Details

<p>Preface xxi</p> <p><b>1 Introduction to Software Defined Networking 1<br /></b><i>Subhra Priyadarshini Biswal and Sanjeev Patel</i></p> <p>1.1 Introduction 2</p> <p>1.2 Terminology and Architecture 5</p> <p>1.2.1 Infrastructure Layer 9</p> <p>1.2.2 Southbound Interfaces Layer 11</p> <p>1.2.3 Network Hypervisors Layer 11</p> <p>1.2.4 Controller Layer 12</p> <p>1.2.5 Northbound Interfaces 13</p> <p>1.3 The Role of Network Operating Systems 14</p> <p>1.4 SDN Versus NFV 16</p> <p>1.5 The Role of NFV into SDN-Based IoT Systems 17</p> <p>1.6 Challenges and Future Directions 19</p> <p>1.7 Applications of SDN in IT Industries 21</p> <p>1.8 Conclusion and Future Scope 23</p> <p>References 24</p> <p><b>2 Software-Defined Networks: Perspectives and Applications 29<br /></b><i>Inderjeet Kaur, Anupama Sharma, Amita Agnihotri and Charu Agarwal</i></p> <p>2.1 Introduction 30</p> <p>2.2 SDN Architecture 32</p> <p>2.2.1 Key Takeaways of SDN Architecture 35</p> <p>2.2.2 Open Flow 36</p> <p>2.3 Functionalities of SDN 39</p> <p>2.3.1 SDN Benefits 40</p> <p>2.4 SDN vs. Traditional Hardware-Based Network 41</p> <p>2.5 Load Balancing in SDN 44</p> <p>2.5.1 SDN-Based Load Balancer in Cloud Computing 47</p> <p>2.5.2 SDN Without Cloud Computing 49</p> <p>2.6 SDN Security 49</p> <p>2.6.1 Security Threats and Attacks 51</p> <p>2.7 SDN Applications 53</p> <p>2.8 Research Directions 55</p> <p>2.9 Conclusion 55</p> <p>References 56</p> <p><b>3 Software-Defined Networks and Its Applications 63<br /></b><i>Rajender Kumar, Alankrita Aggarwal, Karun Handa, Punit Soni and Mukesh Kumar</i></p> <p>3.1 Introduction 64</p> <p>3.2 SDN vs Traditional Networks 65</p> <p>3.3 SDN Working: A Functional Overview 67</p> <p>3.4 Components and Implementation Architecture 68</p> <p>3.4.1 Components of an SDN 68</p> <p>3.4.1.1 SDN Application 68</p> <p>3.4.1.2 SDN Controller 69</p> <p>3.4.1.3 SDN Datapath 69</p> <p>3.4.1.4 SDN Control to Data-Plane Interface (CDPI) 69</p> <p>3.4.1.5 SDN Northbound Interfaces (NBI) 69</p> <p>3.4.1.6 SDN Control Plane: Incorporated-Hierarchical-Distributed 69</p> <p>3.4.1.7 Controller Placement 70</p> <p>3.4.1.8 OpenFlow and Open Source in SDN Architecture 70</p> <p>3.4.2 SDN Design 70</p> <p>3.4.2.1 Northward APIs 71</p> <p>3.4.2.2 Southward APIs 71</p> <p>3.4.2.3 Orchestrator 71</p> <p>3.4.2.4 Controller 71</p> <p>3.4.2.5 Compute 71</p> <p>3.5 Implementation Architecture 72</p> <p>3.6 Pros and Cons of SDN 72</p> <p>3.6.1 SDN Misconceptions 73</p> <p>3.6.2 Pros of SDN 73</p> <p>3.6.2.1 Centralized Network Provisioning 73</p> <p>3.6.2.2 Holistic Enterprise Management 73</p> <p>3.6.2.3 More Granular Security 74</p> <p>3.6.2.4 Lower Operating Costs 74</p> <p>3.6.2.5 Hardware-Savings and Reduced Capital Expenditures 74</p> <p>3.6.2.6 Cloud Abstraction 75</p> <p>3.6.2.7 Guaranteed Content Delivery 75</p> <p>3.6.3 Cons of SDN 75</p> <p>3.6.3.1 Latency 75</p> <p>3.6.3.2 Maintenance 75</p> <p>3.6.3.3 Complexity 75</p> <p>3.6.3.4 Configuration 76</p> <p>3.6.3.5 Device Security 76</p> <p>3.7 SDN Applications 76</p> <p>3.7.1 SDN Environment for Applications 76</p> <p>3.7.1.1 Internal SDN Applications 77</p> <p>3.7.1.2 External SDN Applications 