On the Design and Implementation of a Security Architecture for End to End Services in Software Defined Networks

We propose an optimization approach to EoS (Ethernet over SDH) buffer control which the objective is to dynamically adjust the EoS buffer management registers. We will present the improved model of the traffic buffer management based on embedded MCU to control the SDRAM of the EoS chip, and setup the end-to-end system to illustrate the feasibility and advantage of the solution in buffer management when the data transport rate suddenly exceed the bandwidth of Ethernet port.

Download Full-text

Intelligent security framework for iot devices cryptography based end-to-end security architecture

2017 International Conference on Inventive Systems and Control (ICISC) ◽

10.1109/icisc.2017.8068718 ◽

2017 ◽

Cited By ~ 30

Author(s):

S. Sridhar ◽

S. Smys

Keyword(s):

Security Architecture ◽

Security Framework ◽

End To End ◽

Iot Devices ◽

Intelligent Security

Download Full-text

Design and implementation of an application server load balancing architecture supporting the end-to-end provisioning of value-added services

11th International Telecommunications Network Strategy and Planning Symposium. NETWORKS 2004, ◽

10.1109/netwks.2004.241085 ◽

2004 ◽

Author(s):

K. Vlaeminck ◽

S.V. Van Hoecke ◽

F. De Turck ◽

B. Dhoedt ◽

P. Demeester

Keyword(s):

Load Balancing ◽

Value Added ◽

Application Server ◽

Design And Implementation ◽

End To End

Download Full-text

Quantum-Key-Distribution (QKD) Networks Enabled by Software-Defined Networks (SDN)

Applied Sciences ◽

10.3390/app9102081 ◽

2019 ◽

Vol 9 (10) ◽

pp. 2081 ◽

Cited By ~ 5

Author(s):

Hua Wang ◽

Yongli Zhao ◽

Avishek Nag

Keyword(s):

Quantum Key Distribution ◽

Quantum Communication ◽

Software Defined Networking ◽

Key Distribution ◽

Use Cases ◽

Software Defined Networks ◽

Effective Management ◽

Promising Technology ◽

End To End ◽

Control And Management

As an important support for quantum communication, quantum key distribution (QKD) networks have achieved a relatively mature level of development, and they face higher requirements for multi-user end-to-end networking capabilities. Thus, QKD networks need an effective management plane to control and coordinate with the QKD resources. As a promising technology, software defined networking (SDN) can separate the control and management of QKD networks from the actual forwarding of the quantum keys. This paper systematically introduces QKD networks enabled by SDN, by elaborating on its overall architecture, related interfaces, and protocols. Then, three-use cases are provided as important paradigms with their corresponding schemes and simulation performances.

Download Full-text

A Server-Side JavaScript Security Architecture for Secure Integration of Third-Party Libraries

Security and Communication Networks ◽

10.1155/2019/9629034 ◽

2019 ◽

Vol 2019 ◽

pp. 1-21 ◽

Cited By ~ 1

Author(s):

Neline van Ginkel ◽

Willem De Groef ◽

Fabio Massacci ◽

Frank Piessens

Keyword(s):

Programming Language ◽

Third Party ◽

Security Evaluation ◽

Security Architecture ◽

Policy Enforcement ◽

Security Threats ◽

Server Side ◽

Design And Implementation ◽

The Past ◽

Access Control Policies

The popularity of the JavaScript programming language for server-side programming has increased tremendously over the past decade. The Node.js framework is a popular JavaScript server-side framework with an efficient runtime for cloud-based event-driven architectures. One of its strengths is the presence of thousands of third-party libraries which allow developers to quickly build and deploy applications. These very libraries are a source of security threats as a vulnerability in one library can (and in some cases did) compromise an entire server. In order to support the secure integration of libraries, we developed NODESENTRY, the first security architecture for server-side JavaScript. Our policy enforcement infrastructure supports an easy deployment of web hardening techniques and access control policies on interactions between libraries and their environment, including any dependent library. We discuss the design and implementation of NODESENTRY and present its performance and security evaluation.

Download Full-text