A Unified Framework for High-Speed, Secure SDN: A Data Plane Approach

  • سال انتشار: 1403
  • محل انتشار: Management Strategies and Engineering Sciences، دوره: 6، شماره: 5
  • کد COI اختصاصی: JR_MSESJ-6-5_016
  • زبان مقاله: انگلیسی
  • تعداد مشاهده: 96
دانلود فایل این مقاله

نویسندگان

چکیده

The paper presents a scalable, software-centric architecture for secure, high-performance networking in the SDN environment. Our approach merges robust security with near line-rate throughput by integrating high-speed packet processing capabilities with optimized cryptographic operations into one cohesive SDN framework. At the heart of the architecture is the Data Plane Development Kit, which, through user-space processing, zero-copy buffering, advanced memory management, introduces low latency with reduced intruptions for packet handling. It integrates IPsec in such a way as to provide data confidentiality and integrity at the IP layer. The architecture takes advantage of vector packet processing to flexibly manipulate packets, adapt routing decisions on the fly, and make changes according to evolving network requirements. This forms one cohesive system that ties security with speed, giving operators agility to scale services, enforce policies, and protect sensitive data with software-driven efficiencies and minimal reliance on specialty hardware. The paper presents a scalable, software-centric architecture for secure, high-performance networking in the SDN environment. Our approach merges robust security with near line-rate throughput by integrating high-speed packet processing capabilities with optimized cryptographic operations into one cohesive SDN framework. At the heart of the architecture is the Data Plane Development Kit, which, through user-space processing, zero-copy buffering, advanced memory management, introduces low latency with reduced intruptions for packet handling. It integrates IPsec in such a way as to provide data confidentiality and integrity at the IP layer. The architecture takes advantage of vector packet processing to flexibly manipulate packets, adapt routing decisions on the fly, and make changes according to evolving network requirements. This forms one cohesive system that ties security with speed, giving operators agility to scale services, enforce policies, and protect sensitive data with software-driven efficiencies and minimal reliance on specialty hardware.

کلیدواژه ها

Security Improvement, High Throughput, Software Defined Network (SDN), Data Plane Development Kit (DPDK), Vector Packet Processing (VPP)

اطلاعات بیشتر در مورد COI

COI مخفف عبارت CIVILICA Object Identifier به معنی شناسه سیویلیکا برای اسناد است. COI کدی است که مطابق محل انتشار، به مقالات کنفرانسها و ژورنالهای داخل کشور به هنگام نمایه سازی بر روی پایگاه استنادی سیویلیکا اختصاص می یابد.

کد COI به مفهوم کد ملی اسناد نمایه شده در سیویلیکا است و کدی یکتا و ثابت است و به همین دلیل همواره قابلیت استناد و پیگیری دارد.