Modeling of OpenFlow-related handover messages in mobile networks

Software defined networking (SDN) and its most popular southbound implementation OpenFlow (OF) are already greatly exploited in the existing mobile cellular networks as part of data centers and mobile core networks. Due to user’s mobility, it is of upmost importance for the operators to provide the shortest possible interruption when the mobile users are performing the procedure of handover. In this work, we proposed a novel analytical approach to model the OF-related handover messages exchanged between the OF-switches and the SDN controller. We modeled two different OF-switch implementations and we compared the results: (1) single shared buffer used for the control and data plane; (2) two priority buffers, where the data plane packets are served only when there are no packets to be processed in the control plane. We numerically evaluated the two systems and we validated the model by using simulations. The obtained results clearly point that although the priority buffering increased the complexity, it effectively provided the shortest handover delay. Therefore, the priority buffering should be the preferred mechanism for mobile networks.

     

WLAN中基于OpenFlow的无缝切换机制设计与实现

在传统的WLAN网络中,因为用户使用的移动终端（Station,STA）具有移动性,STA会出现离开当前网络接入点（Access Point,AP）的覆盖范围进入另一AP覆盖范围的情况,此时STA需要在AP间进行切换.传统WLAN中这样的AP间切换会产生网络延迟突然增大、吞吐量损失、以及掉线等服务质量下降的问题.本文提出并实现了一种基于AP虚拟化和OpenFlow技术的解决方案,通过搭建基于OpenFlow的交换网络对STA的流量进行细粒度的控制从而完成STA在不同AP间的无缝切换.经过实际网络环境测试,本方案具有5ms左右的切换延时、在AP切换时只会造成1秒左右的瞬时吞吐量减少和16ms左右的网络延时.相较于其他方案,本方案由于不需要再次进行认证和重新路由,因而具有更好的无缝切换性能.     

软件定义网络中基于密码标识的报文转发验证机制

针对软件定义网络(SDN)中缺乏安全高效的数据来源验证机制问题,该文提出基于密码标识的报文转发验证机制。首先,建立基于密码标识的报文转发验证模型,将密码标识作为IP报文进出网络的通行证。其次,设计SDN批量匿名认证协议,将SDN控制器的验证功能下放给SDN交换机,由SDN交换机进行用户身份验证和密码标识验证,快速过滤伪造、篡改等非法报文,提高SDN控制器统一认证与管理效率,同时可为用户提供条件隐私保护。提出基于密码标识的任意节点报文抽样验证方案,任何攻击者无法通过推断采样来绕过报文检测,确保报文的真实性的同时降低其处理延迟。最后,进行安全性分析和性能评估。结果表明该机制能快速检测报文伪造和篡改及抵抗ID分析攻击,但同时引入了大约9.6%的转发延迟和低于10%的通信开销。     

SDN/NFV‐based handover management approach for ultradense 5G mobile networks

With the great increase of connected devices and new types of applications, mobile networks are witnessing exponential growth of traffic volume. To meet emerging requirements, it is widely agreed that the fifth‐generation mobile network will be ultradense and heterogeneous. However, the deployment of a high number of small cells in such networks poses challenges for the mobility management, including frequent, undesired, and ping‐pong handovers, not to mention issues related to increased delay and failure of the handover process. The adoption of software‐defined networking (SDN) and network function virtualization (NFV) technologies into 5G networks offers a new way to address the above‐mentioned challenges. These technologies offer tools and mechanisms to make networks flexible, programmable, and more manageable. The SDN has global network control ability so that various functions such as the handover control can be implemented in the SDN architecture to manage the handover efficiently. In this article, we propose a Software‐Defined Handover (SDHO) solution to optimize the handover in future 5G networks. In particular, we design a Software‐Defined Handover Management Engine (SDHME) to handle the handover control mechanism in 5G ultradense networks. The SDHME is defined in the application plane of the SDN architecture, executed by the control plane to orchestrate the data plane. Simulation results demonstrate that, compared with the conventional LTE handover strategy, the proposed approach significantly reduces the handover failure ratio and handover delay.     

HeS‐CoP: Heuristic switch‐controller placement scheme for distributed SDN controllers in data center networks

Software‐defined networking (SDN) has been widely researched and used to manage large‐scale networks such as data center networks (DCNs). An early stage of SDN controller experienced low responsiveness, low scalability, and low reliability. To solve these problems, distributed SDN controllers have been proposed. The concept of distributed SDN controllers distributes control messages among multiple SDN controllers. However, distributed SDN controllers must assign a master controller for each networking devices. Most previous studies, however, did not consider the characteristics of DCNs. Thus, they are not suitable to operate in DCNs. In this paper, we propose HeS‐CoP, a heuristic switch‐controller placement scheme for distributed SDN controllers in DCNs. With the control traffic load and CPU load, HeS‐CoP decides when our scheme should be performed in DCNs. To show the feasibility of HeS‐CoP, we designed and implemented an orchestrator that contains our proposed scheme and then evaluated our proposed scheme. As a result, our proposed scheme well distributes the control traffic load, decreases the average CPU load, and reduces the packet delay.     

