Your search keyword '"OpenFlow"' showing total 5,368 results

101. Performance Analysis of POX and OpenDayLight Controllers Based on QoS Parameters

Author

Hassen, Houda, Meherzi, Soumaya, Belghith, Safya, Kacprzyk, Janusz, Series Editor, Gomide, Fernando, Advisory Editor, Kaynak, Okyay, Advisory Editor, Liu, Derong, Advisory Editor, Pedrycz, Witold, Advisory Editor, Polycarpou, Marios M., Advisory Editor, Rudas, Imre J., Advisory Editor, Wang, Jun, Advisory Editor, Barolli, Leonard, editor, Woungang, Isaac, editor, and Enokido, Tomoya, editor

Published

2021

102. Leveraging Blockchain and SDN for Efficient and Secure IoT Network

Author

Shukla, Nitin, Gandhi, Charu, Choudhury, Tanupriya, Chlamtac, Imrich, Series Editor, Choudhury, Tanupriya, editor, Khanna, Abhirup, editor, Toe, Teoh Teik, editor, Khurana, Madhu, editor, and Gia Nhu, Nguyen, editor

Published

2021

103. Building Machine Learning Based Firewall on Spanning Tree Protocol over Software Defined Networking

Author

Islam, Nazrul, Shamim, S. M., Fazla Rabbi, Md., Saikat Islam Khan, Md., Abu Yousuf, Mohammad, Kacprzyk, Janusz, Series Editor, Pal, Nikhil R., Advisory Editor, Bello Perez, Rafael, Advisory Editor, Corchado, Emilio S., Advisory Editor, Hagras, Hani, Advisory Editor, Kóczy, László T., Advisory Editor, Kreinovich, Vladik, Advisory Editor, Lin, Chin-Teng, Advisory Editor, Lu, Jie, Advisory Editor, Melin, Patricia, Advisory Editor, Nedjah, Nadia, Advisory Editor, Nguyen, Ngoc Thanh, Advisory Editor, Wang, Jun, Advisory Editor, Kaiser, M. Shamim, editor, Bandyopadhyay, Anirban, editor, Mahmud, Mufti, editor, and Ray, Kanad, editor

Published

2021

104. Network Design Defined by Software on a Hyper-converged Infrastructure. Case Study: Northern Technical University FICA Data Center

Author

Meneses, Santiago, Maya, Edgar, Vasquez, Carlos, Kacprzyk, Janusz, Series Editor, Pal, Nikhil R., Advisory Editor, Bello Perez, Rafael, Advisory Editor, Corchado, Emilio S., Advisory Editor, Hagras, Hani, Advisory Editor, Kóczy, László T., Advisory Editor, Kreinovich, Vladik, Advisory Editor, Lin, Chin-Teng, Advisory Editor, Lu, Jie, Advisory Editor, Melin, Patricia, Advisory Editor, Nedjah, Nadia, Advisory Editor, Nguyen, Ngoc Thanh, Advisory Editor, Wang, Jun, Advisory Editor, Botto-Tobar, Miguel, editor, Zamora, Willian, editor, Larrea Plúa, Johnny, editor, Bazurto Roldan, José, editor, and Santamaría Philco, Alex, editor

Published

2021

105. Performance Analysis of Impact of Network Topologies on Different Controllers in SDN

Author

Kumar, Dharmender, Sood, Manu, Kacprzyk, Janusz, Series Editor, Pal, Nikhil R., Advisory Editor, Bello Perez, Rafael, Advisory Editor, Corchado, Emilio S., Advisory Editor, Hagras, Hani, Advisory Editor, Kóczy, László T., Advisory Editor, Kreinovich, Vladik, Advisory Editor, Lin, Chin-Teng, Advisory Editor, Lu, Jie, Advisory Editor, Melin, Patricia, Advisory Editor, Nedjah, Nadia, Advisory Editor, Nguyen, Ngoc Thanh, Advisory Editor, Wang, Jun, Advisory Editor, Gupta, Deepak, editor, Khanna, Ashish, editor, Bhattacharyya, Siddhartha, editor, Hassanien, Aboul Ella, editor, Anand, Sameer, editor, and Jaiswal, Ajay, editor

Published

2021

106. SD-6LN: Improved Existing IoT Framework by Incorporating SDN Approach

Author

Das, Rohit Kumar, Maji, Arnab Kumar, Saha, Goutam, Kacprzyk, Janusz, Series Editor, Pal, Nikhil R., Advisory Editor, Bello Perez, Rafael, Advisory Editor, Corchado, Emilio S., Advisory Editor, Hagras, Hani, Advisory Editor, Kóczy, László T., Advisory Editor, Kreinovich, Vladik, Advisory Editor, Lin, Chin-Teng, Advisory Editor, Lu, Jie, Advisory Editor, Melin, Patricia, Advisory Editor, Nedjah, Nadia, Advisory Editor, Nguyen, Ngoc Thanh, Advisory Editor, Wang, Jun, Advisory Editor, Gupta, Deepak, editor, Khanna, Ashish, editor, Bhattacharyya, Siddhartha, editor, Hassanien, Aboul Ella, editor, Anand, Sameer, editor, and Jaiswal, Ajay, editor

Published

2021

107. Towards a Novel Vehicular Ad Hoc Networks Based on SDN

Author

Guesmi, Houda, Kalghoum, Anwar, Guesmi, Ramzi, Saïdane, Leïla Azouz, Goos, Gerhard, Founding Editor, Hartmanis, Juris, Founding Editor, Bertino, Elisa, Editorial Board Member, Gao, Wen, Editorial Board Member, Steffen, Bernhard, Editorial Board Member, Woeginger, Gerhard, Editorial Board Member, Yung, Moti, Editorial Board Member, Gervasi, Osvaldo, editor, Murgante, Beniamino, editor, Misra, Sanjay, editor, Garau, Chiara, editor, Blečić, Ivan, editor, Taniar, David, editor, Apduhan, Bernady O., editor, Rocha, Ana Maria A. C., editor, Tarantino, Eufemia, editor, and Torre, Carmelo Maria, editor

Published

2021

108. Automised flow rule formation by using machine learning in software defined networks based edge computing

Author

Saleem Iqbal, Hira Maryam, Kashif Naseer Qureshi, Ibrahim Tariq Javed, and Noel Crespi

Subjects

Software-Defined-Network Controller, Machine Learning, Flow Rule, OpenFlow, Auto Rule Formation, Electronic computers. Computer science, QA75.5-76.95

Abstract

The availability of Software Defined Network’s (SDNs) flow rule entry in the flow table is considered a key factor in the timely delivery of a certain flow. The controller is approached for instructions on how to deal with the flow when the rule for such flow is missing. The controller then updates the flow table accordingly at the switch so that flow could be dealt with locally. It becomes problematic when no rule is defined yet at the controller by the application plane. In most of these cases, such a situation is handled by programming the controller with wildcard rules. However, handling many flows at once under wildcard rules severely hampers the network performance. Flow rules formation by the application plane is sometimes critical and time-consuming which increases the latency ratio by creating a bottleneck at the switch level. To avoid the bottlenecks due to rule absence, in this paper, rather than waiting for the application plane’s response and putting the pending traffic flows in the buffer, which may be dropped, the controller is programmed in a way that has the built-in mechanism of self-flow rule formation. This atomized mechanism is based on the previously available traces of the same flows when they were forwarded on the network using the wildcard rules. To assess the performance of the proposed work, it is emulated and benchmarked with the latest research. The results show considerable performance achievement.

