| Title | Cross-Security Domain Dynamic Orchestration Algorithm of Network Security Functions |
| Publication Type | Conference Paper |
| Year of Publication | 2022 |
| Authors | Xiao, Weidong, Zhang, Xu, Wang, Dongbin |
| Conference Name | 2022 7th IEEE International Conference on Data Science in Cyberspace (DSC) |
| Keywords | complex networks, composability, cross-security domain, dynamic networks, dynamic orchestration algorithm, Heuristic algorithms, Load management, Metrics, Network security, Network Security Architecture, performance evaluation, pubcrawl, resilience, Resiliency, security, service function chaining, simulation |
| Abstract | To prevent all sorts of attacks, the technology of security service function chains (SFC) is proposed in recent years, it becomes an attractive research highlights. Dynamic orchestration algorithm can create SFC according to the resource usage of network security functions. The current research on creating SFC focuses on a single domain. However in reality the large and complex networks are divided into security domains according to different security levels and managed separately. Therefore, we propose a cross-security domain dynamic orchestration algorithm to create SFC for network security functions based on ant colony algorithm(ACO) and consider load balancing, shortest path and minimum delay as optimization objectives. We establish a network security architecture based on the proposed algorithm, which is suitable for the industrial vertical scenarios, solves the deployment problem of the dynamic orchestration algorithm. Simulation results verify that our algorithm achieves the goal of creating SFC across security domains and demonstrate its performance in creating service function chains to resolve abnormal traffic flows. |
| DOI | 10.1109/DSC55868.2022.00063 |
| Citation Key | xiao_cross-security_2022 |
Cross-Security Domain Dynamic Orchestration Algorithm of Network Security Functions