SDN-based wireless user management system

The degradation of end-to-end quality of service (QoS) on mobile users is becoming a common issue for IEEE 802.11 infrastructure-based networks in crowded areas. This research tackles the issue by employing an SDN framework on an integrated wireless/wired environment. Thereby, we present the development and implementation of a system that performs user management by analyzing the network load from the OpenFlow statistics, as well as the wireless information collected from the associated users. In order to analyse the behaviour of the proposed user migration algorithm, we evaluate the system under scenarios with different traffic load and user session duration. From the experiments, we observed that in several cases wireless users get a considerable QoS improvement at the application layer (up to 30% improvement in throughput and up to 20% in delay in our simulations) once the system is activated. Based on the results, we present an analysis on how and when user migration in multi-access point IEEE 802.11 networks can be most effective.     

SEAL2: An SDN‐enabled all‐Layer2 packet forwarding network architecture for multitenant datacenter networks

This paper presents the design and development of a new network virtualization scheme to support multitenant datacenter networking (MT‐DCN) based on software‐defined networking (SDN) technologies. Effective multitenancy supports are essential and challenging for datacenter networking designs. In this study, we propose a new network virtualization architecture framework for efficient packet forwarding in MT‐DCN. Traditionally, an internet host uses IP addresses for both host identification and location information, which causes mobile IP problems whenever the host is moved from one IP subnet to another. Unfortunately, virtual machine (VM) mobility is inevitable for cloud computing in datacenters for reasons such as server consolidation and network traffic flow optimization. To solve the problems, we decouple VM identification and location information with two independent values neither by IP addresses. We redefine the semantics of Ethernet MAC address to embed tenant ID information to the MAC address field without violating its original functionality. We also replace traditional Layer2/Layer3 two‐stage routing schemes (MAC/IP) with an all‐Layer2 packet forwarding mechanism that combines MAC addresses (for VM identification and forwarding in local server groups under an edge switch gateway) and multiprotocol label switching (MPLS) labels (for packet transportation between edge switch gateways across the core label switching network connecting all the edge gateways). To accommodate conventional IP packet architecture in a multitenant environment, SDN (OpenFlow) technology is used to handle all this complex network traffics. We verified the design concepts by a simple system prototype in which all the major system components were implemented. Based on the prototype system, we evaluated packet forwarding efficiency under the proposed network architecture and compared it with conventional IP subnet routing approaches. We also evaluated the incurred packet processing overhead caused by each of the packet routing components.     

New delay measurement method based on accurate timestamp in OpenFlow

At present,delay measurement methods in OpenFlow network have the disadvantage of excessive network resources and poor measurement accuracy.DeMon,an active mechanism to measure the delay of multiple paths between any two switch based on the controllable feature of individual traffic flow provided in OpenFlow was proposed.DeMon required only one probe packet to be send from controller,which was excepted to reduce the operational cost.Moreover,DeMon used OpenFlow switch instead of controller to get the timestamp of probe packet,making the measurement accuracy and stability have been greatly improved compared with other monitoring techniques in the OpenFlow network.     

一种基于数据平面可编程的软件定义网络报文转发验证机制

针对软件定义网络(SDN)中OpenFlow协议匹配字段固定且数量有限,数据流转发缺少有效的转发验证机制等问题,该文提出一种基于数据平面可编程的软件定义网络报文转发验证机制。通过为数据报文添加自定义密码标识,将P4转发设备加入基于OpenFlow的软件定义网络,在不影响数据流正常转发的基础上,对网络业务流精确控制和采样。控制器验证采样业务报文完整性,并针对异常报文下发流规则至OpenFlow转发设备,对恶意篡改、伪造等异常数据流进行转发控制。最后,构建基于开源BMv2的P4转发设备和基于OpenFlow的Open vSwitch转发设备的转发验证原型,并构建仿真网络进行实验。实验结果表明,该机制能够有效检测业务报文篡改、伪造等转发异常行为,与同类验证机制相比,在安全验证处理开销保持不变的情况下,能够实现更细粒度的业务流精确控制采样和更低的转发时延。     

Secure access of resources in software‐defined networks using dynamic access control list

Software‐defined networking (SDN) creates a platform to dynamically configure the networks for on‐demand services. SDN can easily control the data plane and the control plane by implementing the decoupling concept. SDN controller will regulate the traffic flow and creates the new flow label based on the packet dump received from the OpenFlow virtual switches. SDN governs both data information and control information toward the destination based on flow label, but it does not contain security measure to restrict the malicious traffic. The malicious denial‐of‐service (DoS) attack traffic is generated inside the SDN environment; it leads to the service unavailability. This paper is mainly focused on the detection of DoS attacks and also mitigates the malicious traffic by dynamically configuring the firewall. The SDN with dynamic access control list properties is emulated by mininet, and the experimental results exemplify the service unavailable gap between acceptance and rejection ratio of the packets.     

