Your search keyword '"Software-defined network"' showing total 72 results

1. Flow Table Overflow Attacks in a Software-Defined Network (SDN): A Systematic Review.

Author

Isaiah, Aladesote Olomi, Abdullah, Azizol, Samian, Normalia, and Hanapi, Zurina Mohd.

Subjects

SOFTWARE-defined networking, EVIDENCE gaps, TELECOMMUNICATION systems, EVICTION, COMPUTER software

Abstract

Software-defined networking (SDN) is a modern paradigm leveraging software programmability to enhance communication networks, garnering significant attention and undergoing substantial development due to its diverse applications. One key challenge in SDN lies in managing increasing traffic while avoiding flow table overflow, particularly due to the limited capacity of Ternary Content Addressable Memory (TCAM) in OpenFlow switches. This paper presents a Systematic Literature Review (SLR) that analyzes various approaches to defending against flow table overflow in SDN. Employing a structured approach, we sift through a substantial corpus of research, distilling it into 44 noteworthy articles published from 2015 to the present. We provide an overview of strategies to mitigate flow table overflow attacks, including eviction strategies, dynamic timeout mechanisms, flow rerouting, and aggregated flow entries. Additionally, we analyze mitigation approaches based on deployment strategies, testbed environments, and traffic generation methods. In conclusion, we identify research gaps and challenges, laying the groundwork for future investigations in this domain. [ABSTRACT FROM AUTHOR]

Published

2024

2. A Model for Network Virtualization with OpenFlow Protocol in Software-Defined Network

Author

Adeniji, Oluwashola David, Ayomıde, Madamidola O., Ajagbe, Sunday Adeola, Xhafa, Fatos, Series Editor, Rajakumar, G., editor, Du, Ke-Lin, editor, Vuppalapati, Chandrasekar, editor, and Beligiannis, Grigorios N., editor

Published

2023

3. Stealthy Verification Mechanism to Defend SDN Against Topology Poisoning

Author

Zamin Khan, Bakht, Ghani, Anwar, Khan, Imran, Ali Khan, Muazzam, Bilal, Muhammad, Fortino, Giancarlo, Series Editor, Liotta, Antonio, Series Editor, Aujla, Gagangeet Singh, editor, Garg, Sahil, editor, Kaur, Kuljeet, editor, and Sikdar, Biplab, editor

Published

2022

4. Implementation of Protection Protocols for Security Threats in SDN

Author

Dhanoa, Amanpreet Singh, Fortino, Giancarlo, Series Editor, Liotta, Antonio, Series Editor, Aujla, Gagangeet Singh, editor, Garg, Sahil, editor, Kaur, Kuljeet, editor, and Sikdar, Biplab, editor

Published

2022

5. Prospective on Technical Considerations for Edge–Cloud Cooperation Using Software-Defined Networking

Author

Singh, Amritpal, Bali, Rasmeet Singh, Aujla, Gagangeet Singh, Fortino, Giancarlo, Series Editor, Liotta, Antonio, Series Editor, Aujla, Gagangeet Singh, editor, Garg, Sahil, editor, Kaur, Kuljeet, editor, and Sikdar, Biplab, editor

Published

2022

6. Analysis of Load Balancing Techniques in Software-Defined Networking

Author

Singh, Gurpinder, Singh, Amritpal, Bajaj, Rohit, Fortino, Giancarlo, Series Editor, Liotta, Antonio, Series Editor, Aujla, Gagangeet Singh, editor, Garg, Sahil, editor, Kaur, Kuljeet, editor, and Sikdar, Biplab, editor

Published

2022

7. Performance Appraisal of 6LoWPAN and OpenFlow in SDN Enabled Edge-Based IoT Network

Author

Das, Rohit Kumar, Jha, Monica, Harizan, Subash, Kacprzyk, Janusz, Series Editor, Pal, Nikhil R., Advisory Editor, Bello Perez, Rafael, Advisory Editor, Corchado, Emilio S., Advisory Editor, Hagras, Hani, Advisory Editor, Kóczy, László T., Advisory Editor, Kreinovich, Vladik, Advisory Editor, Lin, Chin-Teng, Advisory Editor, Lu, Jie, Advisory Editor, Melin, Patricia, Advisory Editor, Nedjah, Nadia, Advisory Editor, Nguyen, Ngoc Thanh, Advisory Editor, Wang, Jun, Advisory Editor, Gandhi, Tapan Kumar, editor, Konar, Debanjan, editor, Sen, Biswaraj, editor, and Sharma, Kalpana, editor

Published

2022

8. Intelligent Node Placement for Improving Traffic Engineering in Hybrid SDN

Author

Hussain, Mir Wajahat, Sinha Roy, Diptendu, Angrisani, Leopoldo, Series Editor, Arteaga, Marco, Series Editor, Panigrahi, Bijaya Ketan, Series Editor, Chakraborty, Samarjit, Series Editor, Chen, Jiming, Series Editor, Chen, Shanben, Series Editor, Chen, Tan Kay, Series Editor, Dillmann, Rüdiger, Series Editor, Duan, Haibin, Series Editor, Ferrari, Gianluigi, Series Editor, Ferre, Manuel, Series Editor, Hirche, Sandra, Series Editor, Jabbari, Faryar, Series Editor, Jia, Limin, Series Editor, Kacprzyk, Janusz, Series Editor, Khamis, Alaa, Series Editor, Kroeger, Torsten, Series Editor, Li, Yong, Series Editor, Liang, Qilian, Series Editor, Martín, Ferran, Series Editor, Ming, Tan Cher, Series Editor, Minker, Wolfgang, Series Editor, Misra, Pradeep, Series Editor, Möller, Sebastian, Series Editor, Mukhopadhyay, Subhas, Series Editor, Ning, Cun-Zheng, Series Editor, Nishida, Toyoaki, Series Editor, Pascucci, Federica, Series Editor, Qin, Yong, Series Editor, Seng, Gan Woon, Series Editor, Speidel, Joachim, Series Editor, Veiga, Germano, Series Editor, Wu, Haitao, Series Editor, Zhang, Junjie James, Series Editor, Dhar, Sourav, editor, Mukhopadhyay, Subhas Chandra, editor, Sur, Samarendra Nath, editor, and Liu, Chuan-Ming, editor

Published

2022

9. Data Center Traffic Scheduling Strategy for Minimization Congestion and Quality of Service Guaranteeing.

Author

Chunzhi Wang, Weidong Cao, Yalin Hu, and Jinhang Liu

Subjects

QUALITY of service, SOFTWARE-defined networking, SCHEDULING, SEARCH algorithms, SERVER farms (Computer network management), TIME management

Abstract

According to Cisco’s Internet Report 2020 white paper, there will be 29.3 billion connected devices worldwide by 2023, up from 18.4 billion in 2018. 5G connections will generate nearly three times more traffic than 4G connections. While bringing a boom to the network, it also presents unprecedented challenges in terms of flow forwarding decisions. The path assignment mechanism used in traditional traffic scheduling methods tends to cause local network congestion caused by the concentration of elephant flows, resulting in unbalanced network load and degraded quality of service. Using the centralized control of software-defined networks, this study proposes a data center traffic scheduling strategy for minimization congestion and quality of service guaranteeing (MCQG). The ideal transmission path is selected for data flows while considering the network congestion rate and quality of service. Different traffic scheduling strategies are used according to the characteristics of different service types in data centers. Reroute scheduling for elephant flows that tend to cause local congestion. The path evaluation function is formed by the maximum link utilization on the path, the number of elephant flows and the time delay, and the fast merit-seeking capability of the sparrow search algorithm is used to find the path with the lowest actual link overhead as the rerouting path for the elephant flows. It is used to reduce the possibility of local network congestion occurrence. Equal cost multi-path (ECMP) protocols with faster response time are used to schedule mouse flows with shorter duration. Used to guarantee the quality of service of the network. To achieve isolated transmission of various types of data streams. The experimental results show that the proposed strategy has higher throughput, better network load balancing, and better robustness compared to ECMP under different traffic models. In addition, because it can fully utilize the resources in the network, MCQG also outperforms another traffic scheduling strategy that does rerouting for elephant flows (namely Hedera). Compared with ECMP and Hedera, MCQG improves average throughput by 11.73% and 4.29%, and normalized total throughput by 6.74% and 2.64%, respectively; MCQG improves link utilization by 23.25% and 15.07%; in addition, the average round-trip delay and packet loss rate fluctuate significantly less than the two compared strategies. [ABSTRACT FROM AUTHOR]

Published

2023

10. Supervised Machine Learning-Based DDoS Defense System for Software-Defined Network

Author

Siddiqui, Gufran, Shukla, Sandeep K., Angrisani, Leopoldo, Series Editor, Arteaga, Marco, Series Editor, Panigrahi, Bijaya Ketan, Series Editor, Chakraborty, Samarjit, Series Editor, Chen, Jiming, Series Editor, Chen, Shanben, Series Editor, Chen, Tan Kay, Series Editor, Dillmann, Rüdiger, Series Editor, Duan, Haibin, Series Editor, Ferrari, Gianluigi, Series Editor, Ferre, Manuel, Series Editor, Hirche, Sandra, Series Editor, Jabbari, Faryar, Series Editor, Jia, Limin, Series Editor, Kacprzyk, Janusz, Series Editor, Khamis, Alaa, Series Editor, Kroeger, Torsten, Series Editor, Li, Yong, Series Editor, Liang, Qilian, Series Editor, Martín, Ferran, Series Editor, Ming, Tan Cher, Series Editor, Minker, Wolfgang, Series Editor, Misra, Pradeep, Series Editor, Möller, Sebastian, Series Editor, Mukhopadhyay, Subhas, Series Editor, Ning, Cun-Zheng, Series Editor, Nishida, Toyoaki, Series Editor, Pascucci, Federica, Series Editor, Qin, Yong, Series Editor, Seng, Gan Woon, Series Editor, Speidel, Joachim, Series Editor, Veiga, Germano, Series Editor, Wu, Haitao, Series Editor, Zamboni, Walter, Series Editor, Zhang, Junjie James, Series Editor, Bajpai, Manish Kumar, editor, Kumar Singh, Koushlendra, editor, and Giakos, George, editor

Published

2021

11. A Proposed SDN-Based Cloud Setup in the Virtualized Environment to Enhance Security

Author

Anitha, H. M., Jayarekha, P., Howlett, Robert J., Series Editor, Jain, Lakhmi C., Series Editor, Senjyu, Tomonobu, editor, Mahalle, Parikshit N., editor, Perumal, Thinagaran, editor, and Joshi, Amit, editor

Published

2021

12. Survey of Mininet Challenges, Opportunities, and Application in Software-Defined Network (SDN)

Author

Dholakiya, Dhruvkumar, Kshirsagar, Tanmay, Nayak, Amit, Howlett, Robert J., Series Editor, Jain, Lakhmi C., Series Editor, Senjyu, Tomonobu, editor, Mahalle, Parikshit N., editor, Perumal, Thinagaran, editor, and Joshi, Amit, editor

Published

2021

13. Enabling Indirect Link Discovery Between SDN Switches

Author

Hussain, Mir Wajahat, Sinha Roy, Diptendu, Kacprzyk, Janusz, Series Editor, Gomide, Fernando, Advisory Editor, Kaynak, Okyay, Advisory Editor, Liu, Derong, Advisory Editor, Pedrycz, Witold, Advisory Editor, Polycarpou, Marios M., Advisory Editor, Rudas, Imre J., Advisory Editor, Wang, Jun, Advisory Editor, Maji, Arnab Kumar, editor, Saha, Goutam, editor, Das, Sufal, editor, Basu, Subhadip, editor, and Tavares, João Manuel R. S., editor

Published

2021

14. Optimization of Network Functions Using Static and Heuristic Approach in Software-Defined Network

Author

Lonare, Mahesh B., Shyamala Devi, M., Kacprzyk, Janusz, Series Editor, Gomide, Fernando, Advisory Editor, Kaynak, Okyay, Advisory Editor, Liu, Derong, Advisory Editor, Pedrycz, Witold, Advisory Editor, Polycarpou, Marios M., Advisory Editor, Rudas, Imre J., Advisory Editor, Wang, Jun, Advisory Editor, Patil, Varsha H., editor, Dey, Nilanjan, editor, N. Mahalle, Parikshit, editor, Shafi Pathan, Mohd, editor, and Kimbahune, Vinod. V., editor

Published

2021

15. Performance Analysis of Impact of Network Topologies on Different Controllers in SDN

Author

Kumar, Dharmender, Sood, Manu, Kacprzyk, Janusz, Series Editor, Pal, Nikhil R., Advisory Editor, Bello Perez, Rafael, Advisory Editor, Corchado, Emilio S., Advisory Editor, Hagras, Hani, Advisory Editor, Kóczy, László T., Advisory Editor, Kreinovich, Vladik, Advisory Editor, Lin, Chin-Teng, Advisory Editor, Lu, Jie, Advisory Editor, Melin, Patricia, Advisory Editor, Nedjah, Nadia, Advisory Editor, Nguyen, Ngoc Thanh, Advisory Editor, Wang, Jun, Advisory Editor, Gupta, Deepak, editor, Khanna, Ashish, editor, Bhattacharyya, Siddhartha, editor, Hassanien, Aboul Ella, editor, Anand, Sameer, editor, and Jaiswal, Ajay, editor

Published

2021

16. SD-6LN: Improved Existing IoT Framework by Incorporating SDN Approach

Author

Das, Rohit Kumar, Maji, Arnab Kumar, Saha, Goutam, Kacprzyk, Janusz, Series Editor, Pal, Nikhil R., Advisory Editor, Bello Perez, Rafael, Advisory Editor, Corchado, Emilio S., Advisory Editor, Hagras, Hani, Advisory Editor, Kóczy, László T., Advisory Editor, Kreinovich, Vladik, Advisory Editor, Lin, Chin-Teng, Advisory Editor, Lu, Jie, Advisory Editor, Melin, Patricia, Advisory Editor, Nedjah, Nadia, Advisory Editor, Nguyen, Ngoc Thanh, Advisory Editor, Wang, Jun, Advisory Editor, Gupta, Deepak, editor, Khanna, Ashish, editor, Bhattacharyya, Siddhartha, editor, Hassanien, Aboul Ella, editor, Anand, Sameer, editor, and Jaiswal, Ajay, editor

Published

2021

17. Effective Flow Table Space Management Using Policy-Based Routing Approach in Hybrid SDN Network

Author

Manish Paliwal and Kapil Kumar Nagwanshi

Subjects

Control plane, legacy forwarding devices, openflow, software-defined network, traffic engineering, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Software-defined networking makes forwarding devices easier to manage and provides centralized control. Because of the centralization, a network administrator can programme the devices cheaply. Network administrators make attempts to convert their entire network into SDN-compatible switches. A good balance of SDN and legacy switching functions can lead to a successful network scenario in network architecture. In this study, a hybrid network scenario is provided in which the external boundary forwarding devices of the service provider network are replaced with SDN devices. Still, the other internal forwarding devices continue to operate traditionally. The benefits of both SDN and legacy network design are combined, allowing the network administrator to reap the benefits of both. The network architecture employs a policy-based routing algorithm that takes advantage of free IP addresses from the free IP pool. The technique enables efficient use of available flow table space, which is critical in SDN architecture due to the small flow table size. The algorithm’s efficiency is assessed using performance metrics such as network path stretch, throughput, latency delay, and so on, compared to traditional SDN controllers such as OpenDayLight, NOX, and POX. According to the experimental results, the suggested approach outperforms specific similar state-of-the-art techniques in the hybrid SDN domain.

Published

2022

18. Survey of Software-Defined Network Security Issues

Author

Guo, Chao, Xie, Dingbang, Han, Yanyan, Guo, Juan, Wei, Zhanzhen, Filipe, Joaquim, Editorial Board Member, Ghosh, Ashish, Editorial Board Member, Prates, Raquel Oliveira, Editorial Board Member, Zhou, Lizhu, Editorial Board Member, Sun, Xingming, editor, Wang, Jinwei, editor, and Bertino, Elisa, editor

Published

2020

19. Analysis of Impact of Network Topologies on Network Performance in SDN

Author

Kumar, Dharmender, Sood, Manu, Kacprzyk, Janusz, Series Editor, Pal, Nikhil R., Advisory Editor, Bello Perez, Rafael, Advisory Editor, Corchado, Emilio S., Advisory Editor, Hagras, Hani, Advisory Editor, Kóczy, László T., Advisory Editor, Kreinovich, Vladik, Advisory Editor, Lin, Chin-Teng, Advisory Editor, Lu, Jie, Advisory Editor, Melin, Patricia, Advisory Editor, Nedjah, Nadia, Advisory Editor, Nguyen, Ngoc Thanh, Advisory Editor, Wang, Jun, Advisory Editor, Khanna, Ashish, editor, Gupta, Deepak, editor, Bhattacharyya, Siddhartha, editor, Snasel, Vaclav, editor, Platos, Jan, editor, and Hassanien, Aboul Ella, editor

Published

2020

20. A QoS-Guaranteed and Congestion-Controlled SDN Routing Strategy for Smart Grid.

Author

Su, Yueyuan, Jiang, Ping, Chen, Huan, and Deng, Xiaoheng

Subjects

SMART power grids, TELECOMMUNICATION systems, INFORMATION superhighway, COMMUNICATION infrastructure, ELECTRIC power distribution grids, ROUTING algorithms

Abstract

The smart grid (SG) is an integration of a traditional power grid with advanced information and communication infrastructure for a large number of electrical applications. Despite all these advantages that the SG will bring, certain issues arise when designing a high-quality SG communication network. One of the critical challenges is that the existing routing strategies in smart power grids are incapable of guaranteeing differentiated QoS requirements considering the network dynamics. To address this limitation, we propose an SDN routing algorithm called the QoS-guaranteed and congestion-controlled OpenFlow routing strategy (QCORS) to satisfy the various communication demands by utilizing the flexibility of SDN. Gaining from its open and programmable idea in SDN, the proposed strategy is expected to divide the link into different congestion levels based on predicting the future congestion status from transmission links. Then packets are expected to be transmitted to routers through links under lower load conditions. The simulation results have demonstrated that the proposed method can reduce the average peer-to-peer delay of all the vocational flow and guarantee the reliability of the network. [ABSTRACT FROM AUTHOR]

Published

2022

21. A Fine-Grained Detection Mechanism for SDN Rule Collision

Author

Xiaochen, Qiu, Shihui, Zheng, Lize, Gu, Yongmei, Cai, Akan, Ozgur, Editorial Board Member, Bellavista, Paolo, Editorial Board Member, Cao, Jiannong, Editorial Board Member, Coulson, Geoffrey, Editorial Board Member, Dressler, Falko, Editorial Board Member, Ferrari, Domenico, Editorial Board Member, Gerla, Mario, Editorial Board Member, Kobayashi, Hisashi, Editorial Board Member, Palazzo, Sergio, Editorial Board Member, Sahni, Sartaj, Editorial Board Member, Shen, Xuemin (Sherman), Editorial Board Member, Stan, Mircea, Editorial Board Member, Xiaohua, Jia, Editorial Board Member, Zomaya, Albert Y., Editorial Board Member, Liu, Shuai, editor, and Yang, Gelan, editor

Published

2019

22. A Pro-Active and Adaptive Mechanism for Fast Failure Recovery in SDN Data Centers

Author

Kanagavelu, Renuga, Zhu, Yongqing, Kacprzyk, Janusz, Series Editor, Pal, Nikhil R., Advisory Editor, Bello Perez, Rafael, Advisory Editor, Corchado, Emilio S., Advisory Editor, Hagras, Hani, Advisory Editor, Kóczy, László T., Advisory Editor, Kreinovich, Vladik, Advisory Editor, Lin, Chin-Teng, Advisory Editor, Lu, Jie, Advisory Editor, Melin, Patricia, Advisory Editor, Nedjah, Nadia, Advisory Editor, Nguyen, Ngoc Thanh, Advisory Editor, Wang, Jun, Advisory Editor, Arai, Kohei, editor, Kapoor, Supriya, editor, and Bhatia, Rahul, editor

Published

2019

23. Performance Analysis of Software Defined Network with Three Controllers

Author

Kumar, Shishupal, Lal, Nidhi, Chaurasiya, Vijay Kumar, Kacprzyk, Janusz, Series Editor, Pal, Nikhil R., Advisory Editor, Bello Perez, Rafael, Advisory Editor, Corchado, Emilio S., Advisory Editor, Hagras, Hani, Advisory Editor, Kóczy, László T., Advisory Editor, Kreinovich, Vladik, Advisory Editor, Lin, Chin-Teng, Advisory Editor, Lu, Jie, Advisory Editor, Melin, Patricia, Advisory Editor, Nedjah, Nadia, Advisory Editor, Nguyen, Ngoc Thanh, Advisory Editor, Wang, Jun, Advisory Editor, Arai, Kohei, editor, Bhatia, Rahul, editor, and Kapoor, Supriya, editor

Published

2019

24. OpenFlow-Based Load Balancing in WLAN: Throughput Analysis

Author

Gilani, Syed Mushhad M., Heang, Heng Meng, Hong, Tang, Zhao, Guofeng, Xu, Chuan, Liang, Qilian, editor, Mu, Jiasong, editor, Wang, Wei, editor, and Zhang, Baoju, editor

Published

2018

25. A parallel approach for detecting OpenFlow rule anomalies based on a general formalism.

Author

Aryan, Ramtin, Yazidi, Anis, Kure, Øivind, and Einar Engelstad, Paal

Subjects

SOFTWARE-defined networking, INTRUSION detection systems (Computer security), MAGNITUDE (Mathematics), PROBLEM solving

Abstract

Summary: As the policies of a software‐defined networking (SDN) network can be updated dynamically and often at a high pace, conflicts between policies can easily occur. Due to the large number of switches and heterogeneous policies within a typical SDN network, detecting those conflicts is a laborious and challenging task. This article presents three main contributions. First, we devise an offline method for detecting unmatched OpenFlow rules, that is, rules that are never fired. In our taxonomy such anomalies can stem from either invalid or irrelevant unmatched rules. Second, we introduce a new set of definitions for the intraanomalies between rules in the same table, which might occur when using the multiaction feature of an OpenFlow rule. Third, our detection method has been enhanced to support parallel execution, which makes it a viable solution for troubleshooting large‐scale networks. We provide some comprehensive experimental results based on both synthetic and real‐life setup the synthetic set up is designed in such a way that the rule matching takes place in the last rules of the switch and thus putting more stress on the rule detection process. The parallel method is shown to outperform the single‐threaded checking method by order of magnitude up to 21. [ABSTRACT FROM AUTHOR]

Published

2021

26. A QoS-Guaranteed and Congestion-Controlled SDN Routing Strategy for Smart Grid

Author

Yueyuan Su, Ping Jiang, Huan Chen, and Xiaoheng Deng

Subjects

smart grid, software-defined network, QoS, OpenFlow, Technology, Engineering (General). Civil engineering (General), TA1-2040, Biology (General), QH301-705.5, Physics, QC1-999, Chemistry, QD1-999

Abstract

The smart grid (SG) is an integration of a traditional power grid with advanced information and communication infrastructure for a large number of electrical applications. Despite all these advantages that the SG will bring, certain issues arise when designing a high-quality SG communication network. One of the critical challenges is that the existing routing strategies in smart power grids are incapable of guaranteeing differentiated QoS requirements considering the network dynamics. To address this limitation, we propose an SDN routing algorithm called the QoS-guaranteed and congestion-controlled OpenFlow routing strategy (QCORS) to satisfy the various communication demands by utilizing the flexibility of SDN. Gaining from its open and programmable idea in SDN, the proposed strategy is expected to divide the link into different congestion levels based on predicting the future congestion status from transmission links. Then packets are expected to be transmitted to routers through links under lower load conditions. The simulation results have demonstrated that the proposed method can reduce the average peer-to-peer delay of all the vocational flow and guarantee the reliability of the network.

Published

2022

27. Спосіб балансування навантаження в програмно-конфігурованій мережі за допомогою генетичного алгоритму

Author

Кулаков, Юрій Олексійович

Subjects

генетичний алгоритм, ryu, sdn, openflow, балансування навантаження, load balancing, genetic algorithm, mininet, 004.4, software-defined network, програмно-конфігурована мережа

Abstract

В магістерській дисертації розглядається принцип балансування навантаження в програмно-конфігурованій мережі, процес роботи якого базується на генетичному алгоритмі. Як практична частина реалізований програмний OpenFlow контролер за допомогою фреймворку Ryu на мові програмування Python. Даний контролер використовує генетичний алгоритм для балансування навантаження. Програмний контролер був протестований за допомогою системи віртуалізації мережі Mininet та показав покращення характеристик мережі SDN при його застосуванні, порівняно з аналогами. The master's thesis examines the principle of load balancing in a software-defined networking, the process of which is based on a genetic algorithm. As a practical part, a software OpenFlow controller is implemented using the Ryu framework in the Python programming language. This controller uses a genetic algorithm for load balancing. The software controller was tested using the Mininet network virtualization system and showed improved SDN network performance when it was applied, compared to its counterparts.

Published

2023

28. Checking Intra-Switch Conflicts of Rules During Preprocessing of Network Verification in SDN.

Author

Fang, Yang and Lu, Yiqin

Abstract

Software defined networking (SDN) has been proposed for improving network flexibility and programmability by decoupling control plane and data plane of the network. In SDN, the conflicts between rules need to be avoided, while the partitions of the packet headers need to be precomputed from the configuration rules for the network verification tools. Previous researches usually use the trie-based method and the exhaustive searching with BDD expression to partition the equivalent packet classes (ECs). In this letter, we describe PreChecker to dynamically identify the conflicting rules and divide the rules into ECs. The conflicts between rules are defined for the discrimination of intra-switch conflicts. The MTBDD-based algorithm is proposed for effectively partitioning ECs when updating rules. Both analysis and simulations demonstrate the validity and the better performance of the algorithm. [ABSTRACT FROM AUTHOR]

Published

2019

29. Path based load balancing for data center networks using SDN.

Author

Chakravarthy, V. Deeban and Amutha, B.

Subjects

SOFTWARE-defined networking, SERVER farms (Computer network management), OPERATING costs

Abstract

Due to the increase in the number of users on the internet and the number of applications that is available in the cloud makes Data Center Networking (DCN) has the backbone for computing. These data centre requires high operational cost and also experience the link failures and congestions often. Hence the solution is to use Software Defined Networking (SDN) based load balancer which improves the efficiency of the network by distributing the traffic across multiple paths to optimize the efficiency of the network. Traditional load balancers are very expensive and inflexible. These SDN load balancers do not require costly hardware and can be programmed, which it makes it easier to implement user-defined algorithms and load balancing strategies. In this paper, we have proposed an efficient load balancing technique by considering different parameters to maintain the load efficiently using Open FlowSwitches connected to ONOS controller. [ABSTRACT FROM AUTHOR]

Published

2019

30. Software-defined converged access network with cross-layer intelligent control architecture.

Author

Liu, Tao, Qin, Panke, Li, Lixiang, and Tang, Yongli

Subjects

*INTELLIGENT control systems, *INTELLIGENT networks, *SOFTWARE-defined networking, *ARCHITECTURE, *EMERGENCY management, *MODULAR coordination (Architecture)

Abstract

• We propose a SDN control architecture for the optical and wireless convergence. • The architecture dynamically allocates some of the controller's authorities to OLT. • We enhances the disaster response capability by extending the control depth to ONU. • The controller obtains full network information to achieve more flexible control. The optical and wireless convergence technology is one of the principal means for the problem of last mile access. The software-defined network (SDN) supported by OpenFlow protocol is a promising centralized control architecture. Combining these two aspects, we propose a software-defined access network control architecture for the optical and wireless convergence technology, and design its functional modules and the overall interaction process. The proposed architecture adopts the idea of hierarchical control, introduces the OpenFlow agent, dynamically decentralizes some of the controller's authorities to the optical line terminal (OLT), and enhances its overall disaster response capability by extending the control depth of the controller to the optical network unit (ONU). The controller obtains relevant information in real time from a global perspective to achieve more comprehensive dynamic and flexible control, which effectively improves the network resource utilization and meets different service requirements of different users. [ABSTRACT FROM AUTHOR]

Published

2019

31. Energy Savings Consumption on Public Wireless Networks by SDN Management.

Author

Jimenez, Jose M., Romero, Oscar, Lloret, Jaime, and Diaz, Juan R.

