SDN controller deployment method with capacity and control link reliability constraints

2021 ◽  
Author(s):  
YouBin Fu ◽  
QiaoYan Kang ◽  
JianFeng Wang ◽  
YiLong Gu
Keyword(s):  
Link Reliability ◽  
And Control ◽  
Sdn Controller

ROUTING IMPLEMENTATION BASED-ON SOFTWARE DEFINED NETWORK USING RYU CONTROLLER AND OPENVSWITCH

2016 ◽  
Vol 78 (5) ◽  
Author(s):  
Yuli Sun Hariyani ◽  
Indrarini Dyah Irawati ◽  
Danu Dwi S. ◽  
Mohammad Nuruzzamanirridha
Keyword(s):  
Control Function ◽  
Raspberry Pi ◽  
Small Scale ◽  
Software Defined Network ◽  
Standard Protocol ◽  
Open Flow ◽  
Control Functions ◽  
Forward Function ◽  
And Control ◽  
Sdn Controller

Open Flow is a standard protocol for differentiating forward function and control functions to facilitate the management of big network of SDN. The research have been carried out before using the emulator SDN Mininet. However Mininet has many shortcomings, such as the performance of which is less than the maximum due to simulation. Then some researchers also use the Net-FPGA as device. This device is less suitable for small scale because the prices are quite expensive and programming is quite complicated. In this study, SDN implementation carried out using OpenvSwitch as forwarding function mounted on TP-Link that has modificated using openwrt as firmware and Raspberry Pi with Ryu SDN Controller as control functions. The result shows that routing static can be implemented on SDN Network which use Raspberry Pi with Ryu Controller as control function with average bandwith 536.0909 Mbits/sec and average uptime network is 10.45 second.

scholarly journals Application-Aware SDN-Based Iterative Reconfigurable Routing Protocol for Internet of Things (IoT)

Sensors ◽  
2020 ◽  
Vol 20 (12) ◽  
pp. 3521
Author(s):  
Ayesha Shafique ◽  
Guo Cao ◽  
Muhammad Aslam ◽  
Muhammad Asad ◽  
Dengpan Ye
Keyword(s):  
Routing Protocol ◽  
Routing Protocols ◽  
Path Selection ◽  
Network Resources ◽  
Simulation Experiments ◽  
Topology Information ◽  
Application Aware ◽  
And Control ◽  
Sdn Controller ◽  
Internet Of Thing

The central intelligence offered by Software Defined Networking (SDN) promise the smart and reliable reconfiguration which enables the scalability of dynamic enterprise networks. The decoupled forwarding plane and control plane of SDN infrastructure is a key feature that supports the SDN controller to extract the physical network topology information at runtime to formulate network reconfigurations. This SDN-based network reconfiguration enables application-aware routing capability for Internet of Thing (IoT). However, these IoT enabled SDN-based routing protocols face some performance limitations in iterative reconfiguration process due to complete centralized path selection mechanism To this end, in this paper, we propose SDN-Based Application-aware Distributed adaptive Flow Iterative Reconfiguring (SADFIR) routing protocol. The proposed routing protocol enables the distributed SDN iterative solver controller to maintain the load-balancing between flow reconfiguration and flow allocation cost. In particular, the proposed routing protocol of SADFIR implements multiple SDN controllers that collaborate with network devices at forwarding plane to develop appropriate clustering strategy for routing the sensed information. This distributed SDN controllers are assisted to clustering topology that successfully map the residual network resources and also enable unique multi-hop application-aware data transmission. In addition, the proposed SADFIR monitor the iterative reconfiguration settings according to the network traffic of heterogeneity-aware network devices. The simulation experiments are conducted in comparison with the state-of-the-art routing protocols which demonstrates that SADFIR is heterogeneity-aware which is able to adopt the different scales of network with maximum network lifetime.

scholarly journals ADAPTIVE ENTROPY-BASED DETECTION AND MITIGATION OF DDOS ATTACKS IN SOFTWARE DEFINED NETWORKS

2020 ◽  
pp. 399-410
Author(s):  
Jawad Dalou' ◽  
Basheer Al-Duwairi ◽  
Mohammad Al-Jarrah
Keyword(s):  
Denial Of Service ◽  
Attack Detection ◽  
Point Of View ◽  
Software Defined Networks ◽  
Distributed Denial Of Service ◽  
Ddos Attacks ◽  
Control Plane ◽  
Data Plane ◽  
And Control ◽  
Sdn Controller