Published

2022

109. Dynamic Routing and Failure Recovery Approaches for Efficient Resource Utilization in OpenFlow-SDN: A Survey

Author

Babangida Isyaku, Kamalrulnizam Bin Abu Bakar, Fuad A. Ghaleb, and Abdulaziz Al-Nahari

Subjects

SDN, OpenFlow, route path selection, load balancing, failure recovery, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Software Defined Networks (SDN) is a new network paradigm that emerged to offer better network management by separating network control logic and data forwarding element. This separation speeds up network innovation without relying on the vendor-proprietary interface for network element configuration to forward packets. However, SDN is flow driven network; for each arrived flow, a feasible path is computed to deliver the flow to its destination. Afterwards, the SDN control logic process the corresponding routing rules and instruct the set of data forwarding elements to install them on their Flowtable to guide the routing process. Unfortunately, the network changes more frequently in dynamic large-scale networks, and the Flowtable is a constraint with limited space. These challenges require the SDN controller to compute paths more often, which may also require many flows routing rules. In addition, the frequency of communication link failures has increased lately. The successful deployment of SDN heavily depends on how it satisfies the reliability requirement with uninterrupted services. Several studies were conducted to compute the optimal path for data forward to meet their Quality-of-Service demand. Other studies focus on reducing the frequency of link failure. Some studies were conducted to manage the constraint Flowtable resources. This survey focuses on Routing rules placement, unoptimized routing, link, and switch load balancing, failure detection, and recovery. The paper extensively discusses each issue and analyses the weakness of the current solutions. Finally, it highlights potential challenges that need future research attention.

Published

2022

110. Reduction of the Delays Within an Intrusion Detection System (IDS) Based on Software Defined Networking (SDN)

Author

Alessandro Fausto, Giovanni Gaggero, Fabio Patrone, and Mario Marchese

Subjects

Cybersecurity, intrusion detection system (IDS), software defined networking (SDN), OpenFlow, key performance indicators (KPI), Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Software Defined Networking (SDN) is a very useful tool not only to manage networks but also to increase network security, in particular by implementing Intrusion Detection Systems (IDS) directly into the SDN architecture. The implementation of IDS within the SDN paradigm can simplify the implementation, speed up incident responses, and, in general, allow to promptly react to cyber attacks through proper countermeasures. Nevertheless, embedding IDS within SDN also introduces delays that cannot be tolerated in specific network environments, like industrial control systems. This paper focuses on the implementation of an IDS based on Machine Learning (ML) algorithms into an SDN architecture and proposes a very practical approach to reduce the delay by using the sequential implementation of prototypes of increasing software and hardware complexity so allowing quick tests to highlight the main problems, solve them and pass to the next operative step. A fully validated performance evaluation is then shown by exploiting all the presented solutions and by using further improved hardware features. The overall performance is very good and compliant with most, even if not yet all, industrial control systems constraints. Results show how the proposed solutions provide a significant improvement of the latency so opening the door to a real implementation in the field.

Published

2022

111. An SDN-Coordinated Steering Framework for Multipath Big Data Transfer Application

Author

Kiattikun Kawila, Jongwon Kim, and Kultida Rojviboonchai

Subjects

Big data, data transfer, multipath TCP, OpenFlow, OpenFlow network, overlay network, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Data Transmission is a primary mechanism that can affect the performance of distributed storage systems. The traditional single-path transmission protocols are not efficient to serve several requirements of big data applications. In this paper, we propose an SDN-coordinated steering framework for multipath big data transfer applications. Multipath TCP protocol (MPTCP) coupled with SDN are mainly used for big data transfer in our framework. This framework is useful and cost-effective for OpenFlow networks and overlay networks. To provide a practical multipath transmission scheme for big data transfer applications using MPTCP, we propose a novel OpenFlow-Stats routing algorithm. In our algorithm, a new topology-pruning technique is applied, and the transmission paths are selected based on switch-port statistics. Our proposed framework is implemented and evaluated using the Mininet emulator and ONOS controller. The results show that our routing scheme can reduce the completion time of big data transfer up to 90% compared with the traditional routing with disjoint paths and up to 35% compared with the previous work. Moreover, our proposed routing is more scalable than other previous works in that it can provide lower complexity and system overhead. The results show that our routing scheme produces 57% less overhead compared with the previous work.

Published

2022

112. Effective Flow Table Space Management Using Policy-Based Routing Approach in Hybrid SDN Network

Author

Manish Paliwal and Kapil Kumar Nagwanshi

Subjects

Control plane, legacy forwarding devices, openflow, software-defined network, traffic engineering, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Software-defined networking makes forwarding devices easier to manage and provides centralized control. Because of the centralization, a network administrator can programme the devices cheaply. Network administrators make attempts to convert their entire network into SDN-compatible switches. A good balance of SDN and legacy switching functions can lead to a successful network scenario in network architecture. In this study, a hybrid network scenario is provided in which the external boundary forwarding devices of the service provider network are replaced with SDN devices. Still, the other internal forwarding devices continue to operate traditionally. The benefits of both SDN and legacy network design are combined, allowing the network administrator to reap the benefits of both. The network architecture employs a policy-based routing algorithm that takes advantage of free IP addresses from the free IP pool. The technique enables efficient use of available flow table space, which is critical in SDN architecture due to the small flow table size. The algorithm’s efficiency is assessed using performance metrics such as network path stretch, throughput, latency delay, and so on, compared to traditional SDN controllers such as OpenDayLight, NOX, and POX. According to the experimental results, the suggested approach outperforms specific similar state-of-the-art techniques in the hybrid SDN domain.

Published

2022

113. Toward Software-Defined Networking-Based IoT Frameworks: A Systematic Literature Review, Taxonomy, Open Challenges and Prospects

Author

Shahbaz Siddiqui, Sufian Hameed, Syed Attique Shah, Ijaz Ahmad, Adel Aneiba, Dirk Draheim, and Schahram Dustdar

Subjects

Internet of Things (IoT), software-defined networking (SDN), SDN-based IoT management frameworks, systematic literature review, network function virtualization, OpenFlow, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Internet of Things (IoT) is characterized as one of the leading actors for the next evolutionary stage in the computing world. IoT-based applications have already produced a plethora of novel services and are improving the living standard by enabling innovative and smart solutions. However, along with its rapid adoption, IoT technology also creates complex challenges regarding the management of IoT networks due to its resource limitations (computational power, energy, and security). Hence, it is urgently needed to refine the IoT-based application’s architectures to robustly manage the overall IoT infrastructure. Software-defined networking (SDN) has emerged as a paradigm that offers software-based controllers to manage hardware infrastructure and traffic flow on a network effectively. SDN architecture has the potential to provide efficient and reliable IoT network management. This research provides a comprehensive survey investigating the published studies on SDN-based frameworks to address IoT management issues in the dimensions of fault tolerance, energy management, scalability, load balancing, and security service provisioning within the IoT networks. We conducted a Systematic Literature Review (SLR) on the research studies (published from 2010 to 2022) focusing on SDN-based IoT management frameworks. We provide an extensive discussion on various aspects of SDN-based IoT solutions and architectures. We elaborate a taxonomy of the existing SDN-based IoT frameworks and solutions by classifying them into categories such as network function virtualization, middleware, OpenFlow adaptation, and blockchain-based management. We present the research gaps by identifying and analyzing the key architectural requirements and management issues in IoT infrastructures. Finally, we highlight various challenges and a range of promising opportunities for future research to provide a roadmap for addressing the weaknesses and identifying the benefits from the potentials offered by SDN-based IoT solutions.

