Security aspects of service chaining in software-defined networking environments

Security aspects of service chaining in software-defined networking environments

Ohjelmistojohtoinen tietoverkkojen hallinta on uusi lähestymistapa tietoverkkojen hallintaan ja se tuo mukanaan uusia mahdollisuuksia. Eräitä näistä mahdollisuuksista ovat monipuolisemmat ja dynaamisemmat mahdollisuudet verkkopalvelujen ketjuttamisen. Käyttäen palvejulen ketjuttamista, tietoverkon h...

Full description

Bibliographic Details
Main Author: Räty, Atte
Other Authors: Informaatioteknologian tiedekunta, Faculty of Information Technology, Informaatioteknologia, Information Technology, Jyväskylän yliopisto, University of Jyväskylä
Format: Master's thesis
Language:eng
Published: 2018
Subjects:
SDN
software-defined networking
NFV
network function virtualisation
networking
Tietotekniikka
Mathematical Information Technology
602
tietoturva
turvallisuus
tietokoneverkot
palveluketjut
verkkoympäristö
tietoverkot
tietoliikenneverkot
data security
safety and security
computer networks
service chains
network environment
information networks
telecommunications networks
Online Access: https://jyx.jyu.fi/handle/123456789/60580
_version_ 1826225727537676288
author Räty, Atte
author2 Informaatioteknologian tiedekunta Faculty of Information Technology Informaatioteknologia Information Technology Jyväskylän yliopisto University of Jyväskylä
author_facet Räty, Atte Informaatioteknologian tiedekunta Faculty of Information Technology Informaatioteknologia Information Technology Jyväskylän yliopisto University of Jyväskylä Räty, Atte Informaatioteknologian tiedekunta Faculty of Information Technology Informaatioteknologia Information Technology Jyväskylän yliopisto University of Jyväskylä
author_sort Räty, Atte
datasource_str_mv jyx
description Ohjelmistojohtoinen tietoverkkojen hallinta on uusi lähestymistapa tietoverkkojen hallintaan ja se tuo mukanaan uusia mahdollisuuksia. Eräitä näistä mahdollisuuksista ovat monipuolisemmat ja dynaamisemmat mahdollisuudet verkkopalvelujen ketjuttamisen. Käyttäen palvejulen ketjuttamista, tietoverkon hallinnoijat voivat kontrolloida reittiä, jota verkkoliikenteen on käytettävä päästäkseen haluamaansa kohteeseen. Ja koska tietoverkon hallinoija voi kontrolloida tätä reittiä, hän voi myös kontrolloida mitä verkkoliikenteelle tehdään tällä reitillä. Tämä ei kuitenkaan tuo mukanaan pelkkiä hyötyjä, vaan tämä voi avata myös uusia väyliä ja hyökkäysmuotoja vihamielisille tahoille. Tulen tässä tutkimuksessa käsittelemaan ohjelmistojohtoisen tietoverkkojen hallinnan mahdollistamaan palvelujen ketjuttamiseen liittyviä tietoturvakysymyksiä verkkopalveluja ylläpitävän toimijan näkökulmasta. Software-defined networking is a new computer networking paradigm that brings many new possibilies with it. One of these possibilities is the increased dynamicity of chaining together network services (also known as network service chaining). This way network operators can shape the path the network traffic has to take to reach its destination. This also means that the network operators can easily manipulate the traffic using various services. While this will certainly be useful for various network operators and service providers it may also open up new vectors of attack for malicious actors or change how old attack vectors are utilised. In this paper I will explore the concept of SDN-based service chaining and the security concerns that it may cause from the perspective of a web hosting provider.
first_indexed 2019-09-20T09:13:32Z
format Pro gradu
free_online_boolean 1
fullrecord [{"key": "dc.contributor.advisor", "value": "H\u00e4m\u00e4l\u00e4inen, Timo", "language": "", "element": "contributor", "qualifier": "advisor", "schema": "dc"}, {"key": "dc.contributor.author", "value": "R\u00e4ty, Atte", "language": "", "element": "contributor", "qualifier": "author", "schema": "dc"}, {"key": "dc.date.accessioned", "value": "2018-12-13T07:37:16Z", "language": null, "element": "date", "qualifier": "accessioned", "schema": "dc"}, {"key": "dc.date.available", "value": "2018-12-13T07:37:16Z", "language": null, "element": "date", "qualifier": "available", "schema": "dc"}, {"key": "dc.date.issued", "value": "2018", "language": "", "element": "date", "qualifier": "issued", "schema": "dc"}, {"key": "dc.identifier.uri", "value": "https://jyx.jyu.fi/handle/123456789/60580", "language": null, "element": "identifier", "qualifier": "uri", "schema": "dc"}, {"key": "dc.description.abstract", "value": "Ohjelmistojohtoinen tietoverkkojen hallinta on uusi l\u00e4hestymistapa tietoverkkojen hallintaan ja se tuo mukanaan uusia mahdollisuuksia. Er\u00e4it\u00e4 n\u00e4ist\u00e4 mahdollisuuksista ovat monipuolisemmat ja dynaamisemmat mahdollisuudet verkkopalvelujen ketjuttamisen. K\u00e4ytt\u00e4en palvejulen ketjuttamista, tietoverkon hallinnoijat voivat kontrolloida reitti\u00e4, jota verkkoliikenteen on k\u00e4ytett\u00e4v\u00e4 