77</p> <p>3.7.1.3 Security Services 77</p> <p>3.7.1.4 Network Monitoring and Intelligence 77</p> <p>3.7.1.5 Data Transmission Management 78</p> <p>3.7.1.6 Content Availability 78</p> <p>3.7.1.7 Guideline and Compliance-Bound Applications 78</p> <p>3.7.1.8 Elite Applications 79</p> <p>3.7.1.9 Circulated Application Control and Cloud Integration 79</p> <p>3.7.2 Common Application of SDN in Enterprise Networks 79</p> <p>3.7.2.1 Further Developed Security 80</p> <p>3.7.2.2 Diminished Working Expenses 80</p> <p>3.7.2.3 A Superior Client Experience 81</p> <p>3.7.3 SDN Drives in the Enterprise 81</p> <p>3.7.3.1 Bringing Together and Improving on the Administration Plane 81</p> <p>3.7.3.2 Accomplishing Programmability of the Control Plane 81</p> <p>3.7.3.3 Simple Client Onboarding 82</p> <p>3.7.3.4 Simple Endpoint Security 82</p> <p>3.7.3.5 Simple Traffic Checking 82</p> <p>3.7.3.6 SES Client Onboarding 83</p> <p>3.7.3.7 Client Onboarding 83</p> <p>3.7.3.8 SES Simple Endpoint Security: Distinguishing Dubious Traffic 83</p> <p>3.7.3.9 SES Simple Traffic Observing 84</p> <p>3.7.3.10 Synopsis 84</p> <p>3.7.4 SDN Stream Sending (SDN) 84</p> <p>3.7.4.1 Proactive Versus Reactive Versus Hybrid 84</p> <p>3.7.4.2 DMN 85</p> <p>3.7.4.3 SD-WAN 85</p> <p>3.7.4.4 SD-LAN 85</p> <p>3.7.4.5 Security Using the SDN Worldview 85</p> <p>3.7.5 Security Utilizing the SDN Paradigm 86</p> <p>3.7.6 Gathering Data Delivery Using SDN 87</p> <p>3.7.7 Relationship of SDN to NFV 87</p> <p>3.8 Future Research Directions of SDN 88</p> <p>3.9 Conclusion & Future Scope 89</p> <p>References 90</p> <p><b>4 Latency-Based Routing for SDN-OpenFlow Networks 97<br /></b><i>Hima Bindu Valiveti, Meenakshi K, Swaraja K, Jagannadha Swamy Tata, Chaitanya Duggineni, Swetha Namburu and Sri Indrani Kotamraju</i></p> <p>4.1 Introduction to Generations of Networks 98</p> <p>4.2 Features of 5G Systems 99</p> <p>4.3 Software-Defined Networking (SDN) 102</p> <p>4.4 Proposed Work 105</p> <p>4.4.1 Path Selection Algorithm 106</p> <p>4.4.2 Optimized Path Selection 106</p> <p>4.4.2.1 Forwarding Node Selection 106</p> <p>4.4.2.2 Priority Scheduling 108</p> <p>4.4.2.3 Priority Classification 108</p> <p>4.5 Experimentation and Results 109</p> <p>4.5.1 Implementation of Traffic Streaming 109</p> <p>4.6 Performance Analysis 113</p> <p>4.7 Conclusion and Future Scope 116</p> <p>References 116</p> <p><b>5 QoS Improvement Evaluation With An Effective Switch Assignment to the Controller in Real-Time </b><b>SDN Environment 119<br /></b><i>Jehad Ali and Byeong-hee Roh</i></p> <p>5.1 Introduction 120</p> <p>5.1.1 Objectives 121</p> <p>5.2 Architecture of SDN 121</p> <p>5.2.1 Data Plane 123</p> <p>5.2.2 Southbound (SB) APIs 123</p> <p>5.2.3 NB API 124</p> <p>5.2.4 Management Plane 125</p> <p>5.2.5 Control Plane 125</p> <p>5.3 Controller Placement Effect on the QoS 125</p> <p>5.4 Communication between the Control and Data Planes 126</p> <p>5.5 Related Works 128</p> <p>5.6 Parameters for Computing E2E Delay 129</p> <p>5.6.1 Path Discovery Delay (PD) 129</p> <p>5.6.2 Actual Delay (AD) 129</p> <p>5.7 Clustering Based on the Latency of the Emulated Mininet Network 130</p> <p>5.8 Results and Discussion 131</p> <p>5.9 Conclusion and Future Directions 133</p> <p>References 134</p> <p><b>6 An Insight into Traffic Engineering in Software-Defined Networks 137<br /></b><i>Prabu U. and Geetha V.