Published

2022

114. SDN Security Review: Threat Taxonomy, Implications, and Open Challenges

Author

Mohamed Rahouti, Kaiqi Xiong, Yufeng Xin, Senthil Kumar Jagatheesaperumal, Moussa Ayyash, and Maliha Shaheed

Subjects

Software defined networks, OpenFlow, security, threat, attack, vulnerability, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Software-Defined networking (SDN) is a networking paradigm to enable dynamic, flexible, and programmatically efficient configuration of networks to revolutionize network control and management via separation of the control plane and data plane. The SDN technology has evolved in response to the demands from large data centers toward all types of networks, from IoT, enterprise, to ISP networks. On the one hand, SDN has provided solutions for high-demand resources, managing unpredictable data traffic patterns, and rapid network reconfiguration. It is further used to enhance network virtualization and security. On the other hand, SDN is still subject to many traditional network security threats. It also introduces new security vulnerabilities, primarily due to its logically centralized control plane infrastructure and functions. In this paper, we conduct a comprehensive survey on the core functionality of SDN from the perspective of secure communication infrastructure at different scales. A specific focus is put forward to address the challenges in securing SDN-based communications, with efforts taken up to address them. We further categorize the appropriate solutions for specific threats at each layer of SDN infrastructures. Lastly, security implications and future research trends are highlighted to provide insights for future research.

Published

2022

115. Open flow-based multi-controller model for fault-tolerant and reliable control plane

Author

Tripathi, Ramesh Chandra

Published

2021

116. Flow‐rule integration for quality of service enhancement in software‐defined vehicular network.

Author

Praveen kumar, Karunanithi, Sivanesan, Perumal, and Thirumurugan, Rajendran

Subjects

*SOFTWARE-defined networking, *ROADSIDE improvement

Abstract

Summary: A software‐defined vehicular network (SDVN) is a concern, where roadside units are connected, and a massive amount of data is accumulated at the software‐defined network (SDN) switches, leading to the flow table overflow problem. Existing works are concentrated more on flow‐rule aggregation in a fast manner at the switches, which impacts quality of service (QoS) at SDVN. QoS‐wise flexible OpenFlow‐rule integration method is proposed to address the challenges of OpenFlow‐table overflow problem in SDN controller switches. By having minimal impact on the QoS of the vehicular network, it reduces the number of OpenFlow rules using a key‐based mechanism. However, we note that choosing a QoS path from numerous paths is important by considering the OpenFlow‐table usage at the switches. Based on this, a flexible‐fit heuristic approach is proposed, which considers the insertions of OpenFlow rule besides with congestion flow rule‐capacity switch on a path while reducing the cumulative number of OpenFlow rules in SDVN. Experimental results of this scheme show that it decreases average end‐to‐end time delay and packet dropping by 37% and 14%, respectively. Compared with the existing scheme, the average network throughput increases by 22%, and also it has a comparable improvement in the reduction of OpenFlow rules at the switches of SDVN. [ABSTRACT FROM AUTHOR]

Published

2022

117. Efficient greedy heuristic approach for fault-tolerant distributed controller placement in scalable SDN architecture.

Author

Salam, Rakesh and Bhattacharya, Ansuman

Subjects

*FAULT-tolerant computing, *SOFTWARE-defined networking, *NONLINEAR programming, *FAULT tolerance (Engineering), *DOMINATING set, *INDEPENDENT sets

Abstract

Software-Defined Network (SDN) enables a centralized networking architecture that employs controllers to administer a global view of the network. However, the architecture of SDN and OpenFlow are susceptible to scalability and reliability issues. In fact, the problem of determining the requisite number of controllers and their locations in SDNs while maximizing the fault tolerance, i.e., Controller Placement Problem (CPP), is NP-hard. Besides, the communication latency between the forwarding nodes and the controllers are usually very high in large-scale SDNs due to sparse deployment. This paper first formulates the CPP as Nonlinear Programming (NLP). Then, we present an efficient greedy heuristic method that employs a local Optimized High Degree and Independent Dominating Set (OHDIDS) strategy to address these issues. In particular, we examine the CPP based on Silhouette analysis, Gap Statistics, and Faster Partitioning Around Medoids (FPAM) techniques. We conduct extensive experiments using Internet Topology Zoo and Mininet network simulators to show the efficacy of the proposed method with various network topologies. The proposed method outperforms the state-of-the-art methods in terms of the minimum number of controllers, average-case and worst-case latency, and reliability. We observed that our method reduces the average communication latency by 57 % when two controllers are used rather than a single controller. Moreover, it achieves a performance gain of up to 19.31 % in terms of average propagation latency. [ABSTRACT FROM AUTHOR]

Published

2022

118. Coexistence of Railway and Road Services by Sharing Telecommunication Infrastructure Using SDN-Based Slicing: A Tutorial.

Author

Singh, Radheshyam, Soler, José, Sylla, Tidiane, Mendiboure, Leo, and Berbineau, Marion

Subjects

TELECOMMUNICATION, CONTROLLER area network (Computer network), OPENFLOW (Computer network protocol), COMPUTER software, INFORMATION retrieval

Abstract

This paper provides a detailed tutorial to develop a sandbox to emulate coexistence scenarios for road and railway services in terms of sharing telecommunication infrastructure using software-defined network (SDN) capabilities. This paper provides detailed instructions for the creation of network topology using Mininet–WiFi that can mimic real-life coexistence scenarios between railways and roads. The network elements are programmed and controlled by the ONOS SDN controller. The developed SDN application can differentiate the data traffic from railways and roads. Data traffic differentiation is carried out using a VLAN tagging mechanism. Further, it also provides comprehensive information about the different tools that are used to generate the data traffic that can emulate messaging, video streaming, and critical data transmission of railway and road domains. It also provides the steps to use SUMO to represent the selected coexistence scenarios in a graphical way. [ABSTRACT FROM AUTHOR]

Published

2022

119. Session Initiation Protocol Proxy in a Role of a Quality of Service Control Application in Software-Defined Networks.