p\u00e4\u00e4st\u00e4kseen haluamaansa kohteeseen. Ja koska tietoverkon hallinoija voi kontrolloida t\u00e4t\u00e4 reitti\u00e4, h\u00e4n voi my\u00f6s kontrolloida mit\u00e4 verkkoliikenteelle tehd\u00e4\u00e4n t\u00e4ll\u00e4 reitill\u00e4. T\u00e4m\u00e4 ei kuitenkaan tuo mukanaan pelkki\u00e4 hy\u00f6tyj\u00e4, vaan t\u00e4m\u00e4 voi avata my\u00f6s uusia v\u00e4yli\u00e4 ja hy\u00f6kk\u00e4ysmuotoja vihamielisille tahoille. Tulen t\u00e4ss\u00e4 tutkimuksessa k\u00e4sittelemaan ohjelmistojohtoisen tietoverkkojen hallinnan mahdollistamaan palvelujen ketjuttamiseen liittyvi\u00e4 tietoturvakysymyksi\u00e4 verkkopalveluja yll\u00e4pit\u00e4v\u00e4n toimijan n\u00e4k\u00f6kulmasta.", "language": "fi", "element": "description", "qualifier": "abstract", "schema": "dc"}, {"key": "dc.description.abstract", "value": "Software-defined networking is a new computer networking paradigm that brings many new possibilies with it. One of these possibilities is the increased dynamicity of chaining together network services (also known as network service chaining). This way network operators can shape the path the network traffic has to take to reach its destination. This also means that the network operators can easily manipulate the traffic using various services. While this will certainly be useful for various network operators and service providers it may also open up new vectors of attack for malicious actors or change how old attack vectors are utilised. In this paper I will explore the concept of SDN-based service chaining and the security concerns that it may cause from the perspective of a web hosting provider.", "language": "en", "element": "description", "qualifier": "abstract", "schema": "dc"}, {"key": "dc.description.provenance", "value": "Submitted by Paivi Vuorio (paelvuor@jyu.fi) on 2018-12-13T07:37:16Z\nNo. of bitstreams: 0", "language": "en", "element": "description", "qualifier": "provenance", "schema": "dc"}, {"key": "dc.description.provenance", "value": "Made available in DSpace on 2018-12-13T07:37:16Z (GMT). No. of bitstreams: 0\n Previous issue date: 2018", "language": "en", "element": "description", "qualifier": "provenance", "schema": "dc"}, {"key": "dc.format.extent", "value": "38", "language": "", "element": "format", "qualifier": "extent", "schema": "dc"}, {"key": "dc.format.mimetype", "value": "application/pdf", "language": null, "element": "format", "qualifier": "mimetype", "schema": "dc"}, {"key": "dc.language.iso", "value": "eng", "language": null, "element": "language", "qualifier": "iso", "schema": "dc"}, {"key": "dc.rights", "value": "In Copyright", "language": "en", "element": "rights", "qualifier": null, "schema": "dc"}, {"key": "dc.subject.other", "value": "SDN", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "software-defined networking", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "NFV", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "network function virtualisation", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "networking", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.title", "value": "Security aspects of service chaining in software-defined networking environments", "language": "", "element": "title", "qualifier": null, "schema": "dc"}, {"key": "dc.type", "value": "master thesis", "language": null, "element": "type", "qualifier": null, "schema": "dc"}, {"key": "dc.identifier.urn", "value": "URN:NBN:fi:jyu-201812135093", "language": "", "element": "identifier", "qualifier": "urn", "schema": "dc"}, {"key": "dc.type.ontasot", "value": "Pro gradu -tutkielma", "language": "fi", "element": "type", "qualifier": "ontasot", "schema": "dc"}, {"key": "dc.type.ontasot", "value": "Master\u2019s thesis", "language": "en", "element": "type", "qualifier": "ontasot", "schema": "dc"}, {"key": "dc.contributor.faculty", "value": "Informaatioteknologian tiedekunta", "language": "fi", "element": "contributor", "qualifier": "faculty", "schema": "dc"}, {"key": "dc.contributor.faculty", "value": "Faculty of Information Technology", "language": "en", "element": "contributor", "qualifier": "faculty", "schema": "dc"}, {"key": "dc.contributor.department", "value": "Informaatioteknologia", "language": "fi", "element": "contributor", "qualifier": "department", "schema": "dc"}, {"key": "dc.contributor.department", "value": "Information Technology", "language": "en", "element": "contributor", "qualifier": "department", "schema": "dc"}, {"key": "dc.contributor.organization", "value": "Jyv\u00e4skyl\u00e4n yliopisto", "language": "fi", "element": "contributor", "qualifier": "organization", "schema": "dc"}, {"key": "dc.contributor.organization", "value": "University of Jyv\u00e4skyl\u00e4", "language": "en", "element": "contributor", "qualifier": "organization", "schema": "dc"}, {"key": "dc.subject.discipline", "value": "Tietotekniikka", "language": "fi", "element": "subject", "qualifier": "discipline", "schema": "dc"}, {"key": "dc.subject.discipline", "value": "Mathematical