An Overview on SDN and NFV Security Orchestration in Cloud Network Environment

  • Israa T. Aziz Computer Center, University of Mosul, Mosul, Iraq
  • Ihsan H. Abdulqadder Department of Computer Science, Cihan University-Erbil, Kurdistan Region, Iraq
Keywords: Software-defined network, Network functions virtualization, Cloud, Cryptography, Distributed denial of service attacks

Abstract

Cloud networks are being used in most industries and applications in the current era. Software-defined networking has come up as an alternative tool and mechanism to follow and implement in a cloud networking environment in place of the traditional networking approaches. This paper includes the security aspects of computer networking concerning the cloud networking environment and software-defined networks. The security risks and vulnerabilities have been listed and described in this work, and the measures that may be adapted to detect, prevent, and control the same. The use of figures, diagrams, and codes has been done as applicable.

Downloads

Download data is not yet available.

References

M. Gharbaoui, B. Martini, D. Adami, S. Giordano and P. Castoldi. Cloud and network orchestration in SDN data centers: Design principles and performance evaluation. Computer Networks, vol. 108, pp. 279-295, 2016.

J. C. C. Chica, J. C. Imbachi and J. F. B. Vega. Security in SDN: A comprehensive survey. Journal of Network and Computer Applications, vol. 159, p. 102595, 2020.

A. Shirmarz and A. Ghaffari. An autonomic software defined network (SDN) architecture with performance improvement considering. Information Systems and Telecommunication, vol. 2002, p. 121-129, 2020.

K. Nisar, I. Welch, R. Hassan, A. H. Sodhro and S. Pirbhulal. A survey on the architecture, application, and security of software defined networking. Internet of Things, vol. 2020, p. 100289, 2020.

D. M. Batista, G. Blair, F. Kon, R. Boutaba, D. Hutchison, R. Jain, R. Ramjee and C. E. Rothenberg. Perspectives on software-defined networks: interviews with five leading scientists from the networking community. Journal of Internet Services and Applications, vol. 6, pp. 1-10, 2015.

W. Li, Y. Wang, Z. Jin, K. Yu, J. Li and Y. Xiang. Challenge-based collaborative intrusion detection in software-defined networking: An evaluation. Digital Communications and Networks, vol. 7, no. 2, pp. 257-263, 2020.

A. M. Abdelrahman, J. J. Rodrigues, M. M. Mahmoud, K. Saleem, A. K. Das, V. Korotaev and S. A. Kozlovm. Software‐defined networking security for private data center networks and clouds: Vulnerabilities, attacks, countermeasures, and solutions. International Journal of Communication Systems, vol. 34, p. e4706, 2021.

M. Rahouti, K. Xiong and Y. Xin. Secure software-defined networking communication systems for smart cities: Current status, challenges, and trends. IEEE Access, vol. 9, pp. 12083-12113, 2020.

S. Kunal, P. Gandhi, R. Sutariya and H. Tarpara. A secure software defined networking for distributed environment. Security and Privacy, vol. 3, p. e130, 2020.

B. Pinheiro, E. Cerqueira and A. Abelem. NVP: A network virtualization proxy for software defined networking.

International Journal of Computers Communications and Control, vol. 11, pp. 697-707, 2016.

I. H. Abdulqadder, S. Zhou, D. Zou, I. T. Aziz and S. M. A. Akber. Multi-layered intrusion detection and prevention in the SDN/NFV enabled cloud of 5g networks using ai-based defense mechanisms. Computer Networks, vol. 2020, p. 107364, 2020.

P. K. Taksande, P. Jha, A. Karandikar and P. Chaporkar. Open5G: A Software-Defined Networking Protocol for 5G Multi-RAT Wireless Networks. In: 2020 IEEE Wireless Communications and Networking Conference Workshops (WCNCW), pp. 1-6, 2020.

R. Etengu, S. C. Tan, L. C. Kwang, F. M. Abbou and T. C. Chuah. AI-assisted framework for green-routing and load balancing in hybrid software-defined networking: Proposal, challenges and future perspective. IEEE Access, vol. 8, pp. 166384-166441, 2020.

H. Zhang, Z. Cai, Q. Liu, Q. Xiao, Y. Li and C. F. Cheang. A survey on security-aware measurement in SDN. Security and Communication Networks, vol. 2018, p. 2459154, 2018.