Subjects

*ENERGY consumption, *OPENFLOW (Computer network protocol), *SOFTWARE-defined networking, *ACCESS points (Indexing), *WIRELESS communications

Abstract

In order to use the energy more efficiently, network algorithms and protocols must incorporate in their decision mechanisms some functions focused on saving energy. In this paper we have studied different features and parameters of wireless networks to establish their relationship with the power consumption. First, we have analyzed the variation of power consumption of access points (APs) in function of the antenna transmission power. Second, we have collected user information from real public wireless network to determine the real requirements of network resources in real time basis. Based on this information, a new extension for Openflow protocol over Software-Defined Networking (SDN) networks will be proposed to manage the wireless network, with the aim to keep the optimal network performance with minimal power consumption. This extension introduces new Openflow messages and a new function to be incorporated in SDN controllers and Openflow enabled devices. The proposal will be validated by appropriated simulations based on real scenarios: a shopping center and a municipal wireless network. [ABSTRACT FROM AUTHOR]

Published

2019

32. Analysis and evaluation of the effectiveness of methods for ensuring the quality of service for software-defined networks of the standard 5G/IMT-2020

Author

Behrooz Daneshmand

Subjects

OpenFlow, Information theory, Computer science, business.industry, computer.internet_protocol, Reliability (computer networking), Quality of service, sdn, Internet protocol suite, Packet loss, Forwarding plane, quality of service, General Earth and Planetary Sciences, software-defined network, Q350-390, Software-defined networking, business, computer, General Environmental Science, Jitter, Computer network, 5g/imt-2020

Abstract

The quality of service (QoS) in networking is the process of managing network resources to reduce packet loss and to lower network jitter and latency. QoS has been widely used in traditional network and can also be implemented in the 5G standard based on a software-defined network (SDN). A traditional network carries several challenges, such as vendor dependency, the complexity of managing a large network, dynamically changing forwarding policies, and more. Software-defined networking is a new networking strategy designed to address the challenges of a traditional IP network, such as high levels of complexity and inability to adapt to the new quality of service requirements in a timely manner. The fundamental idea behind SDNs compared to the conventional networking paradigm is the creation of horizontally integrated systems through the separation of the control and the data plane while providing an increasingly sophisticated set of abstractions. Recently, various SDN-enabled QoS frameworks have emerged that offer many possibilities for network reconfiguration and high-level definition of policies. QoS requirements for 5G networks have been defined on the basis of three main categories of use cases: extreme mobile broadband (xMBB), massive machine type communications (mMTC) IoT/M2M devices, and highly reliable М2М-communication (ultra-reliable machine-type communications – uMTC). This paper analyzes and surveys the QoS based on the openflow protocol method and QoS based on open-source SDN controllers method in 5G network. In addition, we discuss various architectural issues of open-source SDN controllers network and examine their impact on the QoS. Furthermore, we outline the characteristics of the QoS parameters such as latency, availability, reliability, jitter, and bandwidth in the 5G network. Finally, the article discusses and compares parameters of the QoS in 5G determined by world’s leaders in 5G technology.

Published

2021

33. Software-Defined Optics in Last Mile for Research and Education in the Czech Republic

Author

Jan Kundrát, Jan Radil, Lada Altmannová, Ondřej Havliš, Miloslav Hůla, Radek Velc, Stanislav Šíma, and Josef Vojtěch

Subjects

Optical fibre network, metropolitan area network, software-defined network, OpenFlow, photonics, Computer software, QA76.75-76.765

Abstract

The Software Defined Networking (SDN) gained recognition due to its improvements at the packet switching and routing layers. The benefits of programmable, remotely controllable networking devices can be applied to the optical layer of contemporary networks as well. This work introduces CESNET's Czech Light~® family of devices and their role in enabling the SDN approach within the CESNET's production network. As a case study, an upgrade of the Cheb node in CESNET's network from a hard-spliced add-drop multiplexers to SDN-capable Reconfigurable Optical Add-Drop Multiplexers (ROADM) is presented. The upgrade improved operational capabilities of the network, including remote channel equalization, and the possibility to deploy new channels or lambdas without physical intervention. The deployment of ROADM also improved the optical properties of the network.

Published

2015

34. A novel industrial control architecture based on Software-Defined Network.

Author

Geng Liang and Wen Li

Subjects

*INDUSTRIAL controls manufacturing, *SOFTWARE-defined networking, *VIRTUAL machine systems, *AUTOMATION, *INTELLIGENT networks

Abstract

Traditionally, routers and other network devices encompass both data and control functions in most large enterprise networks, making it difficult to adjust the network infrastructure and operation to large-scale addition of end systems, virtual machines, and virtual networks in industrial comprehensive automation. A network organizing technique that has come to recent prominence is the Software-Defined Network (SDN). A novel SDN based industrial control network (SDNICN) was proposed in this paper. Intelligent network components are included in a SDNICN. Switches in SDNICN provided fundamental network interconnection for the whole industrial control network. Network controller is used for data transmission, forwarding and routing control between different layers. Service Management Center (SMC) is essentially responsible for managing various services used in industrial process control. SDNICN can not only greatly improve the flexibility and performance of industrial control network but also meet the intelligence and informatization of the future industry. [ABSTRACT FROM AUTHOR]

Published

2018

35. Next Generation Intelligent Test Network Environments.

Author

Barton, J. Michael and Dasari, Venkat

Subjects

DISTRIBUTED computing, BIG data, SCIENTIFIC apparatus & instruments

Abstract

Exponential growth of the Internet, driven most recently by the proliferation of low-cost sensors and IPv6, is mirrored in the growth of networked systems of systems, the tactical Internet of Things. Added to this is our ability and requirement to acquire data from an array of instrumentation at enormous aggregate rates. Radio frequency spectrum continues to diminish as more and more are sold for commercial applications. Testers are faced with mounting challenges--acquiring more data faster, monotonic growth of still and video imagery, compressed timelines for providing results to customers, and the requirement to retain data over longer durations. Test events become larger and more complex, meaning that repeating a test is more costly than ever with more immediate impact to a program. Testers need feedback in near real time about the state of a test and the data being acquired, yet don't have the capacity to transmit all of the data over wireless channels and can't interfere with an ongoing test to harvest storage devices. The solution is to implement an intelligent test network to dynamically manage the instrumentation and limited wireless bandwidth, and push computation to the data using smart instrumentation. [ABSTRACT FROM AUTHOR]

Published

2018

36. Avtomatizacija ločevanja prometa v programsko definiranih omrežjih

Author

DEKLEVA, JAKOB and Burnik, Urban

Subjects

OpenFlow, network automation, programsko definirano omrežje, network packet broker, avtomatizacija omrežja, stikalo Mellanox NS2410, Mellanox switch SN2410, software-defined network, paketni posrednik, Python

