OVS的编程扩展技术

OVS (open vSwitch)作为一款开源的SDN软件交换机,得到了广泛关注.但在复杂多变的网络环境下,易出现数据层失去控制器控制和流表项学习老化等故障问题,严重制约了SDN性能.针对以上问题,研究设计了OVS的编程扩展技术架构,包含链接状态处理、故障感知、二三层自学习转发等核心功能的扩展,使OVS实现自动快速恢复、流表表项及时更新,保障了SDN吞吐量,从而减小了控制器失联对通信的影响,增强了SDN的稳定性和可靠性.     

Deep Learning Based Analog Beamforming Design for Millimetre Wave Massive MIMO System

Software-defined networking (SDN) is a new approach that overcomes the obstacles which are faced by conventional networking architecture. The core idea of SDN is to separate the control plane from the data plane. This idea improves the network in many ways, such as efficient utilization of resources, better management of the network, reduced cost, innovation with new evolution, and many others. To manage all these changes, there is a great need for an efficient controller to improve the utilization of resources for the better performance of the network. The controller is also responsible for the analysis and monitoring of real-time data traffic. There is a great need for a high-performance controller in networking industries, data centres, academia, and research due to the tremendous growth of distributed processing-based real time applications. Therefore, it is crucial to investigate the performance of an open-source controller to provide efficient traffic routing, leading to improved utilization of resources for the enhanced performance metrics of the network. The paper presents an implementation of SDN architecture using an open-source RYU SDN controller for the network traffic analysis. The proposed work evaluates the performance of SDN architecture based custom network topology for a node to node performance parameters such as bandwidth, throughput and roundtrip time, etc. The simulation results exhibit an improved performance of the proposed work in comparison to the existing default network topology for SDN.

     

Stateful firewall‐enabled software‐defined network with distributed controllers: A network performance study

SummarySoftware‐defined network (SDN) is constructed by decoupling the control and data plane from the forwarding devices. The control plane operations are managed by centralized or distributed controllers, and the data plane operation is managed by respective forwarding devices. SDN provides an easy and efficient management solutions for software‐programmed consolidated middlebox in virtual machines. Additionally, SDN with centralized controller faces complications like scalability, network bottle neck, and single point failure. In this study, a stateful inspection firewall acts as a middlebox in distributed SDN‐controlled network. The controller is programmed with a failure detection and recovery mechanism to provide reliability and redundancy and enhance the overall performance of the network. The objective of stateful firewall on SDN architecture is to secure the network by monitoring the current connections and maintain its state information until the connection is active. In this paper, the performance of firewall‐enabled SDN with centralized and distributed controllers are measured, compared, and analyzed. The experiments are done using POX controller, and the results are verified by Mininet network emulation tool. The results show that the stateful firewall‐enabled SDN with distributed controller network improves the security, reliability, availability, and overall performance of the network. In the proposed SDN, average network throughput is improved by 43%, average network delay is reduced by 4%, average channel utilization is increased by 40%, average network overhead is reduced by 26%, and average network response time is reduced by 23%.     

软件定义网络在电力数据通信网中的应用研究

软件定义网络（Software Defined Network,SDN）是一种全新的网络架构,它的设计理念是将网络的控制平面与数据转发平面分离,并实现可编程化控制.Openflow由美国斯坦福大学于2007年提出,它提供了标准化的接口,采用流表控制方式,将传统网络通信设备的数据转发和路由控制功能分离,是实现SDN的关键技术.从技术内涵、设备模型等方面对SDN进行了深入研究,同时研究了电力数据通信网的实际需求和现存问题,最后对软件定义网络在电力数据通信网中的应用进行了讨论.     

Pluggable SDN framework for managing heterogeneous SDN networks

Software‐defined networking (SDN) is a new network paradigm that is separating the data plane and the control plane of the network, making one or more centralized controllers to supervise the behaviour of the entire network. Different types of SDN controller software exist, and research dealing with the difficulties of consistently integrating these different controller types has mostly been declared future work. In this paper, the Domino framework is proposed, a pluggable SDN framework for managing heterogeneous SDN networks. In contrast to related work, the proposed framework allows research into SDN networks controlled by different types of SDN controllers attempting to standardize the northbound API of them. Domino implements a microservice plugin architecture where users can link different SDN networks to a processing algorithm. Such an algorithm allows for, eg, adapting the flows by building a pipeline using plugins that either invoke other SDN operations or generic data processing algorithms. The Domino framework is evaluated by implementing a proof‐of‐concept implementation, which is tested on the initial requirements. It achieves the modifiability and the interoperability with an average successful exchange ratio of 99.99%. The performance requirements are met for the frequently used commands with an average response time of 0.26 seconds, and the framework can handle at least 72 plugins simultaneously depending on the available amount of RAM. The proposed framework is evaluated by means of the implementation of a shortest path routing algorithm between heterogeneous SDN networks.     

