Cargando…
Developing an SDN security model (EnsureS) based on lightweight service path validation with batch hashing and tag verification
Software-defined networking (SDN) has significantly transformed the field of network management through the consolidation of control and provision of enhanced adaptability. However, this paradigm shift has concurrently presented novel security concerns. The preservation of service path integrity hol...
Autores principales: | , , , , , , , , |
---|---|
Formato: | Online Artículo Texto |
Lenguaje: | English |
Publicado: |
Nature Publishing Group UK
2023
|
Materias: | |
Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10575973/ https://www.ncbi.nlm.nih.gov/pubmed/37833379 http://dx.doi.org/10.1038/s41598-023-44701-7 |
_version_ | 1785121026688942080 |
---|---|
author | Pradeep, S. Sharma, Yogesh Kumar Lilhore, Umesh Kumar Simaiya, Sarita Kumar, Abhishek Ahuja, Sachin Margala, Martin Chakrabarti, Prasun Chakrabarti, Tulika |
author_facet | Pradeep, S. Sharma, Yogesh Kumar Lilhore, Umesh Kumar Simaiya, Sarita Kumar, Abhishek Ahuja, Sachin Margala, Martin Chakrabarti, Prasun Chakrabarti, Tulika |
author_sort | Pradeep, S. |
collection | PubMed |
description | Software-defined networking (SDN) has significantly transformed the field of network management through the consolidation of control and provision of enhanced adaptability. However, this paradigm shift has concurrently presented novel security concerns. The preservation of service path integrity holds significant importance within SDN environments due to the potential for malevolent entities to exploit network flows, resulting in a range of security breaches. This research paper introduces a model called "EnsureS", which aims to enhance the security of SDN by proposing an efficient and secure service path validation approach. The proposed approach utilizes a Lightweight Service Path Validation using Batch Hashing and Tag Verification, focusing on improving service path validation's efficiency and security in SDN environments. The proposed EnsureS system utilizes two primary techniques in order to validate service pathways efficiently. Firstly, the method utilizes batch hashing in order to minimize computational overhead. The proposed EnsureS algorithm enhances performance by aggregating packets through batches rather than independently; the hashing process takes place on each one in the service pathway. Additionally, the implementation of tag verification enables network devices to efficiently verify the authenticity of packets by leveraging pre-established trust relationships. EnsureS provides a streamlined and effective approach for validating service paths in SDN environments by integrating these methodologies. In order to assess the efficacy of the Proposed EnsureS, a comprehensive series of investigations were conducted within a simulated SDN circumstance. The efficacy of Proposed EnsureS was then compared to that of established methods. The findings of our study indicate that the proposed EnsureS solution effectively minimizes computational overhead without compromising on the established security standards. The implementation successfully reduces the impact of different types of attacks, such as route alteration and packet spoofing, increasing SDN networks' general integrity. |
format | Online Article Text |
id | pubmed-10575973 |
institution | National Center for Biotechnology Information |
language | English |
publishDate | 2023 |
publisher | Nature Publishing Group UK |
record_format | MEDLINE/PubMed |
spelling | pubmed-105759732023-10-15 Developing an SDN security model (EnsureS) based on lightweight service path validation with batch hashing and tag verification Pradeep, S. Sharma, Yogesh Kumar Lilhore, Umesh Kumar Simaiya, Sarita Kumar, Abhishek Ahuja, Sachin Margala, Martin Chakrabarti, Prasun Chakrabarti, Tulika Sci Rep Article Software-defined networking (SDN) has significantly transformed the field of network management through the consolidation of control and provision of enhanced adaptability. However, this paradigm shift has concurrently presented novel security concerns. The preservation of service path integrity holds significant importance within SDN environments due to the potential for malevolent entities to exploit network flows, resulting in a range of security breaches. This research paper introduces a model called "EnsureS", which aims to enhance the security of SDN by proposing an efficient and secure service path validation approach. The proposed approach utilizes a Lightweight Service Path Validation using Batch Hashing and Tag Verification, focusing on improving service path validation's efficiency and security in SDN environments. The proposed EnsureS system utilizes two