ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
An organization is deploying an OpenFlow-based SDN fabric in its private cloud. Security policy requires that all Layer-4 access-control logic be centrally managed so that no forwarding device makes independent routing decisions. According to SDN architecture, which component should host this policy and translate it into flow entries for the switches?
The data plane contained in each forwarding switch
The management interface of the hypervisor hosting the VM workloads
The SDN controller operating in the control plane
The Southbound API running on the application plane
In SDN, the control plane is removed from individual forwarding devices and implemented by a logically centralized controller. The controller maintains global network policy, computes forwarding or access-control rules, and uses a southbound protocol such as OpenFlow to push those rules into the flow tables of data-plane switches. The data plane inside each switch merely enforces the previously downloaded entries and does not make its own routing or filtering decisions. Hypervisor management interfaces and application-plane APIs can request services, but they do not directly calculate or distribute flow entries. Therefore, hosting the access-control policy on the SDN controller in the control plane satisfies the requirement for centralized enforcement.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is SDN architecture?
Open an interactive chat with Bash
What is the role of the SDN controller in SDN networks?
Open an interactive chat with Bash
What is the OpenFlow protocol and how does it work in SDN?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Network and Communication Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .