Secure communication channel architecture for Software Defined Mobile Networks
Liyanage, Madhusanka; Braeken, An; Jurcut, Anca Delia; Ylianttila, Mika; Gurtov, Andrei (2017-02-26)
Liyanage, M., Braeken, A., Jurcut, A. D., Ylianttila, M., & Gurtov, A. (2017). Secure communication channel architecture for Software Defined Mobile Networks. Computer Networks, 114, 32–50. https://doi.org/10.1016/j.comnet.2017.01.007
© 2017. This manuscript version is made available under the CC-BY-NC-ND 4.0 license http:/creativecommons.org/licenses/by-nc-nd/4.0/
https://creativecommons.org/licenses/by-nc-nd/4.0/
https://urn.fi/URN:NBN:fi-fe2019081324014
Tiivistelmä
Abstract
A Software-Defined Mobile Network (SDMN) architecture is proposed to enhance the performance, flexibility, and scalability of today’s telecommunication networks. However, SDMN features such as centralized controlling, network programmability, and virtualization introduce new security challenges to telecommunication networks. In this article, we present security challenges related to SDMN communication channels (i.e., control and data channel) and propose a novel secure communication channel architecture based on Host Identity Protocol (HIP). IPsec tunneling and security gateways are widely utilized in present-day mobile networks to secure backhaul communication channels. However, the utilization of legacy IPsec mechanisms in SDMNs is challenging due to limitations such as distributed control, lack of visibility, and limited scalability. The proposed architecture also utilizes IPsec tunnels to secure the SDMN communication channels by eliminating these limitations. The proposed architecture is implemented in a testbed and we analyzed its security features. The performance penalty of security due to the proposed security mechanisms is measured on both control and data channels.
Kokoelmat
- Avoin saatavuus [34150]