Securing SDN-Controlled IoT Networks Through Edge Blockchain

The Internet of Things (IoT) connected by Software Defined Networking (SDN) promises to bring great benefits to cyber-physical systems. However, the increased attack surface offered by the growing number of connected vulnerable devices and separation of SDN control and data planes could overturn the huge benefits of such a system. This paper addresses the vulnerability of the trust relationship between the control and data planes. To meet this aim, we propose an edge computing based blockchain-as-a-service (BaaS), enabled by an external BaaS provider. The proposed solution provides verification of inserted flows through an efficient, edge-distributed, blockchain solution. We study two scenarios for the blockchain reward purpose: (a) information symmetry, in which the SDN operator has direct knowledge of the real effort spent by the BaaS provider; and (b) information asymmetry, in which the BaaS provider controls the exposure of information regarding spent effort. The latter yields the so called “moral hazard”, where the BaaS may claim higher than actual effort. We develop a novel mathematical model of the edge BaaS solution; and propose an innovative algorithm of a fair reward scheme based on game theory that takes into account moral hazard. We evaluate the viability of our solution through analytical simulations. The results demonstrate the ability of the proposed algorithm to maximize the joint profits of the BaaS and the SDN operator, i.e. maximizing the social welfare.

[1]  Kezhi Wang,et al.  Reward-Aided Sensing Task Execution in Mobile Crowdsensing Enabled by Energy Harvesting , 2018, IEEE Access.

[2]  Beng Chin Ooi,et al.  BLOCKBENCH: A Framework for Analyzing Private Blockchains , 2017, SIGMOD Conference.

[3]  Imed Romdhani,et al.  BCFR: Blockchain-based Controller Against False Flow Rule Injection in SDN , 2019, 2019 IEEE Symposium on Computers and Communications (ISCC).

[4]  Jong Hyuk Park,et al.  BlockSecIoTNet: Blockchain-based decentralized security architecture for IoT network , 2019, J. Netw. Comput. Appl..

[5]  Ali Dehghantanha,et al.  Blockchain-Enabled Authentication Handover With Efficient Privacy Protection in SDN-Based 5G Networks , 2019, IEEE Transactions on Network Science and Engineering.

[6]  Munindar P. Singh,et al.  Computational Governance and Violable Contracts for Blockchain Applications , 2020, Computer.

[7]  Bengt Holmstrom,et al.  Moral Hazard and Observability , 1979 .

[8]  Mateusz Nowak,et al.  Hierarchical Machine Learning for IoT Anomaly Detection in SDN , 2019, 2019 International Conference on Information Technologies (InfoTech).

[9]  Jiejun Hu,et al.  Blockchain-Aided Flow Insertion and Verification in Software Defined Networks , 2020, 2020 Global Internet of Things Summit (GIoTS).

[10]  Victor C. M. Leung,et al.  Distributed Resource Allocation in Blockchain-Based Video Streaming Systems With Mobile Edge Computing , 2019, IEEE Transactions on Wireless Communications.

[11]  Xiaofei Wang,et al.  STCS: Spatial-Temporal Collaborative Sampling in Flow-Aware Software Defined Networks , 2020, IEEE Journal on Selected Areas in Communications.

[12]  Mohsen Guizani,et al.  DAGIoV: A Framework for Vehicle to Vehicle Communication Using Directed Acyclic Graph and Game Theory , 2020, IEEE Transactions on Vehicular Technology.

[13]  Dong In Kim,et al.  Toward Secure Blockchain-Enabled Internet of Vehicles: Optimizing Consensus Management Using Reputation and Contract Theory , 2018, IEEE Transactions on Vehicular Technology.

[14]  Bruce Bueno de Mesquita,et al.  An Introduction to Game Theory , 2014 .

[15]  Yan Wang,et al.  Computation Offloading with Multiple Agents in Edge-Computing–Supported IoT , 2019, ACM Trans. Sens. Networks.

[16]  Athanasios V. Vasilakos,et al.  Software-Defined Networking for Internet of Things: A Survey , 2017, IEEE Internet of Things Journal.

[17]  PRADIP KUMAR SHARMA,et al.  A Software Defined Fog Node Based Distributed Blockchain Cloud Architecture for IoT , 2018, IEEE Access.