Author

Zeman, Dalibor, Rezac, Filip, Voznak, Miroslav, and Rozhon, Jan

Subjects

QUALITY of service, QUALITY control, INTERNET protocols, CONFIGURATION management, SOFTWARE-defined networking, SESSION Initiation Protocol (Computer network protocol), APPLICATION software

Abstract

This article deals with quality of service (QoS) in internet protocol (IP) telephony by applying software-defined networking (SDN) tools. The authors develop a new design that deterministically classifies real-time protocol (RTP) streams based on data found in session initiation protocol (SIP) using SIP proxy as a mediator, and the concept making this possible is called SDN. Compared to traditional networks, SDN allows us to approach network configuration differently. SDN networks are programmable through software applications running on top of the SDN controller. One of the technologies that might benefit from this concept is IP telephony, which often needs an additional priority management configuration to ensure consistent quality of its real-time media exchange. Typically, a session protocol for real-time communications is SIP, and as such, its infrastructure may be used to classify the traffic in question and take advantage of the centralized approach of SDN networks to distribute the class information across the switching devices. Different approaches and possible applications are discussed in the conclusion. The contribution of this paper lies in the proposal of SDN-based QoS mechanisms. The entire design of the concept was implemented and validated in a laboratory environment. The results clearly demonstrate the efficiency of the proposed approach. [ABSTRACT FROM AUTHOR]

Published

2022

120. A Machine Learning-Based Anomaly Prediction Service for Software-Defined Networks.

Author

Latif, Zohaib, Umer, Qasim, Lee, Choonhwa, Sharif, Kashif, Li, Fan, and Biswas, Sujit

Subjects

*TRAFFIC patterns, *SOFTWARE-defined networking, *INTRUSION detection systems (Computer security), *TRAFFIC monitoring, *SERVER farms (Computer network management), *PROGRAMMABLE controllers, *TRAFFIC flow

Abstract

Software-defined networking (SDN) has gained tremendous growth and can be exploited in different network scenarios, from data centers to wide-area 5G networks. It shifts control logic from the devices to a centralized entity (programmable controller) for efficient traffic monitoring and flow management. A software-based controller enforces rules and policies on the requests sent by forwarding elements; however, it cannot detect anomalous patterns in the network traffic. Due to this, the controller may install the flow rules against the anomalies, reducing the overall network performance. These anomalies may indicate threats to the network and decrease its performance and security. Machine learning (ML) approaches can identify such traffic flow patterns and predict the systems' impending threats. We propose an ML-based service to predict traffic anomalies for software-defined networks in this work. We first create a large dataset for network traffic by modeling a programmable data center with a signature-based intrusion-detection system. The feature vectors are pre-processed and are constructed against each flow request by the forwarding element. Then, we input the feature vector of each request to a machine learning classifier for training to predict anomalies. Finally, we use the holdout cross-validation technique to evaluate the proposed approach. The evaluation results specify that the proposed approach is highly accurate. In contrast to baseline approaches (random prediction and zero rule), the performance improvement of the proposed approach in average accuracy, precision, recall, and f-measure is (54.14%, 65.30%, 81.63%, and 73.70%) and (4.61%, 11.13%, 9.45%, and 10.29%), respectively. [ABSTRACT FROM AUTHOR]

Published

2022

121. ClassBench-ng: Benchmarking Packet Classification Algorithms in the OpenFlow Era.

Author

Matousek, Jiri, Lucansky, Adam, Janecek, David, Sabo, Jozef, Korenek, Jan, and Antichi, Gianni

Subjects

CLASSIFICATION algorithms, COMMUNITIES, IP networks

Abstract

Packet classification, i.e., the process of categorizing packets into flows, is a first-class citizen in any networking device. Every time a new packet has to be processed, one or more header fields need to be compared against a set of pre-installed rules. This is done for basic forwarding operations, to apply security policies, application-specific processing, or quality-of-service guarantees. A lot of research efforts have identified better lookup techniques, i.e., finding the best match between packet headers and rules, by capitalizing on the rule sets characteristics. Here, ClassBench has greatly served the community by enabling the generation of IPv4 rule sets. In this paper, we present a new tool, ClassBench-ng, that creates synthetic IPv4, IPv6, and OpenFlow rules. We start from an analysis of classification rules deployed in-the-wild and we use the findings to craft our solution. ClassBench-ng can generate a user-defined number of rules as well as an associated header trace matching them. Compared to state-of-the-art solutions, the rule set generation process is usually more accurate and it is able to produce rules matching a number of different use cases, i.e., from an IPv4 router to an OpenFlow switch, which is unique among current rule set generation tools. [ABSTRACT FROM AUTHOR]

Published

2022

122. An SDN Based Distributed IoT Network with NFV Implementation for Smart Cities

Author

Mukherjee, Bivash Kanti, Pappu, Sadiqul Islam, Islam, Md. Jahidul, Acharjee, Uzzal Kumar, Akan, Ozgur, Editorial Board Member, Bellavista, Paolo, Editorial Board Member, Cao, Jiannong, Editorial Board Member, Coulson, Geoffrey, Editorial Board Member, Dressler, Falko, Editorial Board Member, Ferrari, Domenico, Editorial Board Member, Gerla, Mario, Editorial Board Member, Kobayashi, Hisashi, Editorial Board Member, Palazzo, Sergio, Editorial Board Member, Sahni, Sartaj, Editorial Board Member, Shen, Xuemin (Sherman), Editorial Board Member, Stan, Mircea, Editorial Board Member, Jia, Xiaohua, Editorial Board Member, Zomaya, Albert Y., Editorial Board Member, Bhuiyan, Touhid, editor, Rahman, Md. Mostafijur, editor, and Ali, Md. Asraf, editor

Published

2020

123. Survey of Software-Defined Network Security Issues

Author

Guo, Chao, Xie, Dingbang, Han, Yanyan, Guo, Juan, Wei, Zhanzhen, Filipe, Joaquim, Editorial Board Member, Ghosh, Ashish, Editorial Board Member, Prates, Raquel Oliveira, Editorial Board Member, Zhou, Lizhu, Editorial Board Member, Sun, Xingming, editor, Wang, Jinwei, editor, and Bertino, Elisa, editor

Published

2020

124. 6LoWSD: A Protocol Platform for Interoperability Between SDN and IoT

Author

Khongbuh, Wanbanker, Saha, Goutam, Filipe, Joaquim, Editorial Board Member, Ghosh, Ashish, Editorial Board Member, Kotenko, Igor, Editorial Board Member, Prates, Raquel Oliveira, Editorial Board Member, Zhou, Lizhu, Editorial Board Member, Barbosa, Simone Diniz Junqueira, Founding Editor, Saha, Ashim, editor, Kar, Nirmalya, editor, and Deb, Suman, editor

Published

2020

125. The Network Virtualization to Support the Scalability of the Internet of Things

Author

Gonzalez, Carlos J., Flauzac, Olivier, Nolot, Florent, Filipe, Joaquim, Editorial Board Member, Ghosh, Ashish, Editorial Board Member, Kotenko, Igor, Editorial Board Member, Prates, Raquel Oliveira, Editorial Board Member, Zhou, Lizhu, Editorial Board Member, Narváez, Fabián R., editor, Vallejo, Diego F., editor, Morillo, Paulina A., editor, and Proaño, Julio R., editor

Published

2020

126. Monitoring and Traffic Optimization Using Vertical Controller in Multi-domain SDN

Author

Chaturvedi, Anmol, Somwanshi, Devendra, Bundele, Mahesh, Dubey, Charu, Bansal, Jagdish Chand, Series Editor, Deep, Kusum, Series Editor, Nagar, Atulya K., Series Editor, Mathur, Garima, editor, Sharma, Harish, editor, Bundele, Mahesh, editor, Dey, Nilanjan, editor, and Paprzycki, Marcin, editor

