Securing virtual network function placement with high availability guarantees

Virtual Network Functions as a Service (VNFaaS) is currently under attentive study by telecommunications and cloud stakeholders as a promising business and technical direction consisting of providing network functions as a service on a cloud (NFV Infrastructure), instead of delivering standalone network appliances, in order to provide higher scalability and reduce maintenance costs. However, the functioning of such NFVI hosting the VNFs is fundamental for all the services and applications running on top of it, forcing to guarantee a high availability level against attacks and software failures. Indeed the availability of an VNFaaS relies on the failure rate of its single components, namely the servers, the virtualization software, and the communication network. The proper assignment of the virtual machines implementing network functions to NFVI servers and their protection from both endogenous and exogenous threats is essential to guarantee high availability. We model the High Availability Virtual Network Function Placement (HA- VNFP) as the problem of finding the best assignment of virtual machines to servers guaranteeing protection by replication. We propose a probabilistic approach to measure the real availability of a system and design both efficient and effective algorithms that can be used by stakeholders for both online and offline planning.

[1]  Joseph Naor,et al.  Near optimal placement of virtual network functions , 2015, 2015 IEEE Conference on Computer Communications (INFOCOM).

[2]  Li Mo,et al.  NFV Reliability using COTS Hardware , 2015 .

[3]  Rolf Stadler,et al.  Resource Management in Clouds: Survey and Research Challenges , 2015, Journal of Network and Systems Management.

[4]  Stefano Secci,et al.  Server placement with shared backups for disaster-resilient clouds , 2015, Comput. Networks.

[5]  Wolfgang Kellerer,et al.  Applying NFV and SDN to LTE mobile core gateways, the functions placement problem , 2014, AllThingsCellular '14.

[6]  Roberto Bifulco,et al.  ClickOS and the Art of Network Function Virtualization , 2014, NSDI.

[7]  Vasileios Pappas,et al.  Improving the Scalability of Data Center Networks with Traffic-aware Virtual Machine Placement , 2010, 2010 Proceedings IEEE INFOCOM.

[8]  Antonio Corradi,et al.  A Stable Network-Aware VM Placement for Cloud Systems , 2012, 2012 12th IEEE/ACM International Symposium on Cluster, Cloud and Grid Computing (ccgrid 2012).

[9]  Dutch T. Meyer,et al.  Remus: High Availability via Asynchronous Virtual Machine Replication. (Best Paper) , 2008, NSDI.

[10]  Chadi Assi,et al.  Protection plan design for cloud tenants with bandwidth guarantees , 2016, 2016 12th International Conference on the Design of Reliable Communication Networks (DRCN).

[11]  Ramin Yahyapour,et al.  Reliable Virtual Machine placement in distributed clouds , 2016, 2016 8th International Workshop on Resilient Networks Design and Modeling (RNDM).

[12]  Alessandro Birolini,et al.  Reliability and Availability of Repairable Systems , 1999 .

[13]  Stefano Secci,et al.  Virtual network functions placement and routing optimization , 2015, 2015 IEEE 4th International Conference on Cloud Networking (CloudNet).

[14]  Elliot K. Kolodner,et al.  Guaranteeing High Availability Goals for Virtual Machine Placement , 2011, 2011 31st International Conference on Distributed Computing Systems.

[15]  Raphael Rom,et al.  Bin Packing with Item Fragmentation , 2001, WADS.

[16]  T. V. Lakshman,et al.  Network aware resource allocation in distributed clouds , 2012, 2012 Proceedings IEEE INFOCOM.

[17]  Mohamed Faten Zhani,et al.  Venice: Reliable virtual data center embedding in clouds , 2014, IEEE INFOCOM 2014 - IEEE Conference on Computer Communications.

[18]  Alberto Ceselli,et al.  TeNOR: Steps towards an orchestration platform for multi-PoP NFV deployment , 2016, 2016 IEEE NetSoft Conference and Workshops (NetSoft).

[19]  Navendu Jain,et al.  Understanding network failures in data centers: measurement, analysis, and implications , 2011, SIGCOMM.

[20]  Danny Raz,et al.  Cost aware fault recovery in clouds , 2013, 2013 IFIP/IEEE International Symposium on Integrated Network Management (IM 2013).

[21]  Navendu Jain,et al.  Understanding network failures in data centers , 2011, SIGCOMM 2011.

[22]  Pedro Silva,et al.  Efficient Heuristics for Placing Large-Scale Distributed Applications on Multiple Clouds , 2016, 2016 16th IEEE/ACM International Symposium on Cluster, Cloud and Grid Computing (CCGrid).

[23]  Filip De Turck,et al.  Network Function Virtualization: State-of-the-Art and Research Challenges , 2015, IEEE Communications Surveys & Tutorials.

[24]  Yi Zhu,et al.  Reliable resource allocation for optically interconnected distributed clouds , 2014, 2014 IEEE International Conference on Communications (ICC).

[25]  Luciana S. Buriol,et al.  Piecing together the NFV provisioning puzzle: Efficient placement and chaining of virtual network functions , 2015, 2015 IFIP/IEEE International Symposium on Integrated Network Management (IM).