Information Technology", "language": "en", "element": "subject", "qualifier": "discipline", "schema": "dc"}, {"key": "yvv.contractresearch.funding", "value": "0", "language": "", "element": "contractresearch", "qualifier": "funding", "schema": "yvv"}, {"key": "dc.type.coar", "value": "http://purl.org/coar/resource_type/c_bdcc", "language": null, "element": "type", "qualifier": "coar", "schema": "dc"}, {"key": "dc.rights.accesslevel", "value": "openAccess", "language": null, "element": "rights", "qualifier": "accesslevel", "schema": "dc"}, {"key": "dc.type.publication", "value": "masterThesis", "language": null, "element": "type", "qualifier": "publication", "schema": "dc"}, {"key": "dc.subject.oppiainekoodi", "value": "602", "language": "", "element": "subject", "qualifier": "oppiainekoodi", "schema": "dc"}, {"key": "dc.subject.yso", "value": "tietoturva", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "turvallisuus", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "tietokoneverkot", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "palveluketjut", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "verkkoymp\u00e4rist\u00f6", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "tietoverkot", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "tietoliikenneverkot", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "data security", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "safety and security", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "computer networks", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "service chains", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "network environment", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "information networks", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "telecommunications networks", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.format.content", "value": "fulltext", "language": null, "element": "format", "qualifier": "content", "schema": "dc"}, {"key": "dc.rights.url", "value": "https://rightsstatements.org/page/InC/1.0/", "language": null, "element": "rights", "qualifier": "url", "schema": "dc"}, {"key": "dc.type.okm", "value": "G2", "language": null, "element": "type", "qualifier": "okm", "schema": "dc"}]
id jyx.123456789_60580
language eng
last_indexed 2025-02-18T10:54:56Z
main_date 2018-01-01T00:00:00Z
main_date_str 2018
online_boolean 1
online_urls_str_mv {"url":"https:\/\/jyx.jyu.fi\/bitstreams\/997c0c12-29c6-4400-94b6-e35e00f382f6\/download","text":"URN:NBN:fi:jyu-201812135093.pdf","source":"jyx","mediaType":"application\/pdf"}
publishDate 2018
record_format qdc
source_str_mv jyx
spellingShingle Räty, Atte Security aspects of service chaining in software-defined networking environments SDN software-defined networking NFV network function virtualisation networking Tietotekniikka Mathematical Information Technology 602 tietoturva turvallisuus tietokoneverkot palveluketjut verkkoympäristö tietoverkot tietoliikenneverkot data security safety and security computer networks service chains network environment information networks telecommunications networks
title Security aspects of service chaining in software-defined networking environments
title_full Security aspects of service chaining in software-defined networking environments
title_fullStr Security aspects of service chaining in software-defined networking environments Security aspects of service chaining in software-defined networking environments
title_full_unstemmed Security aspects of service chaining in software-defined networking environments Security aspects of service chaining in software-defined networking environments
title_short Security aspects of service chaining in software-defined networking environments
title_sort security aspects of service chaining in software defined networking environments
title_txtP Security aspects of service chaining in software-defined networking environments
topic SDN software-defined networking NFV network function virtualisation networking Tietotekniikka Mathematical Information Technology 602 tietoturva turvallisuus tietokoneverkot palveluketjut verkkoympäristö tietoverkot tietoliikenneverkot data security safety and security computer networks service chains network environment information networks telecommunications networks
topic_facet 602 Mathematical Information Technology NFV SDN Tietotekniikka computer networks data security information networks network environment network function virtualisation networking palveluketjut safety and security service chains software-defined networking telecommunications networks tietokoneverkot tietoliikenneverkot tietoturva tietoverkot turvallisuus verkkoympäristö
url https://jyx.jyu.fi/handle/123456789/60580 http://www.urn.fi/URN:NBN:fi:jyu-201812135093
work_keys_str_mv AT rätyatte securityaspectsofservicechaininginsoftwaredefinednetworkingenvironments

Similar Items