Sodinokibi Ransomware virus becomes a severe threat by targeting data encryption on a server, and this virus infection continues to spread to encrypt data on other computers. This study aims to ...mitigate by experiment with building a prevention system through computer network management. The mitigation process is carried out through static, dynamic, and Software-Defined Networking (SDN) analysis to prevent the impact of attacks through programmatic network management. SDN consists of two main components in its implementation, the Ryu controller and Open Virtual Switch (OVS). Result testing mitigation system on infected networks by crippling TCP internet protocol access can reduce virus spread by 17.13% and suppress Sodinokibi traffic logs by up to 73.97%. Based on the percentage data, SDN-based mitigation in this study is per the objectives to make it possible to mitigate Ransomware attacks on computer network traffic.
Background/Objectives: For data center-based enterprises, the use of data traffic continues to increase. As a result, the increasingly efficient processing of increasing data traffic is becoming a ...major issue. Effective processing of traffic can be performed through the addition of physical network equipment, but this requires considerable costs.Methods/Statistical analysis: To solve this problem, researches on server virtualization and network virtualization technology are being actively conducted. However, while network virtualization is a cost-effective solution, open-source virtual switches used in network virtualization technologies have the performance penalty because they handle packets at the kernel of server's operating system. As a result, the Intel has developed the Data Plane Development Kit (DPDK) technology to address the performance degradation of the operating system.Findings: In this paper, we propose the DPDK performance test environment based on Open Virtual Switch (OVS) to verify the stability and performance of the DPDK-oriented virtualization technology, in association with a new KREONET-S project which aims tothe softwarization of the Korea Research Environment Open Network (KREONET) infrastructure.Improvements/Applications: We perform conducted experiments on Software-Defined Local Area Network (LAN) and Wide Area Network (WAN) environment using KREONET-S show the result.
Pervasive computing is becoming a reality with the interconnection of numerous objects with unique identifiers and the ability to transmit data over the network. The heterogeneity in data traffic is ...on the rise with the evolution of the Internet of Things. The need for the gateway node in IoT to be equipped with more efficient networking capability to tackle the data traffic is becoming inevitable. This paper discusses the integration of Software Defined Networking paradigm with the gateway node to manage the data in the network optimally. A routing algorithm called Ethernet packet frame based routing that improves the Quality of Service is implemented by instantiating an OpenFlow compliant Software Defined Networking controller on the IoT gateway. The results corresponding to the statistics of the experimental setup is tabulated which shows an improvement of bandwidth by 44.98% and reduction of jitter by 33%.
As technologically evolving networks rapidly deploy software defined networks (SDN) in a bid to acquire its benefits, routing traffic between autonomous systems (ASs) within SDN still remains a ...challenge 1. This is because border gateway protocol version 4 (BGP version 4) is designed for less flexible and concentrated networks which experiences throughput, delay, multi-dimension routing, scalability and convergence issues when used between ASs within SDN 17. Thus, this paper presents the developed protocol called the inter-autonomous systems (IASs) routing protocol that uses routing engine (RE) to route traffic between ASs in SDN. The developed protocol has flexible routing capability which routes SDN packets without the need to search for the optimal paths that resolves delays, scalability and convergence problems. The flexible routing capability also provide multi-dimension routing that solves single dimension routing exhibited by BGP version 4 when used between ASs in SDN. The results show that, the developed protocol provides better throughput when compared to BGP version 4. Including artificial intelligence (AI) to the developed protocol improves its performance extremely high. This is due to the learning mechanism integrated in the protocol which ensures that packets are propagated error free, lossless and with minimum delays.
In the last few decades, data center architecture evolved from the traditional client-server to access-aggregation-core architectures. Recently there is a new shift in the data center architecture ...due to the increasing need for low latency and high throughput between server-to-server communications, load balancing and, loop-free environment. This new architecture, known as leaf and spine architecture, provides low latency and minimum packet loss by enabling the addition and deletion of network nodes on demand. Network nodes can be added or deleted from the network based on network statistics like link speed, packet loss, latency, and throughput. With the maturity of Open Virtual Switch (OvS) and Open-Flow based Software Defined Network (SDN) controllers, network automation through programmatic extensions has become possible based on network statistics. Separation of control plane and data plane has enabled automated management of network and Machine Learning (ML) can be applied to learn and optimize the network. In this publication, we propose the design of an ML-based approach to gather network statistics and build a knowledge plane. We demonstrate that this knowledge plane enables data center optimization using southbound APIs and SDN controllers. We describe the design components of this approach - using a network simulator and show that it can maintain the historical patterns of network statistics to predict future growth or decline. We also provide an open-source software that can be utilized in a leaf and spine data center to provide elastic capacity based on load forecasts.
