{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,5,11]],"date-time":"2025-05-11T17:01:28Z","timestamp":1746982888006,"version":"3.37.3"},"reference-count":24,"publisher":"Wiley","license":[{"start":{"date-parts":[[2018,11,15]],"date-time":"2018-11-15T00:00:00Z","timestamp":1542240000000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"National Key R&D Program of China","award":["2017YFB1400700","61402029","U17733115","61379002","61370190","4162020"],"award-info":[{"award-number":["2017YFB1400700","61402029","U17733115","61379002","61370190","4162020"]}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["2017YFB1400700","61402029","U17733115","61379002","61370190","4162020"],"award-info":[{"award-number":["2017YFB1400700","61402029","U17733115","61379002","61370190","4162020"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["2017YFB1400700","61402029","U17733115","61379002","61370190","4162020"],"award-info":[{"award-number":["2017YFB1400700","61402029","U17733115","61379002","61370190","4162020"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["2017YFB1400700","61402029","U17733115","61379002","61370190","4162020"],"award-info":[{"award-number":["2017YFB1400700","61402029","U17733115","61379002","61370190","4162020"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["2017YFB1400700","61402029","U17733115","61379002","61370190","4162020"],"award-info":[{"award-number":["2017YFB1400700","61402029","U17733115","61379002","61370190","4162020"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100005089","name":"Beijing Municipal Natural Science Foundation","doi-asserted-by":"publisher","award":["2017YFB1400700","61402029","U17733115","61379002","61370190","4162020"],"award-info":[{"award-number":["2017YFB1400700","61402029","U17733115","61379002","61370190","4162020"]}],"id":[{"id":"10.13039\/501100005089","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Security and Communication Networks"],"published-print":{"date-parts":[[2018,11,15]]},"abstract":"<jats:p>Software-defined networking (SDN) is a representative next generation network architecture, which allows network administrators to programmatically initialize, control, change, and manage network behavior dynamically via open interfaces. SDN is widely adopted in systems like 5G mobile networks and cyber-physical systems (CPS). However, SDN brings new security problems, e.g., controller hijacking, black-hole, and unauthorized data modification. Traditional firewall or IDS based solutions cannot fix these challenges. It is also undesirable to develop security mechanisms in such an ad hoc manner, which may cause security conflict during the deployment procedure. In this paper, we propose OSCO (Open Security-enhanced Compatible OpenFlow) platform, a unified, lightweight platform to enhance the security property and facilitate the security configuration and evaluation. The proposed platform supports highly configurable cryptographic algorithm modules, security protocols, flexible hardware extensions, and virtualized SDN networks. We prototyped our platform based on the Raspberry Pi Single Board Computer (SBC) hardware and presented a case study for switch port security enhancement. We systematically evaluated critical security modules, which include 4 hash functions, 8 stream\/block ciphers, 4 public-key cryptosystems, and key exchange protocols. The experiment results show that our platform performs those security modules and SDN network functions with relatively low computational (extra 2.5% system overhead when performing AES-256 and SHA-256 functions) and networking performance overheads (73.7 Mb\/s TCP and 81.2Mb\/s UDP transmission speeds in 100Mb\/s network settings).