基于端侧计算的天地一体化SDN实现思路

天地一体化网络结构复杂，并且存在网络异构、拓扑动态、间歇连通、节点高度暴露等特性，传统SDN实现存在诸多限制，提出了一种基于端侧计算的SDN实现方法，基于SDN理念实现的天地一体化信息网络，将天基网络控制与数据分离，利用通信端（移动终端和固定地面骨干网络）的计算能力，卸载天基平面的SDN控制器的计算工作量，从而实现了数据转发平面的极大简化，并提出了切实有效的验证方法。     

基于SDN的量子密码通信网络设计与研究

软件定义网络(SDN)采用OpenFlow技术分离网络设备的数据平面和控制平面,实现灵活控制网络资源的目的。基于此,设计了量子密码通信网络模型,实现灵活控制密码通信网络整体量子密匙资源,确保了信息的安全传输。此外,提出了综合到端可用密匙和跳数的路由算法,提高了QKD生成密匙的有效利用率。由测试结果可知,通过基于SDN的量子密码通信网络及路由算法,可提高量子密匙资源利用率,提高网络性能。     

基于OpenFlow的SDN可靠性综述

软定义网络(SDN)是一种新型的网络架构,其将控制平面和数据转发平面分离,并为网络管理提供了可编程的接口,简化了网络管理。随着基于OpenFlow的SDN技术在现实中的广泛应用,其所存在的问题也凸显出来,可靠性就是其中的一个重要方面。文中针对基于OpenFlow的SDN在可靠性方面存在的问题,分析总结了导致OpenFlow网络失效的因素,将网络失效划分为控制器、链路和节点失效,并归纳出相应的解决方案,探讨了未来基于OpenFlow的SDN在可靠性方面的研究方向与趋势。     

SYN‐Guard: An effective counter for SYN flooding attack in software‐defined networking

In software‐defined networking (SDN), TCP SYN flooding attack is considered as one of the most effective attacks to perform control plane and target server saturation. In this attack, an attacker generates a large number of malicious SYN requests, and because of the absence of the forwarding rules, the data plane switches have to forward these SYN messages to the controller. This excessive forwarding causes congestion over the communication channel between a data plane and control plane, and it also exhausts computational resources at both the planes. In this paper, we propose a novel countermeasure called SYN‐Guard to detect and prevent SYN flooding in SDN networks. We fully implement SYN‐Guard on the SDN controller to validate the incoming TCP connection requests. The controller installs forwarding rules for the SYN requests that successfully clear the validation test of SYN‐Guard. The host of the fake SYN request is detected, and SYN‐Guard prevents it from sending any further SYN requests to the data plane switch. The performance evaluation done using the simulation results shows that SYN‐Guard exhibits low side effect for genuine TCP requests, and when compared with standard SDN and state‐of‐art proposals, it reduces the average response time up to 21% during an ongoing SYN flooding attack.     

SDI: a multi-domain SDN mechanism for fine-grained inter-domain routing

Software-defined networking (SDN) scheme decouples network control plane and data plane, which can improve the flexibility of traffic management in networks. OpenFlow is a promising implementation instance of SDN scheme and has been applied to enterprise networks and data center networks in practice. However, it has less effort to spread SDN control scheme over the Internet to conquer the ossification of inter-domain routing. In this paper, we further innovate to the SDN inter-domain routing inspired by the OpenFlow protocol. We apply SDN flow-based routing control to inter-domain routing and propose a fine-granularity inter-domain routing mechanism, named SDI (Software Defined Inter-domain routing). It enables inter-domain routing to support the flexible routing policy by matching multiple fields of IP packet header. We also propose a method to reduce redundant flow entries for inter-domain settings. And, we implement a prototype and deploy it on a multi-domain testbed.     

