Novel architectures and security solutions of programmable software-defined networking: a comprehensive survey

Nowadays, cyberspace has become a vital part of social infrastructure. With the rapid development of the scale of networks, applications and services have become enriched, and the bearing function of the underlying network devices (such as switches and routers) has also been extended. To promote the dynamics architecture, high-level security, and high quality of service of the network, control network architecture forward separation is a development trend of the networking technology. Currently, software-defined networking (SDN) is one of the most popular and promising technologies. In SDN, high-level strategies are deployed by the proprietary equipment, which is used to guide the data forwarding of the network equipment. This can reduce many complicated functions of the network equipment and improve the flexibility and operability of the implementation and deployment of new network technologies and protocols. However, this novel networking technology faces novel challenges in term of architecture and security. The aim of this study is to offer a comprehensive review of the state-of-the-art research on novel advances of programmable SDN, and to highlight what has been investigated and what remains to be addressed, particularly, in terms of architecture and security.

[1]  Yashar Ganjali,et al.  Kandoo: a framework for efficient and scalable offloading of control applications , 2012, HotSDN '12.

[2]  Sakir Sezer,et al.  Queen ' s University Belfast-Research Portal Are We Ready for SDN ? Implementation Challenges for Software-Defined Networks , 2016 .

[3]  Ran Giladi,et al.  Performance Analysis of Software-Defined Networking (SDN) , 2013, 2013 IEEE 21st International Symposium on Modelling, Analysis and Simulation of Computer and Telecommunication Systems.

[4]  Jianhua Li,et al.  QoS-Predicted Energy Efficient Routing for Information-Centric Smart Grid: A Network Calculus Approach , 2018, IEEE Access.

[5]  Rob Sherwood,et al.  The controller placement problem , 2012, HotSDN@SIGCOMM.

[6]  Minlan Yu,et al.  FlowTags: enforcing network-wide policies in the presence of dynamic middlebox actions , 2013, HotSDN '13.

[7]  David Walker,et al.  Consistent updates for software-defined networks: change you can believe in! , 2011, HotNets-X.

[8]  M. Hughes,et al.  Performance Analysis , 2018, Encyclopedia of Algorithms.

[9]  Yashar Ganjali,et al.  On scalability of software-defined networking , 2013, IEEE Communications Magazine.

[10]  A. Neeraja,et al.  Licensed under Creative Commons Attribution Cc by Improving Network Management with Software Defined Networking , 2022 .

[11]  Hiroaki Hata A study of requirements for SDN switch platform , 2013, 2013 International Symposium on Intelligent Signal Processing and Communication Systems.

[12]  David Walker,et al.  Abstractions for network update , 2012, SIGCOMM '12.

[13]  Ehab Al-Shaer,et al.  Openflow random host mutation: transparent moving target defense using software defined networking , 2012, HotSDN '12.

[14]  Martín Casado,et al.  Applying NOX to the Datacenter , 2009, HotNets.

[15]  Mabry Tyson,et al.  FRESCO: Modular Composable Security Services for Software-Defined Networks , 2013, NDSS.

[16]  Yue Zhang,et al.  APPA: An anonymous and privacy preserving data aggregation scheme for fog-enhanced IoT , 2019, J. Netw. Comput. Appl..

[17]  Yi Wang,et al.  Towards a secure controller platform for openflow applications , 2013, HotSDN '13.

[18]  Junjie Liu,et al.  The FlowAdapter: enable flexible multi-table processing on legacy hardware , 2013, HotSDN '13.

[19]  Klaus David,et al.  6G Vision and Requirements: Is There Any Need for Beyond 5G? , 2018, IEEE Vehicular Technology Magazine.

[20]  Sakir Sezer,et al.  Sdn Security: A Survey , 2013, 2013 IEEE SDN for Future Networks and Services (SDN4FNS).

[21]  Fernando M. V. Ramos,et al.  Towards secure and dependable software-defined networks , 2013, HotSDN '13.

[22]  Thierry Turletti,et al.  A Survey of Software-Defined Networking: Past, Present, and Future of Programmable Networks , 2014, IEEE Communications Surveys & Tutorials.

[23]  Mianxiong Dong,et al.  FCSS: Fog-Computing-based Content-Aware Filtering for Security Services in Information-Centric Social Networks , 2019, IEEE Transactions on Emerging Topics in Computing.

[24]  Martín Casado,et al.  NOX: towards an operating system for networks , 2008, CCRV.

[25]  Scott Shenker,et al.  Ethane: taking control of the enterprise , 2007, SIGCOMM.

