An Overview on SDN and NFV Security Orchestration in Cloud Network Environment
Abstract
Cloud networks are being used in most industries and applications in the current era. Software-defined networking has come up as an alternative tool and mechanism to follow and implement in a cloud networking environment in place of the traditional networking approaches. This paper includes the security aspects of computer networking concerning the cloud networking environment and software-defined networks. The security risks and vulnerabilities have been listed and described in this work, and the measures that may be adapted to detect, prevent, and control the same. The use of figures, diagrams, and codes has been done as applicable.
Downloads
References
M. Gharbaoui, B. Martini, D. Adami, S. Giordano and P. Castoldi. Cloud and network orchestration in SDN data centers: Design principles and performance evaluation. Computer Networks, vol. 108, pp. 279-295, 2016.
J. C. C. Chica, J. C. Imbachi and J. F. B. Vega. Security in SDN: A comprehensive survey. Journal of Network and Computer Applications, vol. 159, p. 102595, 2020.
A. Shirmarz and A. Ghaffari. An autonomic software defined network (SDN) architecture with performance improvement considering. Information Systems and Telecommunication, vol. 2002, p. 121-129, 2020.
K. Nisar, I. Welch, R. Hassan, A. H. Sodhro and S. Pirbhulal. A survey on the architecture, application, and security of software defined networking. Internet of Things, vol. 2020, p. 100289, 2020.
D. M. Batista, G. Blair, F. Kon, R. Boutaba, D. Hutchison, R. Jain, R. Ramjee and C. E. Rothenberg. Perspectives on software-defined networks: interviews with five leading scientists from the networking community. Journal of Internet Services and Applications, vol. 6, pp. 1-10, 2015.
W. Li, Y. Wang, Z. Jin, K. Yu, J. Li and Y. Xiang. Challenge-based collaborative intrusion detection in software-defined networking: An evaluation. Digital Communications and Networks, vol. 7, no. 2, pp. 257-263, 2020.
A. M. Abdelrahman, J. J. Rodrigues, M. M. Mahmoud, K. Saleem, A. K. Das, V. Korotaev and S. A. Kozlovm. Software‐defined networking security for private data center networks and clouds: Vulnerabilities, attacks, countermeasures, and solutions. International Journal of Communication Systems, vol. 34, p. e4706, 2021.
M. Rahouti, K. Xiong and Y. Xin. Secure software-defined networking communication systems for smart cities: Current status, challenges, and trends. IEEE Access, vol. 9, pp. 12083-12113, 2020.
S. Kunal, P. Gandhi, R. Sutariya and H. Tarpara. A secure software defined networking for distributed environment. Security and Privacy, vol. 3, p. e130, 2020.
B. Pinheiro, E. Cerqueira and A. Abelem. NVP: A network virtualization proxy for software defined networking.
International Journal of Computers Communications and Control, vol. 11, pp. 697-707, 2016.
I. H. Abdulqadder, S. Zhou, D. Zou, I. T. Aziz and S. M. A. Akber. Multi-layered intrusion detection and prevention in the SDN/NFV enabled cloud of 5g networks using ai-based defense mechanisms. Computer Networks, vol. 2020, p. 107364, 2020.
P. K. Taksande, P. Jha, A. Karandikar and P. Chaporkar. Open5G: A Software-Defined Networking Protocol for 5G Multi-RAT Wireless Networks. In: 2020 IEEE Wireless Communications and Networking Conference Workshops (WCNCW), pp. 1-6, 2020.
R. Etengu, S. C. Tan, L. C. Kwang, F. M. Abbou and T. C. Chuah. AI-assisted framework for green-routing and load balancing in hybrid software-defined networking: Proposal, challenges and future perspective. IEEE Access, vol. 8, pp. 166384-166441, 2020.
H. Zhang, Z. Cai, Q. Liu, Q. Xiao, Y. Li and C. F. Cheang. A survey on security-aware measurement in SDN. Security and Communication Networks, vol. 2018, p. 2459154, 2018.
L. Dong, L. Chen, B. He and W. Wang. The research on designs of multiple flow tables in the openflow protocol. In: 2018 27th International Conference on Computer Communication and Networks (ICCCN), pp. 1-2, 2018.
