{"id":"https://openalex.org/W2907966879","doi":"https://doi.org/10.1109/nof.2018.8598136","title":"ACLFLOW: An NFV/SDN Security Framework for Provisioning and Managing Access Control Lists","display_name":"ACLFLOW: An NFV/SDN Security Framework for Provisioning and Managing Access Control Lists","publication_year":2018,"publication_date":"2018-11-01","ids":{"openalex":"https://openalex.org/W2907966879","doi":"https://doi.org/10.1109/nof.2018.8598136","mag":"2907966879"},"language":"en","primary_location":{"id":"doi:10.1109/nof.2018.8598136","is_oa":false,"landing_page_url":"https://doi.org/10.1109/nof.2018.8598136","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2018 9th International Conference on the Network of the Future (NOF)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5073976002","display_name":"Leopoldo A. F. Mauricio","orcid":"https://orcid.org/0000-0001-6529-0537"},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Leopoldo A. F. Mauricio","raw_affiliation_strings":["Globo.com, Brazil"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Globo.com, Brazil","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5046704741","display_name":"Marcelo G. Rubinstein","orcid":"https://orcid.org/0000-0002-2509-4010"},"institutions":[{"id":"https://openalex.org/I40034438","display_name":"Universidade do Estado do Rio de Janeiro","ror":"https://ror.org/0198v2949","country_code":"BR","type":"education","lineage":["https://openalex.org/I40034438"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Marcelo G. Rubinstein","raw_affiliation_strings":["Universidade do Estado do Rio de Janeiro - FEN/DETEL/PEL, Brazil"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Universidade do Estado do Rio de Janeiro - FEN/DETEL/PEL, Brazil","institution_ids":["https://openalex.org/I40034438"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5026700596","display_name":"Otto Carlos M. B. Duarte","orcid":"https://orcid.org/0000-0002-6642-4100"},"institutions":[{"id":"https://openalex.org/I122140584","display_name":"Universidade Federal do Rio de Janeiro","ror":"https://ror.org/03490as77","country_code":"BR","type":"education","lineage":["https://openalex.org/I122140584"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Otto Carlos M. B. Duarte","raw_affiliation_strings":["Grupo de Teleinform\u00e1tica e Automa\u00e7\u00e3o, Universidade Federal do Rio de Janeiro - COPPE/UFRJ, Brazil"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Grupo de Teleinform\u00e1tica e Automa\u00e7\u00e3o, Universidade Federal do Rio de Janeiro - COPPE/UFRJ, Brazil","institution_ids":["https://openalex.org/I122140584"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5073976002"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.5862,"has_fulltext":false,"cited_by_count":6,"citation_normalized_percentile":{"value":0.7347382,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":96},"biblio":{"volume":"15","issue":null,"first_page":"44","last_page":"51"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10714","display_name":"Software-Defined Networks and 5G","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10714","display_name":"Software-Defined Networks and 5G","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12326","display_name":"Network Packet Processing and Optimization","score":0.9943000078201294,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11478","display_name":"Caching and Content Delivery","score":0.9921000003814697,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8457581996917725},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.6570049524307251},{"id":"https://openalex.org/keywords/openflow","display_name":"OpenFlow","score":0.6129806637763977},{"id":"https://openalex.org/keywords/provisioning","display_name":"Provisioning","score":0.5976800918579102},{"id":"https://openalex.org/keywords/software-defined-networking","display_name":"Software-defined networking","score":0.5249167084693909},{"id":"https://openalex.org/keywords/virtual-network","display_name":"Virtual network","score":0.5077155828475952},{"id":"https://openalex.org/keywords/router","display_name":"Router","score":0.49904394149780273},{"id":"https://openalex.org/keywords/throughput","display_name":"Throughput","score":0.4823436439037323},{"id":"https://openalex.org/keywords/virtualization","display_name":"Virtualization","score":0.4678277373313904},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.43231427669525146},{"id":"https://openalex.org/keywords/access-control","display_name":"Access control","score":0.417497843503952},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.38137638568878174},{"id":"https://openalex.org/keywords/distributed-computing","display_name":"Distributed computing","score":0.37878692150115967}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8457581996917725},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.6570049524307251},{"id":"https://openalex.org/C192697461","wikidata":"https://www.wikidata.org/wiki/Q4045918","display_name":"OpenFlow","level":3,"score":0.6129806637763977},{"id":"https://openalex.org/C172191483","wikidata":"https://www.wikidata.org/wiki/Q1071806","display_name":"Provisioning","level":2,"score":0.5976800918579102},{"id":"https://openalex.org/C77270119","wikidata":"https://www.wikidata.org/wiki/Q1655198","display_name":"Software-defined networking","level":2,"score":0.5249167084693909},{"id":"https://openalex.org/C2776874963","wikidata":"https://www.wikidata.org/wiki/Q4112081","display_name":"Virtual