Distributed packet inspection for network security purposes in software-defined networking environments

5G networks are foreseen to offer rich ubiquitous communication infrastructure with wide range of high-quality services. However, as they are formed using a mix of modern network technologies ensuring their security is crucial. Currently, Software Defined Networking is envisioned as a key technology to provide security in 5G. However, due to its centralized nature SDN-based systems may suffer from performance issues and are difficult to scale. That is why in this paper, we propose a novel distributed packet inspection method which is easy to scale, migrate and is able to utilize any existing SDN controller software. Instead of running a single instance of SDN controller process we propose to utilize multiple processes and to distribute the traffic in a fair manner across running instances. In result, such a load-balancing solution is able to run independently on multiple machines allowing for highly scalable solution. Performed experimental evaluation proves that such solution is efficient and effective.

[1]  Leonid Barenboim,et al.  Dynamic SDN Controller Load Balancing , 2019, Future Internet.

[2]  Fatih Alagöz,et al.  Cooperative load balancing for hierarchical SDN controllers , 2016, 2016 IEEE 17th International Conference on High Performance Switching and Routing (HPSR).

[3]  Piotr Nowakowski,et al.  Securing Modern Network Architectures with Software Defined Networking , 2019, 2019 International Conference on Computational Science and Computational Intelligence (CSCI).

[4]  HaoFang,et al.  Towards an elastic distributed SDN controller , 2013 .

[5]  Wojciech Mazurczyk,et al.  Network Threats Mitigation Using Software-Defined Networking for the 5G Internet of Radio Light System , 2019, Secur. Commun. Networks.

[6]  Mario Marchese,et al.  BalCon: A Distributed Elastic SDN Control via Efficient Switch Migration , 2017, 2017 IEEE International Conference on Cloud Engineering (IC2E).

[7]  Xirong Que,et al.  BalanceFlow: Controller load balancing for OpenFlow networks , 2012, 2012 IEEE 2nd International Conference on Cloud Computing and Intelligence Systems.