Software defined wide area network (SD-WAN) is an emerging telecommunication service that combines SDN, virtualisation and VPN technologies. Though SD-WAN offers clear benefits, new security risks are introduced as well. Software defined wide area network (SD-WAN) is an emerging telecommunication service that combines SDN, virtualisation and VPN technologies. Though SD-WAN offers clear benefits, new security risks are introduced as well. The goal of this thesis is to research and design a security architecture for the SD-WAN service. The basis is formed by a risk assessment on an SD-WAN reference architecture. Security controls are collected, structured and selected to mitigate these risks to an acceptable level. A range of security control functions to identify, prevent/protect, detect, respond and recover from incidents have been considered. Moreover, security controls that apply to stakeholder, organisation/people, process, and technical (both digital and physical) domains have been examined.The security architecture is constructed by applying the relevant security controls to the SD-WAN reference architecture. An advantage of the chosen method is that different security architecture views can be created, depending on the need of the user.

 

Keywords: SD-WAN, SDN, NFV, VPN, security architecture

 

READ PDF>

 

 

 

 

  • A methodology for quantifying the level of cybersecurity...
    Master CS/Robert de Vries
    >
  • A methodology for qu...
    Master CS/Robert de Vries
    >
  • A methodology for quantifying the level of cybersecurity...
    Master CS/Robert de Vries
    >
  • A security architecture for software defined wide area n...
    Master CS/Mark Dirksen
    >
  • A security architect...
    Master CS/Mark Dirksen
    >
  • A security architecture for software defined wide area n...
    Master CS/Mark Dirksen
    >
  • Are the Dutch government controls for the protection of...
    Master CS/Erik van Garderen
    >
  • Are the Dutch govern...
    Master CS/Erik van Garderen
    >
  • Are the Dutch government controls for the protection of...
    Master CS/Erik van Garderen
    >
  • Can a Robot Do My Job? A Study on the Potential of Artif...
    Master CS/Esther van Luit
    >
  • Can a Robot Do My Jo...
    Master CS/Esther van Luit
    >
  • Can a Robot Do My Job? A Study on the Potential of Artif...
    Master CS/Esther van Luit
    >
  • Exploring the Dutch Digital Infrastructure. Data Issues,...
    Master CS/Alex Claver
    >
  • Exploring the Dutch...
    Master CS/Alex Claver
    >
  • Exploring the Dutch Digital Infrastructure. Data Issues,...
    Master CS/Alex Claver
    >
  • Improving cyber safety awareness education at Dutch elem...
    Master CS/Arjan Spiering
    >
  • Improving cyber safe...
    Master CS/Arjan Spiering
    >
  • Improving cyber safety awareness education at Dutch elem...
    Master CS/Arjan Spiering
    >
  • Policy instruments and the adoption of DNSSEC; A case st...
    Master CS/Rene Bakker
    >
  • Policy instruments a...
    Master CS/Rene Bakker
    >
  • Policy instruments and the adoption of DNSSEC; A case st...
    Master CS/Rene Bakker
    >
  • Processing Electromagnetic Parameters from a Secret Data...
    Master CS/Susan Varenbrink
    >
  • Processing Electroma...
    Master CS/Susan Varenbrink
    >
  • Processing Electromagnetic Parameters from a Secret Data...
    Master CS/Susan Varenbrink
    >
  • Reports, Rewards, and Recriminations. A critical look at...
    Master CS/Kees Wassenaar
    >
  • Reports, Rewards, an...
    Master CS/Kees Wassenaar
    >
  • Reports, Rewards, and Recriminations. A critical look at...
    Master CS/Kees Wassenaar
    >
  • Risk assessment for I2P with an enhanced outproxy design
    Master CS/Dolf Smits
    >
  • Risk assessment for...
    Master CS/Dolf Smits
    >
  • Risk assessment for I2P with an enhanced outproxy design
    Master CS/Dolf Smits
    >
  • The Internet of Things: a privacy label for IoT products...
    Master CS/Rob van Diermen
    >
  • The Internet of Thin...
    Master CS/Rob van Diermen
    >
  • The Internet of Things: a privacy label for IoT products...
    Master CS/Rob van Diermen
    >
  • The Unified Kill Chain
    Master CS/Paul Pols
    >
  • The Unified Kill Cha...
    Master CS/Paul Pols
    >
  • The Unified Kill Chain
    Master CS/Paul Pols
    >

This website uses cookies to ensure you get the best experience on our website. By continuing to browse the site, you are agreeing to our use of cookies.. More info

 

I AGREE