SDN Multi-Domain Supervisory Controller with Enhanced Computational Security Count

Authors

  • Adamu Abubakar Ibrahim Deparment of Computer Science, International Islamic University Malaysia, 53100, Kuala Lumpur, Malaysia.
  • Abdul Razaq Atayee Department of Computer Science, International Islamic University Malaysia, Kuala Lumpur, Malaysia
  • Ibrahim A. Lawal Department of Information Technology, Bayero University Kano, Nigeria

Keywords:

SDN Supervisory Controller, Multi-domain environment, Security, dependency, Latency

Abstract

As a new paradigm, software-defined networks (SDNs) are becoming increasingly popular in the network world. From the available research, it can be concluded that SDN multi-domain environments have been under-protected. In areas where security was not a primary concern, management and policies received the vast majority of attention. Previous studies have proposed a "distributed SDN Supervisory Controllers in Multi-Domain Environment" but still suffer from an operational count limitation. An improved framework for distributed SDN supervisory controllers operating in a multi-domain environment is the main focus of this paper. Additionally, we implemented an SDN supervisory controller on the network layer and a global SDN supervisory controller to improve operational counts for security. Furthermore, a security layer with a local and a global security controller was implemented. To test the proposed framework's compatibility, we constructed a network using Mininet, consisting of virtual hosts, switches, controllers, and links. In order to connect the various domains and the control centre, the network uses a wide area network. The switch takes an average of 120 milliseconds, with a packet loss rate of 1.89 percent on average, according to simulation and experiment results. A more efficient security architecture has been put forth, and it is superior to the one currently in place.

References

M. Alsaeedi, M.M. Mohamad, & A.A. Al-Roubaiey,. Toward adaptive and scalable OpenFlow-SDN flow control: A survey. IEEE Access, 7, 2019, pp. 107346-107379.

P.P. Ray., & N. Kumar. SDN/NFV architectures for edge-cloud oriented IoT: A systematic review. Computer Communications, 169, 2021, pp. 129-153.

D. Kreutz, F.M. Ramos, P.E. Verissimo, C.E. Rothenberg, S. Azodolmolky, & S. Uhlig. Software-defined networking: A comprehensive survey. Proceedings of the IEEE, 103(1), 2014, pp. 14-76.

K. Phemius, M. Bouet, & J. Leguay. Disco: Distributed multi-domain sdn controllers. In 2014 IEEE Network Operations and Management Symposium (NOMS), 2014, pp. 1-4.

S. Khorsandroo, A.G. Sanchez, A.S. Tosun, J.M. Arco, & R. Doriguzzi-Corin, R. Hybrid SDN evolution: A comprehensive survey of the state-of-the-art. Computer Networks, 192, 2021, 107981.

M.R. Haque, S.C. Tan, Z. Yusoff, K. Nisar, R. Kaspin, I. Haider, I., Nisar, S., Rodrigues, J.J., Shankar Chowdhry, B., Uqaili, M.A. and Prasad Majumder, S., Unprecedented smart algorithm for uninterrupted SDN services during DDoS attack. Computers, Materials & Continua, 70(1), 2022, pp.875-894.

Deb, R., & Roy, S. (2022). A comprehensive survey of vulnerability and information security in SDN. Computer Networks, 108802.

Zhang, X., Cui, L., Wei, K., Tso, F. P., Ji, Y., & Jia, W. (2021). A survey on stateful data plane in software defined networks. Computer Networks, 184, 107597.SPOF.

Mishra, A., Gupta, N., & Gupta, B. B. (2021). Defense mechanisms against DDoS attack based on entropy in SDN-cloud using POX controller. Telecommunication systems, 77(1), 47-62.

Rahman, A., Chakraborty, C., Anwar, A., Karim, M., Islam, M., Kundu, D., Rahman, Z. & Band, S. S. (2021). SDN–IoT empowered intelligent framework for industry 4.0 applications during COVID-19 pandemic. Cluster Computing, 1-18.

Ahmad, S., & Mir, A. H. (2021). Scalability, consistency, reliability and security in SDN controllers: a survey of diverse SDN controllers. Journal of Network and Systems Management, 29(1), 1-59.

Ahammad, I., Khan, M. A. R., Salehin, Z. U., Uddin, M., & Soheli, S. J. (2021). Improvement of QOS in an IoT ecosystem by integrating fog computing and SDN. International Journal of Cloud Applications and Computing (IJCAC), 11(2), 48-66.

