인터넷정보학회논문지 (Journal of Internet Computing and Services)

  • 제16권6호
  • /
  • Pages.47-55
  • /
  • 2015
  • /
  • 1598-0170(pISSN)
  • /
  • 2287-1136(eISSN)
한국인터넷정보학회 (Korean Society for Internet Information)
권호 표지
DOI QR코드

DOI QR Code

소프트웨어 정의 네트워크상의 미들박스 성능을 고려한 동적 서비스 체이닝 방안

Dynamic Service Chaining Method Considering Performance of Middlebox Over SDN

  • Oh, Hyeongseok (Department of Computer Science, Kyonggi University) ;
  • Kim, Namgi (Department of Computer Science, Kyonggi University) ;
  • Choi, Yoon-Ho (School of Computer Science and Engineering, Pusan National University)
  • 투고 : 2015.05.30
  • 심사 : 2015.11.04
  • 발행 : 2015.12.31
PDF 다운로드
⟨ 이전 논문 다음 논문 ⟩

초록

기존 동적 라우팅은 최소 링크 비용을 기준으로 최적의 라우팅 경로를 설정하고 이에 따라 유입 혹은 유출 되는 플로우를 단말로 전송한다. 하지만 이 경우에는 보안 기능을 담당하는 미들 박스를 우회하게 되고 이에 따라 해당 네트워크는 보안 위협을 직면하게 되는 문제가 발생한다. 따라서 최적의 라우팅 경로 설정 시 각 플로우의 서비스 유형을 고려하여 해당 플로우를 보안 미들 박스를 거쳐 단말로 전송하기 위한 라우팅 방안인 동적 서비스 체이닝이 필요하다. 본 논문에서는 SDN의 동적 플로우 트래픽 제어 기능과 보안 서비스 기능을 동시에 고려한 동적 라우팅 방안에 대해 제안한다.

The conventional dynamic routing methods in Software Defined Networks (SDN) set the optimal routing path based on the minimum link cost, and thereby transmits the incoming or outgoing flows to the terminal. However, in this case, flows can bypass the middlebox that is responsible for security service and thus, thus the network can face a threat. That is, while determining the best route for each flow, it is necessary to consider a dynamic service chaining, which routes a flow via a security middlebox. Therefore, int this paper, we propose a new dynamic routing method that considers the dynamic flow routing method combined with the security service functions over the SDN.

키워드

참고문헌

  1. Nick McKeown, Tom Anderson, Hari Balakrishnan, Scott Shenker and Jonathan Turner, "OpenFlow: Enabling innovation in campus networks," ACM SIGCOMM Computer Communication Review, vol. 38, no. 2, April 2008. http://dx.doi.org/10.1145/1355734.1355746
  2. Open Networking Foundation, "OpenFlow Switch Specification Version 1.0.0," White Paper, pp. 1-42, Dec. 2009. http://dx.doi.org/10.1145/1355734.1355746
  3. Wolfgang Braun and Michael Menth, "Software-Defined Networking Using OpenFlow: Protocols, Applications and Architectural Design Choices," Future Internet, vol. 6, pp. 302-336, 2014. http://dx.doi.org/10.3390/fi6020302
  4. Open Networking Foundation, "OpenFlow-enabled SDN and Network Functions Virtualization," ONF Solution Brief, pp. 1-12, Feb. 2014. http://dx.doi.org/10.3390/fi6020302
  5. Nicolai Leymann, Deutsche Telekom AG, "Flexible Service Chaining: Requirements and Architectures," ERLEBEN WAS VERBINDET, 2013. http://www.ewsdn.eu/files/Presentations/EWSDN%202013/IS2_2_Flexible_service_chaining.pdf
  6. OpenFlow, "Openflow Multipath Proposal," 2011. http://archive.openflow.org/wk/index.php/Multipath_Proposal
  7. Mohammad Al-Fares, Sivasankar Radhakrishnan, Barath Raghavan, Nelson Huang and Amin Vahdat, "Hedera: Dynamic Flow Scheduling for Data Center Networks," Proceedings of the 7th USENIX Symposium on Networked Systems Design and Implementation, pp. 281-296, 2010. http://dl.acm.org/citation.cfm?id=1855730
  8. Mohammad Al-Fares, Alexander Loukissas and Amin Vahdat, "A scalable, commodity data center network architecture," Proceedings of the ACM SIGCOMM 2008 conference on Data communication, pp. 63-74, Aug. 2008. http://dx.doi.org/10.1145/1402958.1402967
  9. Niels L. M. van Adrichem, Christian Doerr and Fernando A. Kuipers, "OpenNetMon: Network Monitoring in OpenFlow Software-Defined Networks," Proc. of the IEEE/IFIP Network Operations and Management Symposium (IEEE/IFIP NOMS 2014), May 2014. http://dx.doi.org/10.1109/noms.2014.6838228
  10. nox, "About POX," http://www.noxrepo.org/pox/about-pox/
  11. Mininet, "An Instant Virtual Network on your Laptop,"