317,890 research outputs found
On the security of software-defined next-generation cellular networks
In the recent years, mobile cellular networks are ndergoing fundamental changes and many established concepts are being revisited. Future 5G network architectures will be designed to employ a wide range of new and emerging technologies such as Software Defined Networking (SDN) and Network Functions Virtualization (NFV). These create new virtual network elements each affecting the logic of the network management and operation, enabling the creation of new generation services with substantially higher data rates and lower delays. However, new security challenges and threats are also introduced. Current Long-Term Evolution (LTE) networks are not able to accommodate these new trends in a secure and reliable way. At the same time, novel 5G systems have proffered invaluable opportunities of developing novel solutions for attack prevention, management, and recovery. In this paper, first we discuss the main security threats and possible attack vectors in cellular networks. Second, driven by the emerging next-generation cellular networks, we discuss the architectural and functional requirements to enable
appropriate levels of security
Software defined networking flow admission and routing under minimal security constraints
In recent years, computer networks and telecommunications in general have
been shifting paradigms to adopt software-centric approaches. Software Defined
Networking (SDN) is one of such paradigms that centralizes control and
intelligent applications can be defined on top of this architecture. The latter
enables the definition of the network behavior by means of software. In this
work, we propose an approach for Flow Admission and Routing under Minimal
Security Constraints (FARSec) in Software Defined Networks, where network flows
must use links which are at least as secure as their required security level.
We prove that FARSec can find feasible paths that respect the minimum level of
security for each flow. If the latter is not possible FARSec rejects the flow
in order not to compromise its security. We show that the computational
complexity of the proposed approach is polynomial. Experimental results with
semi-random generated graphs confirm the efficiency and correctness of the
proposed approach. Finally, we implement the proposed solution using OpenFlow
and ONOS -- an SDN open-source controller. We validate its functionality using
an emulated network with various security levels.Comment: 8 pages, 10 figures, as submitted to TRUSTCOM2
Security Features in a Hybrid Software-Defined Network
The paper presents a novel paradigm of software-defined network that is significantly different from previous traditional networks and enables new opportunities in the architecture and implementation of security solutions. The analysis of network environments will compare traditional networks and software-defined networks and emphasize significant differences. A survey of the existing research includes vector attacks and troubleshooting using the capabilities of SDN with an emphasis on access control, detection, and prevention of attacks. This paper uses previous research and results to obtain information that will be used in improving critical system network protection and compares it with the existing conventional approach as well as implements it through a hybrid software-defined network
Software-Defined Networks Supporting Time-Sensitive In-Vehicular Communication
Future in-vehicular networks will be based on Ethernet. The IEEE
Time-Sensitive Networking (TSN) is a promising candidate to satisfy real-time
requirements in future car communication. Software-Defined Networking (SDN)
extends the Ethernet control plane with a programming option that can add much
value to the resilience, security, and adaptivity of the automotive
environment. In this work, we derive a first concept for combining
Software-Defined Networking with Time-Sensitive Networking along with an
initial evaluation. Our measurements are performed via a simulation that
investigates whether an SDN architecture is suitable for time-critical
applications in the car. Our findings indicate that the control overhead of SDN
can be added without a delay penalty for the TSN traffic when protocols are
mapped properly.Comment: To be published at IEEE VTC2019-Sprin
- …