• International Journal of Computer Science & Network Security
• /
• 제21권12호
• /
• pp.9-20
• /
• 2021

Abstraction applied in computer networking hides network details behind a well-defined representation by building a model that captures an essential aspect of the network system. Two current methods of representation are available, one based on graph theory, where a network node is reduced to a point in a graph, and the other the use of non-methodological iconic depictions such as human heads, walls, towers or computer racks. In this paper, we adopt an abstract representation methodology, the thinging machine (TM), proposed in software engineering to model computer networks. TM defines a single coherent network architecture and topology that is constituted from only five generic actions with two types of arrows. Without loss of generality, this paper applies TM to model the area of network monitoring in packet-mode transmission. Complex network documents are difficult to maintain and are not guaranteed to mirror actual situations. Network monitoring is constant monitoring for and alerting of malfunctions, failures, stoppages or suspicious activities in a network system. Current monitoring systems are built on ad hoc descriptions that lack systemization. The TM model of monitoring presents a theoretical foundation integrated with events and behavior descriptions. To investigate TM modeling's feasibility, we apply it to an existing computer network in a Kuwaiti enterprise to create an integrated network system that includes hardware, software and communication facilities. The final specifications point to TM modeling's viability in the computer networking field.

• 한국정보처리학회:학술대회논문집
• /
• 한국정보처리학회 2023년도 춘계학술발표대회
• /
• pp.200-202
• /
• 2023

SDN (Software Defined Networking) is an emerging networking system which differs from traditional network architecture. Moreover SDN has many advantages and special capabilities that traditional networks do not have. SDN and P4 are related in that they can be combined to create more advanced and intelligent networking systems. Additionally, Al has emerged as a transformative force in various fields, including SDN. By applying Al and P4 to SDN, network administrators can leverage the power of them to make impact on SDN security. We offer an overview of recent trend of SDN security integrating P4 a nd Al in this study.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제11권11호
• /
• pp.5223-5242
• /
• 2017

In the last decade, the 2.4 GHz band of IEEE 802.11 WLANs has become heavily congested due to the explosive increase in demand of Wi-Fi connectivity. With the current deployment of enterprise WLANs, channel switching mechanism continues to exhibit inefficiencies because it cannot adapt to real-time channel condition and the inability to support seamless channel switching. Software Defined Networking (SDN) as an emerging architecture is promising to introduce flexibility and programmability for wireless network management. Leveraging SDN to existing enterprise WLANs, channel switching method can be improved significantly. This paper presents a software-defined enterprise WLAN framework with a load aware automatic channel switching solution, which utilizes AP load and channel interference factor (CIF) to provide seamless channel switching. Two automatic channel switching algorithms named Single Switch (SS) and Double Switch (DS) are proposed to improve the overall user experience and the experience of users with highest traffic load respectively. Experiment results demonstrate that our solution can efficiently improve user experience in terms of jitter, transmission delay and network throughout when compared to the conventional channel switching mechanism.

• 인터넷정보학회논문지
• /
• 제23권5호
• /
• pp.17-23
• /
• 2022

Network slicing is a promising paradigm and significant evolution for adjusting the heterogeneous services based on different requirements by placing dynamic virtual network functions (VNF) forwarding graph (VNFFG) and orchestrating service function chaining (SFC) based on criticalities of Quality of Service (QoS) classes. In system architecture, software-defined networks (SDN), network functions virtualization (NFV), and edge computing are used to provide resourceful data view, configurable virtual resources, and control interfaces for developing the modified deep reinforcement learning agent (MDRL-A). In this paper, task requests, tolerable delays, and required resources are differentiated for input state observations to identify the non-critical/critical classes, since each user equipment can execute different QoS application services. We design intelligent slicing for handing the cross-domain resource with MDRL-A in solving network problems and eliminating resource usage. The agent interacts with controllers and orchestrators to manage the flow rule installation and physical resource allocation in NFV infrastructure (NFVI) with the proposed formulation of completion time and criticality criteria. Simulation is conducted in SDN/NFV environment and capturing the QoS performances between conventional and MDRL-A approaches.

