دانلود رایگان مقاله انگلیسی امنیت داده ها برای اینترنت اشیا مبتنی بر SDN - نشریه IEEE 2018

عنوان فارسی
امنیت داده ها برای اینترنت اشیا مبتنی بر SDN
عنوان انگلیسی
SDN-based Data Transfer Security for Internet of Things
صفحات مقاله فارسی
0
صفحات مقاله انگلیسی
12
سال انتشار
2018
نشریه
آی تریپل ای - IEEE
فرمت مقاله انگلیسی
PDF
نوع مقاله
ISI
پایگاه
اسکوپوس
کد محصول
E9759
رشته های مرتبط با این مقاله
مهندسی کامپیوتر و فناوری اطلاعات
گرایش های مرتبط با این مقاله
امنیت اطلاعات، اینترنت و شبکه های گسترده
مجله
مجله اینترنت اشیا - IEEE Internet of Things Journal
دانشگاه
Chongqing Engineering Laboratory of Internet and Information Security - Chongqing University of Posts and Telecommunications - China
کلمات کلیدی
اینترنت اشیا؛ شبکه نرم‌افزارمحور؛ جعبه میانی؛ مدیریت جریان داده ها؛ امنیت
doi یا شناسه دیجیتال
https://doi.org/10.1109/JIOT.2017.2779180
۰.۰ (بدون امتیاز)
امتیاز دهید
چکیده

Abstract


The exponential growth of devices connected to the network has resulted in the development of new Internet of Things (IoT) applications and on-line services, which may have diverse and dynamic requirements on received quality. Although, the emerging Software-Defined Networking (SDN) approach can be leveraged for the IoT environment, to dynamically achieve differentiated quality levels for different IoT tasks in very heterogeneous wireless networking scenarios, the open interfaces in SDN introduces new network attacks, which may make SDNbased IoT malfunctioned. The challenges lies in securely using SDN for IoT systems. To address this challenge, we design a SDN-based data transfer security model Middlebox-Guard (MG). M-G aims at reducing network latency, and properly manage dataflow to ensure the network run safely. First, according to different security policies, middleboxes related to the defined secure policies, are placed at the most appropriate locations, using dataflow abstraction and a heuristic algorithm. Next, to avoid any middlebox becoming a hot-spot, an offline Integer Linear Program (ILP) pruning algorithm is proposed in M-G, to tackle switch volume constraints. In addition, an online Linear Program (LP) formulation is come up to handle load balance. Finally, secure mechanisms are proposed to handle different attacks. And network routing is solved flexibly, through dataflow management protocol, which are formulated via combining tunnels and tags. Experimental results demonstrate that this model can improve security performance and manage dataflow effectively in SDNbased IoT system.

نتیجه گیری

CONCLUSION


Middlebox placement, the middlebox and flow table capacity constraints of SDN switches are key challenges when combining middlebox and SDN together. The goal of this study was to use middlebox in SDN-based IoT to manage dataflow, and improve the stability and security of the network. To this end, M-G, a SDN-based data transfer security model in IoT based on middleboxes was proposed. M-G attempts to improve the availability of SDN-based IoT secure applications and actively respond to network threats. We first addressed middlebox placements. Appropriate positions are selected using a placement selection algorithm, which reduces network latency. Next, we considered network balance. Here, an ILP pruning algorithm and an LP formulation are deployed to balance load across middleboxes and switches. Finally, we investigated dataflow management. The secure mechanisms can defend several attacks. By using the proposed dataflow management protocol, the status of a packet is observed and the route is properly determined. Our experimental results demonstrate that the proposed M-G model and corresponding protocols manage dataflow in middleboxes effectively, and can improve the overall IoT network security and stability.


بدون دیدگاه