[18]  Haipeng Yao,et al.  Blockchain-Based Software-Defined Industrial Internet of Things: A Dueling Deep ${Q}$ -Learning Approach , 2019, IEEE Internet of Things Journal.

[19]  Tao Wan,et al.  Comparative Analysis of Control Plane Security of SDN and Conventional Networks , 2017, IEEE Communications Surveys & Tutorials.

[20]  Dushantha Nalin K. Jayakody,et al.  A Blockchain-Based Framework for Lightweight Data Sharing and Energy Trading in V2G Network , 2020, IEEE Transactions on Vehicular Technology.

[21]  Zhu Han,et al.  Optimal Pricing-Based Edge Computing Resource Management in Mobile Blockchain , 2017, 2018 IEEE International Conference on Communications (ICC).

[22]  Kun Yang,et al.  On effective offloading services for resource-constrained mobile devices running heavier mobile Internet applications , 2008, IEEE Communications Magazine.

[23]  Miao Pan,et al.  A Survey of Contract Theory-Based Incentive Mechanism Design in Wireless Networks , 2017, IEEE Wireless Communications.

[24]  Miao Pan,et al.  Multi-Dimensional Incentive Mechanism in Mobile Crowdsourcing with Moral Hazard , 2018, IEEE Transactions on Mobile Computing.

[25]  Hyeon-Eui Kim,et al.  Blockchain distributed ledger technologies for biomedical and health care applications , 2017, J. Am. Medical Informatics Assoc..

[26]  Alexandru Stanciu,et al.  Blockchain Based Distributed Control System for Edge Computing , 2017, 2017 21st International Conference on Control Systems and Computer Science (CSCS).

[27]  Victor C. M. Leung,et al.  Performance Optimization for Blockchain-Enabled Industrial Internet of Things (IIoT) Systems: A Deep Reinforcement Learning Approach , 2019, IEEE Transactions on Industrial Informatics.

[28]  Tarik Taleb,et al.  On Multi-Access Edge Computing: A Survey of the Emerging 5G Network Edge Cloud Architecture and Orchestration , 2017, IEEE Communications Surveys & Tutorials.

[29]  Kezhi Wang,et al.  A Blockchain-Based Reward Mechanism for Mobile Crowdsensing , 2020, IEEE Transactions on Computational Social Systems.

[30]  Xiaofei Wang,et al.  Networking Integrated Cloud–Edge–End in IoT: A Blockchain-Assisted Collective Q-Learning Approach , 2021, IEEE Internet of Things Journal.

[31]  Kotaro Kataoka,et al.  Trust list: Internet-wide and distributed IoT traffic management using blockchain and SDN , 2018, 2018 IEEE 4th World Forum on Internet of Things (WF-IoT).

[32]  Ricardo Neisse,et al.  A Policy-based Framework in Fog enabled Internet of Things for Cooperative ITS , 2019, 2019 Global IoT Summit (GIoTS).

[33]  Dimitrios Tzovaras,et al.  Security for Internet of Things: The SerIoT Project , 2018, 2018 International Symposium on Networks, Computers and Communications (ISNCC).

[34]  Vincent Gramoli,et al.  From blockchain consensus back to Byzantine consensus , 2017, Future Gener. Comput. Syst..

[35]  Zhihui Lu,et al.  Smart-toy-edge-computing-oriented data exchange based on blockchain , 2018, J. Syst. Archit..

[36]  Ralph Deters,et al.  Blockchain as a Service for IoT , 2016, 2016 IEEE International Conference on Internet of Things (iThings) and IEEE Green Computing and Communications (GreenCom) and IEEE Cyber, Physical and Social Computing (CPSCom) and IEEE Smart Data (SmartData).

[37]  Christian Cachin,et al.  Architecture of the Hyperledger Blockchain Fabric , 2016 .

[38]  Young-Sik Jeong,et al.  DistBlockNet: A Distributed Blockchains-Based Secure SDN Architecture for IoT Networks , 2017, IEEE Communications Magazine.

[39]  Kezhi Wang,et al.  Joint Energy Minimization and Resource Allocation in C-RAN with Mobile Cloud , 2015, IEEE Transactions on Cloud Computing.

[40]  Young-Sik Jeong,et al.  SoftEdgeNet: SDN Based Energy-Efficient Distributed Network Architecture for Edge Computing , 2018, IEEE Communications Magazine.