{"id":"https://openalex.org/W2888977251","doi":"https://doi.org/10.1109/tifs.2018.2868220","title":"A Policy-Based Security Architecture for Software-Defined Networks","display_name":"A Policy-Based Security Architecture for Software-Defined Networks","publication_year":2018,"publication_date":"2018-08-31","ids":{"openalex":"https://openalex.org/W2888977251","doi":"https://doi.org/10.1109/tifs.2018.2868220","mag":"2888977251"},"language":"en","primary_location":{"id":"doi:10.1109/tifs.2018.2868220","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tifs.2018.2868220","pdf_url":null,"source":{"id":"https://openalex.org/S61310614","display_name":"IEEE Transactions on Information Forensics and Security","issn_l":"1556-6013","issn":["1556-6013","1556-6021"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Information Forensics and Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5029458848","display_name":"Vijay Varadharajan","orcid":"https://orcid.org/0000-0002-3621-9114"},"institutions":[{"id":"https://openalex.org/I78757542","display_name":"University of Newcastle Australia","ror":"https://ror.org/00eae9z71","country_code":"AU","type":"education","lineage":["https://openalex.org/I78757542"]}],"countries":["AU"],"is_corresponding":true,"raw_author_name":"Vijay Varadharajan","raw_affiliation_strings":["School of Electrical Engineering and Computing, The University of Newcastle, Callaghan, NSW, Australia"],"affiliations":[{"raw_affiliation_string":"School of Electrical Engineering and Computing, The University of Newcastle, Callaghan, NSW, Australia","institution_ids":["https://openalex.org/I78757542"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5015269457","display_name":"Kallol Krishna Karmakar","orcid":"https://orcid.org/0000-0002-2768-2051"},"institutions":[{"id":"https://openalex.org/I78757542","display_name":"University of Newcastle Australia","ror":"https://ror.org/00eae9z71","country_code":"AU","type":"education","lineage":["https://openalex.org/I78757542"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Kallol Karmakar","raw_affiliation_strings":["School of Electrical Engineering and Computing, The University of Newcastle, Callaghan, NSW, Australia"],"affiliations":[{"raw_affiliation_string":"School of Electrical Engineering and Computing, The University of Newcastle, Callaghan, NSW, Australia","institution_ids":["https://openalex.org/I78757542"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5010613188","display_name":"Udaya Tupakula","orcid":"https://orcid.org/0000-0001-5048-9797"},"institutions":[{"id":"https://openalex.org/I78757542","display_name":"University of Newcastle Australia","ror":"https://ror.org/00eae9z71","country_code":"AU","type":"education","lineage":["https://openalex.org/I78757542"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Uday Tupakula","raw_affiliation_strings":["School of Electrical Engineering and Computing, The University of Newcastle, Callaghan, NSW, Australia"],"affiliations":[{"raw_affiliation_string":"School of Electrical Engineering and Computing, The University of Newcastle, Callaghan, NSW, Australia","institution_ids":["https://openalex.org/I78757542"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5069661409","display_name":"Michael Hitchens","orcid":"https://orcid.org/0000-0001-6320-9184"},"institutions":[{"id":"https://openalex.org/I99043593","display_name":"Macquarie University","ror":"https://ror.org/01sf06y89","country_code":"AU","type":"education","lineage":["https://openalex.org/I99043593"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Michael Hitchens","raw_affiliation_strings":["Department of Computing, Macquarie University, Sydney, NSW, Australia"],"affiliations":[{"raw_affiliation_string":"Department of Computing, Macquarie University, Sydney, NSW, Australia","institution_ids":["https://openalex.org/I99043593"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5029458848"],"corresponding_institution_ids":["https://openalex.org/I78757542"],"apc_list":null,"apc_paid":null,"fwci":9.9648,"has_fulltext":false,"cited_by_count":106,"citation_normalized_percentile":{"value":0.9839093,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":99,"max":100},"biblio":{"volume":"14","issue":"4","first_page":"897","last_page":"912"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10714","display_name":"Software-Defined Networks and 5G","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10714","display_name":"Software-Defined Networks and 5G","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9753000140190125,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11478","display_name":"Caching and Content Delivery","score":0.9689000248908997,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8461822867393494},{"id":"https://openalex.org/keywords/security-policy","display_name":"Security policy","score":0.6803537011146545},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.6103400588035583},{"id":"https://openalex.org/keywords/computer-security-model","display_name":"Computer security model","score":0.5352587699890137},{"id":"https://openalex.org/keywords/network-security-policy","display_name":"Network security policy","score":0.5260027647018433},{"id":"https://openalex.org/keywords/software-defined-networking","display_name":"Software-defined networking","score":0.5259708762168884},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.518225908279419},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.5159214735031128},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.47225871682167053},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.4557260572910309},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.4482359290122986},{"id":"https://openalex.org/keywords/distributed-computing","display_name":"Distributed computing","score":0.3581388592720032},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.2861071228981018},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.08378541469573975}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8461822867393494},{"id":"https://openalex.org/C154908896","wikidata":"https://www.wikidata.org/wiki/Q2167404","display_name":"Security policy","level":2,"score":0.6803537011146545},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.6103400588035583},{"id":"https://openalex.org/C121822524","wikidata":"https://www.wikidata.org/wiki/Q5157582","display_name":"Computer