This project explores developing a software defined network security system for cloud data centers that is scalable, flexible, resilient and cost-effective. A Python script was written to encrypt data at its source using AES encryption for point-to-point connections. However, it does not cover multi-point connections or ensure integrity and confidentiality of stored data. The project facilitates flexible and scalable security service provisioning without modifying physical network devices. It also illustrates how software defined networking, virtualization and APIs relate to cloud data security. An implemented testbed integrates a cloud database with source data encryption using a Python script.

1. Abstract
This project explores the development and implementation of a software defined network security system
which is scalable, flexible, resilient, and cost-effective for cloud data centre security service provisioning. A
programmable language, using python (an object oriented programming language) on a software defined
network link for the purpose of providing security to cloud data centre is provided.
A programmable Python security script was written to encrypt the data at the source. In order to provide data
security, using the source and destination socket communication links, implementation across the source and
destination is given. The project focuses on authentication using an AES algorithm on a point to point
connection. However, it does not cover multi-point connections, integrity, and confidentiality of the stored
data in the cloud datacentre. The project contributes to the emerging cloud computing and virtualisation
technology needs. It first decouples security service provisioning from network routing, thus facilitating
operation and management services and later combines hardware and software security devices in a
complementary way, thus achieving excellent flexibility, scalability and cost efficiency.
Some of the major technologies which made the project a success is the advert of virtualisation, virtual
networking, programming APIs, secure socket communication in programming and scripting. These are best
described by the term Infrastructure as a Service (IaaS), Platform as a service (PaaS) and Software as a
Service (SaaS). The project design does not require any modifications to physical switches and routers.
The project illustrates how SDN, Virtualisation and API integration are related to cloud data security. Finally,
it developed an implemented testbed software defined network system. Integrating a cloud database while
providing cloud database security using the python programing script from the source before is uploaded to
the cloud. The thesis provides a detailed understanding of cloud data security using a hybrid security network,
a combination of both hardware, software, and programmable defined security.
Within the project area, several interesting issues for future research are found. Studying the design and
implementation of these networks is important. It minimises the risk of data security breaches across the
three main acceptable standards of information security model designs (authentication/availability, Integrity,
and Confidentiality). The measurement results reinforce the belief that HSNIC is highly applicable to data
centre networks.