primary techniques in order to validate service pathways efficiently. Firstly, the method utilizes batch hashing in order to minimize computational overhead. The proposed EnsureS algorithm enhances performance by aggregating packets through batches rather than independently; the hashing process takes place on each one in the service pathway. Additionally, the implementation of tag verification enables network devices to efficiently verify the authenticity of packets by leveraging pre-established trust relationships. EnsureS provides a streamlined and effective approach for validating service paths in SDN environments by integrating these methodologies. In order to assess the efficacy of the Proposed EnsureS, a comprehensive series of investigations were conducted within a simulated SDN circumstance. The efficacy of Proposed EnsureS was then compared to that of established methods. The findings of our study indicate that the proposed EnsureS solution effectively minimizes computational overhead without compromising on the established security standards. The implementation successfully reduces the impact of different types of attacks, such as route alteration and packet spoofing, increasing SDN networks' general integrity. Nature Publishing Group UK 2023-10-13 /pmc/articles/PMC10575973/ /pubmed/37833379 http://dx.doi.org/10.1038/s41598-023-44701-7 Text en © The Author(s) 2023 https://creativecommons.org/licenses/by/4.0/Open Access This article is licensed under a Creative Commons Attribution 4.0 International License, which permits use, sharing, adaptation, distribution and reproduction in any medium or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons licence, and indicate if changes were made. The images or other third party material in this article are included in the article's Creative Commons licence, unless indicated otherwise in a credit line to the material. If material is not included in the article's Creative Commons licence and your intended use is not permitted by statutory regulation or exceeds the permitted use, you will need to obtain permission directly from the copyright holder. To view a copy of this licence, visit http://creativecommons.org/licenses/by/4.0/ (https://creativecommons.org/licenses/by/4.0/) . |
spellingShingle | Article Pradeep, S. Sharma, Yogesh Kumar Lilhore, Umesh Kumar Simaiya, Sarita Kumar, Abhishek Ahuja, Sachin Margala, Martin Chakrabarti, Prasun Chakrabarti, Tulika Developing an SDN security model (EnsureS) based on lightweight service path validation with batch hashing and tag verification |
title | Developing an SDN security model (EnsureS) based on lightweight service path validation with batch hashing and tag verification |
title_full | Developing an SDN security model (EnsureS) based on lightweight service path validation with batch hashing and tag verification |
title_fullStr | Developing an SDN security model (EnsureS) based on lightweight service path validation with batch hashing and tag verification |
title_full_unstemmed | Developing an SDN security model (EnsureS) based on lightweight service path validation with batch hashing and tag verification |
title_short | Developing an SDN security model (EnsureS) based on lightweight service path validation with batch hashing and tag verification |
title_sort | developing an sdn security model (ensures) based on lightweight service path validation with batch hashing and tag verification |
topic | Article |
url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10575973/ https://www.ncbi.nlm.nih.gov/pubmed/37833379 http://dx.doi.org/10.1038/s41598-023-44701-7 |
work_keys_str_mv | AT pradeeps developingansdnsecuritymodelensuresbasedonlightweightservicepathvalidationwithbatchhashingandtagverification AT sharmayogeshkumar developingansdnsecuritymodelensuresbasedonlightweightservicepathvalidationwithbatchhashingandtagverification AT lilhoreumeshkumar developingansdnsecuritymodelensuresbasedonlightweightservicepathvalidationwithbatchhashingandtagverification AT simaiyasarita developingansdnsecuritymodelensuresbasedonlightweightservicepathvalidationwithbatchhashingandtagverification AT kumarabhishek developingansdnsecuritymodelensuresbasedonlightweightservicepathvalidationwithbatchhashingandtagverification AT ahujasachin developingansdnsecuritymodelensuresbasedonlightweightservicepathvalidationwithbatchhashingandtagverification AT margalamartin developingansdnsecuritymodelensuresbasedonlightweightservicepathvalidationwithbatchhashingandtagverification AT chakrabartiprasun developingansdnsecuritymodelensuresbasedonlightweightservicepathvalidationwithbatchhashingandtagverification AT chakrabartitulika developingansdnsecuritymodelensuresbasedonlightweightservicepathvalidationwithbatchhashingandtagverification |