Abstract
Despite the wide of range of research and technologies that deal with the problem of routing in computer networks, there remains a gap between the level of network hardware administration and the level of business requirements and constraints. Not much has been accomplished in literature in order to have a direct enforcement of such requirements on the network. This paper presents a new solution in specifying and directly enforcing security policies to control the routing configuration in a software-defined network by using Row-Level Security checks which enable fine-grained security policies on individual rows in database tables. We show, as a first step, how a specific class of such policies, namely multilevel security policies, can be enforced on a database-defined network, which presents an abstraction of a network’s configuration as a set of database tables. We show that such policies can be used to control the flow of data in the network either in an upward or downward manner.
Original language | English |
---|---|
Title of host publication | Proceedings of the 2019 International Conference on Networked Systems (NetSys) |
Subtitle of host publication | SDNFlex 2019 |
Publisher | Institute of Electrical and Electronics Engineers Inc. |
Number of pages | 6 |
ISBN (Electronic) | 978-1-7281-0568-0 |
ISBN (Print) | 978-1-7281-0569-7 |
DOIs | |
Publication status | Published - 3 Oct 2019 |
Event | 2019 International Conference on Networked Systems (NetSys): SDNFlex 2019 - München, Germany Duration: 18 Mar 2019 → 21 Mar 2019 http://www.netsys2019.org/ |
Conference
Conference | 2019 International Conference on Networked Systems (NetSys) |
---|---|
Country/Territory | Germany |
City | München |
Period | 18/03/19 → 21/03/19 |
Internet address |
Keywords
- Information Flow Control
- Multilevel Security
- Database-Defined Networking
- Software-Defined Networking
- Row-Level Security
- Security Policies