Dual-layer SDN Model for Deploying and Securing Network Forensic in Distributed Data Center
Journal Title: Current Journal of Applied Science and Technology - Year 2017, Vol 22, Issue 4
Abstract
Many data centers nowadays begin to switch to SDN (Software-Defined Networking), to gain the main features like predictability, centralized management, quality of service and enhanced security. Comparing with traditional networks, SDN provides the ability to separate the control plane from the data plane with variety of protocols and functionalities like OpenFlow. Therefore, SDN reveals new opportunities to build large, complex and scalable networks using various network applications and services. As for network security and forensic aspects, the centralized control plane presented by SDN enhances the process of monitoring and analysis of network traffic to find the potential threats. However, it is so difficult to diagnose the cause of malevolent behaviors in large network with various services, communications, applications and protocols, without systematic model to investigate for the attacks that could happen in the data center. In this paper, we present new insight for the current trends in the aspect of SDN attacks and faults in distributed data centers in addition to the forensic challenges that have not been addressed yet. To diagnose such issues, we proposed an SDN prototype model based on the proven Provenance Verification Point (PVP) and expanded it to work in widely distributed data centers. The proposed prototype deployed as a centralized forensic middlebox working on collecting information and logs from the control and infrastructure layer of the SDN topology to find the root cause of the malicious attacks.
Authors and Affiliations
Aymen Hasan Rashid Al Awadi
Keywords
Related Articles
- EP ID EP318423
- DOI 10.9734/CJAST/2017/34752
- Views 71
- Downloads 0
One Hundred Months of Construction Accidents in the Southeast of Mexico
Construction work is considered to be one of the most dangerous activities, in which the workers are exposed to multiple risks. Due to the complex interdependence of the tasks and the fact that the productive plant chang...
Scientific Notes on Some Species of Genus Globorotalia from Kafe Field, Offshore Western Niger Delta, Nigeria
In this paper, some species of the Genus Globorotalia from the study area were identified and taxonomic notes on them were transcribed. The study area is located in Kafe field, offshore western Niger Delta, Nigeria. The...
Utilization of Corn Fibre and Pectin Gel for the Development of Low Calorie and High Fibre Biscuits
Aim: The study was carried out to standardize low calorie-high fibre biscuits by using corn fibre and pectin gel. Methodology: Corn fibre is a by-product of corn starch industry. It was used to replace refined wheat flo...
Geochemical Characteristic and Petrogenesis of Malumfashi Schist around Tandama Area, North-Western Nigeria
Malumfashi schists which occur in association with migmatite-gneisses and biotite granite, occupy about 60% of Tandama area, north-western Nigeria. These rocks were studied with a view to evaluate their compositional cha...
Bioethanol Production from Residual Tobacco Stalks
Aims: In this work, bioethanol production from residual tobacco stalks was investigated. Place and Duration of Study: Stalks sampling was in South Brazil crops and experiments in chemistry laboratories at Unisc, after t...