Dual-layer SDN Model for Deploying and Securing Network Forensic in Distributed Data Center
Journal Title: Current Journal of Applied Science and Technology - Year 2017, Vol 22, Issue 4
Abstract
Many data centers nowadays begin to switch to SDN (Software-Defined Networking), to gain the main features like predictability, centralized management, quality of service and enhanced security. Comparing with traditional networks, SDN provides the ability to separate the control plane from the data plane with variety of protocols and functionalities like OpenFlow. Therefore, SDN reveals new opportunities to build large, complex and scalable networks using various network applications and services. As for network security and forensic aspects, the centralized control plane presented by SDN enhances the process of monitoring and analysis of network traffic to find the potential threats. However, it is so difficult to diagnose the cause of malevolent behaviors in large network with various services, communications, applications and protocols, without systematic model to investigate for the attacks that could happen in the data center. In this paper, we present new insight for the current trends in the aspect of SDN attacks and faults in distributed data centers in addition to the forensic challenges that have not been addressed yet. To diagnose such issues, we proposed an SDN prototype model based on the proven Provenance Verification Point (PVP) and expanded it to work in widely distributed data centers. The proposed prototype deployed as a centralized forensic middlebox working on collecting information and logs from the control and infrastructure layer of the SDN topology to find the root cause of the malicious attacks.
Authors and Affiliations
Aymen Hasan Rashid Al Awadi
Keywords
Related Articles
- EP ID EP318423
- DOI 10.9734/CJAST/2017/34752
- Views 100
- Downloads 0
Measurement and Determination of Emission Levels of Ionizing Radiation from High Tension Lines around Kaduna Metropolis, North West, Nigeria
Gamma radiation dose rate was measured at the base of 11 KV, 33 KV, 132 KV and 330 KV high tension lines (power lines) from different locations in Kaduna including Mando transmission sub-station using Radex 1503+ model....
Socio-economic Determinants of Poverty in Malaria Endemic Areas of Kenya
Background: Poverty is a major issue in Kenya and even though there has been a remarkable economic growth, it has still not led to a significant poverty reduction in the country. Objective: This study examined the factor...
Physicochemical, Phytochemical and Sensory Evaluation of Acha-Carrot Flours Blend Biscuit
The study investigated physiochemical, phytochemical composition and sensory qualities of acha-carrot flour blend biscuits. Flour blends were produced by substituting carrot flour into acha flour at 5, 10, 15, 20, and 25...
Minerals and Nutrient Variations as Influenced by Harvesting Stages in selected African Leafy Vegetables Grown in Busia, Kenya
Proper nutrition contributes to declines in under-five mortality rates and improves the productivity of adults. Addressing nutritional problems requires adequate information on the diets of individuals and populations. A...
Analysis of Wide Band Unequal Cone Angle Biconical Antenna
Radiation properties of biconical antenna of unequal cone angles have not been widely reported as compared to equal angle biconical antennas. Biconical antennas with cone of angle 90° have been widely reported. In this p...