A research on the application of software defined networking in satellite network architecture

Software-defined networking is a new paradigm that overcomes problems associated with traditional network architecture by separating the control logic from data plane devices. It also enhances performance by providing a highly-programmable interface that adapts to dynamic changes in network policies. As software-defined networking controllers are prone to single-point failures, providing security is one of the biggest challenges in this framework. This paper intends to provide an intrusion detection mechanism in both the control plane and data plane to secure the controller and forwarding devices respectively. In the control plane, we imposed a flow-based intrusion detection system that inspects every new incoming flow towards the controller. In the data plane, we assigned a signature-based intrusion detection system to inspect traffic between Open Flow switches using port mirroring to analyse and detect malicious activity. Our flow-based system works with the help of trained, multi-layer machine learning-based classifier, while our signature-based system works with rule-based classifiers using the Snort intrusion detection system. The ensemble feature selection technique we adopted in the flow-based system helps to identify the prominent features and hasten the classification process. Our proposed work ensures a high level of security in the Software-defined networking environment by working simultaneously in both control plane and data plane.

Download Full-text

Implementation of Network Traffic Monitoring using Software Defined Networking Ryu Controller

WSEAS TRANSACTIONS ON SYSTEMS AND CONTROL ◽

10.37394/23203.2021.16.23 ◽

2021 ◽

Vol 16 ◽

pp. 270-277

Author(s):

Omran M. A. Alssaheli ◽

Z. Zainal Abidin ◽

N. A. Zakaria ◽

Z. Abal Abas

Keyword(s):

Network Traffic ◽

Network Architecture ◽

Network Performance ◽

Software Defined Networking ◽

Traffic Monitoring ◽

Cloud Services ◽

Future Research ◽

Mesh Topology ◽

Network Controller ◽

Network Traffic Monitoring

Network traffic monitoring is vital for enhancing the overall network performance and for optimizing the traffic flows. However, an emerging growth of use in cloud services, internet-of-things, block-chain and data analytics, demand the hardware-based-network-controller to provide more features for expanding network architecture. Therefore, Software Defined Networking (SDN) offers a new solution in terms of scalability, usability and programmable software-based-network-controller for the legacy network infrastructure. In fact, SDN provides a dynamic platform for the network traffic monitoring using international standard. In this study, SDN setup and installation method uses a Mininet emulator containing a controller Ryu with switching hub component, OpenFlow switches, and nodes. The number of nodes is adding until reaches to 16 nodes and evaluated through different network scenarios (single, linear and tree topology). Findings show that the single topology gives a winning criterion compared to other topologies. SDN implementation is measured with performance parameters such as Throughput, Jitter, Bandwidth and Round-Trip Time between scenarios using the Ryu controller. Future research explores on the performance of SDN in larger network and investigates the efficiency and effectiveness of SDN implementation in mesh topology.

Download Full-text

A meshed VSAT satellite network architecture using an on-board ATM switch

1997 IEEE International Performance, Computing and Communications Conference ◽

10.1109/pccc.1997.581519 ◽

2002 ◽

Cited By ~ 8

Author(s):

T. Ors ◽

Z. Sun ◽

B.G. Evans

Keyword(s):

Network Architecture ◽

Satellite Network ◽

Atm Switch

Download Full-text

Adaptive optical satellite network architecture

International Conference on Space Optics — ICSO 2020 ◽

10.1117/12.2599250 ◽

2021 ◽

Author(s):

Hideaki Kotake ◽

Yuma Abe ◽

Tetsuharu Fuse ◽

Toshihiro Kubooka ◽

Morio Toyoshima

Keyword(s):

Network Architecture ◽

Satellite Network

Download Full-text

Vulnerability of SDN Network Architecture and Proposed Countermeasures on Enhancing Security

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.d5266.118419 ◽

2019 ◽

Vol 8 (4) ◽

pp. 7197-7201

Keyword(s):

