1,721,060 research outputs found
Live Migration of Virtualized Edge Networks: Analytical Modeling and Performance Evaluation
No full textFollowing the current evolution of virtualization techniques and software defined networking, edge networks might evolve towards a fully virtualized implementation by means of a number of virtual machines working cooperatively to perform the tasks of existing network middleboxes. In such a scenario the possibility to migrate groups of cooperating virtual machines as a whole set may be a very important feature, but what will be the performance issues of this solution? The live migration performance of multiple virtual machines working in some sort of correlated manner is a topic that has not been widely studied in the literature. This manuscript presents a model reasonably simple to implement that may be used to derive some performance indicators such as the whole service downtime and the total migration time. The model is used to compare some scheduling strategies for the migration and provide guidelines to such implementation
TechNETium: Atomic Predicates and Model Driven Development to Verify Security Network Policies
No full textFifth-generation (5G) networks will deliver unprecedented levels of quality of service for online gaming and multimedia-rich social interaction, providing virtual environments optimized for vertical applications through innovative approaches to physical resource management. These techniques must consider security aspects in all phases and at every layer. Trusted communications between individuals and reliable platforms running services for social good depend on the resiliency to network-level attacks such as hijacking and denial-of-service. The verification of topological properties represents a well-suited approach to address these issues in a 5G environment. This paper illustrates moves from formal methods existing in literature, namely atomic predicates (AP) and header space analysis (HSA). It describes a method of integrating AP in Software Defined Network architectures, achieving the same expressive power as HSA without its performance hit, to make topology verification viable for real-time security applications
Password Similarity Using Probabilistic Data Structures
Full text linkPasswords should be easy to remember, yet expiration policies mandate their frequent change. Caught in the crossfire between these conflicting requirements, users often adopt creative methods to perform slight variations over time. While easily fooling the most basic checks for similarity, these schemes lead to a substantial decrease in actual security, because leaked passwords, albeit expired, can be effectively exploited as seeds for crackers. This work describes an approach based on Bloom Filters to detect password similarity, which can be used to discourage password reuse habits. The proposed scheme intrinsically obfuscates the stored passwords to protect them in case of database leaks, and can be tuned to be resistant to common cryptanalytic techniques, making it suitable for usage on exposed systems
Service Fairness in Flexible Optical Networks
No full textThis paper investigates quality of service fairness in grid-less, multi-rate optical networks. By means of analytical modeling and simulation, results show that unfairness arises in absence of suitable control and that trunk reservation policies may solve the issue
Automated microservices deployment and dynamic traffic forwarding through 5G networks
No full textIn this manuscript we demonstrate the integration of 5G connectivity with applications exploiting distributed microservice architectures.
We have implemented network digital entities that are used to abstract network capa- bilities and offer to the microservice orchestration platform a standardized and uniform way to talk with the 5G-core network system
Automated Configuration of Vehicular Communication Services2012 International Conference on Connected Vehicles and Expo (ICCVE)
No full textThis paper presents the experimental of a signaling infrastructure which can be successfully used to automatically configure vehicular network services
When Operation Technology Meets Information Technology: Challenges and Opportunities
Full text linkIndustry 4.0 has revolutionized process innovation while facilitating and encouraging many new possibilities. The objective of Industry 4.0 is the radical enhancement of productivity, a goal that presupposes the integration of Operational Technology (OT) networks with Information Technology (IT) networks, which were hitherto isolated. This disruptive approach is enabled by adopting several emerging technologies in Enterprise processes. In this manuscript, we discuss what we believe to be one of the main challenges preventing the full employment of Industry 4.0, namely, the integration of Operation Technology networking and Information Technology networking. We discuss the technical challenges alongside the potential tools while providing a state-of-the-art use case scenario. We showcase a possible solution based on the Asset Administration Shell approach, referring to the use case of camera synchronization for collaborative tasks
A Security Monitoring Architecture based on Data Plane Programmability
No full textSoftware Defined Networking has put the accent on the implementation of effective, sophisticated algorithms for the control plane, running on centralized devices. Pure centralization, however, also introduces inefficiencies and limitations in many scenarios, often negatively affecting security. Network applications could benefit from data plane programmability, e.g. implementing the increasingly popular P4 language. In this paper, we show that P4-enabled switches can run simple yet significant tasks that enhance the cooperation with the control plane, improving traffic analysis functionalities of practical relevance for security monitoring purposes. We also show how this P4-
based solutions can be integrated into an SDN architecture acting as an Intrusion Detection System
An architecture for QoS-aware service deployment in software-defined IoT networks
No full textOne of the major challenges in Internet of Things (IoT) will be management and orchestration of multi-technology/multi-vendor network environments. According to many stakeholders, the adoption of software defined networking (SDN) principles in 5G (5-th Generation) wireless networks will allow the integration of mobile networks and the internet of things and will make it possible to manage billions of connected smart objects through intelligent orchestration and provisioning systems. The special value of SDN lies its ability to support network virtualization and to automate deployment of new services on top of the virtualized network infrastructure. To pave the way towards this novel approach, we present a SDN-based architecture for virtualization of IoT networks, including an intent-based north-bound interface and a virtualized infrastructure manager, allowing virtualization of IoT resources. The architecture exploits SDN controller to program different IoT networks in order to provide to users the intended service at the requested level of quality. A prototype of the architecture is presented and numerical results related to round trip time, measured at the different levels of the architecture, are reported
- …