Scalability of software defined network

With the development of software-defined networking (SDN),its scalability has become one of the most important issues of SDN.The features of SDN was studied which lead to its scalability problem when SDN was applied to large-scale network.The three main causes leading to scalability problem were discussed:control plane and data plane separation,logical centralized control and fine-grained flow control.Meanwhile,the studies which focus on the scalability of SDN from three aspects:scalability of performance,scalability of geographic and scalability of control was presented.Further,the studies on the performance evaluation of the scalability of SDN were introduced.Finally,the future work was discussed.     

Multilevel fault tolerance in infrastructure‐oriented wireless networks: framework and performance evaluation

Significant advances have been made in the design and implementation of dependable systems and networks over the last several years. However, many wireless networks have not been designed for highly dependable operation owing to network cost and complexity, and a lack of regulatory requirements on wireless service quality. One way to address this significant challenge is by introducing fault tolerance; however, very limited work has been done so far in the fault‐tolerant design of wireless networks. In this paper, we address how to utilize fault tolerance in the design of infrastructure‐oriented wireless networks. More specifically, an architectural design scheme is presented for multilevel fault tolerance using adaptable building blocks. The scheme utilizes ‘selective’ redundancy at component, link and block levels and a fault‐tolerant architecture for interconnection of building blocks. The design scheme has been implemented in both analytical and simulation models. The detailed performance results show that fault tolerance at component, link, block, and interconnection levels can significantly improve the overall dependability performance. One interesting observation is that, to achieve highest dependability, fault tolerance at link, component or block level is not sufficient and must be combined with the interconnection level fault‐tolerance. Copyright © 2006 John Wiley & Sons, Ltd.     

软件定义网络中可靠性优化控制器的位置研究(英)

By decoupling control plane and data plane,Software-Defined Networking(SDN) approach simplifies network management and speeds up network innovations.These benefits have led not only to prototypes,but also real SDN deployments.For wide-area SDN deployments,multiple controllers are often required,and the placement of these controllers becomes a particularly important task in the SDN context.This paper studies the problem of placing controllers in SDNs,so as to maximize the reliability of SDN control networks.We present a novel metric,called expected percentage of control path loss,to characterize the reliability of SDN control networks.We formulate the reliability-aware control placement problem,prove its NP-hardness,and examine several placement algorithms that can solve this problem.Through extensive simulations using real topologies,we show how the number of controllers and their placement influence the reliability of SDN control networks.Besides,we also found that,through strategic controller placement,the reliability of SDN control networks can be significantly improved without introducing unacceptable switch-to-controller latencies.     

ONVisor: Towards a scalable and flexible SDN‐based network virtualization platform on ONOS

Network virtualization (NV) technologies have attracted a lot of attention as an essential solution for future networking infrastructure. The NV enables multiple tenants to share the same physical infrastructure and to create independent virtual networks (VNs) by decoupling the physical network in terms of topology, address, and control functions. One feasible way to realize full NV involves considering solutions based on the software‐defined networking (SDN) paradigm using its programmability. The SDN contributes many benefits to both network operations and management including programmability, agility, elasticity, and flexibility. There are several SDN‐based NV solutions; however, they suffered from a lack of scalability, high availability. Also, they have high latency between control and data plane because of proxy‐based architecture. In this thesis, we introduce a new NV platform, named Open Network Hypervisor (ONVisor). The design objectives include, among the features, (1) multitenancy, (2) scalability, (3) flexibility, (4) isolated VNs, and (5) VN federation. ONVisor was designed and implemented by extending Open Network Operating System, an open‐source SDN controller. The main features of ONVisor are (1) isolated control and data plane per VN, (2) support of distributed operations, (3) extensible translators, (4) on‐platform VN application development and execution, and (5) support of heterogenous SDN data‐plane implementations. Several experiments are conducted on various test scenarios in different test environments in terms of control and data plane performance compared to nonvirtualized SDN network. The results show that ONVisor can provide VNs a little bit lower control plane performance and similar data plane performance.     

Software‐defined networking approach for enhanced evolved packet core network

The evolved packet core (EPC) network is the mobile network standardized by the 3rd Generation Partnership Project and represents the recent evolution of mobile networks providing high‐speed data rates and on‐demand connectivity services. Software‐defined networking (SDN) is recently gaining momentum in network research as a new generation networking technique. An SDN‐based EPC is expected to introduce gains to the EPC control plane architecture in terms of simplified, and perhaps even software‐based, vendor independent infrastructure nodes. In this paper, we propose a novel SDN‐based EPC architecture along with the protocol‐level detailed implementation and provide a mechanism for identifying information fields exchanged between SDN‐EPC entities that maintains correct functionality with minimal impact on the conventional design. Furthermore, we present the first comprehensive network performance evaluation for the SDN‐based EPC versus the conventional EPC and provide a comparative analysis of 2 networks performances identifying potential bottlenecks and performance issues. The evaluation focuses on 2 network control operations, namely, the S1‐handover and registration operations, taking into account several factors, and assessing performance metrics such as end‐to‐end delay (E2ED) for completion of the respective control operation, and EPC nodes utilization figures.     