Software Defined Networking (SDN) has emerged as a new networking paradigm that is based on the decoupling between data plane and control plane providing several benefits that include flexible, manageable, and centrally controlled networks. From a security point of view, SDNs suffer from several vulnerabilities that are associated with the nature of communication between control plane and data plane. In this context, software defined networks are vulnerable to distributed denial of service attacks. In particular, the centralization of the SDN controller makes it an attractive target for these attacks because overloading the controller with huge packet volume would result in bringing the whole network down or degrade its performance. Moreover, DDoS attacks may have the objective of flooding a network segment with huge traffic volume targeting single or multiple end systems. In this paper, we propose an entropy-based mechanism for Distributed Denial of Service (DDoS) attack detection and mitigation in SDN networks. The proposed mechanism is based on the entropy values of source and destination IP addresses of flows observed by the SDN controller which are compared to a preset entropy threshold values that change in adaptive manner based on network dynamics. The proposed mechanism has been evaluated through extensive simulation experiments.

scholarly journals An Efficient Zero-Knowledge Proof Based Identification Scheme for Securing Software Defined Network

2019 ◽  
Vol 20 (1) ◽  
pp. 181-189
Author(s):  
Hamza Mutaher Alshameri ◽  
Pradeep Kumar
Keyword(s):  
Software Defined Network ◽  
Control Plane ◽  
Zero Knowledge ◽  
Identification Scheme ◽  
Security Issues ◽  
Other Information ◽  
And Control ◽  
Network Device ◽  
Sdn Controller ◽  
Zero Knowledge Proof

Software Defined Networking (SDN) is being extensively adopted by researchers and enterprise networks due to its feature of decoupling data and control planes from network device which enables them to implement new networking ideas. Communication between data and control planes faces various security issues where many users in data plane approach controller device in control plane to gain networking policies. In this paper, we proposed an efficient Zero-knowledge proof based identification scheme for securing SDN controller during data and control plane communication. This scheme ensures that only users who prove their knowledge about secrecy without revealing actual secret or any other information about it can communicate with controller. The computation cost was calculated to validate efficiency of the proposed work and compared with scheme that works in the basis of Kerberos authentication protocol.

APPLICATION OF MULTI-LEVEL FAIR QUEUE MECHANISM FOR MITIGATING DENIAL-OF-SERVICE ATTACKS ON SOFTWARE-DEFINED NETWORKS

2021 ◽  
pp. 253-260
Author(s):  
Михаил Юрьевич Рытов ◽  
Руслан Юрьевич Калашников ◽  
Алексей Алексеевич Горелов
Keyword(s):  
Network Performance ◽  
Denial Of Service ◽  
Control Channel ◽  
Bandwidth Utilization ◽  
Dos Attacks ◽  
Centralized Management ◽  
Channel Bandwidth ◽  
And Control ◽  
The Impact ◽  
Sdn Controller

Концепция программно-конфигурируемых сетей (SDN) стремительно набирает популярность в управлении сетевой инфраструктурой центров обработки данных и операторов связи. К её ключевым функциям относятся мониторинг, детальное управление, гибкость и масштабируемость. Но вместе с тем, централизованное управление SDN делает его уязвимым для различных типов атак, таких как спуфинг и отказ в обслуживании (DoS). DoS-атаки оказывают наиболее серьезное воздействие, поскольку они снижают производительность сети из-за перегрузки ее различных компонентов, то есть контроллера, коммутатора и канала управления. Существующие подходы справляются с DoS-атаками в SDN либо путем отбрасывания вредоносных пакетов, либо путем объединения правил потока, что приводит к потерям легитимного трафика. Для уменьшения последствий DoS-атак в этой статье предлагается использование механизма многоуровневой справедливой очереди, который обеспечивает совместное использование ресурсов контроллера с несколькими уровнями очередей, которые могут динамически расширяться и агрегироваться в зависимости от загруженности сети. Предлагаемый подход оценивается путем сравнения его с базовым контроллером SDN. Результаты моделирования показывают, что предлагаемый подход увеличивает производительность SDN с точки зрения использования пропускной способности канала управления. The concept of Software Defined Networking (SDN) is rapidly gaining popularity in the management of the network infrastructure of data centers and telecom operators. Its key functions include monitoring, granular control, flexibility and scalability. But at the same time, the centralized management of SDN makes it vulnerable to various types of attacks, such as spoofing and denial of service (DoS). DoS attacks have the most serious impact because they degrade network performance by overloading various components such as the controller, switch, and control channel. Existing approaches deal with SDN DoS attacks either by dropping malicious packets or by combining flow rules, which leads to the loss of legitimate traffic. To mitigate the impact of DoS attacks, this article proposes the use of a tiered fair queuing mechanism, which allows the sharing of controller resources with multiple queue tiers that can dynamically expand and aggregate based on network congestion. The proposed approach is evaluated by comparing it to a basic SDN controller. Simulation results show that the proposed approach increases SDN performance in terms of control channel bandwidth utilization.