Published

2020

127. Performance Evaluation of Multi Controller Software Defined Network Architecture on Mininet

Author

Rashma, B. M., Poornima, G., Kacprzyk, Janusz, Series Editor, Gomide, Fernando, Advisory Editor, Kaynak, Okyay, Advisory Editor, Liu, Derong, Advisory Editor, Pedrycz, Witold, Advisory Editor, Polycarpou, Marios M., Advisory Editor, Rudas, Imre J., Advisory Editor, Wang, Jun, Advisory Editor, Auer, Michael E., editor, and Ram B., Kalyan, editor

Published

2020

128. Optical Network Virtualization

Author

Zhang, Jie, Vilalta, Ricard, Yu, Xiaosong, Lopez, Victor, Aguado Martín, Alejandro, Mukherjee, Biswanath, editor, Tomkos, Ioannis, editor, Tornatore, Massimo, editor, Winzer, Peter, editor, and Zhao, Yongli, editor

Published

2020

129. Software-Defined Networks: Need of Emerging Networks and Technologies

Author

Kumar, Deepak, Thakur, Jawahar, Kacprzyk, Janusz, Series Editor, Gomide, Fernando, Advisory Editor, Kaynak, Okyay, Advisory Editor, Liu, Derong, Advisory Editor, Pedrycz, Witold, Advisory Editor, Polycarpou, Marios M., Advisory Editor, Rudas, Imre J., Advisory Editor, Wang, Jun, Advisory Editor, Dutta, Maitreyee, editor, Krishna, C. Rama, editor, Kumar, Rakesh, editor, and Kalra, Mala, editor

Published

2020

130. Review of Software Defined Networking Based Firewall Issues and Solutions

Author

Garg, Karan, Mathew, Rejo, Xhafa, Fatos, Series Editor, Pandian, A. Pasumpon, editor, Palanisamy, Ram, editor, and Ntalianis, Klimis, editor

Published

2020

131. Handover and QoS Parameters a Performance Assessment on 3G Based SDN

Author

Laassiri, Fatima, Moughit, Mohamed, Idboufker, Noureddine, Spagnoletti, Paolo, Series Editor, De Marco, Marco, Series Editor, Pouloudi, Nancy, Series Editor, Te'eni, Dov, Series Editor, vom Brocke, Jan, Series Editor, Winter, Robert, Series Editor, Baskerville, Richard, Series Editor, Baghdadi, Youcef, editor, Harfouche, Antoine, editor, and Musso, Marta, editor

Published

2020

132. Analysis of Impact of Network Topologies on Network Performance in SDN

Author

Kumar, Dharmender, Sood, Manu, Kacprzyk, Janusz, Series Editor, Pal, Nikhil R., Advisory Editor, Bello Perez, Rafael, Advisory Editor, Corchado, Emilio S., Advisory Editor, Hagras, Hani, Advisory Editor, Kóczy, László T., Advisory Editor, Kreinovich, Vladik, Advisory Editor, Lin, Chin-Teng, Advisory Editor, Lu, Jie, Advisory Editor, Melin, Patricia, Advisory Editor, Nedjah, Nadia, Advisory Editor, Nguyen, Ngoc Thanh, Advisory Editor, Wang, Jun, Advisory Editor, Khanna, Ashish, editor, Gupta, Deepak, editor, Bhattacharyya, Siddhartha, editor, Snasel, Vaclav, editor, Platos, Jan, editor, and Hassanien, Aboul Ella, editor

Published

2020

133. OpenFlow-Based Multi-controller Model for Fault-Tolerant and Reliable Control Plane

Author

Medhi, Nabajyoti, Saikia, Dilip Kumar, Kacprzyk, Janusz, Series Editor, Pal, Nikhil R., Advisory Editor, Bello Perez, Rafael, Advisory Editor, Corchado, Emilio S., Advisory Editor, Hagras, Hani, Advisory Editor, Kóczy, László T., Advisory Editor, Kreinovich, Vladik, Advisory Editor, Lin, Chin-Teng, Advisory Editor, Lu, Jie, Advisory Editor, Melin, Patricia, Advisory Editor, Nedjah, Nadia, Advisory Editor, Nguyen, Ngoc Thanh, Advisory Editor, Wang, Jun, Advisory Editor, Elçi, Atilla, editor, Sa, Pankaj Kumar, editor, Modi, Chirag N., editor, Olague, Gustavo, editor, Sahoo, Manmath N., editor, and Bakshi, Sambit, editor

Published

2020

134. Machine Learning in an SDN Network Environment for DoS Attacks

Author

Dominguez-Limaico, Mauricio, Maya-Olalla, Edgar, Bosmediano-Cardenas, Carlos, Escobar-Teran, Charles, Chafla-Altamirano, Juan Francisco, Bedón-Chamorro, Arturo, Kacprzyk, Janusz, Series Editor, Pal, Nikhil R., Advisory Editor, Bello Perez, Rafael, Advisory Editor, Corchado, Emilio S., Advisory Editor, Hagras, Hani, Advisory Editor, Kóczy, László T., Advisory Editor, Kreinovich, Vladik, Advisory Editor, Lin, Chin-Teng, Advisory Editor, Lu, Jie, Advisory Editor, Melin, Patricia, Advisory Editor, Nedjah, Nadia, Advisory Editor, Nguyen, Ngoc Thanh, Advisory Editor, Wang, Jun, Advisory Editor, Basantes-Andrade, Andrea, editor, Naranjo-Toro, Miguel, editor, Zambrano Vizuete, Marcelo, editor, and Botto-Tobar, Miguel, editor

Published

2020

135. An SDN/NFV Based Approach for Mobility Management in 5G Networks

Author

Omheni, N., Zarai, F., Sadoun, B., Obaidat, M. S., Kacprzyk, Janusz, Series Editor, Pal, Nikhil R., Advisory Editor, Bello Perez, Rafael, Advisory Editor, Corchado, Emilio S., Advisory Editor, Hagras, Hani, Advisory Editor, Kóczy, László T., Advisory Editor, Kreinovich, Vladik, Advisory Editor, Lin, Chin-Teng, Advisory Editor, Lu, Jie, Advisory Editor, Melin, Patricia, Advisory Editor, Nedjah, Nadia, Advisory Editor, Nguyen, Ngoc Thanh, Advisory Editor, Wang, Jun, Advisory Editor, Obaidat, Mohammad S., editor, Ören, Tuncer, editor, and Rango, Floriano De, editor

Published

2020

136. Software Defined Network Partitioning with Graph Partitioning Algorithms

Author

Arlimatti, Shivaleela, Elbrieki, Walid, Hassan, Suhaidi, Habbal, Adib, Kacprzyk, Janusz, Series Editor, Pal, Nikhil R., Advisory Editor, Bello Perez, Rafael, Advisory Editor, Corchado, Emilio S., Advisory Editor, Hagras, Hani, Advisory Editor, Kóczy, László T., Advisory Editor, Kreinovich, Vladik, Advisory Editor, Lin, Chin-Teng, Advisory Editor, Lu, Jie, Advisory Editor, Melin, Patricia, Advisory Editor, Nedjah, Nadia, Advisory Editor, Nguyen, Ngoc Thanh, Advisory Editor, Wang, Jun, Advisory Editor, Saeed, Faisal, editor, Mohammed, Fathey, editor, and Gazem, Nadhmi, editor