QoS Analysis in Overlay Bluetooth-WiFi Networks with Profile-Based Vertical Handover

The performance of an overlay Bluetooth and IEEE 802.11b (WiFi) network is considered in terms of quality of service parameters such as the packet latency, the packet error rate, and the throughput, in the presence of a vertical handover procedure, taking into account the mutual Bluetooth-WiFi interference and showing the influence of the main system parameters. The objective is to maximize the user QoS allowing the mobile to switch from a network to the other, with the so-called vertical handover. The basic idea is to activate the vertical handover, not on the basis of the received power level, but by the crossing of thresholds defined by the user profile, which comprises objective values for parameters such as the packet error rate and the packet delay. The results show that the use of the vertical handover procedure can lead to an improvement in the QoS parameters     

Research on distributed mobile management of satellite network based on software define network

Distributed mobility management (DMM) was an effective method to solve the mobile address handover.Therefore,it was considered to be a technology that can be applied to satellite network mobility management.A distributed mobile management scheme which based on software definition network (SDN) was proposed to solve the traffic redirection problem in satellite network.Different from the traditional DMM application scenario which was network-based or terminal-based,the SDN-DMM scheme implements location management and address handover in SDN controllers.Therefore,SDN-based satellite network distributed mobile management scheme can realize packet forwarding path optimization compared with traditional scheme,and it shows significant advantages in managementcost and traffic management.     

面向负载均衡的主动切换

为了解决超密集网络中用户在移动过程中由于小区间干扰和负载不均衡导致的用户服务质量下降的问题,本文研究了一种面向负载均衡的主动切换策略,设计了一种基于双门限的移动切换策略,包含小区内的切换与小区间的切换。通过优化小区内的切换门限,可以最小化系统总资源开销。通过优化小区间的切换门限,能够保证用户实时业务需求的同时均衡网络负载。通过预测用户未来大尺度信道信息,设计主动的双门限切换策略,可以有效降低切换延迟。仿真结果表明,与现有的切换策略相比,所提算法不仅提高了资源利用率,还降低了用户掉线概率与切换次数。      

Packet loss and delay performance of feedback and feed-forwardarrayed-waveguide gratings-based optical packet switches with WDMinputs-outputs

This paper analyzes the packet loss and delay performance of an arrayed-waveguide-grating-based (AWG) optical packet switch developed within the EPSRC-funded project WASPNET (wavelength switched packet network). Two node designs are proposed based on feedback and feed-forward strategies, using sharing among multiple wavelengths to assist in contention resolution. The feedback configuration allows packet priority routing at the expense of using a larger AWG. An analytical framework has been established to compute the packet loss probability and delay under Bernoulli traffic, justified by simulation. A packet loss probability of less than 10^-9 was obtained with a buffer depth per wavelength of 10 for a switch size of 16 inputs-outputs, four wavelengths per input at a uniform Bernoulli traffic load of 0.8 per wavelength. The mean delay is less than 0.5 timeslots at the same buffer depth per wavelength     

Software‐defined networking approach for enhanced evolved packet core network

The evolved packet core (EPC) network is the mobile network standardized by the 3rd Generation Partnership Project and represents the recent evolution of mobile networks providing high‐speed data rates and on‐demand connectivity services. Software‐defined networking (SDN) is recently gaining momentum in network research as a new generation networking technique. An SDN‐based EPC is expected to introduce gains to the EPC control plane architecture in terms of simplified, and perhaps even software‐based, vendor independent infrastructure nodes. In this paper, we propose a novel SDN‐based EPC architecture along with the protocol‐level detailed implementation and provide a mechanism for identifying information fields exchanged between SDN‐EPC entities that maintains correct functionality with minimal impact on the conventional design. Furthermore, we present the first comprehensive network performance evaluation for the SDN‐based EPC versus the conventional EPC and provide a comparative analysis of 2 networks performances identifying potential bottlenecks and performance issues. The evaluation focuses on 2 network control operations, namely, the S1‐handover and registration operations, taking into account several factors, and assessing performance metrics such as end‐to‐end delay (E2ED) for completion of the respective control operation, and EPC nodes utilization figures.     

