Open Access Te Herenga Waka-Victoria University of Wellington
Browse
thesis_access.pdf (2.28 MB)

Applying Formal Modelling to the Specification and Testing of SDN Network Functionality

Download (2.28 MB)
thesis
posted on 2021-11-22, 01:52 authored by Matthew Stevens

Software Defined Networks offers a new paradigm to manage networks, one that favors centralised control over the distributed control used in legacy networks. This brings network operators potential efficiencies in capital investment, operating costs and wider choice in network appliance providers. We explore in this research whether these efficiencies apply to all network functionality by applying formal modelling to create a mathematically rigourous model of a service, a firewall, and using that model to derive tests that are ultimately applied to two SDN firewalls and a legacy stateful firewall. In the process we discover the only publicly available examples of SDN firewalls are not equivalent to legacy stateful firewalls and in fact create a security flaw that may be exploited by an attacker.

History

Copyright Date

2016-01-01

Date of Award

2016-01-01

Publisher

Te Herenga Waka—Victoria University of Wellington

Rights License

Author Retains Copyright

Degree Discipline

Electronic and Computer System Engineering

Degree Grantor

Te Herenga Waka—Victoria University of Wellington

Degree Level

Masters

Degree Name

Master of Engineering

Victoria University of Wellington Unit

Engineering at Victoria

ANZSRC Type Of Activity code

1 PURE BASIC RESEARCH

Victoria University of Wellington Item Type

Awarded Research Masters Thesis

Language

en_NZ

Victoria University of Wellington School

School of Engineering and Computer Science

Advisors

Ng, Bryan; Streader, David; Welch, Ian