K. Kondepu, C. Jackson, Y. Ou, A. Beldachi, A. Pagès, F. Agraz, F. Moscatelli, W. Miao, V. Kamchevska, V. Kamchevska, N. Calabretta and G. Landi. Fully SDN-enabled all-optical architecture for data center virtualization with time and space multiplexing. IEEE/OSA Journal of Optical Communications and Networking, vol. 10,
pp. 90-101, 2018.
A. A. Barakabitze, A. Ahmad, R. Mijumbi and A. Hines. 5G network slicing using SDN and NFV: A survey of taxonomy, architectures and future challenges. Computer Networks, vol. 167, p. 106984, 2020.
O. Yurekten and M. Demirci. SDN-based cyber defense: A survey. Future Generation Computer Systems, vol. 115, pp. 126-149, 2021.
R. Izard, J. Deng, Q. Wang, K. Xu and K. C. Wang. An agentbased framework for production software defined networks. International Journal of Communication Networks and Distributed Systems, vol. 17, pp. 254-274, 2016.
C. Zhang, X. Wang, Y. Zhao, A. Dong, F. Li and M. Huang. Cost efficient and low-latency network service chain deployment across multiple domains for SDN. IEEE Access, vol. 7, pp. 143454-143470, 2019.
L. Ben Azzouz and I. Jamai. SDN, slicing, and NFV paradigms for a smart home: A comprehensive survey. Transactions on Emerging Telecommunications Technologies, vol. 30, p. e3744, 2019.
S. Abdallah, I. H. Elhajj, A. Chehab and A. Kayssi. A network management framework for SDN. In: 2018 9th IFIP International Conference on New Technologies, Mobility and Security (NTMS), pp. 1-4, 2018.
I. H. Abdulqadder, D. Zou, I. T. Aziz and B. Yuan. Validating user flows to protect software defined network environments. Security and Communication Networks, vol. 2018, p. 1308678, 2018.
M. H. M. Alhabib, M. Z. N. Al-Dabagh, F. H. AL-Mukhtar and H. I. Hussein. Exploiting wavelet transform, principal component analysis, support vector machine, and k-nearest neighbors for partial face recognition. Cihan University-Erbil Scientific Journal, vol. 3, pp. 80-84, 2019.
J. Bhatia, R. Dave, H. Bhayani, S. Tanwar and A. Nayyar. SDN-based real-time urban traffic analysis in VANET environment. Computer Communications, vol. 149, pp. 162-175, 2020.
V. P. Vladislav and V. P. Uliana. UPPAAL-based verification of software-defined networks. Computing, Telecommunication and Control, vol. 38, pp. 169-179, 2014.
R. Amin, M. Reisslein and N. Shah. Hybrid SDN networks: A survey of existing approaches. IEEE Communications Surveys and Tutorials, vol. 20, pp. 3259-3306, 2018.
R. Masoudi and A. Ghaffari. Software defined networks: A survey. Journal of Network and computer Applications, vol. 67, pp. 1-25, 2016.
Y. Afek, A. Bremler-Barr and L. Shafir. Network anti-spoofing with SDN data plane. In: IEEE INFOCOM 2017-IEEE Conference on Computer Communications, pp. 1-9, 2017.
W. Xiulei, C. Ming, W. Xianglin and Z. Guomin. Defending DDoS attacks in software defined networking based on improved shiryaev roberts detection algorithm. Journal of High Speed Networks, vol. 21, pp. 285-298, 2015.
P. Mishra, D. Puthal, M. Tiwary and S. P. Mohanty. Software defined IoT systems: Properties, state of the art, and future research. IEEE Wireless Communications, vol. 26, pp. 64-71, 2019.
Copyright (c) 2021 Israa T. Aziz, Ihsan H. Abdulqadder
This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.
Authors who publish with this journal agree to the following terms:
1. Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License [CC BY-NC-ND 4.0] that allows others to share the work with an acknowledgment of the work's authorship and initial publication in this journal.
2. Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgment of its initial publication in this journal.
3. Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work (See The Effect of Open Access).