</i></p> <p>6.1 Introduction 138</p> <p>6.2 Related Works 142</p> <p>6.3 Review on Traffic Engineering Techniques in SDN 145</p> <p>6.4 Review on Traffic Engineering Techniques in Hybrid SDN 163</p> <p>6.5 Review on Traffic Matrix Estimation and Measurement Techniques in SDN 169</p> <p>6.6 Analysis and Research Direction 177</p> <p>6.7 Conclusion and Future Scope 179</p> <p>References 179</p> <p><b>7 Network Functions Virtualization and SDN 191<br /></b><i>Priyanka Kujur and Sanjeev Patel</i></p> <p>7.1 Introduction 192</p> <p>7.2 Types of Virtualizations 194</p> <p>7.2.1 Server Virtualization 194</p> <p>7.2.2 Network Virtualization 195</p> <p>7.2.3 Application Virtualization 195</p> <p>7.2.4 Desktop Virtualization 197</p> <p>7.2.5 Storage Virtualization 197</p> <p>7.3 Wireless Network Virtualization 198</p> <p>7.3.1 Radio Spectrum Resources 198</p> <p>7.3.2 Wireless Network Infrastructure 199</p> <p>7.3.3 Wireless Virtual Resources 200</p> <p>7.3.3.1 Spectrum-Level Slicing 200</p> <p>7.3.3.2 Infrastructure-Level Slicing 200</p> <p>7.3.3.3 Network-Level Slicing 200</p> <p>7.3.3.4 Flow-Level Slicing 200</p> <p>7.3.4 Wireless Virtualization Controller 201</p> <p>7.4 Network Functions Virtualization and Software-Defined Network 201</p> <p>7.4.1 Network Virtualization 201</p> <p>7.4.2 Network Functions Virtualization 201</p> <p>7.4.2.1 Network Functions Virtualization Infrastructure 202</p> <p>7.4.2.2 Virtual Network Functions 203</p> <p>7.4.2.3 Network Functions Virtualization Management and Orchestration 203</p> <p>7.4.2.4 NFV Challenges 204</p> <p>7.4.3 Benefits of NFV 204</p> <p>7.4.3.1 Coexistence of Dissimilar Network 204</p> <p>7.4.3.2 Encouraging Network Innovation 204</p> <p>7.4.3.3 Deployment of Agile Network Capabilities 204</p> <p>7.4.3.4 Provisioning of Independent and Diverse Networks 205</p> <p>7.4.3.5 Resource Optimization 205</p> <p>7.4.3.6 Deployment of Distinct Network Services 205</p> <p>7.4.4 Software-Defined Networking (SDN) 205</p> <p>7.4.4.1 Traditional Networks 205</p> <p>7.4.4.2 Need for New Network Architecture 206</p> <p>7.4.4.3 Introduction to SDN 206</p> <p>7.4.4.4 SDN Implementation 208</p> <p>7.4.4.5 SDN Design 208</p> <p>7.4.4.6 SDN Operation 209</p> <p>7.4.5 Open Flow 210</p> <p>7.4.5.1 Open Flow Architecture 211</p> <p>7.4.5.2 Defining Flow in Open Flow 212</p> <p>7.4.5.3 Flow and Group Table 213</p> <p>7.4.6 SDN Benefits 214</p> <p>7.4.6.1 Centralized Network 214</p> <p>7.4.6.2 Programmability of the Network 214</p> <p>7.4.6.3 Rise of Virtualization 214</p> <p>7.4.6.4 Lower Operating Cost 215</p> <p>7.4.6.5 Device Configuration and Troubleshooting 215</p> <p>7.4.7 SDN Challenges 215</p> <p>7.4.7.1 Reliability 215</p> <p>7.4.7.2 Scalability 215</p> <p>7.4.7.3 Performance Under Latency Constraints 216</p> <p>7.4.7.4 Use of Low-Level Interface Between the Controller and the Network Device 216</p> <p>7.4.7.5 Controller Placement Problem 216</p> <p>7.4.7.6 Security 217</p> <p>7.4.8 SDN versus Traditional Network 