A Disaggregated Packet Processing Architecture for Network Function Virtualization

Network function virtualization (NFV) is a concept aimed at achieving telecom grade cloud ecosystem for new-generation networks focusing on capital and operational expenditure (CAPEX and OPEX) savings. This study introduces empirical throughput prediction model for the virtual network function (VNF) and network function virtualization infrastructure (NFVI) architectures based on Linux kernel. The model arises from the methodology for performance evaluation and modeling based on execution area (EA) distribution by CPU core pinning. EA is defined as a software execution unit that can run isolated on a compute resource (CPU core). EAs are derived from the elements and packet processing principles in NFVIs and VNFs based on Linux kernel. Performing measurements and observing linearity of the measured results open the possibility to apply model calibration technique to achieve general VNF and NFVI architecture model with performance prediction and environment setup optimization. The modeling parameters are derived from the cumulative packet processing cost obtained by measurements for collocated EAs on the CPU core hosting the bottleneck EA. The VNF and NFVI architecture model with performance prediction is successfully validated against the measurement results obtained in emulated environment and used to predict optimal system configurations and maximal throughput results for different CPUs.

Download Full-text

Taking Open vSwitch to the Gym: An Automated Benchmarking Approach

10.5753/wpietf.2017.3605 ◽

2017 ◽

Cited By ~ 1

Author(s):

Raphael Vicente Rosa ◽

Christian Esteve Rothenberg

Keyword(s):

Standardized Testing ◽

Network Virtualization ◽

Design Principles ◽

Network Function Virtualization ◽

Packet Processing ◽

Performance Profiling ◽

Testing Framework ◽

Network Function ◽

Performance Benchmarking ◽

Network Functions

Performance benchmarking in Network Function Virtualization (NFV) pose challenging issues due to all moving parts of virtualized infrastructures potentially affecting the packet processing performance of Virtualized Network Functions (VNFs). Despite the advances in best-of-breed network virtualization technologies, the dependencies on the underlying allocated hardware resources, their characteristics and customized configurations, result in benchmarking hazards that call for innovative and standardized testing methodologies towards adequate VNF performance profiling. To this end, we designed and prototyped Gym, a testing framework for automated NFV performance benchmarking we experimentally validated on Open vSwitch as a target VNF. The design principles and implementation of Gym demonstrate an useful apparatus to assist standards organizations formalizing VNF testing methodologies.

Download Full-text

Prospects for Software Defined Networking and Network Function Virtualization in Media and Broadcast

SMPTE 2015 Annual Technical Conference and Exhibition ◽

10.5594/m001633 ◽

2015 ◽

Cited By ~ 3

Author(s):

John Ellerton ◽

Andrew Lord ◽

Paul Gunning ◽

Kristan Farrow ◽

Paul Wright ◽

...

Keyword(s):

Software Defined Networking ◽

Network Function Virtualization ◽

Network Function

Download Full-text

Review on Network Function Virtualization in Information-Centric Networking

2021 International Conference of Technology, Science and Administration (ICTSA) ◽

10.1109/ictsa52017.2021.9406543 ◽

2021 ◽

Author(s):

Yousef Fazea ◽

Fathey Mohammed ◽

Mohammed Madi ◽

Ammar Ahmed Alkahtani

Keyword(s):

Network Function Virtualization ◽

Information Centric Networking ◽

Network Function

Download Full-text

Using Aerial and Vehicular NFV Infrastructures to Agilely Create Vertical Services

Sensors ◽

10.3390/s21041342 ◽

2021 ◽

Vol 21 (4) ◽

pp. 1342

Author(s):

Borja Nogales ◽

Miguel Silva ◽

Ivan Vidal ◽

Miguel Luís ◽

Francisco Valera ◽

...

Keyword(s):

Ad Hoc Network ◽

Ad Hoc ◽

Cost Effective ◽

Network Services ◽

Network Function Virtualization ◽

Mobile Environments ◽

Network Resources ◽

The Public ◽

Network Function ◽

And Performance

5G communications have become an enabler for the creation of new and more complex networking scenarios, bringing together different vertical ecosystems. Such behavior has been fostered by the network function virtualization (NFV) concept, where the orchestration and virtualization capabilities allow the possibility of dynamically supplying network resources according to its needs. Nevertheless, the integration and performance of heterogeneous network environments, each one supported by a different provider, and with specific characteristics and requirements, in a single NFV framework is not straightforward. In this work we propose an NFV-based framework capable of supporting the flexible, cost-effective deployment of vertical services, through the integration of two distinguished mobile environments and their networks: small sized unmanned aerial vehicles (SUAVs), supporting a flying ad hoc network (FANET) and vehicles, promoting a vehicular ad hoc network (VANET). In this context, a use case involving the public safety vertical will be used as an illustrative example to showcase the potential of this framework. This work also includes the technical implementation details of the framework proposed, allowing to analyse and discuss the delays on the network services deployment process. The results show that the deployment times can be significantly reduced through a distributed VNF configuration function based on the publish–subscribe model.

