NoViSec: Novel Virtual Network Mapping Framework for Secure Software-Defined Networking

Abstract

Network softwarization technologies, such as software defined networking (SDN), network virtualization (NV), and network function virtualization (NFV), emerge and have been greatly promoted by their supporters. This softwarization scheme contributes to isolating network control from data panel, and allocating virtualized physical network resources flexibly. However, physical switches and links, supporting the softwarization scheme, may be attacked by malicious attackers. Even if these switches and links are softwarized and virtualized successfully, the problem of mapping various virtual network requests, known as virtual network embedding, is difficult to solve directly. Each customized VN request must be allocated and implemented in the appropriate manner. To deal with these issues, we research the virtual network mapping for secure SDN-enabled networks. Firstly, a hierarchical virtualization architecture for SDN- enabled networks is presented. Then, the security model for different malicious attacks is presented. Thirdly, we propose the novel and secure virtual network mapping framework, labeled as \textit{NoViSec}, for supporting SDN-enabled networks. Preliminary experiment results are plotted and discussed so as to validate the effectiveness of our secure \textit{NoViSec} framework.