Formal modeling and verification of software‐defined networks: A survey

Unlike traditional networking devices, control and management plane are decoupled from data plane in software‐defined networks (SDN). The logically centralized control and management plane facilitate dynamic orchestration of network resources, services, and policies by writing software programs. This provides much needed flexibility and programmability where networking rules and policies can be modified dynamically depending upon the application context. As the operation of network services entirely depends on a program, a small fault may induce several issues which can adversely affect the expected behavior of the network. Formal modeling and verification help in catching inconsistencies and existence of errors prior to the deployment of the programs that control the behavior of a network. In this paper, we provide a comprehensive survey of tools and techniques available in the literature for formal modeling and verification of SDN. These tools and techniques are classified based on their types, the components of SDN where they can be applied, and the design and development phase when they are utilized. In particular, their respective benefits and limitations are discussed in terms of ease of use, interfaces, and the ability to capture and verify intended network properties.     

EARS: Intelligence-Driven Experiential Network Architecture for Automatic Routing in Software-Defined Networking

Software-Defined Networking(SDN)adapts logically-centralized control by decoupling control plane from data plane and provides the efficient use of network resources.However,due to the limitation of traditional routing strategies relying on manual configuration,SDN may suffer from link congestion and inefficient bandwidth allocation among flows,which could degrade network performance significantly.In this paper,we propose EARS,an intelligence-driven experiential network architecture for automatic routing.EARS adapts deep reinforcement learning(DRL)to simulate the human methods of learning experiential knowledge,employs the closed-loop network control mechanism incorporating with network monitoring technologies to realize the interaction with network environment.The proposed EARS can learn to make better control decision from its own experience by interacting with network environment and optimize the network intelligently by adjusting services and resources offered based on network requirements and environmental conditions.Under the network architecture,we design the network utility function with throughput and delay awareness,differentiate flows based on their size characteristics,and design a DDPGbased automatic routing algorithm as DRL decision brain to find the near-optimal paths for mice and elephant flows.To validate the network architecture,we implement it on a real network environment.Extensive simulation results show that EARS significantly improve the network throughput and reduces the average packet delay in comparison with baseline schemes(e.g.OSPF,ECMP).     

基于SDN的光传送网研究

SDN作为目前通信行业热门技术,主要利用控制和数据相分离的思想,对网络和业务进行可编程,从而解决目前互联网技术的快速发展下带来的宽带需求量大、建设成本高、调度不灵活等问题,虽然SDN的网络演进还处于初级阶段,但SDN对整个光传送网带来的影响仍需要积极研究。     

软件定义的无人机网络架构研究综述

软件定义网络（Software Defined Network,SDN）依靠着其集中控制、可编程性和数控分离等优点,能够有效解决无人机网络（Flying Ad Hoc Network,FANET）面临的任务拓扑高度变化、网络链路连接不稳定、网络安全防护脆弱以及应用程序的异构性等问题,极大地提升FANET的灵活性和可靠性。针对SDN架构与FANET的结合问题,描述了SDN的体系架构,并以SDN控制器部署方式为关注点分类别概括了近几年软件定义无人机网络（Software-defined Flying Ad Hoc Network,SD-FANET）的研究进展,重点阐述了结合移动边缘计算（Mobile Edge Computing,MEC）的SD-FANET研究现状,最后指出了SD-FANET的应用场景和一些具体的未来研究方向。     

软件定义网络容错控制平面的最小覆盖布局方法

容错控制平面通过将多个控制器部署在不同的网络设备上进而增强网络的可靠性,但是大量的控制器部署带来了巨大的布局成本,严重地限制了容错控制平面在实际网络中的部署与应用。为了解决上述问题,该文首先构造了容错控制平面的最小覆盖布局模型,然后设计了一种基于局部搜索策略的启发式控制器布局算法,避免搜索结果陷入局部最优解。在不同规模网络中的仿真结果表明,相对于其他算法,所提算法可以在保证网络容错需求的同时,降低网络中部署控制器的数量。