Hardening an SDN System
- Use TLS 1.3 (or UDP/DTLS) to authenticate and encrypt
traffic between network device agent and controller,authenticate controller and network devices/SDN agentusing certificates- High-Availability (HA) controller architecture
- Prevent unauthorized access to SDN control network
- Use Out-of-Band (OOB) network for control traffic, OOB
and secure protocols for controller management andnorthbound communications