Download Full-text

On Blockchain-Based Cross-Service Communication and Resource Orchestration on Edge Clouds

Informatics ◽

10.3390/informatics8010013 ◽

2021 ◽

Vol 8 (1) ◽

pp. 13

Author(s):

Konstantinos Papadakis-Vlachopapadopoulos ◽

Ioannis Dimolitsas ◽

Dimitrios Dechouniotis ◽

Eirini Eleni Tsiropoulou ◽

Ioanna Roussaki ◽

...

Keyword(s):

Network Function Virtualization ◽

Network Resources ◽

Service Orchestration ◽

Network Slicing ◽

Network Function ◽

Resource Orchestration ◽

Full Capacity ◽

Cloud Datacenter ◽

Set Up ◽

The Internet Of Things

With the advent of 5G verticals and the Internet of Things paradigm, Edge Computing has emerged as the most dominant service delivery architecture, placing augmented computing resources in the proximity of end users. The resource orchestration of edge clouds relies on the concept of network slicing, which provides logically isolated computing and network resources. However, though there is significant progress on the automation of the resource orchestration within a single cloud or edge cloud datacenter, the orchestration of multi-domain infrastructure or multi-administrative domain is still an open challenge. Towards exploiting the network service marketplace at its full capacity, while being aligned with ETSI Network Function Virtualization architecture, this article proposes a novel Blockchain-based service orchestrator that leverages the automation capabilities of smart contracts to establish cross-service communication between network slices of different tenants. In particular, we introduce a multi-tier architecture of a Blockchain-based network marketplace, and design the lifecycle of the cross-service orchestration. For the evaluation of the proposed approach, we set up cross-service communication in an edge cloud and we demonstrate that the orchestration overhead is less than other cross-service solutions.

Download Full-text

Quality of service provisioning in network function virtualization: a survey

Computing ◽

10.1007/s00607-021-00925-x ◽

2021 ◽

Author(s):

Seyedakbar Mostafavi ◽

Vesal Hakami ◽

Maryam Sanaei

Keyword(s):

Quality Of Service ◽

Network Function Virtualization ◽

Service Provisioning ◽

Network Function ◽

Quality Of Service Provisioning

Download Full-text

Design and Implementation of Virtual Security Function Based on Multiple Enclaves

Future Internet ◽

10.3390/fi13010012 ◽

2021 ◽

Vol 13 (1) ◽

pp. 12

Author(s):

Juan Wang ◽

Yang Yu ◽

Yi Li ◽

Chengyang Fan ◽

Shirong Hao

Keyword(s):

Intrusion Detection System ◽

Detection System ◽

Network Function Virtualization ◽

Sensitive Data ◽

Network Function ◽

State Security ◽

Security Challenges ◽

Iot Platforms ◽

Scalable Network ◽

Virtual Network Function

Network function virtualization (NFV) provides flexible and scalable network function for the emerging platform, such as the cloud computing, edge computing, and IoT platforms, while it faces more security challenges, such as tampering with network policies and leaking sensitive processing states, due to running in a shared open environment and lacking the protection of proprietary hardware. Currently, Intel® Software Guard Extensions (SGX) provides a promising way to build a secure and trusted VNF (virtual network function) by isolating VNF or sensitive data into an enclave. However, directly placing multiple VNFs in a single enclave will lose the scalability advantage of NFV. This paper combines SGX and click technology to design the virtual security function architecture based on multiple enclaves. In our design, the sensitive modules of a VNF are put into different enclaves and communicate by local attestation. The system can freely combine these modules according to user requirements, and increase the scalability of the system while protecting its running state security. In addition, we design a new hot-swapping scheme to enable the system to dynamically modify the configuration function at runtime, so that the original VNFs do not need to stop when the function of VNFs is modified. We implement an IDS (intrusion detection system) based on our architecture to verify the feasibility of our system and evaluate its performance. The results show that the overhead introduced by the system architecture is within an acceptable range.

Download Full-text