{"id":"https://openalex.org/W2891859757","doi":"https://doi.org/10.1145/3243734.3243759","title":"Cross-App Poisoning in Software-Defined Networking","display_name":"Cross-App Poisoning in Software-Defined Networking","publication_year":2018,"publication_date":"2018-10-15","ids":{"openalex":"https://openalex.org/W2891859757","doi":"https://doi.org/10.1145/3243734.3243759","mag":"2891859757"},"language":"en","primary_location":{"id":"doi:10.1145/3243734.3243759","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3243734.3243759","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3243734.3243759","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3243734.3243759","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5080207917","display_name":"Benjamin E. Ujcich","orcid":"https://orcid.org/0009-0001-3433-9972"},"institutions":[{"id":"https://openalex.org/I157725225","display_name":"University of Illinois Urbana-Champaign","ror":"https://ror.org/047426m28","country_code":"US","type":"education","lineage":["https://openalex.org/I157725225"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Benjamin E. Ujcich","raw_affiliation_strings":["University of Illinois at Urbana-Champaign, Urbana, IL, USA"],"affiliations":[{"raw_affiliation_string":"University of Illinois at Urbana-Champaign, Urbana, IL, USA","institution_ids":["https://openalex.org/I157725225"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5076129366","display_name":"Samuel Jero","orcid":"https://orcid.org/0000-0002-6014-0107"},"institutions":[{"id":"https://openalex.org/I4210122954","display_name":"MIT Lincoln Laboratory","ror":"https://ror.org/022z6jk58","country_code":"US","type":"facility","lineage":["https://openalex.org/I4210122954","https://openalex.org/I63966007"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Samuel Jero","raw_affiliation_strings":["MIT Lincoln Laboratory, Lexington, MA, USA"],"affiliations":[{"raw_affiliation_string":"MIT Lincoln Laboratory, Lexington, MA, USA","institution_ids":["https://openalex.org/I4210122954"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5041402866","display_name":"Anne Edmundson","orcid":null},"institutions":[{"id":"https://openalex.org/I20089843","display_name":"Princeton University","ror":"https://ror.org/00hx57361","country_code":"US","type":"education","lineage":["https://openalex.org/I20089843"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Anne Edmundson","raw_affiliation_strings":["Princeton University, Princeton, NJ, USA"],"affiliations":[{"raw_affiliation_string":"Princeton University, Princeton, NJ, USA","institution_ids":["https://openalex.org/I20089843"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5037402621","display_name":"Qi Wang","orcid":"https://orcid.org/0000-0001-8326-3727"},"institutions":[{"id":"https://openalex.org/I157725225","display_name":"University of Illinois Urbana-Champaign","ror":"https://ror.org/047426m28","country_code":"US","type":"education","lineage":["https://openalex.org/I157725225"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Qi Wang","raw_affiliation_strings":["University of Illinois at Urbana-Champaign, Urbana, IL, USA"],"affiliations":[{"raw_affiliation_string":"University of Illinois at Urbana-Champaign, Urbana, IL, USA","institution_ids":["https://openalex.org/I157725225"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5071851009","display_name":"Richard Skowyra","orcid":"https://orcid.org/0000-0002-2882-5034"},"institutions":[{"id":"https://openalex.org/I4210122954","display_name":"MIT Lincoln Laboratory","ror":"https://ror.org/022z6jk58","country_code":"US","type":"facility","lineage":["https://openalex.org/I4210122954","https://openalex.org/I63966007"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Richard Skowyra","raw_affiliation_strings":["MIT Lincoln Laboratory, Lexington, MA, USA"],"affiliations":[{"raw_affiliation_string":"MIT Lincoln Laboratory, Lexington, MA, USA","institution_ids":["https://openalex.org/I4210122954"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5021961946","display_name":"James W. Landry","orcid":null},"institutions":[{"id":"https://openalex.org/I4210122954","display_name":"MIT Lincoln Laboratory","ror":"https://ror.org/022z6jk58","country_code":"US","type":"facility","lineage":["https://openalex.org/I4210122954","https://openalex.org/I63966007"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"James Landry","raw_affiliation_strings":["MIT Lincoln Laboratory, Lexington, MA, USA"],"affiliations":[{"raw_affiliation_string":"MIT Lincoln