Control of Sensitive Traffic in the Cloud based on OpenFlow

Security of sensitive data in the cloud is a critical issue as they can easily be transferred between different locations and then violate some constraints such as country-based regulations. There is notably a specific need to control the path followed by the data when they are transferred in the cloud. This paper is then presenting a new approach using OpenFlow and allowing to enforce in the network a Trusted Path compliant with the policy applicable on a sensitive data to transfer. This technology has been implemented in a SDN controller and experimented on a test-bed of real OpenFlow switches. It is then shown how a sensitive traffic can actually follow a compliant Trusted Path in the network.