Formal modeling and security analysis for openflow-based networks

Yongxin Zhao; Xi Wu; Jing Liu; Yilong Yang

doi:10.1109/ICECCS2018.2018.00032

Formal modeling and security analysis for openflow-based networks

Yongxin Zhao
, Xi Wu^*
, Jing Liu
, Yilong Yang

^*Corresponding author for this work

Software Engineering Institute

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

5 Scopus citations

Abstract

We present a formal OpenFlow-based network programming language (OF) including various flow rules, which can not only describe the behaviors of an individual switch, but also support to model a network of switches connected in the point-to-point topology. Besides, a topology-oriented operational semantics of the proposed language is explored to specify how the packet is processed and delivered in the OpenFlow-based networks. Based on the formal framework, we also propose an approach to detect potential security threats caused by the conflict of dynamic flow rules imposed by dynamic OpenFlow applications.

Original language	English
Title of host publication	Proceedings - 23rd International Conference on Engineering of Complex Computer Systems, ICECCS 2018
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	201-204
Number of pages	4
ISBN (Electronic)	9781538693414
DOIs	https://doi.org/10.1109/ICECCS2018.2018.00032
State	Published - 27 Dec 2018
Event	23rd International Conference on Engineering of Complex Computer Systems, ICECCS 2018 - Melbourne, Australia Duration: 12 Dec 2018 → 14 Dec 2018

Publication series

Name	Proceedings of the IEEE International Conference on Engineering of Complex Computer Systems, ICECCS
Volume	2018-December
ISSN (Print)	2770-8527
ISSN (Electronic)	2770-8535

Conference

Conference	23rd International Conference on Engineering of Complex Computer Systems, ICECCS 2018
Country/Territory	Australia
City	Melbourne
Period	12/12/18 → 14/12/18

Keywords

OpenFlow-based networks
Operational semantics
Security analysis

Access to Document

10.1109/ICECCS2018.2018.00032

Cite this

Zhao, Y., Wu, X., Liu, J., & Yang, Y. (2018). Formal modeling and security analysis for openflow-based networks. In Proceedings - 23rd International Conference on Engineering of Complex Computer Systems, ICECCS 2018 (pp. 201-204). Article 8595077 (Proceedings of the IEEE International Conference on Engineering of Complex Computer Systems, ICECCS; Vol. 2018-December). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ICECCS2018.2018.00032

Zhao, Yongxin ; Wu, Xi ; Liu, Jing et al. / Formal modeling and security analysis for openflow-based networks. Proceedings - 23rd International Conference on Engineering of Complex Computer Systems, ICECCS 2018. Institute of Electrical and Electronics Engineers Inc., 2018. pp. 201-204 (Proceedings of the IEEE International Conference on Engineering of Complex Computer Systems, ICECCS).

@inproceedings{f01c1ff102ba40a8a07c0d5742ec0050,

title = "Formal modeling and security analysis for openflow-based networks",

abstract = "We present a formal OpenFlow-based network programming language (OF) including various flow rules, which can not only describe the behaviors of an individual switch, but also support to model a network of switches connected in the point-to-point topology. Besides, a topology-oriented operational semantics of the proposed language is explored to specify how the packet is processed and delivered in the OpenFlow-based networks. Based on the formal framework, we also propose an approach to detect potential security threats caused by the conflict of dynamic flow rules imposed by dynamic OpenFlow applications.",

keywords = "OpenFlow-based networks, Operational semantics, Security analysis",

author = "Yongxin Zhao and Xi Wu and Jing Liu and Yilong Yang",

note = "Publisher Copyright: {\textcopyright} 2018 IEEE.; 23rd International Conference on Engineering of Complex Computer Systems, ICECCS 2018 ; Conference date: 12-12-2018 Through 14-12-2018",

year = "2018",

month = dec,

day = "27",

doi = "10.1109/ICECCS2018.2018.00032",

language = "英语",

series = "Proceedings of the IEEE International Conference on Engineering of Complex Computer Systems, ICECCS",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "201--204",

booktitle = "Proceedings - 23rd International Conference on Engineering of Complex Computer Systems, ICECCS 2018",

address = "美国",

}

Zhao, Y, Wu, X, Liu, J & Yang, Y 2018, Formal modeling and security analysis for openflow-based networks. in Proceedings - 23rd International Conference on Engineering of Complex Computer Systems, ICECCS 2018., 8595077, Proceedings of the IEEE International Conference on Engineering of Complex Computer Systems, ICECCS, vol. 2018-December, Institute of Electrical and Electronics Engineers Inc., pp. 201-204, 23rd International Conference on Engineering of Complex Computer Systems, ICECCS 2018, Melbourne, Australia, 12/12/18. https://doi.org/10.1109/ICECCS2018.2018.00032

Formal modeling and security analysis for openflow-based networks. / Zhao, Yongxin; Wu, Xi; Liu, Jing et al.
Proceedings - 23rd International Conference on Engineering of Complex Computer Systems, ICECCS 2018. Institute of Electrical and Electronics Engineers Inc., 2018. p. 201-204 8595077 (Proceedings of the IEEE International Conference on Engineering of Complex Computer Systems, ICECCS; Vol. 2018-December).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Formal modeling and security analysis for openflow-based networks

AU - Zhao, Yongxin

AU - Wu, Xi

AU - Liu, Jing

AU - Yang, Yilong

PY - 2018/12/27

Y1 - 2018/12/27

N2 - We present a formal OpenFlow-based network programming language (OF) including various flow rules, which can not only describe the behaviors of an individual switch, but also support to model a network of switches connected in the point-to-point topology. Besides, a topology-oriented operational semantics of the proposed language is explored to specify how the packet is processed and delivered in the OpenFlow-based networks. Based on the formal framework, we also propose an approach to detect potential security threats caused by the conflict of dynamic flow rules imposed by dynamic OpenFlow applications.

AB - We present a formal OpenFlow-based network programming language (OF) including various flow rules, which can not only describe the behaviors of an individual switch, but also support to model a network of switches connected in the point-to-point topology. Besides, a topology-oriented operational semantics of the proposed language is explored to specify how the packet is processed and delivered in the OpenFlow-based networks. Based on the formal framework, we also propose an approach to detect potential security threats caused by the conflict of dynamic flow rules imposed by dynamic OpenFlow applications.

KW - OpenFlow-based networks

KW - Operational semantics

KW - Security analysis

UR - https://www.scopus.com/pages/publications/85061352783

U2 - 10.1109/ICECCS2018.2018.00032

DO - 10.1109/ICECCS2018.2018.00032

M3 - 会议稿件

AN - SCOPUS:85061352783

T3 - Proceedings of the IEEE International Conference on Engineering of Complex Computer Systems, ICECCS

SP - 201

EP - 204

BT - Proceedings - 23rd International Conference on Engineering of Complex Computer Systems, ICECCS 2018

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 23rd International Conference on Engineering of Complex Computer Systems, ICECCS 2018

Y2 - 12 December 2018 through 14 December 2018

ER -

Zhao Y, Wu X, Liu J, Yang Y. Formal modeling and security analysis for openflow-based networks. In Proceedings - 23rd International Conference on Engineering of Complex Computer Systems, ICECCS 2018. Institute of Electrical and Electronics Engineers Inc. 2018. p. 201-204. 8595077. (Proceedings of the IEEE International Conference on Engineering of Complex Computer Systems, ICECCS). doi: 10.1109/ICECCS2018.2018.00032

Formal modeling and security analysis for openflow-based networks

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this