Sustainable Infrastructure Monitoring for Security-Oriented Purposes

As computing and communication infrastructures have gained an ever-increasing role in everybody's life, guaranteeing their reliability has become a critical endeavor. In the face of threats that grow more and more sophisticated, we must turn our attention to the techniques that have the potential to match them and scale with the infrastructure complexity. The current trend in the telecommunication industry towards "softwarized infrastructures" by means of new technologies such as Software Defined Networking and Network Function Virtualization may provide a innovative and effective solutions from this point of view. In this work, we outline a network security monitoring architecture aimed at striking the best trade-off between effectiveness and efficiency. This result is achieved by exploiting the possibility, already enabled by state-of-the-art, yet well tested components for infrastructural orchestration, of dynamic instantiation and composition of functions. We conclude that efficient detection of some classes of network-based denial-of-service attacks is possible, and open the path to mitigation strategies that optimize the usage of resources by deploying and re-configuring them as needed in real-time.

[1]  Nick McKeown,et al.  OpenFlow: enabling innovation in campus networks , 2008, CCRV.

[2]  Eamonn J. Keogh,et al.  Exact Discovery of Time Series Motifs , 2009, SDM.

[3]  Mario A. R. Dantas,et al.  An approach for SDN traffic monitoring based on big data techniques , 2019, J. Netw. Comput. Appl..

[4]  Xue-Jie Zhang,et al.  Comparison of open-source cloud management platforms: OpenStack and OpenNebula , 2012, 2012 9th International Conference on Fuzzy Systems and Knowledge Discovery.

[5]  Charles Butler Automating Orchestration in the Cloud with Ubuntu Juju , 2014 .

[6]  Rakesh Kumar,et al.  Framework for Interface to Network Security Functions , 2018, RFC.

[7]  Sejun Song Improving Network Health Monitoring Accuracy Based on Data Fusion for Software Defined Networking , 2014 .

[8]  Xirong Que,et al.  SDNMP: Enabling SDN management using traditional NMS , 2015, 2015 IEEE International Conference on Communication Workshop (ICCW).

[9]  Raja Elassali,et al.  A measurement of the response times of various OpenFlow/SDN controllers with CBench , 2015, 2015 IEEE/ACS 12th International Conference of Computer Systems and Applications (AICCSA).

[10]  Yu Wang,et al.  A Survey of Network Virtualization Techniques for Internet of Things Using SDN and NFV , 2020, ACM Comput. Surv..

[11]  Antonio Pescapè,et al.  Challenges and solution for measuring available bandwidth in software defined networks , 2017, Comput. Commun..

[12]  Christina Thorpe,et al.  Experience of developing an openflow SDN prototype for managing IPTV networks , 2015, 2015 IFIP/IEEE International Symposium on Integrated Network Management (IM).

[13]  Sajad Shirali-Shahreza,et al.  FleXam: flexible sampling extension for monitoring and security applications in openflow , 2013, HotSDN '13.

[14]  Yash Sinha,et al.  Real Time Monitoring of Packet Loss in Software Defined Networks , 2017 .

[15]  Flavio Esposito,et al.  A Policy Checker Approach for Secure Industrial SDN , 2018, 2018 2nd Cyber Security in Networking Conference (CSNet).

[16]  Duc-Hung Luong,et al.  Traffic Monitoring in Software Defined Networks Using Opendaylight Controller , 2016, MSPN.

[17]  Gabi Dreo Rodosek,et al.  Towards an SDN-enabled IDS environment , 2015, 2015 IEEE Conference on Communications and Network Security (CNS).

[18]  Mohamed Faten Zhani,et al.  SDN-Guard: DoS Attacks Mitigation in SDN Networks , 2016, 2016 5th IEEE International Conference on Cloud Networking (Cloudnet).

[19]  Kpatcha M. Bayarou,et al.  OrchSec: An orchestrator-based architecture for enhancing network-security using Network Monitoring and SDN Control functions , 2014, 2014 IEEE Network Operations and Management Symposium (NOMS).

[20]  Sakir Sezer,et al.  Sdn Security: A Survey , 2013, 2013 IEEE SDN for Future Networks and Services (SDN4FNS).

[21]  Mohsen Guizani,et al.  SDN Controllers: Benchmarking & Performance Evaluation , 2019, ArXiv.

[22]  Fernando A. Kuipers,et al.  OpenNetMon: Network monitoring in OpenFlow Software-Defined Networks , 2014, 2014 IEEE Network Operations and Management Symposium (NOMS).

[23]  Alexander Shalimov,et al.  Advanced study of SDN/OpenFlow controllers , 2013 .