Software Defined Networking (SDN) is a new networking paradigm which provides better decoupling between control plane and data plane. The separation not only allows OpenFlow (OF) switches in the data plane simply to forward data, but also enables the centralized programmable controller to control the behavior of entire network. SDN makes it possible to manage the network more flexible and simple. However, while promising, the current SDN frameworks also face new security challenges about network management. In this paper, we propose an innovative framework named GolfEngine, based on OpenDaylight controller, to simplify the development and deployment of security applications for SDN network. GolfEngine provides better visibility to dominate tasks for performing network anomalies on demand. In addition, we propose two important components to assures the robustness, the correctness and the efficiency of GolfEngine framework. The first component is Policy Conflict Detection, which is efficient and robust to discover and conciliate the contradictory flow rules. The second one is Network Status Coordinator, which focuses on simplifying and improving efficiency of the communication between the controller and OF-enabled switches. Moreover, we evaluate the performance and execution efficiency of GolfEngine through a use case implementation. The results of our simulation underline that these two components contribute significantly in improving the efficiency of GolfEngine.
GolfEngine: Network management system for software defined networking
Li Q.;Conti M.;
2017
Abstract
Software Defined Networking (SDN) is a new networking paradigm which provides better decoupling between control plane and data plane. The separation not only allows OpenFlow (OF) switches in the data plane simply to forward data, but also enables the centralized programmable controller to control the behavior of entire network. SDN makes it possible to manage the network more flexible and simple. However, while promising, the current SDN frameworks also face new security challenges about network management. In this paper, we propose an innovative framework named GolfEngine, based on OpenDaylight controller, to simplify the development and deployment of security applications for SDN network. GolfEngine provides better visibility to dominate tasks for performing network anomalies on demand. In addition, we propose two important components to assures the robustness, the correctness and the efficiency of GolfEngine framework. The first component is Policy Conflict Detection, which is efficient and robust to discover and conciliate the contradictory flow rules. The second one is Network Status Coordinator, which focuses on simplifying and improving efficiency of the communication between the controller and OF-enabled switches. Moreover, we evaluate the performance and execution efficiency of GolfEngine through a use case implementation. The results of our simulation underline that these two components contribute significantly in improving the efficiency of GolfEngine.Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.