Network Architecture ◽

High Speed ◽

Research Work ◽

Software Defined Networking ◽

Data Traffic ◽

High Data ◽

Weak Points ◽

Pros And Cons ◽

And Control ◽

Networking Architecture

The current problems raising as a horizon in the computational and networking sector is based on the unimaginable increase of high numbers of users which in turn results in high data traffic, limitations over products which are vendor specific, incurring high expenses in maintaining the existing network. This dilutes a major part of the beneficiaries in the sector to move towards Cloud Networks. All these happenings in the past has quietly increased the risks and challenges in the aspect of security considering both data and the infrastructure accommodating the data. In an attempt to address almost a major portion of the existing above said problems, Software Defined Networking was highly anticipated, however, it was considered as a theoretical approach. After the implementation of SDN networks by industrial giants like Google, the SDN concepts again managed to reach the safer hands of the researchers in the movement of enhancement. A very rapid and high speed research work has been initiated by researchers all around the globe in analysing the risk factors and implementation barricades stated in the Software Defined Networking architecture. The research work focus on adding values to the Quality of Service, Latency, Load Balancing and most importantly the security aspects in various metrics of the Software Defined Networking Architecture. The odd man out architecture of Software Defined Networking by decoupling data and control plane allows the network to be configured and maintained in a real time scenario pertaining to pose a complete view of the network and its flow. The fact that is considered as an advantage itself is a factor of question in the case of security in the overall SDN architecture. This paper focuses on a detailed view of SDN architecture with the existing security feature and continues with the expected threats and classifying the weak points in the SDN. This paper also briefs about the pros and cons of the existing applications in the SDN architecture.

Download Full-text

The State of the Art of Software Defined Networking (SDN)

International Journal of Information Communication Technologies and Human Development ◽

10.4018/ijicthd.2018100104 ◽

2018 ◽

Vol 10 (4) ◽

pp. 44-60 ◽

Cited By ~ 2

Author(s):

Emilia Rosa Jimson ◽

Kashif Nisar ◽

Mohd Hanafi Ahmad Hijazi

Keyword(s):

Real Time ◽

Network Architecture ◽

Software Defined Networking ◽

Centralized Control ◽

Network Resources ◽

Limited Bandwidth ◽

Network Bandwidth ◽

Real Time Traffic ◽

Complex Design ◽

Proposed Model

The complex design of the current network architecture, which has inevitably resulted in poor network resources management, has triggered researchers to propose a Software Defined Networking (SDN)-based network model to simplify the management of the limited bandwidth of a network. The key idea of the SDN-based model is to simplify network management by introducing a centralized control through which the dynamic update of forwarding rules, the simplification of network devices tasks, and flow abstractions can be realized. This proposed model utilizes the limited network bandwidth systematically by giving real-time traffic higher priority than non-real-time traffic to access limited resources. The experimental results showed that the proposed model helped ensure real-time traffic would be given greater priority to access the limited bandwidth, where the major portion of the limited bandwidth was allocated to the real-time traffic.

Download Full-text

The Research of the Component-Based Satellite Network Protocols

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.475-476.817 ◽

2013 ◽

Vol 475-476 ◽

pp. 817-823

Author(s):

Chun Dong She

Keyword(s):

Network Security ◽

Network Design ◽

Network Architecture ◽

Network Protocols ◽

Satellite Network ◽

Hierarchical Network ◽

High Quality ◽

Functional Components ◽

Network Component

The traditional hierarchical network architecture has the defect of redundancy and no interaction between the layers. These defects have bad impact on QoS and network security. Hierarchical network protocols is difficult to be used to satellite network. Component-based network architecture is proposed for eliminating of hierarchical network design flaws. Network protocols will be divided according to the function for forming of low coupling functional components. It provides high quality services to the application using combined components.

