SeReNe: On Establishing Secure and Resilient Networking Services for an SDN-based Multi-tenant Datacenter Environment

Chun Jen Chung, Tianyi Xing, Dijiang Huang, Deep Medhi, Kishor Trivedi

Research output: Chapter in Book/Report/Conference proceedingConference contribution

7 Scopus citations

Abstract

In the current enterprise data enter networking environment, a major hurdle in the development of network security is the lack of an orchestrated and resilient defensive mechanism that uses well-established quantifiable metrics, models, and evaluation methods. In this position paper, we describe an emerging Secure and Resilient Networking (SeReNe) service model to establish a programmable and dynamic defensive mechanism that can adjust the system's networking resources such as topology, bandwidth allocation, and traffic/flow forwarding policies, according to the network security situations. We posit that this requires addressing two interdependent technical areas: (a) a Moving Target Defense (MTD) framework both at networking and software levels, and (b) an Adaptive Security-enabled Traffic Engineering (ASeTE) approach to select optimal countermeasures by considering the effectiveness of countermeasures and network bandwidth allocations while minimizing the intrusiveness to the applications and the cost of deploying the countermeasures. We believe that our position can greatly benefit the virtual networking system established in data Centerior enterprise virtual networking systems that have adopted latest Open Flow technologies.

Original languageEnglish (US)
Title of host publicationProceedings - 2015 45th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshops, DSN-W 2015
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages4-11
Number of pages8
ISBN (Print)9781467380447
DOIs
StatePublished - Sep 18 2015
Event45th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshops, DSN-W 2015 - Rio de Janeiro, Brazil
Duration: Jun 22 2015Jun 25 2015

Other

Other45th Annual IEEE/IFIP International Conference on Dependable Systems and Networks Workshops, DSN-W 2015
CountryBrazil
CityRio de Janeiro
Period6/22/156/25/15

Keywords

  • multi-tenant datacenter
  • security and resilience

ASJC Scopus subject areas

  • Hardware and Architecture
  • Computer Networks and Communications
  • Control and Systems Engineering
  • Safety, Risk, Reliability and Quality

Fingerprint Dive into the research topics of 'SeReNe: On Establishing Secure and Resilient Networking Services for an SDN-based Multi-tenant Datacenter Environment'. Together they form a unique fingerprint.

Cite this