Research on Backup Bethod of Service Function Chain Based on Security Classification

2018 IEEE 18th International Conference on Communication Technology (ICCT) Pub Date : 2018-10-01 DOI:10.1109/ICCT.2018.8599990

Sun Zhiyong, Tan Hongbo, Jiang Xinsheng, You Wei, Liu Zhengming

{"title":"Research on Backup Bethod of Service Function Chain Based on Security Classification","authors":"Sun Zhiyong, Tan Hongbo, Jiang Xinsheng, You Wei, Liu Zhengming","doi":"10.1109/ICCT.2018.8599990","DOIUrl":null,"url":null,"abstract":"In the environment of cloud computing and data center, general X86 servers make it easier for attackers to discover vulnerabilities and infect or spread virus. It has a great impact that single physical node failed on the service performance of the service function chain (SFC). The existing backup methods lack the idea to choice the backup nodes and ignore the trust relationship between physical nodes and virtual nodes. Firstly, this paper proposes a security classification mechanism between the virtual nodes and physical nodes, secondly, the scheme of backup node selection is proposed based on security classification mechanism. then the trust mechanism between virtual node and physical node is built when nodes mapping. Finally, it's the destination to minimize resource overhead of mapping to improve physical resource utilization. Experiments show that this method can improve the duration of pivotal nodes endure vulnerability mining by 23.02% to strengthen the resilience of the network significantly while satisfy the performance requirements of SFC mapping.","PeriodicalId":244952,"journal":{"name":"2018 IEEE 18th International Conference on Communication Technology (ICCT)","volume":"14 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 IEEE 18th International Conference on Communication Technology (ICCT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICCT.2018.8599990","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

In the environment of cloud computing and data center, general X86 servers make it easier for attackers to discover vulnerabilities and infect or spread virus. It has a great impact that single physical node failed on the service performance of the service function chain (SFC). The existing backup methods lack the idea to choice the backup nodes and ignore the trust relationship between physical nodes and virtual nodes. Firstly, this paper proposes a security classification mechanism between the virtual nodes and physical nodes, secondly, the scheme of backup node selection is proposed based on security classification mechanism. then the trust mechanism between virtual node and physical node is built when nodes mapping. Finally, it's the destination to minimize resource overhead of mapping to improve physical resource utilization. Experiments show that this method can improve the duration of pivotal nodes endure vulnerability mining by 23.02% to strengthen the resilience of the network significantly while satisfy the performance requirements of SFC mapping.

查看原文本刊更多论文

基于安全分类的业务功能链备份方法研究

在云计算和数据中心环境下，通用X86服务器更容易被攻击者发现漏洞，感染或传播病毒。单个物理节点故障对业务功能链(SFC)的业务性能影响很大。现有的备份方法缺乏选择备份节点的思想，忽略了物理节点与虚拟节点之间的信任关系。首先，提出了虚拟节点与物理节点之间的安全分类机制，其次，提出了基于安全分类机制的备份节点选择方案。然后在节点映射时建立虚拟节点与物理节点之间的信任机制。最后，它是最小化映射的资源开销以提高物理资源利用率的目标。实验表明，该方法在满足SFC映射性能要求的同时，将关键节点承受漏洞挖掘的持续时间提高23.02%，显著增强了网络的弹性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2018 IEEE 18th International Conference on Communication Technology (ICCT)

自引率

0.00%

发文量