Software-defined networking centralises network control in a programmable controller — if compromised, an attacker controls the entire network. Security testing covers: SDN controller authentication and access control, API security for the northbound interface, communication security between controller and switches (southbound), flow rule injection attacks, and whether the separation between control and data planes provides actual security isolation.
Technical
Software-Defined Networking (SDN) Security: Testing Programmable Network Infrastructure — 日本企業向けガイド
SDN separates the control plane from the data plane. Security implications of programmable network infrastructure. Guidance for JP market.