基于图卷积神经网络的软件定义电力通信网络路由控制策略

传输时延和数据包丢失率是电力通信业务可靠传输重点关注的问题,该文提出一种面向软件定义电力通信网络的最小路径选择度路由控制策略.结合电力通信网络软件定义网络(SDN)集中控制架构的特点,利用图卷积神经网络构建的链路带宽占用率预测模型(LBOP-GCN)分析下一时刻路径带宽占用率.通过三角模算子(TMO)融合路径的传输时延...     

Network‐initiated simultaneous mobility in voice over 3GPP‐WLAN

VoIP over WLAN (VoWLAN) gradually has become a popular application with the fast maturing of both WLAN and Voice over IP (VoIP) technology. However there exists one problem that heavily affects the satisfaction of the users which is that the mobility of the mobile host (MH) can disrupt or even intermittently disconnect an ongoing real‐time session. Therefore the issue of how to reduce the handover delay gets more and more important. This paper proposes a Network‐Initiated SimUltaneouS mobility (NISUS) mechanism to facilitate terminal mobility with the session initiation protocol (SIP) in Voice over 3GPP‐WLAN. We design the E2E tunnel state model running on the packet data gateway (PDG) referring to the CAMEL concept. The NISUS is triggered at the PDG by detecting the state transition of the E2E tunnel state model that represents the occurrence of a handover. Then the PDG sends the handover request to notify the Mobility Server (MS) to perform a third party call control (3PCC) and a third party registration on behalf of the MH in parallel for session re‐establishment. With the help of the MS we ensure the lost signaling messages could be correctly re‐sent to moving hosts. Moreover the Master‐Slave Determination procedures derived from H.245 are proposed for the MS in order to handle the racing conditions fairly when two MSs involved in a simultaneous mobility issue 3PCC calls respectively at about the same time. We demonstrate the NISUS works well in the simultaneous and non‐simultaneous movement cases. Analytical results show that the handover delay can be improved significantly by using the NISUS compared with the mobile‐initiated simultaneous/non‐simultaneous mobility. Copyright © 2010 John Wiley & Sons, Ltd.     

Output and delay process analysis for slotted CDMA wirelesscommunication networks with integrated voice/data transmission

This paper presents the output and delay process analysis of integrated voice/data slotted code division multiple access (CDMA) network systems with random access protocol for packet radio communications. The system model consists of a finite number of users, and each user can be a source of both voice traffic and data traffic. The allocation of codes to voice calls is given priority over that to data packets, while an admission control, which restricts the maximum number of codes available to voice sources, is considered for voice traffic so as not to monopolize the resource. Such codes allocated exclusively to voice calls are called voice codes. In addition, the system monitoring can distinguish between silent and talkspurt periods of voice sources, so that users with data packets can use the voice codes for transmission if the voice sources are silent. A discrete-time Markov process is used to model the system operation, and an exact analysis is presented to derive the moment generating functions of the probability distributions for packet departures of both voice and data traffic and for the data packet delay. For some cases with different numbers of voice codes, numerical results display the correlation coefficient of the voice and data packet departures and the coefficient of variation of the data packet delay as well as average performance measures, such as the throughput, the average delay of data packets, and the average blocking probability of voice calls     

Traffic performance analysis of handover in GMPCS systems

This paper presents an analysis of handover process and its effect on the traffic performance in global mobile personal communications by satellite (GMPCS) systems. With the nongeostationary satellite used for the system, the handover scheme needs to be applied to make calls completed without any interruption. An analytical model is developed for the analysis of the handover process. We derive the mean number of handovers and handover delay with various satellite antenna patterns and different settings of handover parameter. A suitable traffic model of the whole system is also derived after due considerations of the handover process. The system performance measures include new call blocking probability, call dropping probability, and mean number of handovers per call. A computer simulation is developed and used. We also analyze the system performance with a number of handover priority schemes applied. Based on the study results, the handover parameters are selected to maximize the traffic performance. It is shown that we can improve the overall traffic performance of GMPCS system by setting handover parameters properly and using the handover priority scheme     

一种LTE系统中的基站内切换实现方案

为了实现LTE(长期演进)系统中的基站内切换,文章从控制面和用户面信令流程的角度出发,提出了一种LTE系统中的基站内切换设计方案。通过基站内各模块的协同工作,可有效实现包含数据转发的基站内切换流程,确保切换过程中不丢包,实现平滑切换。将该方案应用于实际的测试中,进行了基站内切换的组网测试,并给出了实际的切换测试结果。