• International Journal of Computer Science & Network Security
• /
• 제22권10호
• /
• pp.303-309
• /
• 2022

Software Defined Networking (SDN) is a novel approach that have accelerated the development of numerous technologies such as policy-based access control, network virtualization, and others. It allows to boost network architectural flexibility and expedite the return on investment. However, this increases the system's complexity, necessitating the expenditure of dollars to assure the system's security. Network Function Virtualization (NFV) opens up new possibilities for network engineers, but it also raises security concerns. A number of Internet service providers and network equipment manufacturers are grappling with the difficulty of developing and characterizing NFVs and related technologies. Through Moodle's efforts to maintain security, this paper presents a detailed review of security-related challenges in software-defined networks and network virtualization services.

• 한국정보처리학회:학술대회논문집
• /
• 한국정보처리학회 2018년도 추계학술발표대회
• /
• pp.118-121
• /
• 2018

끊김 없는 이동성은 멀티미디어가 풍부한 실시간 서비스를 지원하는 미래의 무선 네트워크에서 필수적이다. SDN (Software Defined Networking)은 중앙 집중식 컨트롤러를 통해 무선 네트워크에서 세밀한 플로우 수준의 이동성 관리를 제공할 수 있지만 핸드오버 지연의 새로운 네트워킹 패러다임이다. 스플릿 포인트 방식은 SDN 무선 네트워크에서 핸드오버 및 종단 간 전송 지연을 줄이는 효과적인 방법이다. 스플릿 포인트는 트래픽이 새로운 AP (Access Point)를 향하여 핸드오버 한 후에 기존 플로우 경로상에 존재하는 스위치이다. 본 논문에서는 MN-CN (Corresponding Node) 경로의 각 스위치의 가중치를 스위치와 후보 AP 사이의 평균 고리(홉)로 계산하고 최소 가중치를 갖는 스위치가 스플릿 포인트로 선택된다. 스플릿 포인트 선택 외에도 이 논문은 SDN 에서 제공하는 제어 및 데이터 플레인 분리를 이용하여 핸드오버 후 플로우에 대한 최적의 경로를 복원한다. 제안 아이디어의 수치 해석은 이전 솔루션과 비교하여 총 비용이 9.6 % ~ 13 % 향상되었음을 보여준다.

• 한국정보처리학회:학술대회논문집
• /
• 한국정보처리학회 2018년도 추계학술발표대회
• /
• pp.122-125
• /
• 2018

최근 다양한 네트워크 서비스에 대한 수요가 증가함에 따라 Service Function (SF)의 동적 구성을 위한 유연한 모델이 요구된다. Service Function Chaining (SFC)은 일련의 SF로 구성된 새로운 네트워크 서비스 배포 모델을 정의한다. Software Defined Networking (SDN)은 제어 평면을 중앙 집중화함으로써 네트워크 트래픽 제어를 단순화하여 SFC동작에 중요한 역할을 한다. SDN 기반 SFC(SD_SFC)는 SF 장애를 감지하기 위한 모니터링 시스템이 필요하다. 그러나 기존의 모니터링 방식은 모든 SF에 Monitoring Agent(MA)를 배치하기 때문에 높은 시그널링 비용을 가진다. 본 논문에서는 최소한의 SF에 MA를 배치함으로써 시그널링 비용을 줄이는 SFC모니터링 방식을 제안한다. 제안하는 SF selection 알고리즘은 최적화된 SF 집합을 사용하여 오버로드된 SF를 반환하여 MA를 배치한다. 우리는 제안 시스템의 효율성을 평가하기 위해 테스트베드 구현을 통해 실험하였다. 실험 결과에 따르면 우리는 기존 방식에 비해서 시그널링 비용을 59.2% 절감하였다.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제12권10호
• /
• pp.4678-4702
• /
• 2018

