Software-Defined Networking Based Security Services using Interface to Network Security Functions

Document Type Expired Internet-Draft (individual)
Authors Jaehoon (Paul) Jeong  , Hyoungshick Kim  , Park Jung-Soo  , Tae-Jin Ahn  , 
Last updated 2017-01-06 (latest revision 2016-07-05)
Stream (None)
Intended RFC status (None)
Expired & archived
plain text htmlized pdfized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document describes a framework, objectives, requirements, and use cases for security services based on Software-Defined Networking (SDN) using a common Interface to Network Security Functions (I2NSF). It first proposes the framework of SDN-based security services in the I2NSF framework. It then explains three use cases, such as a centralized firewall system, centralized DDoS-attack mitigation system, and centralized VoIP/VoLTE security system.


Jaehoon (Paul) Jeong (
Hyoungshick Kim (
Park Jung-Soo (
Tae-Jin Ahn ( (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)