L. Dong, L. Chen, B. He and W. Wang. The research on designs of multiple flow tables in the openflow protocol. In: 2018 27th International Conference on Computer Communication and Networks (ICCCN), pp. 1-2, 2018.

K. Kondepu, C. Jackson, Y. Ou, A. Beldachi, A. Pagès, F. Agraz, F. Moscatelli, W. Miao, V. Kamchevska, V. Kamchevska, N. Calabretta and G. Landi. Fully SDN-enabled all-optical architecture for data center virtualization with time and space multiplexing. IEEE/OSA Journal of Optical Communications and Networking, vol. 10,

pp. 90-101, 2018.

A. A. Barakabitze, A. Ahmad, R. Mijumbi and A. Hines. 5G network slicing using SDN and NFV: A survey of taxonomy, architectures and future challenges. Computer Networks, vol. 167, p. 106984, 2020.

O. Yurekten and M. Demirci. SDN-based cyber defense: A survey. Future Generation Computer Systems, vol. 115, pp. 126-149, 2021.

R. Izard, J. Deng, Q. Wang, K. Xu and K. C. Wang. An agentbased framework for production software defined networks. International Journal of Communication Networks and Distributed Systems, vol. 17, pp. 254-274, 2016.

C. Zhang, X. Wang, Y. Zhao, A. Dong, F. Li and M. Huang. Cost efficient and low-latency network service chain deployment across multiple domains for SDN. IEEE Access, vol. 7, pp. 143454-143470, 2019.

L. Ben Azzouz and I. Jamai. SDN, slicing, and NFV paradigms for a smart home: A comprehensive survey. Transactions on Emerging Telecommunications Technologies, vol. 30, p. e3744, 2019.

S. Abdallah, I. H. Elhajj, A. Chehab and A. Kayssi. A network management framework for SDN. In: 2018 9th IFIP International Conference on New Technologies, Mobility and Security (NTMS), pp. 1-4, 2018.

I. H. Abdulqadder, D. Zou, I. T. Aziz and B. Yuan. Validating user flows to protect software defined network environments. Security and Communication Networks, vol. 2018, p. 1308678, 2018.

M. H. M. Alhabib, M. Z. N. Al-Dabagh, F. H. AL-Mukhtar and H. I. Hussein. Exploiting wavelet transform, principal component analysis, support vector machine, and k-nearest neighbors for partial face recognition. Cihan University-Erbil Scientific Journal, vol. 3, pp. 80-84, 2019.

J. Bhatia, R. Dave, H. Bhayani, S. Tanwar and A. Nayyar. SDN-based real-time urban traffic analysis in VANET environment. Computer Communications, vol. 149, pp. 162-175, 2020.

V. P. Vladislav and V. P. Uliana. UPPAAL-based verification of software-defined networks. Computing, Telecommunication and Control, vol. 38, pp. 169-179, 2014.

R. Amin, M. Reisslein and N. Shah. Hybrid SDN networks: A survey of existing approaches. IEEE Communications Surveys and Tutorials, vol. 20, pp. 3259-3306, 2018.

R. Masoudi and A. Ghaffari. Software defined networks: A survey. Journal of Network and computer Applications, vol. 67, pp. 1-25, 2016.

Y. Afek, A. Bremler-Barr and L. Shafir. Network anti-spoofing with SDN data plane. In: IEEE INFOCOM 2017-IEEE Conference on Computer Communications, pp. 1-9, 2017.

W. Xiulei, C. Ming, W. Xianglin and Z. Guomin. Defending DDoS attacks in software defined networking based on improved shiryaev roberts detection algorithm. Journal of High Speed Networks, vol. 21, pp. 285-298, 2015.

P. Mishra, D. Puthal, M. Tiwary and S. P. Mohanty. Software defined IoT systems: Properties, state of the art, and future research. IEEE Wireless Communications, vol. 26, pp. 64-71, 2019.

Published
2021-06-20
How to Cite
1.
Aziz I, Abdulqadder I. An Overview on SDN and NFV Security Orchestration in Cloud Network Environment. cuesj [Internet]. 20Jun.2021 [cited 26Jul.2021];5(1):20-7. Available from: https://journals.cihanuniversity.edu.iq/index.php/cuesj/article/view/389
Section
Review Article