Balasubramanian, V., Aloqaily, M., & Reisslein, M. (2021). An SDN architecture for time sensitive industrial IoT. Computer Networks, 186, 107739.

Anerousis, N., Chemouil, P., Lazar, A. A., Mihai, N., & Weinstein, S. B. (2021). The origin and evolution of open programmable networks and sdn. IEEE Communications Surveys & Tutorials, 23(3), 1956-1971.

Rahman, A., Islam, M. J., Montieri, A., Nasir, M. K., Reza, M. M., Band, S. S., ... & Mosavi, A. (2021). Smartblock-sdn: an optimized blockchain-sdn framework for resource management in IoT. IEEE Access, 9, 28361-28376.

Novaes, M. P., Carvalho, L. F., Lloret, J., & Proença Jr, M. L. (2021). Adversarial Deep Learning approach detection and defense against DDoS attacks in SDN environments. Future Generation Computer Systems, 125, 156-167.

Ren, X., Aujla, G. S., Jindal, A., Batth, R. S., & Zhang, P. (2021). Adaptive recovery mechanism for SDN controllers in Edge-Cloud supported FinTech applications. IEEE Internet of Things Journal.

Sedaghat, S., & Jahangir, A. H. (2021). RT-TelSurg: Real time telesurgery using SDN, fog, and cloud as infrastructures. IEEE Access, 9, 52238-52251.

Ni, T., Gu, X., Wang, H., & Li, Y. (2013). Real-time detection of application-layer DDoS attack using time series analysis. Journal of Control Science and Engineering, 2013.

Cabaj, K., Gregorczyk, M., & Mazurczyk, W. (2018). Software-defined networking-based crypto ransomware detection using HTTP traffic characteristics. Computers & Electrical Engineering, 66, 353-368.

Wang, M., Liu, J., Mao, J., Cheng, H., Chen, J., & Qi, C. (2017). RouteGuardian: Constructing secure routing paths in software-defined networking. Tsinghua Science and Technology, 22(4), 400-412.

Mattos, Diogo Menezes Ferrazani, and Otto Carlos Muniz Bandeira Duarte. "AuthFlow: authentication and access control mechanism for software defined networking." Annals of Telecommunications 71.11-12 (2016): 607-615.

Mattos, D. M., Duarte, O. C. M., & Pujolle, G. (2016, May). A resilient distributed controller for software defined networking. In 2016 IEEE International Conference on Communications (ICC) (pp. 1-6).

Aslam, M., Ye, D., Tariq, A., Asad, M., Hanif, M., Ndzi, D., Chelloug, S.A., Elaziz, M.A., Al-Qaness, M.A. and Jilani, S.F. (2022). Adaptive Machine Learning Based Distributed Denial-of-Services Attacks Detection and Mitigation System for SDN-Enabled IoT. Sensors, 22(7), 2697.

Yurekten, O., & Demirci, M. (2021). SDN-based cyber defense: A survey. Future Generation Computer Systems, 115, 126-149.

Kakkavas, G., Stamou, A., Karyotis, V., & Papavassiliou, S. (2021). Network tomography for efficient monitoring in SDN-enabled 5G networks and beyond: Challenges and opportunities. IEEE Communications Magazine, 59(3), 70-76.

Prathiba, S. B., Raja, G., Bashir, A. K., Alzubi, A. A., & Gupta, B. (2021). SDN-assisted safety message dissemination framework for vehicular critical energy infrastructure. IEEE Transactions on Industrial Informatics.

Paolucci, F., Cugini, F., Castoldi, P., & Osiński, T. (2021). Enhancing 5G SDN/NFV edge with P4 data plane programmability. IEEE Network, 35(3), 154-160.

Phan, L. A., Nguyen, D. T., Lee, M., Park, D. H., & Kim, T. (2021). Dynamic fog-to-fog offloading in SDN-based fog computing systems. Future Generation Computer Systems, 117, 486-497.

Carstensen, A. K., & Bernhard, J. (2019). Design science research–a powerful tool for improving methods in engineering education research. European Journal of Engineering Education, 44(1-2), 85-102.

Downloads

Published

2022-06-30

How to Cite

Abubakar Ibrahim, A., Razaq Atayee, A., & Lawal, I. A. . (2022). SDN Multi-Domain Supervisory Controller with Enhanced Computational Security Count. Journal of Telecommunication, Electronic and Computer Engineering (JTEC), 14(2), 23–29. Retrieved from https://jtec.utem.edu.my/jtec/article/view/6185