SDBlock-IoT: A Blockchain-Enabled Software-Defined Multicontroller Architecture to Safeguard OpenFlow Tables

IF 4.1 3区计算机科学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS

Journal of Network and Systems Management Pub Date : 2024-07-30 DOI:10.1007/s10922-024-09844-6

Birglang Bargayary, Nabajyoti Medhi

{"title":"SDBlock-IoT: A Blockchain-Enabled Software-Defined Multicontroller Architecture to Safeguard OpenFlow Tables","authors":"Birglang Bargayary, Nabajyoti Medhi","doi":"10.1007/s10922-024-09844-6","DOIUrl":null,"url":null,"abstract":"<p>Integrating Software-Defined Networking (SDN) with the Internet of Things (IoT) simplifies the management of IoT devices; however, it introduces security challenges. Adversaries may manipulate forwarding rules to redirect communication, compromising user security. Additionally, the centralized nature of SDN-enabled IoT networks poses a single point of failure during master controller failure. To address these issues, we present SDBlock-IoT, a distributed SDN architecture based on blockchain technology. This ensures increased resiliency in the event of master controller failure. Our proposed model considers response time and resource utilization of equal controllers, ensuring the most suitable controller assumes the role of master controller. We enhance the integrity of OpenFlow forwarding rules through the Smart Agent and SC, which validate whether a flow is registered on the blockchain or not. The Smart Agent verifies forwarding rules for every new flow request. We conducted experiments on hardware SDN switches using a Ryu OpenFlow controller and a private blockchain, demonstrating the effectiveness of our approach. Evaluation results indicate that SDBlock-IoT outperforms existing solutions in terms of flow verification time, controller recovery time, CPU utilization, and transaction costs.</p>","PeriodicalId":50119,"journal":{"name":"Journal of Network and Systems Management","volume":"217 1","pages":""},"PeriodicalIF":4.1000,"publicationDate":"2024-07-30","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Network and Systems Management","FirstCategoryId":"94","ListUrlMain":"https://doi.org/10.1007/s10922-024-09844-6","RegionNum":3,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

Integrating Software-Defined Networking (SDN) with the Internet of Things (IoT) simplifies the management of IoT devices; however, it introduces security challenges. Adversaries may manipulate forwarding rules to redirect communication, compromising user security. Additionally, the centralized nature of SDN-enabled IoT networks poses a single point of failure during master controller failure. To address these issues, we present SDBlock-IoT, a distributed SDN architecture based on blockchain technology. This ensures increased resiliency in the event of master controller failure. Our proposed model considers response time and resource utilization of equal controllers, ensuring the most suitable controller assumes the role of master controller. We enhance the integrity of OpenFlow forwarding rules through the Smart Agent and SC, which validate whether a flow is registered on the blockchain or not. The Smart Agent verifies forwarding rules for every new flow request. We conducted experiments on hardware SDN switches using a Ryu OpenFlow controller and a private blockchain, demonstrating the effectiveness of our approach. Evaluation results indicate that SDBlock-IoT outperforms existing solutions in terms of flow verification time, controller recovery time, CPU utilization, and transaction costs.

Abstract Image

查看原文本刊更多论文

SDBlock-IoT：保护 OpenFlow 表的区块链软件定义多控制器架构

将软件定义网络（SDN）与物联网（IoT）集成可简化物联网设备的管理，但也带来了安全挑战。攻击者可能会操纵转发规则来重定向通信，从而危及用户安全。此外，启用了 SDN 的物联网网络的集中特性会在主控制器故障时造成单点故障。为了解决这些问题，我们提出了基于区块链技术的分布式 SDN 架构 SDBlock-IoT。这可确保在主控制器失效时提高弹性。我们提出的模型考虑了同等控制器的响应时间和资源利用率，确保最合适的控制器承担主控制器的角色。我们通过智能代理（Smart Agent）和 SC 来增强 OpenFlow 转发规则的完整性，它们可验证流量是否已在区块链上注册。智能代理会验证每个新流量请求的转发规则。我们使用 Ryu OpenFlow 控制器和私有区块链在硬件 SDN 交换机上进行了实验，证明了我们方法的有效性。评估结果表明，SDBlock-IoT 在流量验证时间、控制器恢复时间、CPU 利用率和交易成本方面都优于现有解决方案。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Journal of Network and Systems Management 工程技术-电信学

CiteScore

7.60

自引率

16.70%

发文量

审稿时长

>12 weeks

期刊介绍： Journal of Network and Systems Management, features peer-reviewed original research, as well as case studies in the fields of network and system management. The journal regularly disseminates significant new information on both the telecommunications and computing aspects of these fields, as well as their evolution and emerging integration. This outstanding quarterly covers architecture, analysis, design, software, standards, and migration issues related to the operation, management, and control of distributed systems and communication networks for voice, data, video, and networked computing.