with distributed firewalls. Furthermore, we are witnessing the integration of policy-driven approaches and security features directly into applications, as seen in the development of service meshes.

We are seeking innovative research and operational experience papers that cover either the new opportunities or challenges in security, with a focus on several technologies:

● Software-based programmability - e.g., DPDK, eBPF, Linux networking;

● Hardware-based programmability - P4, SmartNICs;

● Virtualization - e.g., NFV;

● Cloud Networking - e.g., abstractions by cloud providers or cloud models;

● Formal verification and programming languages for networks;

● Service Meshes - e.g., Linkerd, Istio;

● Gitops and Infrastructure as code - e.g., Terraform, Pulumi;

● Domains such as 5G, data centers, SD-WAN, edge computing;

● Network observability enabled by SDN.

If you have expertise in any of these areas, we would love to hear about your research and operational experiences. We encourage you to submit papers that explore the latest advancements, discuss security implications, and propose innovative solutions within these domains.

Software-defined networking (SDN), programmability, virtualization, security issues

30 Jun 2024