Abstract
The data layer devices in the Software Defined Network (SDN) play an important role in packet forwarding. However, whether the forwarding task can be efficiently completed by the node has not attracted enough attention. A method called TrustBlock is proposed in this paper, which introduces trust as a security attribute in SDN routing planning. Besides, in order to enhance the integrity and controllability of trust evaluation, the double-layer blockchain architecture is established. In the first layer, the behavior data of the node is recorded, and then the trust calculation is performed in the second layer. In the evaluation model, nodes’ trust is calculated from three aspects: direct trust, indirect trust and historical trust. Firstly, from the perspective of security, blockchain is used to achieve identity authentication of nodes, after that, from the perspective of reliability, the forwarding status is used to calculate the trust value. Secondly, consensus algorithm is used to filter malicious recommendation trust value and prevent colluding attacks. Finally, the adaptive historical trust weight is designed to prevent the periodic attack. In this paper, the entropy method is used to determine the weight of each evaluation attribute, which can avoid the problem that the subjective judgment method is not adaptable to the weight setting. Simulation results show that the detection rate of the TrustBlock is up to 98.89%, which means this model can effectively identify the abnormal nodes in SDN. Moreover, it is attractive in terms of integrity and controllability.
Highlights
Through centralized control of network devices, Software Defined Network (SDN) provides a flexible, dynamic and automatic network configuration, and has been widely used in the various scenarios, such as Internet of things (IoT), cloud computing, edge computing, etc
Two other models are compared with TrustBlock in this paper, one is a trust evaluation model based on bad behaviors (TEMBB) [18], and the other is a trust evaluation model based on bayes and risk assessment of wireless sensor networks (BRSN) [19]
A TrustBlock method is purposed in this paper, which calculates the trust value of SDN node based on blockchain
Summary
Through centralized control of network devices, Software Defined Network (SDN) provides a flexible, dynamic and automatic network configuration, and has been widely used in the various scenarios, such as Internet of things (IoT), cloud computing, edge computing, etc. Based on the above problems, trust is introduced as a security attribute to evaluate the SDN data layer devices in this paper. Othman et al [11] proposed a hybrid control security model and designed a new signature algorithm based on TLS to protect the whole communication process of SDN These methods require a centralized trust management module and add signature and authentication load, which have an impact on system performance. For the failure node problem in data layer, the main method is using the fast recovery mechanism to recover the failed node through the entire network information It mainly includes the following steps: (1) When one device fails, other devices detect problems and report to the controller. If the node trust can be evaluated in the SDN and a more reliable node can be selected for data transmission, the unnecessary losses can be reduced
Sign-in/Register to view highlights & summary Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
