Software Defined Network (SDN) makes network management more flexible by separating control plane and data plane, centralized control and being programmable. Although, network measurement still remains in primary stag...Software Defined Network (SDN) makes network management more flexible by separating control plane and data plane, centralized control and being programmable. Although, network measurement still remains in primary stage in SDN, it has become an essential research field in SDN management. In this context, this paper presents a low-cost high-accuracy measurement framework to support various network measurement tasks, such as throughput, delay and packet loss rate. In this framework, we only measure per-flow edge switches (the first and the last switches). In addition, a new adaptive sampling algorithm is proposed to significantly improve measurement accuracy and decrease network overhead. Meanwhile, we consider a low-cost topology discovery approach into our framework instead of topology discovery currently implemented by SDN controller frameworks. In order to improve the accuracy of delay, we also join a time threshold value to adjust the time delay. Furthermore, we consider and analyze the balance between measurement overhead and accuracy in several aspects. Last, we utilize POX controller to implement the proposed measurement framework. The effectiveness of our solution is demonstrated through simulations in Mininet and Matlab.展开更多
Software-Defined Networking(SDN)is a new network technology that uses programming to complement the data plane with a control plane.To enable safe connection,however,numerous security challenges must be addressed.Floo...Software-Defined Networking(SDN)is a new network technology that uses programming to complement the data plane with a control plane.To enable safe connection,however,numerous security challenges must be addressed.Flooding attacks have been one of the most prominent risks on the internet for decades,and they are now becoming challenging difficulties in SDN networks.To solve these challenges,we proposed a unique firewall application built on multiple levels of packet filtering to provide a flooding attack prevention system and a layer-based packet detection system.This study offers a systematic strategy for wrapping up the examination of SDN operations.The Mininet simulator examines the effectiveness of SDN-based firewalls at various network tiers.The fundamental network characteristics that specify how SDN should operate.The three main analytical measures of the network are jitter,response time,and throughput.During regular operations,their behavior evaluates in the standard SDN conditions of Transmission Control Protocol(TCP)flooding and User Datagram Protocol(UDP)flooding with no SDN occurrences.Low Orbit Ion Cannon(LOIC)is applied to launch attacks on the transmission by the allocated server.Wireshark and MATLAB are used for the behavioral study to determine how sensitive the parameters are used in the SDN network and monitor the fluctuations of those parameters for different simulated scenarios.展开更多
Software-defined networking(SDN) has received tremendous attention from both industry and academia.The centralized control plane in SDN has a global view of the network and can be used to provide more effective soluti...Software-defined networking(SDN) has received tremendous attention from both industry and academia.The centralized control plane in SDN has a global view of the network and can be used to provide more effective solutions for complex problems,such as traffic engineering.This study is motivated by recent advancement in SDN and increasing popularity of multicasting applications.We propose a technique to increase the resiliency of multicasting in SDN based on the subtree protection mechanism.Multicasting is a group communication technology,which uses the network infrastructure efficiently by sending the data only once from one or multiple sources to a group of receivers that share a common path.Multicasting applications,e.g.,live video streaming and video conferencing,become popular,but they are delay-sensitive applications.Failures in an ongoing multicast session can cause packet losses and delay,which can significantly affect quality of service(Qo S).In this study,we adapt a subtree-based technique to protect a multicast tree constructed for Open Flow switches in SDN.The proposed algorithm can detect link or node failures from a multicast tree and then determines which part of the multicast tree requires changes in the flow table to recover from the failure.With a centralized controller in SDN,the backup paths can be created much more effectively in comparison to the signaling approach used in traditional multiprotocol label switching(MPLS) networks for backup paths,which makes the subtree-based protection mechanism feasible.We also implement a prototype of the algorithm in the POX controller and measure its performance by emulating failures in different tree topologies in Mininet.展开更多
文摘Software Defined Network (SDN) makes network management more flexible by separating control plane and data plane, centralized control and being programmable. Although, network measurement still remains in primary stage in SDN, it has become an essential research field in SDN management. In this context, this paper presents a low-cost high-accuracy measurement framework to support various network measurement tasks, such as throughput, delay and packet loss rate. In this framework, we only measure per-flow edge switches (the first and the last switches). In addition, a new adaptive sampling algorithm is proposed to significantly improve measurement accuracy and decrease network overhead. Meanwhile, we consider a low-cost topology discovery approach into our framework instead of topology discovery currently implemented by SDN controller frameworks. In order to improve the accuracy of delay, we also join a time threshold value to adjust the time delay. Furthermore, we consider and analyze the balance between measurement overhead and accuracy in several aspects. Last, we utilize POX controller to implement the proposed measurement framework. The effectiveness of our solution is demonstrated through simulations in Mininet and Matlab.
基金supported in part by the Research Committee of Hamdard University Karachi Pakistan(www.hamdard.edu.pk)the Office of Research Innovation&Commercialization(ORIC)of Dawood University of Engineering&Technology Karachi Pakistan(www.duet.edu.pk).
文摘Software-Defined Networking(SDN)is a new network technology that uses programming to complement the data plane with a control plane.To enable safe connection,however,numerous security challenges must be addressed.Flooding attacks have been one of the most prominent risks on the internet for decades,and they are now becoming challenging difficulties in SDN networks.To solve these challenges,we proposed a unique firewall application built on multiple levels of packet filtering to provide a flooding attack prevention system and a layer-based packet detection system.This study offers a systematic strategy for wrapping up the examination of SDN operations.The Mininet simulator examines the effectiveness of SDN-based firewalls at various network tiers.The fundamental network characteristics that specify how SDN should operate.The three main analytical measures of the network are jitter,response time,and throughput.During regular operations,their behavior evaluates in the standard SDN conditions of Transmission Control Protocol(TCP)flooding and User Datagram Protocol(UDP)flooding with no SDN occurrences.Low Orbit Ion Cannon(LOIC)is applied to launch attacks on the transmission by the allocated server.Wireshark and MATLAB are used for the behavioral study to determine how sensitive the parameters are used in the SDN network and monitor the fluctuations of those parameters for different simulated scenarios.
文摘Software-defined networking(SDN) has received tremendous attention from both industry and academia.The centralized control plane in SDN has a global view of the network and can be used to provide more effective solutions for complex problems,such as traffic engineering.This study is motivated by recent advancement in SDN and increasing popularity of multicasting applications.We propose a technique to increase the resiliency of multicasting in SDN based on the subtree protection mechanism.Multicasting is a group communication technology,which uses the network infrastructure efficiently by sending the data only once from one or multiple sources to a group of receivers that share a common path.Multicasting applications,e.g.,live video streaming and video conferencing,become popular,but they are delay-sensitive applications.Failures in an ongoing multicast session can cause packet losses and delay,which can significantly affect quality of service(Qo S).In this study,we adapt a subtree-based technique to protect a multicast tree constructed for Open Flow switches in SDN.The proposed algorithm can detect link or node failures from a multicast tree and then determines which part of the multicast tree requires changes in the flow table to recover from the failure.With a centralized controller in SDN,the backup paths can be created much more effectively in comparison to the signaling approach used in traditional multiprotocol label switching(MPLS) networks for backup paths,which makes the subtree-based protection mechanism feasible.We also implement a prototype of the algorithm in the POX controller and measure its performance by emulating failures in different tree topologies in Mininet.