Laboratory, Lexington, MA, USA","institution_ids":["https://openalex.org/I4210122954"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5021649580","display_name":"Adam Bates","orcid":"https://orcid.org/0000-0003-1511-4951"},"institutions":[{"id":"https://openalex.org/I157725225","display_name":"University of Illinois Urbana-Champaign","ror":"https://ror.org/047426m28","country_code":"US","type":"education","lineage":["https://openalex.org/I157725225"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Adam Bates","raw_affiliation_strings":["University of Illinois at Urbana-Champaign, Urbana, IL, USA"],"affiliations":[{"raw_affiliation_string":"University of Illinois at Urbana-Champaign, Urbana, IL, USA","institution_ids":["https://openalex.org/I157725225"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5074285069","display_name":"William H. Sanders","orcid":null},"institutions":[{"id":"https://openalex.org/I157725225","display_name":"University of Illinois Urbana-Champaign","ror":"https://ror.org/047426m28","country_code":"US","type":"education","lineage":["https://openalex.org/I157725225"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"William H. Sanders","raw_affiliation_strings":["University of Illinois at Urbana-Champaign, Urbana, IL, USA"],"affiliations":[{"raw_affiliation_string":"University of Illinois at Urbana-Champaign, Urbana, IL, USA","institution_ids":["https://openalex.org/I157725225"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5034838576","display_name":"Cristina Nita-Rotaru","orcid":"https://orcid.org/0000-0002-9649-6789"},"institutions":[{"id":"https://openalex.org/I12912129","display_name":"Northeastern University","ror":"https://ror.org/04t5xt781","country_code":"US","type":"education","lineage":["https://openalex.org/I12912129"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Cristina Nita-Rotaru","raw_affiliation_strings":["Northeastern University, Boston, MA, USA"],"affiliations":[{"raw_affiliation_string":"Northeastern University, Boston, MA, USA","institution_ids":["https://openalex.org/I12912129"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5033661137","display_name":"Hamed Okhravi","orcid":"https://orcid.org/0000-0003-1450-3744"},"institutions":[{"id":"https://openalex.org/I4210122954","display_name":"MIT Lincoln Laboratory","ror":"https://ror.org/022z6jk58","country_code":"US","type":"facility","lineage":["https://openalex.org/I4210122954","https://openalex.org/I63966007"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Hamed Okhravi","raw_affiliation_strings":["MIT Lincoln Laboratory, Lexington, MA, USA"],"affiliations":[{"raw_affiliation_string":"MIT Lincoln Laboratory, Lexington, MA, USA","institution_ids":["https://openalex.org/I4210122954"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":10,"corresponding_author_ids":["https://openalex.org/A5080207917"],"corresponding_institution_ids":["https://openalex.org/I157725225"],"apc_list":null,"apc_paid":null,"fwci":5.0704,"has_fulltext":true,"cited_by_count":52,"citation_normalized_percentile":{"value":0.95787254,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":97,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"648","last_page":"663"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10714","display_name":"Software-Defined Networks and 5G","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10714","display_name":"Software-Defined Networks and 5G","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9954000115394592,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7647356390953064},{"id":"https://openalex.org/keywords/forwarding-plane","display_name":"Forwarding plane","score":0.7480791807174683},{"id":"https://openalex.org/keywords/routing-control-plane","display_name":"Routing control plane","score":0.6406156420707703},{"id":"https://openalex.org/keywords/software-defined-networking","display_name":"Software-defined networking","score":0.5858196020126343},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5828068852424622},{"id":"https://openalex.org/keywords/popularity","display_name":"Popularity","score":0.5068848729133606},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.4965258240699768},{"id":"https://openalex.org/keywords/access-control","display_name":"Access control","score":0.4843369722366333},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.43039679527282715},{"id":"https://openalex.org/keywords/latency","display_name":"Latency (audio)","score":0.4249453544616699},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.261686772108078},{"id":"https://openalex.org/keywords/telecommunications","display_name":"Telecommunications","score":0.12207269668579102}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7647356390953064},{"id":"https://openalex.org/C10597312","wikidata":"https://www.wikidata.org/wiki/Q5473302","display_name":"Forwarding plane","level":3,"score":0.7480791807174683},{"id":"https://openalex.org/C145595949","wikidata":"https://www.wikidata.org/wiki/Q7371619","display_name":"Routing control plane","level":2,"score":0.6406156420707703},{"id":"https://openalex.org/C77270119","wikidata":"https://www.wikidata.org/wiki/Q1655198","display_name":"Software-defined networking","level":2,"score":0.5858196020126343},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5828068852424622},{"id":"https://openalex.org/C2780586970","wikidata":"https://www.wikidata.org/wiki/Q1357284","display_name":"Popularity","level":2,"score":0.5068848729133606},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.4965258240699768},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.4843369722366333},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.43039679527282715},{"id":"https://openalex.org/C82876162","wikidata":"https://www.wikidata.org/wiki/Q17096504","display_name":"Latency (audio)","level":2,"score":0.4249453544616699},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.261686772108078},{"id":"https://openalex.org/C76155785","wikidata":"https://www.wikidata.org/wiki/Q418","display_name":"Telecommunications","level":1,"score":0.12207269668579102},{"id":"https://openalex.org/C15744967","wikidata":"https://www.wikidata.org/wiki/Q9418","display_name":"Psychology","level":0,"score":0.0},{"id":"https://openalex.org/C77805123","wikidata":"https://www.wikidata.org/wiki/Q161272","display_name":"Social psychology","level":1,"score":0.0},{"id":"https://openalex.org/C158379750","wikidata":"https://www.wikidata.org/wiki/Q214111","display_name":"Network packet","level":2,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3243734.3243759","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3243734.3243759","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3243734.3243759","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3243734.3243759","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3243734.3243759","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3243734.3243759","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.7900000214576721}],"awards":[{"id":"https://openalex.org/G1322334245","display_name":"CRII: SaTC: Transparent Capture and Aggregation of Secure Data Provenance for Smart Devices","funder_award_id":"1657534","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G2365043160","display_name":null,"funder_award_id":"FA8721-05-C-0002","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G2757619403","display_name":null,"funder_award_id":"CNS-1657534","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G6181807122","display_name":null,"funder_award_id":"CNS-1657534,CNS-1750024","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G7268426237","display_name":null,"funder_award_id":"FA8721-05-C-0002,FA8702-15-D-0001","funder_id":"https://openalex.org/F4320306078","funder_display_name":"U.S. Department of Defense"},{"id":"https://openalex.org/G845518922","display_name":"CAREER: Scalable Information Flow Monitoring and Enforcement through Data Provenance Unification","funder_award_id":"1750024","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G848032724","display_name":null,"funder_award_id":"Science","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320306078","display_name":"U.S. Department of Defense","ror":"https://ror.org/0447fe631"},{"id":"https://openalex.org/F4320332222","display_name":"University of Illinois at Urbana-Champaign","ror":"https://ror.org/047426m28"}],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2891859757.pdf","grobid_xml":"https://content.openalex.org/works/W2891859757.grobid-xml"},"referenced_works_count":68,"referenced_works":["https://openalex.org/W74292997","https://openalex.org/W158224344","https://openalex.org/W168132470","https://openalex.org/W1444906800","https://openalex.org/W1486776102","https://openalex.org/W1559528097","https://openalex.org/W1590488181","https://openalex.org/W1644112624","https://openalex.org/W1697123834","https://openalex.org/W1912565424","https://openalex.org/W1963971515","https://openalex.org/W1971290995","https://openalex.org/W1984879109","https://openalex.org/W2009232481","https://openalex.org/W2022758041","https://openalex