Published

2020

137. Introduction

Author

Gasior, Dariusz, Zdonik, Stan, Series Editor, Shekhar, Shashi, Series Editor, Wu, Xindong, Series Editor, Jain, Lakhmi C., Series Editor, Padua, David, Series Editor, Shen, Xuemin Sherman, Series Editor, Furht, Borko, Series Editor, Subrahmanian, V. S., Series Editor, Hebert, Martial, Series Editor, Ikeuchi, Katsushi, Series Editor, Siciliano, Bruno, Series Editor, Jajodia, Sushil, Series Editor, Lee, Newton, Series Editor, and Gasior, Dariusz

Published

2020

138. Analytical Model for Software Defined Network Considering Memory Node for Routing Rules

Author

Mokrov, Evgeny, Poluektov, Dmitry, Machnev, Egor, Shorgin, Sergey, Khakimov, Abdukodir, Hosek, Jiri, Goos, Gerhard, Founding Editor, Hartmanis, Juris, Founding Editor, Bertino, Elisa, Editorial Board Member, Gao, Wen, Editorial Board Member, Steffen, Bernhard, Editorial Board Member, Woeginger, Gerhard, Editorial Board Member, Yung, Moti, Editorial Board Member, Galinina, Olga, editor, Andreev, Sergey, editor, Balandin, Sergey, editor, and Koucheryavy, Yevgeni, editor

Published

2020

139. Data Visualization of Software-Defined Networks During Load Balancing Experiment Using Floodlight Controller

Author

Khan, Mohammed Asif, Goswami, Bhargavi, Asadollahi, Saleh, Anouncia, S. Margret, editor, Gohel, Hardik A., editor, and Vairamuthu, Subbiah, editor

Published

2020

140. Performance evaluation using multiple controllers with different flow setup modes in the software defined network architecture

Author

El-Geder, Suad, Al-Raweshidy, H., and Owens, T.

Subjects

004.6, OpenFlow, Virtual tenant network, Proactive mode, OpenDaylight

Abstract

In this thesis, a scheme of using multiple controllers which handle multiple network devices has been proposed, while using OpenFlow controllers in the proactive operations paradigm, and this in order to face the problem of using a single controller in the SDN model, including the lack of reliability and scalability on such a model. The main characteristic of this new approach are focused on the ability to design a dynamic and highly programmable network, moving the intelligence from the underlying systems to the network itself through a controller. To evaluate the proper effects of this new approach, different dynamic and programmable networks that could simulate real scenarios and measure their performance contrasting the obtained results with the pragmatic theory has been implemented. The SDN (Software-Defined Network) controller (Open Daylight), has been utilized, and thoroughly examined. Different sort of nets has been worked out through diverse Open Daylight functionalities, either implementing the intelligence of the controller (bundle), or going through it by an outside intelligent application (External Orchestrator), and eventually sending it through Open Daylight (by making Open Daylight work as an interpreter/translator from its language to OpenFlow or another protocol language). Summing up, the scheme that has been proposed in this research which is the multiple-proactive mode approach and the single proactive controller has scored no packet loss at all, in which implies the strength of reliability of this scheme, while the multiple reactive mode approach has a range of 1-8% packet loss ratio and the single reactive mode approach has a range of 1-25% packet loss ratio. Also, in case of delay the improvement which was obtained from our approach scored an average reduction of 13% comparing with other tested schemes. Thus, these new and interesting technologies show an astonishing capability to add more efficiency in different types of Networks.

Published

2017

141. Detecting flooding DDoS attacks in software defined networks using supervised learning techniques

Author

Song Wang, Juan Fernando Balarezo, Karina Gomez Chavez, Akram Al-Hourani, Sithamparanathan Kandeepan, Muhammad Rizwan Asghar, and Giovanni Russello

Subjects

Machine learning, Software Defined Networks (SDN), Distributed Denial of Service (DDoS), OpenFlow, Network Security, Engineering (General). Civil engineering (General), TA1-2040

Abstract

For the easy and flexible management of large scale networks, Software-Defined Networking (SDN) is a strong candidate technology that offers centralisation and programmable interfaces for making complex decisions in a dynamic and seamless manner. On the one hand, there are opportunities for individuals and businesses to build and improve services and applications based on their requirements in the SDN. On the other hand, SDN poses a new array of privacy and security threats, such as Distributed Denial of Service (DDoS) attacks. For detecting and mitigating potential threats, Machine Learning (ML) is an effective approach that has a quick response to anomalies. In this article, we analyse and compare the performance, using different ML techniques, to detect DDoS attacks in SDN, where both experimental datasets and self-generated traffic data are evaluated. Moreover, we propose a simple supervised learning (SL) model to detect flooding DDoS attacks against the SDN controller via the fluctuation of flows. By dividing a test round into multiple pieces, the statistics within each time slot reflects the variation of network behaviours. And this ”trend” can be recruited as samples to train a predictor to understand the network status, as well as to detect DDoS attacks. We verify the outcome through simulations and measurements over a real testbed. Our main goal is to find a lightweight SL model to detect DDoS attacks with data and features that can be easily obtained. Our results show that SL is able to detect DDoS attacks with a single feature. The performance of the analysed SL algorithms is influenced by the size of training set and parameters used. The accuracy of prediction using the same SL model could be entirely different depending on the training set.

Published

2022

142. Research of a Virtual Infrastructure Network with Hybrid Software-Defined Switching

Author

Yuri Ushakov, Margarita Ushakova, and Leonid Legashev

Subjects

modeling, OpenFlow, switch, traffic, QoS, Engineering machinery, tools, and implements, TA213-215

Abstract

Modern trends in the information technology have led to the fact that entire systems of infrastructure are becoming software-defined. Modern hyper-converged solutions use software-defined networking and soft switches for the hypervisor networking subsystem. The paper goal is to study traffic processing in hyperconverged structures with software switching based on OpenFlow versus traditional approaches. The features of the hyperconverged solutions network infrastructure are considered, approaches to the study of software-defined environments are described. A model of the processing traffic internal structure of a converged node, combining the functions of a hypervisor, a storage system and a switch, is proposed. Interface models reproduced traffic switching with the traditional approach and with higher-level OpenFlow processing have been developed. The approaches to the implementation of the developed models based on experimental studies of network equipment are described. The results of an experimental study of a network node and a synthesized model are presented. The possibility of implementing the proposed approaches within the specified accuracy are described.