Abstract

V diplomski nalogi sta predstavljena razvoj in implementacija paketnega posrednika za namene avtomatizacije ločevanja internetnega prometa, ki ga podjetje uporablja za analizo napadov in delovanja omrežja. Osrednja tema je izdelava programske skripte, ki nam avtomatizira monotono delo in nam pomaga vzpostaviti programsko definirano omrežje. Skripta nam pomaga pri izdelavi paketnega posrednika, ki bo podjetju pomagal z zamenjavo starih stikal, ki sedaj delujejo v vlogi paketnega posrednika. Diplomska naloga je sestavljena iz treh ključnih delov. V prvem je opisana strojna oprema: strežnik, optične povezave ter stikalo Mellanox, ki smo ga uporabili za izdelavo paketnega posrednika. V tem delu sta opisana tudi programska oprema ter programski jezik Python, ki je uporabljen za izgradnjo programske skripte. Na koncu je opisan protokol OpenFlow, katerega smo uporabili za komunikacijo med skriptom in strojno opremo. V drugem delu je opisan razvoj skripte GlueFlow, ki je uporabljen za avtomatizacijo ločevanja prometa. Podrobneje sta predstavljena arhitektura same skripte ter delovanje funkcij skripta, ki nam pomagajo pri avtomatizaciji omrežja. Opisan je tudi postopek komunikacije med skriptom in stikalom. Na koncu je predstavljen postopek vzpostavitve paketnega posrednika v produkcijskem okolju. Podrobneje je opisano delovanje paketnega posrednika za različne odjemalce prometa. V zaključku so predstavljeni uspeh projekta ter možne izboljšave in trenutne pomanjkljivosti. The diploma thesis presents the development and implementation of a packet broker for the purposes of automating the separation of Internet traffic, which the company uses to analyze attacks and network operation. The central theme is the creation of a software script that automates our monotonous work and helps us to establish a program-defined network. The script helps us create a packet broker that will help the company by replacing the old switches that now act as a packet broker. The diploma thesis consists of three key parts. The first part describes the hardware: the server, optical connections and the Mellanox Switch, which we used to make the packet broker. This section also describes the software and the Python programming language used to build the programming script. Finally, the OpenFlow protocol, which we used to communicate between the script and the hardware, is described. The second part describes the development of a script, GlueFlow, which is used to automate traffic separation. The architecture of the script itself and the operation of the script functions that help us in network automation are presented in more detail. The communication process between the script and the switch is also described. Finally, the process of establishing a package broker in a production environment is presented. The operation of a packet broker for different traffic clients is described in more detail. In conclusion, the success of the project and possible improvements and current shortcomings are presented.

Published

2022

37. On Software-Defined Wireless Network (SDWN) Network Virtualization: Challenges and Open Issues.

Author

ABDELAZIZ, AHMED, ANG TAN FONG, GANI, ABDULLAH, KHAN, SULEMAN, ALOTAIBI, FAIZ, and KHAN, MUHAMMAD KHURRAM

Subjects

*SOFTWARE-defined networking, *WIRELESS sensor networks, *VIRTUAL machine systems, *PROGRAMMING languages, *DYNAMIC models

Abstract

Software-defined networking (SDN) is new network architecture that emerges as to implement network virtualization (NV) with vast features, especially when it is applied it in multi-tenant scenarios. The rapid growth of wireless network applications and services, let to adopt NVs into software-defined wireless network (SDWN). This is because wireless networks require specific features that can be hindered of implementing NVs such as updated location information, dynamic channel configuration, and rapid client re-association. This paper presents state-of-the-art NV methods for SDWN with the aim of highlighting issues and challenges of applying NVs techniques of SDN into SDWN. We discuss three SDN techniques that facilitate NV in the cloud, namely proxy-based virtualization, layer two prefixes-based virtualizations and programing language-based virtualization. Moreover, the paper points out the possibility of providing effective VNs in the SDWN architecture. We also taxonomies the SDWN proposed virtualization methods based on hypervisor controller in the different networks. Finally, the potential requirements and challenges and open issues of SDWN NVs are also identified and presented as the future directions in SDWN research. [ABSTRACT FROM AUTHOR]

Published

2017

38. Performance evaluation of software-defined clustered-optical access networking for ubiquitous data center optical interconnection.

Author

Yang, Hui, Bai, Wei, Yu, Ao, and Zhang, Jie

Abstract

Ubiquitous data center optical interconnection between user and data center has become a promising scenario gradually to accommodate high-performance services with end-to-end quality guaranteed. In our previous work, we implemented to provision data center application in inter-data center optical interconnection. In view of this, this study extends to consider the networking relationship between user and data center. We propose a novel software-defined clustered-optical access networking (SD-COAN) architecture for data center services in ubiquitous data center optical interconnection. A cross-stratum flow schedule (CSFS) strategy is introduced for SD-COAN based on the proposed architecture. The SD-COAN can enhance the responsiveness to the dynamic end-to-end data center demands and globally optimize optical access network and application resources effectively. The overall feasibility and efficiency of the proposed architecture are experimentally verified on our OpenFlow-based enhanced SDN testbed. The performance of CSFS strategy under heavy traffic load scenario is also quantitatively evaluated based on SD-COAN architecture in terms of resource occupation rate, average throughput and average provisioning delay, compared with other provisioning strategy. [ABSTRACT FROM AUTHOR]

Published

2017

39. Towards consistency of virtual machine migration in Software-Defined Network.

Author

Hu, Wenbo, Huang, Tao, Ding, Jian, Wang, Jian, Liu, Jiang, and Liu, Yunjie

Subjects

VIRTUAL machine systems, COMPUTER software, SERVER farms (Computer network management), DATA packeting, SOFTWARE-defined networking

Abstract

Virtualization has been widely used in Data Centers, which are running the applications that process data operations or provide services. Migration of virtual machines happens regularly for system load balance, scheduled maintenance, disaster recovery or even in case of unscheduled server downtime. However, packets are still forwarded along the previous path when the migration has completed, which leads to a long time connection interruption and can be abstracted as a consistency problem. We define Connection Recovery Time (CRT) as the duration from the time of migration initiation to the time of reconstructing forwarding rules for migration. In this paper, we analyze the reasons of long CRT in different kinds of Layer-2 switching implementations and propose a novel proactive mechanism to reduce CRT in Software-Defined Network (SDN). Finally, we evaluate the performance of our mechanism, and the CRT in our mechanism can be greatly reduced to the same order of magnitude with general TCP roundtrip time and the occupied hardware resources are hugely reduced. [ABSTRACT FROM PUBLISHER]

Published

2016

40. Experimental demonstration of remote unified control for OpenFlow-based software-defined optical access networks.

Author

Yang, Hui, Zhang, Jie, Zhao, Yongli, Wu, Jialin, Ji, Yuefeng, Lin, Yi, Han, Jianrui, and Lee, Young

Abstract

Passive optical network (PON) has attracted much attention by the emergence of high-bitrate video-centric applications over the Internet in the access side. In the current commercial PON, the configuration of optical line termination equipment is needed to modify through network management system manually and periodically in the local areas. The traffic flow of different users lacks dynamic control and intelligent schedule. In this paper, we propose and implement a novel software-defined optical access network (SDOAN) architecture for remote unified control based on OpenFlow-enabled PON. Based on the proposed architecture, a service-aware flow scheduling strategy is introduced to flexibly and efficiently allocate the network bandwidth resources and detect the status of network flows in real time. The SDOAN can enhance the resource utilization and QoS guarantee of each user effectively through unified control manner, and reduce the operating expense by remote interaction and operation. We have designed and verified experimentally SDOAN on our test bed with OpenFlow-enabled OLTs. The overall feasibility and efficiency of the proposed architecture are also experimentally demonstrated and compared with interleaved polling with adaptive cycle time strategy in terms of resource occupation rate and average delay. [ABSTRACT FROM AUTHOR]