network","level":2,"score":0.5077155828475952},{"id":"https://openalex.org/C2775896111","wikidata":"https://www.wikidata.org/wiki/Q642560","display_name":"Router","level":2,"score":0.49904394149780273},{"id":"https://openalex.org/C157764524","wikidata":"https://www.wikidata.org/wiki/Q1383412","display_name":"Throughput","level":3,"score":0.4823436439037323},{"id":"https://openalex.org/C513985346","wikidata":"https://www.wikidata.org/wiki/Q270471","display_name":"Virtualization","level":3,"score":0.4678277373313904},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.43231427669525146},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.417497843503952},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.38137638568878174},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.37878692150115967},{"id":"https://openalex.org/C555944384","wikidata":"https://www.wikidata.org/wiki/Q249","display_name":"Wireless","level":2,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/nof.2018.8598136","is_oa":false,"landing_page_url":"https://doi.org/10.1109/nof.2018.8598136","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2018 9th International Conference on the Network of the Future (NOF)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/9","display_name":"Industry, innovation and infrastructure","score":0.4300000071525574}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":24,"referenced_works":["https://openalex.org/W1435010830","https://openalex.org/W1564003397","https://openalex.org/W1608999459","https://openalex.org/W1769222792","https://openalex.org/W1851843436","https://openalex.org/W2013958607","https://openalex.org/W2046738808","https://openalex.org/W2059670140","https://openalex.org/W2071552523","https://openalex.org/W2078183437","https://openalex.org/W2106863923","https://openalex.org/W2134894205","https://openalex.org/W2137838113","https://openalex.org/W2146657832","https://openalex.org/W2147118406","https://openalex.org/W2260783129","https://openalex.org/W2534167950","https://openalex.org/W2546676990","https://openalex.org/W2548671108","https://openalex.org/W2569031618","https://openalex.org/W3020993522","https://openalex.org/W6628561984","https://openalex.org/W6636558983","https://openalex.org/W6637995443"],"related_works":["https://openalex.org/W4220837700","https://openalex.org/W2012852954","https://openalex.org/W4377008240","https://openalex.org/W2533666503","https://openalex.org/W1675062406","https://openalex.org/W2066879250","https://openalex.org/W2295167007","https://openalex.org/W2558363974","https://openalex.org/W2324336707","https://openalex.org/W4250919833"],"abstract_inverted_index":{"Router":[0],"Access":[1],"Control":[2],"Lists":[3],"(ACLs)":[4],"are":[5,164],"a":[6,17,43,99,129,184],"traditional":[7],"way":[8],"to":[9,90,102,109,158,166],"filter":[10],"traffic":[11,205],"on":[12,76],"cloud":[13],"computing":[14],"selectively.":[15],"However,":[16],"large":[18,73],"number":[19],"of":[20,29,120,200],"rules":[21],"may":[22],"be":[23],"required,":[24],"whereas":[25],"the":[26,92,105,118,133,192,203],"storage":[27,94],"capacity":[28,95],"router":[30],"Ternary":[31],"Content":[32],"Addressable":[33],"Memories":[34],"(TCAMs)":[35],"is":[36,181],"scarce":[37],"and":[38,63,71,113,116,139,146,169,209],"expensive.":[39],"This":[40],"paper":[41],"proposes":[42],"Network":[44],"Functions":[45],"Virtualization":[46],"(NFV)/Software-Defined":[47],"Networking":[48],"(SDN)":[49],"security":[50,83],"framework,":[51],"named":[52],"ACLFLOW.":[53],"ACLFLOW":[54,217],"(i)":[55],"translates":[56],"regular":[57],"ACLs":[58,75],"(source/destination":[59],"IP,":[60],"source/destination":[61],"port,":[62],"protocol)":[64],"into":[65,123,132],"OpenFlow":[66,74,88,151],"filtering":[67],"rules;":[68],"(ii)":[69],"creates":[70],"manages":[72],"distributed":[77],"software":[78],"switches,":[79],"which":[80],"act":[81],"as":[82],"virtual":[84,189],"network":[85],"functions":[86],"(named":[87],"VNF-ACLs),":[89],"address":[91],"TCAM":[93],"problem;":[96],"(iii)":[97],"implements":[98],"proposed":[100,193],"algorithm":[101,194],"dynamically":[103,195],"prioritize":[104],"most":[106],"popular":[107],"rule":[108],"accelerate":[110],"switching":[111],"operations;":[112],"(iv)":[114],"orchestrates":[115],"accelerates":[117],"deployment":[119],"NFV/SDN":[121],"environments":[122],"production":[124],"clouds.":[125],"We":[126],"have":[127],"implemented":[128],"framework":[130],"prototype":[131],"Open":[134],"Platform":[135],"for":[136],"NFV":[137],"(OPNFV)":[138],"evaluated":[140],"its":[141,160,179],"performance":[142,180],"using":[143],"different":[144],"tools":[145],"scenarios.":[147],"Results":[148],"show":[149],"that":[150],"VNF-ACL":[152],"improves":[153,196],"maximum":[154],"throughput":[155],"by":[156,176,207,212],"up":[157,165],"90%,":[159],"HTTP":[161,197],"request":[162,198],"rates":[163],"50%":[167],"better,":[168],"it":[170],"reduces":[171,210],"Round":[172],"Trip":[173],"Time":[174],"(RTT)":[175],"70%":[177],"when":[178,214],"compared":[182,215],"with":[183,202,216],"stateless":[185],"Iptables":[186],"running":[187],"in":[188],"machines.":[190],"Moreover,":[191],"rate":[199],"flows":[201],"highest":[204],"volume":[206],"15%":[208],"RTT":[211],"25%":[213],"without":[218],"prioritization.":[219]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":2}],"updated_date":"2026-04-28T14:05:53.105641","created_date":"2025-10-10T00:00:00"}