Dual-layer SDN Model for Deploying and Securing Network Forensic in Distributed Data Center
Journal Title: Current Journal of Applied Science and Technology - Year 2017, Vol 22, Issue 4
Abstract
Many data centers nowadays begin to switch to SDN (Software-Defined Networking), to gain the main features like predictability, centralized management, quality of service and enhanced security. Comparing with traditional networks, SDN provides the ability to separate the control plane from the data plane with variety of protocols and functionalities like OpenFlow. Therefore, SDN reveals new opportunities to build large, complex and scalable networks using various network applications and services. As for network security and forensic aspects, the centralized control plane presented by SDN enhances the process of monitoring and analysis of network traffic to find the potential threats. However, it is so difficult to diagnose the cause of malevolent behaviors in large network with various services, communications, applications and protocols, without systematic model to investigate for the attacks that could happen in the data center. In this paper, we present new insight for the current trends in the aspect of SDN attacks and faults in distributed data centers in addition to the forensic challenges that have not been addressed yet. To diagnose such issues, we proposed an SDN prototype model based on the proven Provenance Verification Point (PVP) and expanded it to work in widely distributed data centers. The proposed prototype deployed as a centralized forensic middlebox working on collecting information and logs from the control and infrastructure layer of the SDN topology to find the root cause of the malicious attacks.
Authors and Affiliations
Aymen Hasan Rashid Al Awadi
Keywords
Related Articles
- EP ID EP318423
- DOI 10.9734/CJAST/2017/34752
- Views 93
- Downloads 0
Biostratigraphy of Ochigbo–1 Well, Offshore Niger Delta; Evidence from Foraminifera, Spores and Pollen
This study involved the palynological and micropalaeontological studies of Ochigbo – 1 well, offshore Niger Delta. A total of Sixty-two (62) ditch cutting samples were composited at intervals of 100 ft covering a total d...
Design and Analysis of Carbon Fiber Reinforced Composite Shell Structure Using Classical Laminate Plate Theory
The main focus of this project is to understand the nature of these laminated composites when subjected to specific damage cases like loads. In order to understand the progression of the failure modes in a laminated comp...
Constraints Perceived by the Pastoralists of Hilly Regions of Jammu and Kashmir in the Utilization of Indigenous Technical Knowledge
This article provides a systematic analysis of the challenges perceived by pastoralists of hilly regions of Jammu and Kashmir in the utilization of Indigenous technical knowledge. Semi-structured interviews were used to...
Critical Analysis of Polycyclic Aromatic Hydrocarbons Ring Size Distribution in Marshy Soils and Sediments in Warri City and Its Environs, Southern Nigeria
This study was carried out to analyze the ring size distribution of Polycyclic Aromatic Hydrocarbons (PAHs) in marshy soils and sediment samples in Warri City, Southern Nigeria. The samples were collected during dry and...
Analysis of Wide Band Unequal Cone Angle Biconical Antenna
Radiation properties of biconical antenna of unequal cone angles have not been widely reported as compared to equal angle biconical antennas. Biconical antennas with cone of angle 90° have been widely reported. In this p...