<\/jats:p>","DOI":"10.1155\/2018\/8392080","type":"journal-article","created":{"date-parts":[[2018,11,15]],"date-time":"2018-11-15T19:00:42Z","timestamp":1542308442000},"page":"1-20","source":"Crossref","is-referenced-by-count":7,"title":["A Compatible OpenFlow Platform for Enabling Security Enhancement in SDN"],"prefix":"10.1155","volume":"2018","author":[{"given":"Haosu","family":"Cheng","sequence":"first","affiliation":[{"name":"School of Cyber Science and Technology, Beihang University, Beijing, China"},{"name":"School of Electronic and Information Engineering, Beihang University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jianwei","family":"Liu","sequence":"additional","affiliation":[{"name":"School of Cyber Science and Technology, Beihang University, Beijing, China"},{"name":"School of Electronic and Information Engineering, Beihang University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-0404-6466","authenticated-orcid":true,"given":"Jian","family":"Mao","sequence":"additional","affiliation":[{"name":"School of Cyber Science and Technology, Beihang University, Beijing, China"},{"name":"School of Electronic and Information Engineering, Beihang University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mengmeng","family":"Wang","sequence":"additional","affiliation":[{"name":"School of Cyber Science and Technology, Beihang University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jie","family":"Chen","sequence":"additional","affiliation":[{"name":"School of Cyber Science and Technology, Beihang University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jingdong","family":"Bian","sequence":"additional","affiliation":[{"name":"School of Cyber Science and Technology, Beihang University, Beijing, China"},{"name":"School of Electronic and Information Engineering, Beihang University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"311","reference":[{"key":"2","doi-asserted-by":"publisher","DOI":"10.1109\/MCOM.2018.1700876"},{"key":"3","doi-asserted-by":"publisher","DOI":"10.1145\/1355734.1355746"},{"key":"4","doi-asserted-by":"publisher","DOI":"10.1109\/jproc.2014.2371999"},{"key":"5","doi-asserted-by":"publisher","DOI":"10.1109\/COMST.2015.2474118"},{"key":"6","doi-asserted-by":"publisher","DOI":"10.14569\/IJACSA.2016.070817"},{"journal-title":"Proceedings of Network &amp; Distributed Security Symposium","year":"2013","key":"8"},{"key":"12","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-12331-3"},{"year":"2014","key":"16"},{"key":"25","doi-asserted-by":"publisher","DOI":"10.17487\/rfc1321"},{"year":"1999","key":"29"},{"first-page":"191","volume-title":"Description of a new variable-length key, 64-bit block cipher (Blowfish)","year":"1993","key":"30"},{"year":"1991","key":"31"},{"issue":"5","key":"32","doi-asserted-by":"crossref","first-page":"550","DOI":"10.1109\/5.4441","volume":"76","year":"1988","journal-title":"Proceedings of the IEEE"},{"key":"33","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-04722-4"},{"issue":"4","key":"44","doi-asserted-by":"crossref","first-page":"467","DOI":"10.1145\/2377677.2377766","volume":"42","year":"2012","journal-title":"ACM SIGCOMM Computer Communication Review"},{"volume-title":"The omnet++ discrete event simulation system","year":"2001","key":"57"},{"key":"58","doi-asserted-by":"publisher","DOI":"10.1109\/MCOM.2013.6588659"},{"key":"34","doi-asserted-by":"publisher","DOI":"10.1109\/TIT.1976.1055638"},{"volume":"25","year":"2000","key":"35"},{"key":"36","doi-asserted-by":"publisher","DOI":"10.1007\/s102070100002"},{"key":"37","doi-asserted-by":"publisher","DOI":"10.1007\/3-540-39799-X_31"},{"key":"42","doi-asserted-by":"publisher","DOI":"10.1109\/MS.2017.4541054"},{"journal-title":"Power System Technology","year":"2018","key":"43"},{"key":"66","doi-asserted-by":"publisher","DOI":"10.1109\/MNET.2015.7293304"}],"container-title":["Security and Communication Networks"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/downloads.hindawi.com\/journals\/scn\/2018\/8392080.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/downloads.hindawi.com\/journals\/scn\/2018\/8392080.xml","content-type":"application\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/downloads.hindawi.com\/journals\/scn\/2018\/8392080.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2018,11,15]],"date-time":"2018-11-15T19:00:45Z","timestamp":1542308445000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.hindawi.com\/journals\/scn\/2018\/8392080\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018,11,15]]},"references-count":24,"alternative-id":["8392080","8392080"],"URL":"https:\/\/doi.org\/10.1155\/2018\/8392080","relation":{},"ISSN":["1939-0114","1939-0122"],"issn-type":[{"type":"print","value":"1939-0114"},{"type":"electronic","value":"1939-0122"}],"subject":[],"published":{"date-parts":[[2018,11,15]]}}}