.org/W2024811322","https://openalex.org/W2028926203","https://openalex.org/W2035142022","https://openalex.org/W2040340473","https://openalex.org/W2047339217","https://openalex.org/W2056073317","https://openalex.org/W2067551786","https://openalex.org/W2069028640","https://openalex.org/W2072269087","https://openalex.org/W2075849836","https://openalex.org/W2081065546","https://openalex.org/W2081198029","https://openalex.org/W2084915558","https://openalex.org/W2099204735","https://openalex.org/W2107571548","https://openalex.org/W2119325664","https://openalex.org/W2122049982","https://openalex.org/W2122109510","https://openalex.org/W2122695394","https://openalex.org/W2124497098","https://openalex.org/W2130210899","https://openalex.org/W2134296086","https://openalex.org/W2136296832","https://openalex.org/W2136439543","https://openalex.org/W2147118406","https://openalex.org/W2154220454","https://openalex.org/W2155624544","https://openalex.org/W2170646878","https://openalex.org/W2237023204","https://openalex.org/W2275015310","https://openalex.org/W2275523190","https://openalex.org/W2312580114","https://openalex.org/W2321886673","https://openalex.org/W2327699954","https://openalex.org/W2397699236","https://openalex.org/W2419665292","https://openalex.org/W2467908049","https://openalex.org/W2491693446","https://openalex.org/W2528154188","https://openalex.org/W2538792613","https://openalex.org/W2538851513","https://openalex.org/W2579106964","https://openalex.org/W2605109919","https://openalex.org/W2612205004","https://openalex.org/W2740981508","https://openalex.org/W2751844787","https://openalex.org/W2752158604","https://openalex.org/W2755427618","https://openalex.org/W2773651084","https://openalex.org/W2890992458","https://openalex.org/W2951116536","https://openalex.org/W4233126987","https://openalex.org/W4233458882"],"related_works":["https://openalex.org/W4214777079","https://openalex.org/W3093659890","https://openalex.org/W4211055425","https://openalex.org/W2756952589","https://openalex.org/W4243609393","https://openalex.org/W4379114325","https://openalex.org/W3042077637","https://openalex.org/W1799150848","https://openalex.org/W2515119600","https://openalex.org/W3033868034"],"abstract_inverted_index":{"Software-defined":[0],"networking":[1],"(SDN)":[2],"continues":[3],"to":[4,67,100,147,158],"grow":[5],"in":[6,40,89],"popularity":[7],"because":[8,125],"of":[9,49,77],"its":[10,109],"programmable":[11],"and":[12,151,170],"extensible":[13],"control":[14,43,56,70,79,97,116,135],"plane":[15,44,57,80,98],"realized":[16],"through":[17],"network":[18,31],"applications":[19],"(apps).":[20],"However,":[21],"apps":[22,34,60],"introduce":[23],"significant":[24],"security":[25],"challenges":[26],"that":[27,83,143,172],"can":[28,61,175],"systemically":[29],"disrupt":[30],"operations,":[32],"since":[33],"must":[35],"access":[36,115],"or":[37],"modify":[38],"data":[39,52,145],"a":[41,75,102,140],"shared":[42,96],"state.":[45],"If":[46],"our":[47],"understanding":[48],"how":[50,113],"such":[51,123],"propagate":[53],"within":[54],"the":[55,69,95,166],"is":[58],"inadequate,":[59],"co-opt":[62],"other":[63],"apps,":[64],"causing":[65],"them":[66],"poison":[68],"plane's":[71],"integrity.":[72],"We":[73,111,137,162],"present":[74,139],"class":[76],"SDN":[78,168],"integrity":[81],"attacks":[82,124],"we":[84],"call":[85],"cross-app":[86],"poisoning":[87],"(CAP),":[88],"which":[90],"an":[91,154],"unprivileged":[92],"app":[93,104],"manipulates":[94],"state":[99],"trick":[101],"privileged":[103],"into":[105],"taking":[106],"actions":[107],"on":[108,165],"behalf.":[110],"demonstrate":[112,171],"role-based":[114],"(RBAC)":[117],"schemes":[118],"are":[119],"insufficient":[120],"for":[121],"preventing":[122],"they":[126],"neither":[127],"track":[128,148],"information":[129,133,149,173],"flow":[130,134,150,174],"nor":[131],"enforce":[132],"(IFC).":[136],"also":[138],"defense,":[141],"ProvSDN,":[142],"uses":[144],"provenance":[146],"serves":[152],"as":[153],"online":[155],"reference":[156],"monitor":[157],"prevent":[159],"CAP":[160],"attacks.":[161],"implement":[163],"ProvSDN":[164],"ONOS":[167],"controller":[169],"be":[176],"tracked":[177],"with":[178],"low-latency":[179],"overheads.":[180]},"counts_by_year":[{"year":2025,"cited_by_count":5},{"year":2024,"cited_by_count":7},{"year":2023,"cited_by_count":5},{"year":2022,"cited_by_count":9},{"year":2021,"cited_by_count":7},{"year":2020,"cited_by_count":9},{"year":2019,"cited_by_count":10}],"updated_date":"2026-03-18T14:38:29.013473","created_date":"2025-10-10T00:00:00"}