Abstract
In recent years, service function chaining (SFC) has been developed besides software-defined networking (SDN) and network function virtualization (NFV), which open new opportunities for flexible provisioning and composition of network services. However, the adoption of SFC requires various security considerations to protect sensitive information in context headers of the network service header (NSH). In this paper, we discuss various SFC encapsulation methods to protect the context headers of the NSH exchanged among service functions. We then implement the SFC encapsulation methods as secure solutions for the context header in NSH. Finally, we conduct an experimental study based on OpenDaylight SFC as an SFC controller and OVS as a data plane to compare the performance of the solutions in term of end-to-end latency.
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