Published

2023

143. Efficient hierarchical hash tree for OpenFlow packet classification with fast updates on GPUs.

Author

Lin, Yu-Hsiang, Shih, Wen-Chi, and Chang, Yeim-Kuan

Subjects

*SOFTWARE-defined networking, *CLASSIFICATION algorithms, *INTERNET protocol address, *QUALITY of service, *CLASSIFICATION

Abstract

• Modern packet classification algorithms need to support both high speed search and update operations. • Implementation on GPU to further improve the performance of the proposed H- HashTree scheme. • The proposed H-HashTree performs better than state-of-the-art algorithms, CutTSS and TabTree in both searches and updates. • The H-HashTree is suitable for frequent updates needed in SDN environment. Packet classification is an important functionality of modern routers/switches, needed in packet forwarding, Quality of Service (QoS), firewall etc. In order to better utilize routers on the Internet, Software Defined Network (SDN) decouples control plane from data plane to fulfill centralized management. Based on OpenFlow standards, packet classification in SDN is designed for multi-field rules which are more complex than traditional 5-tuple rules. In the paper, we propose a novel packet classification algorithm, called hierarchical hash tree (H-HashTree), based on the two IP address fields and the 7 exact-match fields to partition rules into groups. An extended Bloom filter is also proposed to accelerate search process by skipping groups in the hash tree. To further improve the performance, H-HashTree is implemented on GPU. We tested on 100K rules including synthesized rules containing characteristics of ACL, FW, and IPC with different wildcard ratios in exact-match fields, and real OpenFlow rules from Open vSwitch. Compared with the existing state-of-the-art algorithms, CutTSS and TabTree [19] [18] , H-HashTree achieves the best performance on both search and update speeds. H-HashTree achieves 1.17-13.9 and 2.48-12.7 times faster in search speed and 2.03-6.0 and 1.87-4.53 times faster in rule updates from synthesized rulesets than CutTSS and TabTree, respectively. On the GPU platform, H-HashTree can achieve up to 114 MPPS in search speed and less than 0.04 usec/rule in rule updates. [ABSTRACT FROM AUTHOR]

Published

2022

144. Softwarization and virtualization of VoIP networks.

Author

Montazerolghaem, Ahmadreza

Subjects

*TELECOMMUNICATION, *COMMUNICATIONS industries, *INTERNET telephony, *SOFTWARE-defined networking, *COMMUNICATION of technical information, *RESOURCE management, *OPENFLOW (Computer network protocol), *INTERNET

Abstract

Nowadays, voice over IP (VoIP) is a cost-effective and efficient technology in the communications industry. Free applications for transferring multimedia on the Internet are becoming more attractive and pervasive day by day. Nevertheless, the traditional, close, and hardware-defined nature of the VoIP networks' structure makes the management of these networks more complicated and costly. Besides, its elementary and straightforward mechanisms for routing call requests have lost their efficiency, causing some problems, such as SIP servers' overload. In order to tackle these problems, we introduce VoIP network softwarization and virtualization and propose two novel frameworks in this article. In this regard, we take advantage of the SDN and NFV concepts such that we separate data and control planes and provide the possibility for centralized and softwarized control of this network. This matter leads to effective routing. The NFV also makes this network's dynamic resource management possible by functions virtualization of the VoIP network. The proposed frameworks are implemented in a real testbed, including Open vSwitch and Floodlight, examined by various scenarios. The results demonstrate an improvement in signaling and media quality in the VoIP network. As an example, the average throughput and resource efficiency increased by at least 28% and the average response time decreased by 34%. The overall latency has also been reduced by almost 39%. [ABSTRACT FROM AUTHOR]

Published

2022

145. A Survey of Low Rate DDoS Detection Techniques Based on Machine Learning in Software-Defined Networks.

Author

Alashhab, Abdussalam Ahmed, Zahid, Mohd Soperi Mohd, Azim, Mohamed A., Daha, Muhammad Yunis, Isyaku, Babangida, and Ali, Shimhaz

Subjects

*DENIAL of service attacks, *MACHINE learning, *SOFTWARE-defined networking, *COMPUTING platforms, *INTERNET of things, *SERVER farms (Computer network management)

Abstract

Software-defined networking (SDN) is a new networking paradigm that provides centralized control, programmability, and a global view of topology in the controller. SDN is becoming more popular due to its high audibility, which also raises security and privacy concerns. SDN must be outfitted with the best security scheme to counter the evolving security attacks. A Distributed Denial-of-Service (DDoS) attack is a network attack that floods network links with illegitimate data using high-rate packet transmission. Illegitimate data traffic can overload network links, causing legitimate data to be dropped and network services to be unavailable. Low-rate Distributed Denial-of-Service (LDDoS) is a recent evolution of DDoS attack that has been emerged as one of the most serious vulnerabilities for the Internet, cloud computing platforms, the Internet of Things (IoT), and large data centers. Moreover, LDDoS attacks are more challenging to detect because this attack sends a large amount of illegitimate data that are disguised as legitimate traffic. Thus, traditional security mechanisms such as symmetric/asymmetric detection schemes that have been proposed to protect SDN from DDoS attacks may not be suitable or inefficient for detecting LDDoS attacks. Therefore, more research studies are needed in this domain. There are several survey papers addressing the detection mechanisms of DDoS attacks in SDN, but these studies have focused mainly on high-rate DDoS attacks. Alternatively, in this paper, we present an extensive survey of different detection mechanisms proposed to protect the SDN from LDDoS attacks using machine learning approaches. Our survey describes vulnerability issues in all layers of the SDN architecture that LDDoS attacks can exploit. Current challenges and future directions are also discussed. The survey can be used by researchers to explore and develop innovative and efficient techniques to enhance SDN's protection against LDDoS attacks. [ABSTRACT FROM AUTHOR]

Published

2022

146. SDN–IoT empowered intelligent framework for industry 4.0 applications during COVID-19 pandemic.

Author

Rahman, Anichur, Chakraborty, Chinmay, Anwar, Adnan, Karim, Md. Razaul, Islam, Md. Jahidul, Kundu, Dipanjali, Rahman, Ziaur, and Band, Shahab S.

Subjects

*COVID-19 pandemic, *INDUSTRIAL ecology, *DATA integration, *INTERNET of things, *INDUSTRY 4.0, *COVID-19

Abstract

The industrial ecosystem has been unprecedentedly affected by the COVID-19 pandemic because of its immense contact restrictions. Therefore, the manufacturing and socio-economic operations that require human involvement have significantly intervened since the beginning of the outbreak. As experienced, the social-distancing lesson in the potential new-normal world seems to force stakeholders to encourage the deployment of contactless Industry 4.0 architecture. Thus, human-less or less-human operations to keep these IoT-enabled ecosystems running without interruptions have motivated us to design and demonstrate an intelligent automated framework. In this research, we have proposed "EdgeSDN-I4COVID" architecture for intelligent and efficient management during COVID-19 of the smart industry considering the IoT networks. Moreover, the article presents the SDN-enabled layer, such as data, control, and application, to effectively and automatically monitor the IoT data from a remote location. In addition, the proposed convergence between SDN and NFV provides an efficient control mechanism for managing the IoT sensor data. Besides, it offers robust data integration on the surface and the devices required for Industry 4.0 during the COVID-19 pandemic. Finally, the article justified the above contributions through particular performance evaluations upon appropriate simulation setup and environment. [ABSTRACT FROM AUTHOR]

Published

2022

147. A QoS-Guaranteed and Congestion-Controlled SDN Routing Strategy for Smart Grid.

Author

Su, Yueyuan, Jiang, Ping, Chen, Huan, and Deng, Xiaoheng

Subjects

SMART power grids, TELECOMMUNICATION systems, INFORMATION superhighway, COMMUNICATION infrastructure, ELECTRIC power distribution grids, ROUTING algorithms

