Securesdp: a novel software-defined perimeter implementation for enhanced network security and scalability

Securesdp: a novel software-defined perimeter implementation for enhanced network security and scalability

연구 분야: Analysis

학회: International Journal of Information Security

Software-defined perimeters (SDP) revolutionize network security by offering dynamic and adaptive access controls, focusing on user and device authentication to substantially reduce the attack surface. Despite their potential, traditional SDP models grapple with challenges in scalability and component-level security, limiting their effectiveness in complex digital environments. To overcome these limitations, this article introduces SecureSDP, a sophisticated evolution of the SDP framework designed to enhance scalability and bolster security for each network component. SecureSDP stands out for its seamless integration into varied organizational structures, delivering a robust and comprehensive security solution that strengthens the network’s defenses across all layers. The key advancement of SecureSDP is evidenced by rigorous experimental evaluations, which demonstrate its superior performance in improving network security and scalability. Specifically, SecureSDP achieved substantial increases in the hardening scores across various tools: 65% in Lynis, 78% in Chef Inspec, and 30% in OpenSCAP for the SDP controller. These enhancements underscore SecureSDP’s significant contributions to the field, marking a pivotal step forward in the development of more secure, scalable network infrastructures.