[26]  Tao Jiang,et al.  Enhancing the performance of futurewireless networks with software-defined networking , 2016, Frontiers of Information Technology & Electronic Engineering.

[27]  Rodrigo Braga,et al.  Lightweight DDoS flooding attack detection using NOX/OpenFlow , 2010, IEEE Local Computer Network Conference.

[28]  Guofei Gu,et al.  CloudWatcher: Network security monitoring using OpenFlow in dynamic cloud networks (or: How to provide security monitoring as a service in clouds?) , 2012, 2012 20th IEEE International Conference on Network Protocols (ICNP).

[29]  Tao JIANG,et al.  Enhancing the performance of future wireless networkswith software-defined networking∗ , 2016 .

[30]  Sandra Scott-Hayward,et al.  Design and deployment of secure, robust, and resilient SDN controllers , 2015, Proceedings of the 2015 1st IEEE Conference on Network Softwarization (NetSoft).

[31]  Nick McKeown,et al.  Where is the debugger for my software-defined network? , 2012, HotSDN '12.

[32]  Hong Yan,et al.  A clean slate 4D approach to network control and management , 2005, CCRV.

[33]  Sanjay Jha,et al.  A Survey of Securing Networks Using Software Defined Networking , 2015, IEEE Transactions on Reliability.

[34]  Hui Hu,et al.  An OpenFlow-based performance-oriented multipath forwarding scheme in datacenters , 2016, Frontiers of Information Technology & Electronic Engineering.

[35]  Russell J. Clark,et al.  Resonance: dynamic access control for enterprise networks , 2009, WREN '09.

[36]  Jianhua Li,et al.  Battery Status Sensing Software-Defined Multicast for V2G Regulation in Smart Grid , 2017, IEEE Sensors Journal.

[37]  Xianfu Chen,et al.  A double auction mechanism for virtual resource allocation in SDN-based cellular network , 2016, 2016 IEEE 27th Annual International Symposium on Personal, Indoor, and Mobile Radio Communications (PIMRC).

[38]  Nick Feamster,et al.  Procera: a language for high-level reactive network control , 2012, HotSDN '12.

[39]  Nick McKeown,et al.  OpenFlow: enabling innovation in campus networks , 2008, CCRV.

[40]  H. Vincent Poor,et al.  Fronthaul-Aware Software-Defined Wireless Networks: Resource Allocation and User Scheduling , 2018, IEEE Transactions on Wireless Communications.

[41]  Minlan Yu,et al.  SIMPLE-fying middlebox policy enforcement using SDN , 2013, SIGCOMM.

[42]  Zhi Liu,et al.  LiveCloud: A lucid orchestrator for cloud datacenters , 2012, 4th IEEE International Conference on Cloud Computing Technology and Science Proceedings.

[43]  Zhigang Luo,et al.  A comprehensive security architecture for SDN , 2015, 2015 18th International Conference on Intelligence in Next Generation Networks.

[44]  David Walker,et al.  Compiling path queries in software-defined networks , 2014, HotSDN.

[45]  Zheng Chang,et al.  Reverse Combinatorial Auction Based Resource Allocation in Heterogeneous Software Defined Network with Infrastructure Sharing , 2016, 2016 IEEE 83rd Vehicular Technology Conference (VTC Spring).

[46]  Kevin Benton,et al.  OpenFlow vulnerability assessment , 2013, HotSDN '13.

[47]  Jianhua Li,et al.  Big Data Analysis-Based Secure Cluster Management for Optimized Control Plane in Software-Defined Networks , 2018, IEEE Transactions on Network and Service Management.

[48]  Mabry Tyson,et al.  A security enforcement kernel for OpenFlow networks , 2012, HotSDN '12.

[49]  Fernando M. V. Ramos,et al.  On the Design of Practical Fault-Tolerant SDN Controllers , 2014, 2014 Third European Workshop on Software Defined Networks.

[50]  Zheng Chang,et al.  Double Auction Based Multi-Flow Transmission in Software-Defined and Virtualized Wireless Networks , 2017, IEEE Transactions on Wireless Communications.

[51]  Lieguang Zeng,et al.  TCAM-efficient flow table mapping scheme for OpenFlow multiple-table pipelines , 2015 .

[52]  Jennifer Rexford,et al.  Live migration of an entire network (and its hosts) , 2012, HotNets-XI.

[53]  Jun Wu,et al.  NLES: A Novel Lifetime Extension Scheme for Safety-Critical Cyber-Physical Systems Using SDN and NFV , 2019, IEEE Internet of Things Journal.

[54]  Jian Yang,et al.  A video conferencing system based on SDN-enabled SVC multicast , 2016, Frontiers of Information Technology & Electronic Engineering.