Abstract
Software-defined networks (SDN) have been widely used in Cloud Data Centers in recent years. With the development of cloud technologies, different organizations need to share network resources to achieve common business goals, which requires distributed SDN controllers to collaboratively manage cloud networks and realize cross-domain routing. However, existing distributed controller cooperative routing schemes require a third-party trust center to establish trusted relationships for controllers. Since both trust centers and certified entities are vulnerable to various attacks and security risks, the existing works cannot effectively ensure cross-domain routing is credible. To address this problem, Blockchain is employed to establish trusted relationships between distributed controllers, then a cross-domain routing mechanism was devised based on the trusted relationships. Security analysis and experiments indicate that the proposed scheme can establish trust relationships and provide credible cross-domain routing cooperation for distributed SDN controllers. Besides, the required overhead of storage and bandwidth are very limited, which implies good practicability.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Alansari, S., Paci, F., Sassone, V.: A distributed access control system for cloud federations. In: 2017 IEEE 37th International Conference on Distributed Computing Systems (ICDCS) [Internet]. IEEE, June 2017. https://doi.org/10.1109/icdcs.2017.241
Yan, Q., Yu, R., Gong, Q., et al.: Software-defined networking (SDN) and distributed denial of service (DDoS) attacks in cloud computing environments: a survey, some research issues, and challenges. IEEE Commun. Surv. Tutor. 1 (2015). https://doi.org/10.1109/comst.2015.2487361
Tootoonchian, A., Ganjali, Y.: HyperFlow: a distributed control plane for OpenFlow. In: Internet Network Management Conference on Research on Enterprise NETWORKING, p. 3. USENIX Association (2011)
Koponen, T., Casado, M., Gude, N., et al.: Onix: a distributed control platform for large-scale production networks. In: Usenix Conference on Operating Systems Design and Implementation, pp. 351–364. USENIX Association (2010)
Berde, P., Hart, J., et al.: ONOS: towards an open, distributed SDN OS. In: The Workshop on Hot Topics in Software Defined NETWORKING, pp. 1–6. ACM (2014). https://doi.org/10.1145/2620728.2620744
Lin, P., Bi, J., Wang, Y.: WEBridge: west-east bridge for distributed heterogeneous SDN NOSes peering. Secur. Commun. Netw. 8(10), 1926–1942 (2015). https://doi.org/10.1002/sec.1030
Medved, J., Varga, R., Tkacik, A., et al.: OpenDaylight: towards a model-driven SDN controller architecture. In: IEEE, International Symposium on a World of Wireless, Mobile and Multimedia Networks, pp. 1–6. IEEE (2014). https://doi.org/10.1109/wowmom.2014.6918985
Nascimento, M.R., Rothenberg, C.E., Salvador, M.R., et al.: Virtual routers as a service: the RouteFlow approach leveraging software-defined networks. In: International Conference on Future Internet Technologies, pp. 34–37. ACM (2011)
Hydrogen [EB/OL]. http://www.opendaylight.org/. Accessed 1 Oct 2018
Yin, H., Xie, H., Tsou, T., et al.: SDNi: a message exchange protocol for software defined networks (SDNS) across multiple domains. IETF Draft, work in progress (2012)
Phemius, K., Bouet, M., Leguay, J.: DISCO: distributed multi-domain SDN controllers. In: Network Operations and Management Symposium, pp. 1–4. IEEE (2014). https://doi.org/10.1109/noms.2014.6838330
Gupta, A., Vanbever, L., Shahbaz, M., et al.: SDX: a software defined internet exchange. ACM SIGCOMM Comput. Commun. Rev. 44(4), 579–580 (2014). https://doi.org/10.1145/2740070.2631473
Restrepo, J.C.C., Stanojevic, R.: A history of an internet exchange point. ACM SIGCOMM Comput. Commun. Rev. 42(2), 58–64 (2012). https://doi.org/10.1145/2185376.2185384
Castro, M., Liskov, B.: Practical Byzantine fault tolerance. Oper. Syst. Des. Implementation 99, 173–186 (1999)
Kokoris-Kogias, E., et al.: OmniLedger: a secure, scale-out, decentralized ledger via sharding. In: 2018 IEEE Symposium on Security and Privacy (SP) (2018). https://doi.org/10.1109/sp.2018.000-5
Acknowledgements
This work was supported by National Natural Science Foundation of China (Grant Nos. U1708262, U1736203, 61772173, 61672413), National Key R&D Program of China (2017YFB0801805), the Fundamental Research Funds for the Central Universities and the Innovation Fund of Xidian University.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2019 Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Qiao, Q., Li, X., Wang, Y., Luo, B., Ren, Y., Ma, J. (2019). Credible Routing Scheme of SDN-Based Cloud Using Blockchain. In: Cheng, X., Jing, W., Song, X., Lu, Z. (eds) Data Science. ICPCSEE 2019. Communications in Computer and Information Science, vol 1058. Springer, Singapore. https://doi.org/10.1007/978-981-15-0118-0_15
Download citation
DOI: https://doi.org/10.1007/978-981-15-0118-0_15
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-15-0117-3
Online ISBN: 978-981-15-0118-0
eBook Packages: Computer ScienceComputer Science (R0)