| Title | A SDN/NFV Security Protection Architecture with a Function Composition Algorithm Based on Trie |
| Publication Type | Conference Paper |
| Year of Publication | 2018 |
| Authors | Hao, Zheng, Lin, Zhaowen, Li, Ran |
| Conference Name | Proceedings of the 2Nd International Conference on Computer Science and Application Engineering |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-6512-3 |
| Keywords | composability, composition algorithm, expandability, NFV, pubcrawl, Resiliency, SDN, security protection architecture |
| Abstract | Software1 Defined Network (SDN) is a new type of network architecture that has advantages over traditional network. For SDN, security is a basic issue. SDN controller has received considerable attention in the researches on SDN security. Researchers assign security tasks to SDN controllers generally, but it puts a heavy burden on the SDN controller and leads to a decrease in system stability. On the basis of previous work, we propose a new security protection architecture based on SDN/NFV. Meanwhile, a security function virtual machine pool is designed in infrastructure layer in architecture. It can create virtual machines and manage the ip addresses of the virtual machines automatically, which improves the flexibility and expandability of the architecture. Moreover, a function composition algorithm based on Trie (FCT) has been introduced. We deploy the security protection architecture on VMware cloud platform to validate the availability of the architecture and use experimental data to prove FCT algorithm has good performance. |
| URL | http://doi.acm.org/10.1145/3207677.3277992 |
| DOI | 10.1145/3207677.3277992 |
| Citation Key | hao_sdn/nfv_2018 |
A SDN/NFV Security Protection Architecture with a Function Composition Algorithm Based on Trie