Software-defined networking centralises network control in a programmable controller — if compromised, an attacker controls the entire network. Security testing covers: SDN controller authentication and access control, API security for the northbound interface, communication security between controller and switches (southbound), flow rule injection attacks, and whether the separation between control and data planes provides actual security isolation.
Technical
Software-Defined Networking (SDN) Security: Testing Programmable Network Infrastructure para empresas lusófonas
SDN separates the control plane from the data plane. Security implications of programmable network infrastructure. Guidance for PT market.