Published

2016

41. Software-Defined Optics in Last Mile for Research and Education in the Czech Republic.

Author

Kundrát, Jan, Radil, Jan, Altmannová, Lada, Havliš, Ondřej, Hůla, Miloslav, Velc, Radek, Šíma, Stanislav, and Vojtĕch, Josef

Subjects

SOFTWARE-defined networking, RECONFIGURABLE optical add-drop multiplexers, RESEARCH, EDUCATION software, ROUTING (Computer network management), COMPUTER software

Abstract

The Software Defined Networking (SDN) gained recognition due to its improvements at the packet switching and routing layers. The benefits of programmable, remotely controllable networking devices can be applied to the optical layer of contemporary networks as well. This work introduces CESNET's Czech Light~® family of devices and their role in enabling the SDN approach within the CESNET's production network. As a case study, an upgrade of the Cheb node in CESNET's network from a hard-spliced add-drop multiplexers to SDN-capable Reconfigurable Optical Add-Drop Multiplexers (ROADM) is presented. The upgrade improved operational capabilities of the network, including remote channel equalization, and the possibility to deploy new channels or lambdas without physical intervention. The deployment of ROADM also improved the optical properties of the network. [ABSTRACT FROM AUTHOR]

Published

2015

42. Controlling Race Conditions in OpenFlow to Accelerate Application Verification and Packet Forwarding.

Author

Sun, Xiaoye Steven, Agarwal, Apoorv, and Ng, T. S. Eugene

Abstract

OpenFlow is a Software Defined Networking (SDN) protocol that is being deployed in many network systems. SDN application verification takes an important role in guaranteeing the correctness of the application. Through our investigation, we discover that application verification can be very inefficient under the OpenFlow protocol since there are many race conditions between the data packets and control plane messages. Furthermore, these race conditions also increase the control plane workload and packet forwarding delay. We propose Attendre, an OpenFlow extension, to mitigate the ill effects of the race conditions in OpenFlow networks. We have implemented Attendre in NICE (a model checking verifier), Open vSwitch (a software virtual switch), and NOX (an OpenFlow controller). Experiments show that Attendre can reduce verification time by several orders of magnitude, and significantly reduce TCP connection setup time. [ABSTRACT FROM PUBLISHER]

Published

2015

43. Independent transient plane design for protection in OpenFlow-based networks.

Author

Kitsuwan, Nattapong, McGettrick, Seamas, Slyne, Frank, Payne, David B., and Ruffini, Marco

Abstract

Network protection against link failure is required to allow packets to reach the destination with minimal packet loss when a failure occurs. When a link fails, traffic that attempts to use the failed link is interrupted. Typically, routers in the network discover the failure and find a new route to bypass the failed link. Alternatively, well-known segment protection schemes can also be used to speed up the link recovery time by rerouting packets locally through precalculated protection paths. However, several backup paths have to be prepared for each primary path, making path configuration rather complex and poorly scalable. This paper proposes a design for fast rerouting in an OpenFlow-based network. This new design reduces the number of flow entries and the number of configuration messages needed for network rerouting, which in turn reduces the memory size needed in each switch and the CPU load at the controller. We show empirically and using simulations that our design can reduce the number of flow entries and configuration messages needed by about 60% and 75%, respectively, when compared with an existing OpenFlow-based segment protection design. Furthermore, we implement the proposed design on a pan-European network and show that our design can recover from a link failure in as little as 25 ms. [ABSTRACT FROM PUBLISHER]

Published

2015

44. An HTIP L2 agent solution for network equipment using openflow

Author

SIOUTIS, Marios, LIM, Yuto, and TAN, Yasuo

Subjects

Home Network, Software-Defined Network, OpenFlow, HTIP, Network Topology

Abstract

In order to provide customers with effective remote support for the rising number of appliances in the home, network topology information is necessary. The Home-network Topology Identification Protocol (HTIP) is a protocol which can provide the information needed to deduce the home network topology. In this paper we present an open source HTIP L2 agent implementation based on Ryu, a popular OpenFlow SDN framework. This solution can aid the testing and development of HTIP managers and agents, reducing costs and improving interoperability. The correct HTIP behaviour as well as the performance characteristics of this L2 agent are demonstrated through experiments and areas for future improvement are discussed.

Published

2018

45. A Fine-Grained Multi-Tenant Permission Management Framework for SDN and NFV

Author

Lu Yu, Bin Yuan, Deqing Zou, Haoyu Chen, and Hai Jin

Subjects

API misuse, OpenFlow, General Computer Science, Application programming interface, Computer science, business.industry, Controller (computing), General Engineering, Authorization, Permission, permission control, network functions, Software-defined network, Overhead (computing), General Materials Science, Isolation (database systems), lcsh:Electrical engineering. Electronics. Nuclear engineering, Software-defined networking, business, lcsh:TK1-9971, Abstraction (linguistics), Computer network

Abstract

Although software defined network (SDN) has been widely recognized for several years, it still has not addressed security issues regarding permission management on SDN controller, one lack of which is the effective permission allocation of application programming interfaces (APIs) for multi-tenant requirements. Besides, the tendency of integrating SDN and network function virtualization (NFV) introduces a new problem about permission management on both SDN and NFV APIs. This paper presents a fine-grained permission management for secure sharing of APIs in multi-tenant networks. We propose a permission policy language, which provides three-level permission abstraction to define available APIs for multiple tenants to access both OpenFlow switches and network functions. We introduce a permission management framework to effectively enforce permissions and ensure user isolation. A prototype of the proposed framework is implemented on top of the RYU controller. Extensive experiments show that our system is effective for reducing API abuse and only introduces negligible overhead.

Published

2018

46. Application-aware network: network route management using SDN based on application characteristics

Author

U-chupala, Pongsakorn, Watashiba, Yasuhiro, Ichikawa, Kohei, Date, Susumu, and Iida, Hajimu

Published

2017

47. Blockchain and Random Subspace Learning-based IDS for SDN-enabled Industrial IoT Security

Author

Mohamed Guerroumi, Mohamed Amine Ferrag, Mithun Mukherjee, Farrukh Aslam Khan, Abdelouahid Derhab, Abdu Gumaei, and Leandros A. Maglaras

Subjects

blockchain, OpenFlow, Blockchain, Computer science, 02 engineering and technology, Intrusion detection system, security, lcsh:Chemical technology, Computer security, computer.software_genre, industrial IoT, Biochemistry, Article, Analytical Chemistry, SCADA, 0202 electrical engineering, electronic engineering, information engineering, random subspace learning, lcsh:TP1-1185, Electrical and Electronic Engineering, Instrumentation, 020206 networking & telecommunications, Enterprise information security architecture, Industrial control system, distributed control system, Atomic and Molecular Physics, and Optics, industrial control system, Cyber-attack, intrusion detection system, 020201 artificial intelligence & image processing, software-defined network, Distributed control system, Software-defined networking, computer

Abstract

open access article The industrial control systems are facing an increasing number of sophisticated cyber attacks that can have very dangerous consequences on humans and their environments. In order to deal with these issues, novel technologies and approaches should be adopted. In this paper, we focus on the security of commands in industrial IoT against forged commands and misrouting of commands. To this end, we propose a security architecture that integrates the Blockchain and the Software-defined network (SDN) technologies. The proposed security architecture is composed of: (a) an intrusion detection system, namely RSL-KNN, which combines the Random Subspace Learning (RSL) and K-Nearest Neighbor (KNN) to defend against the forged commands, which target the industrial control process, and (b) a Blockchain-based Integrity Checking System (BICS), which can prevent the misrouting attack, which tampers with the OpenFlow rules of the SDN-enabled industrial IoT systems. We test the proposed security solution on an Industrial Control System Cyber attack Dataset and on an experimental platform combining software-defined networking and blockchain technologies. The evaluation results demonstrate the effectiveness and efficiency of the proposed security solution.