security model","level":2,"score":0.5352587699890137},{"id":"https://openalex.org/C117110713","wikidata":"https://www.wikidata.org/wiki/Q3394676","display_name":"Network security policy","level":4,"score":0.5260027647018433},{"id":"https://openalex.org/C77270119","wikidata":"https://www.wikidata.org/wiki/Q1655198","display_name":"Software-defined networking","level":2,"score":0.5259708762168884},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.518225908279419},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.5159214735031128},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.47225871682167053},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.4557260572910309},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.4482359290122986},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.3581388592720032},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.2861071228981018},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.08378541469573975},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tifs.2018.2868220","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tifs.2018.2868220","pdf_url":null,"source":{"id":"https://openalex.org/S61310614","display_name":"IEEE Transactions on Information Forensics and Security","issn_l":"1556-6013","issn":["1556-6013","1556-6021"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Information Forensics and Security","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.6200000047683716,"id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320335334","display_name":"Defence Science and Technology Group","ror":null}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":37,"referenced_works":["https://openalex.org/W158224344","https://openalex.org/W766097457","https://openalex.org/W1869854851","https://openalex.org/W1949062307","https://openalex.org/W2039427951","https://openalex.org/W2042538159","https://openalex.org/W2064266822","https://openalex.org/W2066303372","https://openalex.org/W2067551786","https://openalex.org/W2099501333","https://openalex.org/W2111942706","https://openalex.org/W2114521981","https://openalex.org/W2116995348","https://openalex.org/W2118404561","https://openalex.org/W2123548135","https://openalex.org/W2133576259","https://openalex.org/W2138581059","https://openalex.org/W2147118406","https://openalex.org/W2155624544","https://openalex.org/W2321886673","https://openalex.org/W2471404023","https://openalex.org/W2491358804","https://openalex.org/W2607489534","https://openalex.org/W2612205004","https://openalex.org/W2625902360","https://openalex.org/W2753652472","https://openalex.org/W2767197769","https://openalex.org/W2807786182","https://openalex.org/W2976487595","https://openalex.org/W3190545940","https://openalex.org/W4253586965","https://openalex.org/W6606536520","https://openalex.org/W6622396664","https://openalex.org/W6639178140","https://openalex.org/W6676707958","https://openalex.org/W6682894363","https://openalex.org/W6752428741"],"related_works":["https://openalex.org/W2188814192","https://openalex.org/W1519114293","https://openalex.org/W2151761340","https://openalex.org/W2153264224","https://openalex.org/W2111277540","https://openalex.org/W2068842798","https://openalex.org/W3094039898","https://openalex.org/W2087536126","https://openalex.org/W2173238669","https://openalex.org/W1829795994"],"abstract_inverted_index":{"As":[0],"networks":[1,15],"expand":[2],"in":[3,70,80,117,130,156,175],"size":[4],"and":[5,11,60,67,104,111,114,128,145,162,171,180,214,231],"complexity,":[6],"they":[7],"pose":[8],"greater":[9],"administrative":[10],"management":[12],"challenges.":[13,26],"Software-defined":[14],"(SDNs)":[16],"offer":[17],"a":[18,32,46,81,94,223],"promising":[19],"approach":[20,48,213],"to":[21,49,74,142,204],"meeting":[22],"some":[23],"of":[24,78,88,96,136,165,192,217,233,235,243],"these":[25],"In":[27],"this":[28,244],"paper,":[29],"we":[30],"propose":[31],"policy-driven":[33],"security":[34,51,72,90,122,147,169,207,211,219,229],"architecture":[35,138,170,194,201],"for":[36,56,152],"securing":[37,57,153],"end-to-end":[38,154],"services":[39,59,115,155],"across":[40],"multiple":[41,184],"SDN":[42,58,118,185],"domains.":[43,132],"We":[44,62,84,158,187],"develop":[45],"language-based":[47],"design":[50,161],"policies":[52,73,91,148],"that":[53,149,226],"are":[54,150,240],"relevant":[55],"communications.":[61],"describe":[63,159],"the":[64,76,86,126,160,163,189,215],"policy":[65],"language":[66],"its":[68,140,173],"use":[69,174],"specifying":[71],"control":[75],"flow":[77],"information":[79],"multi-domain":[82],"SDN.":[83],"demonstrate":[85,172],"specification":[87],"fine-grained":[89],"based":[92],"on":[93],"variety":[95],"attributes,":[97],"such":[98,108],"as":[99,109,119,121,195,197,222],"parameters":[100],"associated":[101,124],"with":[102,125,183],"users":[103],"devices/switches,":[105],"context":[106],"information,":[107,113],"location":[110],"routing":[112],"accessed":[116],"well":[120,196],"attributes":[123],"switches":[127],"controllers":[129],"different":[131],"An":[133],"important":[134,241],"feature":[135],"our":[137,166,193,200],"is":[139,202],"ability":[141],"specify":[143],"path-":[144],"flow-based":[146,228],"significant":[151],"SDNs.":[157],"implementation":[164],"proposed":[167],"policy-based":[168,212],"scenarios":[176],"involving":[177],"both":[178],"intra-":[179],"inter-domain":[181],"communications":[182],"controllers.":[186],"analyze":[188],"performance":[190],"characteristics":[191],"discuss":[198],"how":[199],"able":[203],"counteract":[205],"various":[206],"attacks.":[208],"The":[209],"dynamic":[210],"distribution":[216],"corresponding":[218],"capabilities":[220],"intelligently":[221],"service":[224],"layer":[225],"enables":[227],"enforcement":[230],"protection":[232],"multitude":[234],"network":[236],"devices":[237],"against":[238],"attacks":[239],"contributions":[242],"paper.":[245]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":8},{"year":2024,"cited_by_count":12},{"year":2023,"cited_by_count":14},{"year":2022,"cited_by_count":16},{"year":2021,"cited_by_count":17},{"year":2020,"cited_by_count":23},{"year":2019,"cited_by_count":14}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}