Abstract

The smart grid (SG) is an integration of a traditional power grid with advanced information and communication infrastructure for a large number of electrical applications. Despite all these advantages that the SG will bring, certain issues arise when designing a high-quality SG communication network. One of the critical challenges is that the existing routing strategies in smart power grids are incapable of guaranteeing differentiated QoS requirements considering the network dynamics. To address this limitation, we propose an SDN routing algorithm called the QoS-guaranteed and congestion-controlled OpenFlow routing strategy (QCORS) to satisfy the various communication demands by utilizing the flexibility of SDN. Gaining from its open and programmable idea in SDN, the proposed strategy is expected to divide the link into different congestion levels based on predicting the future congestion status from transmission links. Then packets are expected to be transmitted to routers through links under lower load conditions. The simulation results have demonstrated that the proposed method can reduce the average peer-to-peer delay of all the vocational flow and guarantee the reliability of the network. [ABSTRACT FROM AUTHOR]

Published

2022

148. DC-CAMP: Dynamic Controller Creation, Allocation and Management Protocol in SDN.

Author

Ahmadian, Ahmadreza and Ahmadi, Mahmood

Subjects

SOFTWARE-defined networking, COMPUTER networking equipment

Abstract

Software-defined networking (SDN) is a new paradigm that influences all networking aspects. SDN decouples the control and data planes. Decoupling the control and data planes makes possible the management of network equipment in a more comfortable way by a control unit called the SDN controller. The SDN controller is the main component with a global view of the whole network. SDN controller is designed in a central or distributed manner. The main problem related to the design of the SDN controller is performance. In this paper, we propose an approach for dynamic creation, allocation, and management of SDN controllers in single and multi-domain networks on XEN hypervisor. In this approach, as soon as the OpenFlow packets are detected, the SDN controller can be created and assigned to multiple domains in the shortest possible time, by managing and monitoring the controllers created. The results show that the proposed approach improves the OpenFlow protocol discovery time compared to the other methods. [ABSTRACT FROM AUTHOR]

Published

2022

149. An Investigation of Topology Poisoning Attacks in Software Defined Networks Through Exploiting Link Layer Discovery Protocol

Author

M.serkan Tok and Mehmet Demirci

Subjects

software defined network, link layer discovery protocol, lldp, openflow, floodlight, cyber security., siber güvenlik, yazılım tanımlı ağ, bağlantı katmanı keşif protokolü, Technology, Engineering (General). Civil engineering (General), TA1-2040

Abstract

Yazılım tanımlı ağlar, geleneksel ağ mimarilerindeki ağ cihazları üzerinde bulunan veri düzlemi ve kontrol düzleminin ayrıldığı ve ağın tamamına hâkim merkezi kontrolcüler tarafından paket iletim kararlarının alındığı bir ağ teknolojisidir. Kontrolcünün ağın bütün işleyişini yönetme zorunluluğu kontrol kolaylığı sağladığı gibi güvenlik açıklıkları da yaratabilmektedir. Bu çalışmada, ele geçirilen uç cihazlar üzerinden kontrolcünün yazılım tanımlı ağ topolojisini keşfetmede kullandığı OpenFlow Keşif Protokolünün (OFDP – OpenFlow Discovery Protocol) temelini oluşturan bağlantı katmanı keşif protokolünün (LLDP- Link Layer Discovery Protocol) kötüye kullanımı vasıtasıyla LLDP Enjeksiyonu ve LLDP yeniden gönderim saldırıları gerçekleştirilmiş, saldırı sonrasında kontrolcü üzerinde tutulan topoloji ve ağdaki uç cihazların bağlantı durumları tespit edilmiştir. Yapılan saldırı testleri sonucunda Floodlight kontrolcünün LLDP istismarını temel alan saldırılara karşı savunmasız olduğu ve kontrolcü üzerinde sahte bağlantı kayıtları oluşturulmasının mümkün olduğu görülmüştür. Ayrıca, kontrolcünün saldırı neticesinde kayıtlanmış sahte linkleri dikkate alarak geçersiz rotalar hesapladığı, bu rotaları kullanması ön görülen uç cihazların erişiminin kesildiği ve ağın genel başarımında azalma olduğu gözlemlenmiştir.

Published

2021

150. تحسين موازنة الحمل في الشبكات المعرَّفة برمجياً

Author

نزيه احمد حرفوش

Subjects

الشبكات المعرفة برمجيا, موازنة الحمل, متحكم (SDN), OpenFlow, Mininet, Miniedit, Engineering (General). Civil engineering (General), TA1-2040

Abstract

أصبح تصميم وإدارة شبكات الحاسوب أكثر إبداعاً خلال السنوات القليلة الماضية بمساعدة الشبكات المعرّفة برمجيّا (SDN)، على الرغم من أنَّ هذه التكنولوجيا ظهرت فجأةً لكنها في الواقع جزء من تاريخ طويل لمحاولة جعل شبكات الحاسوب أكثر قابلية للبرمجة، وتعتبر الشبكات المعرَّفة برمجيّاً (Software Defined Networks SDN) مهيأة لتغيير التعقيد في تصميم وإدارة الشبكات من خلال تقديم واجهة نظيفة ومفتوحة بين كل من الأجهزة التي تعمل على الشبكة والبرامج التي تتحكم فيها، حيث توصَف بأنها طريقةُ ربطٍ شبكيٍّ يكون فيها مستوى التحكم مفصولاً عن العتاد الصّلب، على خلاف التجهيزات الشبكية التقليدية حيث يتواجد مستوي التحكم ومستوى البيانات في نفس الجهاز، وتُمنح مسؤولية التحكم في الشبكات المعرفة برمجياً إلى تطبيق برمجي يسمَّى (المتحكِّم) (Controller) والذي يتم اعتباره كنظام تشغيل الشبكة (Network Operating System) أي أنه تم نقل التحكم من تحكم موزع إلى تحكم مركزي. يملك المتحكم رؤية كاملة عن طوبولوجيا الشبكة التي يديرها وبالتالي يكون هو المسؤول عن توجيه حركة المرور وموازنة الحمل في الشبكة ككُل. أظهرت الشبكات المعرَّفة برمجيّاً (SDN) فوائد عديدة في نواح كثيرة مقارنة بالشبكات التقليدية. ومع ذلك، فإنَّ التوجيه غير الكفوء لحركة تدفق البيانات في الشبكات المعرَّفة برمجيّاً (SDN) يؤثر على الكفاءة ويسبب في بعض الأحيان حالات اختناق عنق الزجاجة، وبالتالي يؤثر توزيع الحمل غير المتكافئ في شبكات (SDN) بشكل كبير على أداء الشبكة، لذلك لجأَ العديد من الباحثين إلى تطبيق تقنيات ساكنة أو ديناميكية لتحقيق موازنة الحمل (Load Balancing) بهدف تحسين كفاءة شبكات (SDN). نقدِّم في هذه الورقة آلية لتحسين موازنة الحمل على حركة تدفق البيانات واختيار الطرق الأفضل لتوجيه الحزم ضمن الشبكة، وتعتمد الآلية المُقترحة على تصميم وتنفيذ آلية توجيه خفيفة الوزن وفعالة من حيث الكلفة، تم استخدام المحاكي (Mininet) لتنفيذ الشبكة وربطها مع المتحكم (HPE VAN) وتم تنفيذ الخوارزمية باستخدام (Python) وإجراء التجارب باستخدام تعليمات الأداة (iperf).

Published

2022