Published

2019

48. Energy Savings Consumption on Public Wireless Networks by SDN Management

Author

Jaime Lloret, Juan R. Diaz, Jose M. Jimenez, and Oscar Romero

Subjects

OpenFlow, Wi-Fi array, Computer Networks and Communications, Computer science, 02 engineering and technology, Green networks, Software-defined network, 0202 electrical engineering, electronic engineering, information engineering, Wireless network, business.industry, ComputerSystemsOrganization_COMPUTER-COMMUNICATIONNETWORKS, 020206 networking & telecommunications, Wireless WAN, Energy consumption, INGENIERIA TELEMATICA, Energy efficiency, Hardware and Architecture, 020201 artificial intelligence & image processing, Municipal public wireless, business, Software-defined networking, Software, Heterogeneous network, Municipal wireless network, Information Systems, Computer network

Abstract

[EN] In order to use the energy more efficiently, network algorithms and protocols must incorporate in their decision mechanisms some functions focused on saving energy. In this paper we have studied different features and parameters of wireless networks to establish their relationship with the power consumption. First, we have analyzed the variation of power consumption of access points (APs) in function of the antenna transmission power. Second, we have collected user information from real public wireless network to determine the real requirements of network resources in real time basis. Based on this information, a new extension for Openflow protocol over Software-Defined Networking (SDN) networks will be proposed to manage the wireless network, with the aim to keep the optimal network performance with minimal power consumption. This extension introduces new Openflow messages and a new function to be incorporated in SDN controllers and Openflow enabled devices. The proposal will be validated by appropriated simulations based on real scenarios: a shopping center and a municipal wireless network., This work has been supported by the Ministerio de Economía y Competitividad , through the Convocatoria 2014. Proyectos I + D - Programa Estatal de Investigación Científica y Técnica de Excelencia in the Subprograma Estatal de Generación de Conocimiento , Project TIN2014-57991-C3-1-P and the Programa para la Formación de Personal Investigador (FPI-2015-S2-884) by the Universitat Politècnica de València .

Published

2019

49. Increasing fault tolerance of data plane on the internet of things using the software-defined networks

Author

Amir Masoud Rahmani, Katayoun Bakhshi Kiadehi, and Amir Sabbagh Molahosseini

Subjects

Internet of things, IoT, General Computer Science, Computer Networks and Communications, Computer science, Reliability (computer networking), Network Science and Online Social Networks, 02 engineering and technology, SDN, Packet loss, Backup, Software-defined network, 0202 electrical engineering, electronic engineering, information engineering, Forwarding plane, Openflow, business.industry, Data plane, Fault tolerance, 020206 networking & telecommunications, QA75.5-76.95, Networking hardware, Electronic computers. Computer science, High availability, 020201 artificial intelligence & image processing, business, Software-defined networking, Computer network

Abstract

Considering the Internet of Things (IoT) impact in today’s world, uninterrupted service is essential, and recovery has received more attention than ever before. Fault-tolerance (FT) is an essential aspect of network resilience. Fault-tolerance mechanisms are required to ensure high availability and high reliability in systems. The advent of software-defined networking (SDN) in the IoT plays a significant role in providing a reliable communication platform. This paper proposes a data plane fault-tolerant architecture using the concepts of software-defined networks for IoT environments. In this work, a mathematical model called Shared Risk Link Group (SRLG) calculates redundant paths as the primary and backup non-overlapping paths between network equipment. In addition to the fault tolerance, service quality was considered in the proposed schemes. Putting the percentage of link bandwidth usage and the rate of link delay in calculating link costs makes it possible to calculate two completely non-overlapping paths with the best condition. We compare our two proposed dynamic schemes with the hybrid disjoint paths (Hybrid_DP) method and our previous work. IoT developments, wireless and wired equipment are now used in many industrial and commercial applications, so the proposed hybrid dynamic method supports both wired and wireless devices; furthermore multiple link failures will be supported in the two proposed dynamic schemes. Simulation results indicate that, while reducing the error recovery time, the two proposed dynamic designs lead to improved service quality parameters such as packet loss and delay compared to the Hybrid_DP method. The results show that in case of a link failure in the network, the proposed hybrid dynamic scheme’s recovery time is approximately 12 ms. Furthermore, in the proposed hybrid dynamic scheme, on average, the recovery time, the packet loss, and the delay improved by 22.39%, 8.2%, 5.66%, compared to the Hybrid_DP method, respectively.

Published

2021

50. Estudio de técnicas de Ingeniería de Tráfico basadas en SDN

Author

Betegón García, Miguel, García Gutiérrez, Alberto Eloy, and Universidad de Cantabria

Subjects

Traffic engineering, Ryu, OpenFlow, Software-defined Network, Mininet, Redes definidas por software, Ingeniería de tráfico

Abstract

RESUMEN: Las redes definidas por software o Software-Defined Network (SDN) abarcan varios tipos de tecnologías de red para conseguir que la misma sea ágil y flexible. El objetivo de las redes SDN es que los ingenieros y administradores de red respondan rápidamente a los cambiantes requisitos comerciales. En una red definida por software, el administrador puede dar forma al tráfico desde una consola de control centralizada sin tener que tocar individualmente cada switch y puede proporcionar servicios donde se necesiten en la red, sin importar a que dispositivos está conectado un servidor o un componente hardware. Esto se consigue a través de técnicas de Ingeniería de Tráfico, y es de lo que trata este trabajo. De la posibilidad de aplicar dichas técnicas en redes SDN para comprobar que efectivamente las redes definidas por software son eficaces y que tienen aplicaciones ventajosas hoy en día. Se desarrollan dos casos de uso reales que incorporan técnicas de Ingeniería de Tráfico en redes SDN y una vez implementados, se realiza un test para comprobar su funcionamiento y determinar su validez en función de los resultados. Estos casos de uso son en realidad aplicaciones que funcionan en una capa superior a OpenFlow. ABSTRACT: Software-Defined Networks, SDN, cover several kinds of network technology aimed at making the network agile and flexible. The goal of SDN is to allow network engineers and administrators to respond quickly for changing business requirements. In a Software-Defined Network, a network administrator can shape traffic from a centralized control console without having to touch individual switches, and can deliver services to wherever they are needed in the network, without regard to what specific devices a server or other hardware components are connected to. This can be achieved through Traffic Engineering techniques, what this work is all about. The possibility of applying these techniques in SDN networks to verify that Software-Defined Networks are effective and that they have advantageous applications nowadays. Two real use cases that incorporate Traffic Engineering techniques in SDN networks are developed in the project. Once they are implemented, a test is carried out to check its operation and determine its validity based on the given results. These use cases are actually applications sitting in top of the OpenFlow layer. Grado en Ingeniería de Tecnologías de Telecomunicación

Published

2018