Cargando…

Developing an SDN security model (EnsureS) based on lightweight service path validation with batch hashing and tag verification

Software-defined networking (SDN) has significantly transformed the field of network management through the consolidation of control and provision of enhanced adaptability. However, this paradigm shift has concurrently presented novel security concerns. The preservation of service path integrity hol...

Descripción completa

Detalles Bibliográficos
Autores principales: Pradeep, S., Sharma, Yogesh Kumar, Lilhore, Umesh Kumar, Simaiya, Sarita, Kumar, Abhishek, Ahuja, Sachin, Margala, Martin, Chakrabarti, Prasun, Chakrabarti, Tulika
Formato: Online Artículo Texto
Lenguaje:English
Publicado: Nature Publishing Group UK 2023
Materias:
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10575973/
https://www.ncbi.nlm.nih.gov/pubmed/37833379
http://dx.doi.org/10.1038/s41598-023-44701-7
_version_ 1785121026688942080
author Pradeep, S.
Sharma, Yogesh Kumar
Lilhore, Umesh Kumar
Simaiya, Sarita
Kumar, Abhishek
Ahuja, Sachin
Margala, Martin
Chakrabarti, Prasun
Chakrabarti, Tulika
author_facet Pradeep, S.
Sharma, Yogesh Kumar
Lilhore, Umesh Kumar
Simaiya, Sarita
Kumar, Abhishek
Ahuja, Sachin
Margala, Martin
Chakrabarti, Prasun
Chakrabarti, Tulika
author_sort Pradeep, S.
collection PubMed
description Software-defined networking (SDN) has significantly transformed the field of network management through the consolidation of control and provision of enhanced adaptability. However, this paradigm shift has concurrently presented novel security concerns. The preservation of service path integrity holds significant importance within SDN environments due to the potential for malevolent entities to exploit network flows, resulting in a range of security breaches. This research paper introduces a model called "EnsureS", which aims to enhance the security of SDN by proposing an efficient and secure service path validation approach. The proposed approach utilizes a Lightweight Service Path Validation using Batch Hashing and Tag Verification, focusing on improving service path validation's efficiency and security in SDN environments. The proposed EnsureS system utilizes two primary techniques in order to validate service pathways efficiently. Firstly, the method utilizes batch hashing in order to minimize computational overhead. The proposed EnsureS algorithm enhances performance by aggregating packets through batches rather than independently; the hashing process takes place on each one in the service pathway. Additionally, the implementation of tag verification enables network devices to efficiently verify the authenticity of packets by leveraging pre-established trust relationships. EnsureS provides a streamlined and effective approach for validating service paths in SDN environments by integrating these methodologies. In order to assess the efficacy of the Proposed EnsureS, a comprehensive series of investigations were conducted within a simulated SDN circumstance. The efficacy of Proposed EnsureS was then compared to that of established methods. The findings of our study indicate that the proposed EnsureS solution effectively minimizes computational overhead without compromising on the established security standards. The implementation successfully reduces the impact of different types of attacks, such as route alteration and packet spoofing, increasing SDN networks' general integrity.
format Online
Article
Text
id pubmed-10575973
institution National Center for Biotechnology Information
language English
publishDate 2023
publisher Nature Publishing Group UK
record_format MEDLINE/PubMed
spelling pubmed-105759732023-10-15 Developing an SDN security model (EnsureS) based on lightweight service path validation with batch hashing and tag verification Pradeep, S. Sharma, Yogesh Kumar Lilhore, Umesh Kumar Simaiya, Sarita Kumar, Abhishek Ahuja, Sachin Margala, Martin Chakrabarti, Prasun Chakrabarti, Tulika Sci Rep Article Software-defined networking (SDN) has significantly transformed the field of network management through the consolidation of control and provision of enhanced adaptability. However, this paradigm shift has concurrently presented novel security concerns. The preservation of service path integrity holds significant importance within SDN environments due to the potential for malevolent entities to exploit network flows, resulting in a range of security breaches. This research paper introduces a model called "EnsureS", which aims to enhance the security of SDN by proposing an efficient and secure service path validation approach. The proposed approach utilizes a Lightweight Service Path Validation using Batch Hashing and Tag Verification, focusing on improving service path validation's efficiency and security