Network situational awareness has long been associated with the task of aggregating system logs to determine activity and events ongoing in the network. This current method of obtaining situational awareness however does not clearly address the mission of a facility or organization, the key customers at stake, and the real-time statuses of the critical infrastructures. Software-defined networking provides the capability of allowing the collection of system information of deployed network elements and enabling a global view of the network topology, with near-real-time knowledge of network activities, allowing for key points of the network to be identified and secured appropriately.
KEYWORDS: Software Defined Networking, Situational Awareness, Network Security, Cyber Security, Operational Technology
Revised: January 29, 2020 |
Published: December 2, 2019
Citation
Chang L.H., T.E. Bryan, A.D. McKinnon, and M.D. Hadley. 2019.Enabling Situational Awareness in Operational Technology Environments through Software Defined Networking.Journal of Information Warfare 18, no. 4 (Special Edition):156-166.PNNL-SA-145267.