Download Full-text

A Review on Software-Defined Networking Distributed Controllers

International Journal Of Engineering And Computer Science ◽

10.18535/ijecs/v9i2.4439 ◽

2020 ◽

Vol 9 (2) ◽

pp. 24953-24961

Author(s):

Worku Muluye

Keyword(s):

Network Architecture ◽

Computer Network ◽

Software Defined Networking ◽

Critical Issue ◽

Software Defined Network ◽

Control Plane ◽

Second Best ◽

Distributed Controller ◽

Data Plane ◽

Distributed Controllers

A computer network is a critical issue in our day to day activity; however, today it works under various problems. Since in the current network architecture the control plane and data plane are vertically bundled on the same device. To solve this problem programmable Software-Defined Network is released. OpenFlow is a protocol that vertically separates control plane and data plane of the network devices. In SDN the controllers are the brains of the network that controls the network devices. Today’s network required successful integration of distributed controllers to make the network more consistent. SDN distributed controller is a controller that we can add or remove the controllers according to the number of devices change. Distributed controller architecture has investigated and compared the 6 recent distributed controllers by using 26 criteria. Orion is the first best controller and ONOS is the second best controller.

Download Full-text

SDNDefender: A Comprehensive DDoS Defense Mechanism Using Hybrid Approaches over Software Defined Networking

Security and Communication Networks ◽

10.1155/2021/5097267 ◽

2021 ◽

Vol 2021 ◽

pp. 1-22

Author(s):

Tianfang Yu ◽

Lanlan Rui ◽

Xuesong Qiu

Keyword(s):

Network Architecture ◽

Defense Mechanism ◽

Software Defined Networking ◽

Transport Layer ◽

Global Network ◽

Control Mode ◽

Detection Accuracy ◽

Centralized Control ◽

Ddos Attacks ◽

Network Bandwidth

In traditional networks, DDoS attacks are often launched in the network layer or the transport layer. Researchers had explored this problem in depth and put forward plenty of solutions. However, these solutions are only suitable for scenarios such as a single link or victim side network and could not analyse traffic distribution from the angle of the global network. Also, the TCP/IP network architecture lacks abilities to quickly conduct resource deployment and traffic scheduling. When DDoS attacks occur, victims usually could not respond in time. With the superiorities of centralized control mode and global topological view, Software-Defined Networking (SDN) provides a new way to get over the above issues. In this paper, we adopt a combination of diverse technologies to design SDNDefender, a SDN-based DDoS detection and defense mechanism, which is composed of two core components aiming to counter the most popular DDoS attacks including IP spoofing attack and TCP SYN flood attack. We carry out quantitative simulation experiments for evaluating SDNDefender from many metrics. The experimental results show that in contrast to other DDoS defense algorithms, SDNDefender not only efficiently validates spoofed packets and withstands well-known attacks but also defends unknown attacks according to the target’s available resources. Besides, SDNDefender could significantly reduce TCP half-open connections and improve detection accuracy, alleviating attack influences that exhaust the server’s resources and network bandwidth.

Download Full-text

On the features of Software Defined Networking for the QoS provision in data networks

Inge CUC ◽

10.17981/ingecuc.14.2.2018.10 ◽

2018 ◽

Vol 14 (2) ◽

pp. 106-115

Author(s):

Jonier Hernando Porras Duque ◽

Daniel Orlando Ducuara Beltrán ◽

Gustavo Adolfo Puerto Leguizamón

Keyword(s):

Quality Of Service ◽

Network Architecture ◽

Software Defined Networking ◽

Data Networks ◽

Centralized Control ◽

Transport Services ◽

Use Of Resources ◽

Fast Evolution ◽

Base Network

Introduction: The traditional networks mostly implement devices where the control plane is distributed and mixed with the data plane; this fact does not allow a fast evolution towards a process that contributes to improving the transport of services. Otherwise, Software Defined Networking is a set of transport services that optimize the use of resources as these have a centralized network structure. Objective: To determine the aspects that enable software-defined networking to provide quality of service features in data networks. Methodology: This study is performed through network simulation over the same base network and under the same working conditions by carrying out measurements of the packet forwarding response time and management of the transported bandwidth. This study includes the demonstration of the multimedia content transport over a network architecture defining priorities to the links. Results: The outcomes show how the Software Defined Networking achieves better management of data transmission through the base network. In the same way, the previous outcomes are reinforced with those obtained in the quality of service test performed on the streaming of a multimedia flow. Conclusions: Due to the centralized control of Software Defined Networking, forwarding functions with the quality of service features are enabled in data networks based on layer-2 devices.

Download Full-text