in SDN environments. The proposed EnsureS system utilizes two primary techniques in order to validate service pathways efficiently. Firstly, the method utilizes batch hashing in order to minimize computational overhead. The proposed EnsureS algorithm enhances performance by aggregating packets through batches rather than independently; the hashing process takes place on each one in the service pathway. Additionally, the implementation of tag verification enables network devices to efficiently verify the authenticity of packets by leveraging pre-established trust relationships. EnsureS provides a streamlined and effective approach for validating service paths in SDN environments by integrating these methodologies. In order to assess the efficacy of the Proposed EnsureS, a comprehensive series of investigations were conducted within a simulated SDN circumstance. The efficacy of Proposed EnsureS was then compared to that of established methods. The findings of our study indicate that the proposed EnsureS solution effectively minimizes computational overhead without compromising on the established security standards. The implementation successfully reduces the impact of different types of attacks, such as route alteration and packet spoofing, increasing SDN networks' general integrity. Nature Publishing Group UK 2023-10-13 /pmc/articles/PMC10575973/ /pubmed/37833379 http://dx.doi.org/10.1038/s41598-023-44701-7 Text en © The Author(s) 2023 https://creativecommons.org/licenses/by/4.0/Open Access This article is licensed under a Creative Commons Attribution 4.0 International License, which permits use, sharing, adaptation, distribution and reproduction in any medium or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons licence, and indicate if changes were made. The images or other third party material in this article are included in the article's Creative Commons licence, unless indicated otherwise in a credit line to the material. If material is not included in the article's Creative Commons licence and your intended use is not permitted by statutory regulation or exceeds the permitted use, you will need to obtain permission directly from the copyright holder. To view a copy of this licence, visit http://creativecommons.org/licenses/by/4.0/ (https://creativecommons.org/licenses/by/4.0/) .
spellingShingle Article
Pradeep, S.
Sharma, Yogesh Kumar
Lilhore, Umesh Kumar
Simaiya, Sarita
Kumar, Abhishek
Ahuja, Sachin
Margala, Martin
Chakrabarti, Prasun
Chakrabarti, Tulika
Developing an SDN security model (EnsureS) based on lightweight service path validation with batch hashing and tag verification
title Developing an SDN security model (EnsureS) based on lightweight service path validation with batch hashing and tag verification
title_full Developing an SDN security model (EnsureS) based on lightweight service path validation with batch hashing and tag verification
title_fullStr Developing an SDN security model (EnsureS) based on lightweight service path validation with batch hashing and tag verification
title_full_unstemmed Developing an SDN security model (EnsureS) based on lightweight service path validation with batch hashing and tag verification
title_short Developing an SDN security model (EnsureS) based on lightweight service path validation with batch hashing and tag verification
title_sort developing an sdn security model (ensures) based on lightweight service path validation with batch hashing and tag verification
topic Article
url https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10575973/
https://www.ncbi.nlm.nih.gov/pubmed/37833379
http://dx.doi.org/10.1038/s41598-023-44701-7
work_keys_str_mv AT pradeeps developingansdnsecuritymodelensuresbasedonlightweightservicepathvalidationwithbatchhashingandtagverification
AT sharmayogeshkumar developingansdnsecuritymodelensuresbasedonlightweightservicepathvalidationwithbatchhashingandtagverification
AT lilhoreumeshkumar developingansdnsecuritymodelensuresbasedonlightweightservicepathvalidationwithbatchhashingandtagverification
AT simaiyasarita developingansdnsecuritymodelensuresbasedonlightweightservicepathvalidationwithbatchhashingandtagverification
AT kumarabhishek developingansdnsecuritymodelensuresbasedonlightweightservicepathvalidationwithbatchhashingandtagverification
AT ahujasachin developingansdnsecuritymodelensuresbasedonlightweightservicepathvalidationwithbatchhashingandtagverification
AT margalamartin developingansdnsecuritymodelensuresbasedonlightweightservicepathvalidationwithbatchhashingandtagverification
AT chakrabartiprasun developingansdnsecuritymodelensuresbasedonlightweightservicepathvalidationwithbatchhashingandtagverification
AT chakrabartitulika developingansdnsecuritymodelensuresbasedonlightweightservicepathvalidationwithbatchhashingandtagverification