Infrastructure upgrade framework for Content Delivery Networks robust to targeted attacks

Abstract Content Delivery Networks (CDNs) are crucial for enabling delivery of services that require high capacity and low latency, primarily through geographically-diverse content replication. Optical networks are the only available future-proof technology that meets the reach and capacity requirements of CDNs. However, the underlying physical network infrastructure is vulnerable to various security threats, and the increasing importance of CDNs in supporting vital services intensifies the concerns related to their robustness. Malicious attackers can target critical network elements, thus severely degrading network connectivity and causing large-scale service disruptions. One way in which network operators and cloud computing providers can increase the robustness against malicious attacks is by changing the topological properties of the network through infrastructure upgrades. This work proposes a framework for CDN infrastructure upgrade that performs sparse link and replica addition with the objective of maximizing the content accessibility under targeted link cut attacks. The framework is based on a newly defined content accessibility metric denoted as μ-ACA which allows the network operator to gauge the CDN robustness over a range of attacks with varying intensity. Two heuristics, namely Content-Accessibility-Aware Link Addition Heuristic (CAA-LAH), and Content-Accessibility-Aware Replica Addition Heuristic (CAA-RAH) are developed to perform strategic link and replica placement, respectively, and hamper attackers from disconnecting users from the content even in severe attack scenarios. Extensive experiments on real-world reference network topologies show that the proposed framework effectively increases the CDN robustness by adding a few links or replicas to the network.

[1]  Hans J. Herrmann,et al.  Onion-like network topology enhances robustness against malicious attacks , 2011 .

[2]  Lena Wosinska,et al.  Link addition framework for optical CDNs robust to targeted link cut attacks , 2017, 2017 9th International Workshop on Resilient Networks Design and Modeling (RNDM).

[3]  Andrea Passarella,et al.  A survey on content-centric technologies for the current Internet: CDN and P2P solutions , 2012, Comput. Commun..

[4]  Petter Holme,et al.  Onion structure and network robustness , 2011, Physical review. E, Statistical, nonlinear, and soft matter physics.

[5]  Yanghee Choi,et al.  A Survey on content-oriented networking for efficient content delivery , 2011, IEEE Communications Magazine.

[6]  J. M. Simmons,et al.  Optical Network Design and Planning , 2008 .

[7]  Zsigmond Szilárd,et al.  Physical-layer security in evolving optical networks , 2016, IEEE Communications Magazine.

[8]  R. Linsker,et al.  Improving network robustness by edge modification , 2005 .

[9]  An Zeng,et al.  Enhancing network robustness for malicious attacks , 2012, Physical review. E, Statistical, nonlinear, and soft matter physics.

[10]  Chen Hong,et al.  Improving the network robustness against cascading failures by adding links , 2013 .

[11]  José-Luis Marzo,et al.  Robustness Comparison of 15 Real Telecommunication Networks: Structural and Centrality Measurements , 2016, Journal of Network and Systems Management.

[12]  P. Pavon-Marino,et al.  Evolution of core traffic for growing CDNs: Is the growth rate of core network traffic overestimated? , 2017, 2017 Optical Fiber Communications Conference and Exhibition (OFC).

[13]  Sofie Verbrugge,et al.  RECODIS: Resilient Communication Services Protecting End-user Applications from Disaster-based Failures , 2016, 2016 18th International Conference on Transparent Optical Networks (ICTON).

[14]  Hans J. Herrmann,et al.  Mitigation of malicious attacks on networks , 2011, Proceedings of the National Academy of Sciences.

[15]  Antoine Dutot,et al.  GraphStream: A Tool for bridging the gap between Complex Systems and Dynamic Graphs , 2008, ArXiv.

[16]  Randy H. Katz,et al.  Dynamic Replica Placement for Scalable Content Delivery , 2002, IPTPS.

[17]  Lena Wosinska,et al.  Content accessibility in optical cloud networks under targeted link cuts , 2017, 2017 International Conference on Optical Network Design and Modeling (ONDM).

[18]  Michal Pioro,et al.  SNDlib 1.0—Survivable Network Design Library , 2010 .