scholarly journals DDoS Mitigation using Software Defined Network

2019 ◽  
Author(s):  
Girish L
Keyword(s):  
High Performance ◽  
Threshold Value ◽  
Software Defined Network ◽  
Control Plane ◽  
New Approach ◽  
Open Flow ◽  
Standard Interface ◽  
And Control ◽  
Sdn Controller ◽  
Centralized System

Software Defined Networking (SDN),is an archetype which decouples the control plane and data plane.Data plane is used to just forward the data and control plane is used to decide how data should be forwarded. Open networking Foundation (ONF) is a group that is used in the development of SDN. For interfacing of control plane and data plane in SDN requires some protocol. One such protocol is Open Flow. The first standard interface designed for SDN is Open Flow. It provides high-performance, controlling granular traffic across multiple vendor’s network devicesAs the network infrastructure of an organization grows, it’s very difficult to manage and control such networks from a centralized system like laptop through programs. As an attempt in this paper we are adopting the SDN technology to manage and control the networks programmatically. In thispaper we are addressing the two issues for providing security to the network from DDoS mitigation and balancing of the load using SDN.In this paper for DDoS mitigation we are assigning a threshold value so that the SDN controller resists the DdoS attack programmatically. For Load balancing is to maximize throughput, minimizes response time, avoid overload by using round robin or random policy method using a new approach called SDN.

scholarly journals Enabling security in software-defined wireless sensor networks for internet of things

2020 ◽  
Author(s):  
Cézar M. G. de Toledo ◽  
Doriedson A. G. de Oliveira ◽  
Marcos A. Simplicio Jr ◽  
Cintia B. Margi
Keyword(s):  
Wireless Sensor Networks ◽  
Sensor Networks ◽  
Wireless Sensor ◽  
Security Services ◽  
Data Flows ◽  
High Level ◽  
And Control ◽  
Sdn Controller ◽  
Resource Constrained Devices ◽  
Constrained Devices

In Software-Defined Wireless Sensor Networks (SDWSN), a logically centralized controller manages data flows according to high level policies. As a result, it provides Wireless Sensor Networks (WSN) with further flexibility and control over its nodes’ behavior. One challenge in this scenario, though, is that SDWSN are mainly composed of resource-constrained devices, which hinders the application of traditional cryptographic protocols in such networks. In this article, we propose a secure framework for SDWSN that takes into account such constraints, enabling the establishment of end-to-end security among nodes and between nodes and the SDN controller. Besides showing how our proposal can enforce different security services in an SDWSN, we also simulate our framework and present a preliminary security cost of framework.

Improving Drone's Command and Control Link Reliability through Dual-Network Connectivity

2019 ◽  
Author(s):  
Rafhael Amorim ◽  
Istvan Z. Kovacs ◽  
Jeroen Wigard ◽  
G. Pocovi ◽  
Troels B. Sorensen ◽  
...  
Keyword(s):  
Command And Control ◽  
Network Connectivity ◽  
Link Reliability ◽  
And Control

Control of Metal Alloy Oxidation with Electric Fields

1973 ◽  
Vol 31 ◽  
pp. 164-165
Author(s):  
R. R. Dils ◽  
P. S. Follansbee
Keyword(s):  
Electric Fields ◽  
Oxidation Process ◽  
Base Alloy ◽  
Oxide Surface ◽  
Platinum Electrodes ◽  
Insulating Layer ◽  
Iron Base Alloy ◽  
Alloy Oxidation ◽  
Aluminum Oxide Layer ◽  
And Control

Electric fields have been applied across oxides growing on a high temperature alloy and control of the oxidation of the material has been demonstrated. At present, three-fold increases in the oxidation rate have been measured in accelerating fields and the oxidation process has been completely stopped in a retarding field.The experiments have been conducted with an iron-base alloy, Pe 25Cr 5A1 0.1Y, although, in principle, any alloy capable of forming an adherent aluminum oxide layer during oxidation can be used. A specimen is polished and oxidized to produce a thin, uniform insulating layer on one surface. Three platinum electrodes are sputtered on the oxide surface and the specimen is reoxidized.

Sign in / Sign up

Export Citation Format

Share Document