Visible to the public Security-Enhanced Signaling Scheme in Software Defined Optical Network

TitleSecurity-Enhanced Signaling Scheme in Software Defined Optical Network
Publication TypeConference Paper
Year of Publication2018
AuthorsWang, D., Ma, Y., Du, J., Ji, Y., Song, Y.
Conference Name2018 10th International Conference on Communication Software and Networks (ICCSN)
ISBN Number 978-1-5386-7223-5
Keywordsbackbone optical networks, communication security issue, composability, connection success rate performance, cryptographic protocols, current OpenFIow protocol, digital signatures, end-to-end trusted service connection, Energy Internet services, Internet, large-scale optical network, message feedback, Metrics, Microelectronics Security, openflow protocols, Optical feedback, Optical fiber networks, optical switches, Protocols, pubcrawl, public key cryptography, public key infrastructure, resilience, Resiliency, SDON, security, security improvement, security level, security-enhanced signaling, security-enhanced signaling procedure, Software, software defined networking, Software Defined Networks, software defined optical network, telecommunication security, telecommunication signalling

The communication security issue is of great importance and should not be ignored in backbone optical networks which is undergoing the evolution toward software defined networks (SDN). With the aim to solve this problem, this paper conducts deep analysis into the security challenge of software defined optical networks (SDON) and proposes a so-called security-enhanced signaling scheme of SDON. The proposed scheme makes full advantage of current OpenFIow protocol with some necessary extensions and security improvement, by combining digital signatures and message feedback with efficient PKI (Public Key Infrastructure) in signaling procedure of OpenFIow interaction. Thus, this security-enhanced signaling procedure is also designed in details to make sure the end-to-end trusted service connection. Simulation results show that this proposed approach can greatly improve the security level of large-scale optical network for Energy Internet services with better performance in term of connection success rate performance.

Citation Keywang_security-enhanced_2018