Cloud computing is proven service delivery model over the internet. Network play's an important role during this service provisioning but Cloud network have major security issue during service ...delivery. Network security and reliability achieve together is much more difficult task. Now a day cloud traditional network is replaced by the programmable and unified software defined network which have separate control plane and data plane for managing network traffic. SDN have capability to reduce cost of networking device using network virtualization which have facilitate to hardware and software virtualization using NFV(Network Function Virtualization). SDN and NFV integration in cloud computing give power of virtualization and improve network security and service. So in this paper we can describe SDN and NFV and how both are integrate in Open stack cloud to minimize network attack surface, improve network service and provide some salient advantage of SDN.
Deep packet inspection Management application in SDN Renukadevi, B.; Raja, S. Daniel Madan
2017 2nd International Conference on Computing and Communications Technologies (ICCCT),
2017-Feb.
Conference Proceeding
DPI Management application which resides on the north-bound of SDN architecture is to analyze the application signature data from the network. The data being read and analyzed are of format JSON for ...effective data representation and flows provisioned from North-bound application is also of JSON format. The data analytic engine analyzes the data stored in the non-relational data base and provides the information about real-time applications used by the network users. Allows the operator to provision flows dynamically with the data from the network to allow/block flows and also to boost the bandwidth. The DPI Management application allows decoupling of application with the controller; thus providing the facility to run it in any hyper-visor within network. Able to publish SNMP trap notifications to the network operators with application threshold and flow provisioning behavior. Data purging from non-relational database at frequent intervals to remove the obsolete analyzed data.
Software Defined Networks are emerging as a new paradigm in data networks. While most corporate networks and datacenters (like Google, Cisco, Big Switch, etc.) are already on OpenFlow protocol ...utilizing SDN, a number of emulation platforms have emerged, such as Mininet. In this paper we propose an emulated enterprise/university Software-Defined network using Python and Mininet; we have also built a conventional network using ns-3 with the same number of nodes, topology, etc. Our tests show that our proposed network model outperforms the conventional/existing model in parameters like minimum and mean delay for ICMP and HTTP packets, as well as minimum and maximum convergence time, and therefore are a best solution to transition corporate networks with hundreds or more nodes, mainly due to the fast propagation of routing policies from the central controller.
Network Traffic Analysis of cloud data centre Sankari, Subbiah; Varalakshmi, Perumal; Divya, Boopathi
2015 International Conference on Computing and Communications Technologies (ICCCT),
02/2015
Conference Proceeding
Software Defined Network (SDN) is a network design that separate the control plane and data plane. The data plane network carries user traffic. The control plane network carries the network ...brainpower and policy establishment to an application called a controller. In SDN based data centre, an Open Virtual Switch (OVS) runs on the server is to improve the overall network performance designed to analyse the traffic flow using Open Flow Protocol (OFP) in the Data Centre Network (DCN). The network is designed using fat tree topology in the proposed system. This topology is full bisectional bandwidth and it is potential for an indiscriminate host in the data centre to commune with any other host in the network. The fat tree topology is easy to analyze the link utilization and time series of traffic on edge. Data centre network architecture is proposed for traffic generation and its analysis purpose.
The energy consumed by the networking resources to access the computational and storage resources is one of the factors to be considered in the cloud data center. In SDN, the network virtualization ...showcases the business in the network resource allocation when traffic is generated from the source host to the destination host. The network switches in the cloud based data centric network acquire the most energy during the traffic flow from source to destination. In this paper, an Energy Efficient Routing Through Open Virtual Switches (EERTOVS) algorithm is proposed to route the traffic efficiently in the power-optimal selected path. The proposed algorithm was implemented using Open Flow Protocol in the forthcoming development of Software Defined Networks. Thereby, the network management entails the improvement in energy conservation with tolerable level of compromising the network performance.