Traffic Matrix estimation has always caught attention from researchers for better network management and future planning. With the advent of high traffic loads due to Cloud Computing platforms and Software Defined Networking based tunable routing and traffic management algorithms on the Internet, it is more necessary as ever to be able to predict current and future traffic volumes on the network. For large networks such origin-destination traffic prediction problem takes the form of a large under- constrained and under-determined system of equations with a dynamic measurement matrix. Previously, the researchers had relied on the assumption that the measurement (routing) matrix is stationary due to which the schemes are not suitable for modern software defined networks. In this work, we present our Compressed Sensing with Dynamic Model Estimation (CS-DME) architecture suitable for modern software defined networks. Our main contributions are: (1) we formulate an approach in which measurement matrix in the compressed sensing scheme can be accurately and dynamically estimated through a reformulation of the problem based on traffic demands. (2) We show that the problem formulation using a dynamic measurement matrix based on instantaneous traffic demands may be used instead of a stationary binary routing matrix which is more suitable to modern Software Defined Networks that are constantly evolving in terms of routing by inspection of its Eigen Spectrum using two real world datasets. (3) We also show that linking this compressed measurement matrix dynamically with the measured parameters can lead to acceptable estimation of Origin Destination (OD) Traffic flows with marginally poor results with other state-of-art schemes relying on fixed measurement matrices. (4) Furthermore, using this compressed reformulated problem, a new strategy for selection of vantage points for most efficient traffic matrix estimation is also presented through a secondary compression technique based on subset of link measurements. Experimental evaluation of proposed technique using real world datasets Abilene and GEANT shows that the technique is practical to be used in modern software defined networks. Further, the performance of the scheme is compared with recent state of the art techniques proposed in research literature.

• 정보보호학회지
• /
• 제25권5호
• /
• pp.60-66
• /
• 2015

SDN (Software Defined Networking)은 동적 재설정(Dynamic Reconfiguration)기능을 통해 지금껏 존재하지 않았던 유연성(Flexibility)을 IP(Internet Protocol)에 제공한다. 또한, 네트워크 관리, QoS (Quality of Service) 최적화, 시스템 복원력(Resilience) 강화를 위한 다양한 응용프로그램을 지원한다. 스마트그리드(Smart Grid)시스템에 SDN을 적용하기 위한 다양한 연구가 진행 중이며, 본 문서에서는 다양한 사고(Failures) 혹은 불법적인 공격으로부터 해당 시스템 복원력향상을 위한 이슈에 대해 언급한다. 이와 같은 문제점들에 대한 논의 없이 전력회사는 SDN의 장점을 충분히 활용하지 못할 가능성이 높다. 본 문서를 통해, SDN을 통한 스마트그리드 복원력향상, SDN으로 인한 추가적인 보안위협 등에 대해 논의 할 것이다.

• 정보와 통신
• /
• 제31권9호
• /
• pp.46-51
• /
• 2014

미래지향적 네트워크 및 서비스 인프라의 구축을 위해 네트워크의 개방화와 가상화에 대한 관심이 높아졌다. 이를 지원하는 기술로서 SDN (Software-defined Networking) 및 NFV(Network Function Virtualisation) 기술이 소개되었다. 특히 트래픽에 따라 필요한 네트워크 기능들을 선택적으로 조합 및 실행하여 하나의 네트워크 서비스를 구현하는 서비스 체이닝(Service Chaining 혹은 Service Function Chaining) 기술이 높은 관심을 받고 있다. 이를 통해 컴포넌트 서비스들로 이루어진 경로를 정의함으로써 네트워크 서비스를 적시에 구성 및 능동적으로 제어할 수 있다. 본 고에서는 서비스 체이닝 기술의 기본 개념및 기능에 대해 간략히 소개하고, 주요 기능의 표준화를 담당하는 IETF SFC WG 의 주요 표준화 이슈에 대한 분석 및 향후 전망을 기술한다.