217</p> <p>7.4.9 Network Function Virtualization versus SDN 218</p> <p>7.5 SDN Architecture 219</p> <p>7.5.1 Data Plane 219</p> <p>7.5.2 Control Plane 220</p> <p>7.5.3 Application Layer 220</p> <p>7.6 Software-Defined Networking Application 220</p> <p>7.6.1 Adaptive Routing 220</p> <p>7.6.2 Load Balancing 221</p> <p>7.6.3 Boundless Roaming 221</p> <p>7.6.4 Network Maintenance 222</p> <p>7.6.5 Network Security 222</p> <p>7.6.6 SDN for Cloud Computing 222</p> <p>7.6.7 Internet of Things 224</p> <p>7.7 Conclusion and Future Scope 224</p> <p>References 225</p> <p><b>8 SDN-Enabled Network Virtualization and Its Applications 231<br /></b><i>Anil Kumar Rangsietti and Siva Sairam Prasad Kodali</i></p> <p>8.1 Introduction 232</p> <p>8.2 Traditional Cloud Data Centers 234</p> <p>8.2.1 SDN for Enabling Innovative Traffic Engineering Tasks in Cloud Data Centers 236</p> <p>8.2.1.1 Optimal Routing Mechanisms 236</p> <p>8.2.1.2 Flexible Traffic Steering During Network Failure Recovery 238</p> <p>8.2.1.3 Improved Topology Management Mechanisms 238</p> <p>8.2.1.4 Innovative Traffic Analysis and Monitoring Mechanisms 239</p> <p>8.2.1.5 General Challenges in Adopting SDN 239</p> <p>8.2.2 SDN Role in Flexible Network Virtualization 241</p> <p>8.2.2.1 Sharing of Physical Infrastructure and Enforcing Multiple Customer Policies 242</p> <p>8.2.2.2 Strict Customer Policies Enforcement and Service Level Agreements (SLA) Guarantee 243</p> <p>8.2.2.3 Failures of Devices or Links 243</p> <p>8.2.2.4 Optimal Utilization of Cloud Resources 244</p> <p>8.3 Importance of SDN in Network Function Virtualization (NFV) 245</p> <p>8.3.1 Network Service Chaining (NSC) 248</p> <p>8.3.2 Importance of NFs Placement in a Cloud Environment 249</p> <p>8.3.3 Importance of NF Placement and Scaling in NSC 251</p> <p>8.4 SDN and Network Virtualization Role in Evolution of Next-Generation Wi-Fi and Mobile Networks 253</p> <p>8.4.1 Software-Defined Solutions for Enterprise Wireless LANs (WLANs) 253</p> <p>8.4.1.1 Software-Defined APs 254</p> <p>8.4.1.2 SDN Switches and Controller 256</p> <p>8.4.2 Software-Defined Mobile Networks and Telecommunication Clouds 258</p> <p>8.4.3 Necessity and Importance of Telecommunication Clouds 259</p> <p>8.4.3.1 SDN- and NFV-Enabled Cloud Environments 260</p> <p>8.4.3.2 Lightweight Virtualization Technologies 261</p> <p>8.4.3.3 Novel Application Architecture, Such as Cloud Native Applications and Microservices 263</p> <p>8.5 SDN and NFV Role in 5G and Smart Cities 264</p> <p>8.5.1 SDN and NFV Role in Designing Deployment Environment for IoT Applications 265</p> <p>8.5.2 Cloud-Fog-Edge Computing Environments 266</p> <p>8.5.3 SDN- and NFV-Enabled 5G and Network Slicing Deployment 269</p> <p>8.6 Conclusions and Future Scope 271</p> <p>References 272</p> <p><b>9 Software-Defined Networking: Recent Developments and Potential Synergies 279<br /></b><i>Jasminder Kaur Sandhu, Bhawna Singla, Meena Pundir, Sanjeev Rao and Anil Kumar Verma</i></p> <p>9.1 Introduction 280</p> <p>9.2 Characteristics of Software-Defined Networking 282</p> <p>9.2.1 Open Standards and Vendor Neutral 282</p> <p>9.2.2 Centrally Managed 283</p> <p>9.2.3 Decoupled 283</p> <p>9.2.4 Dynamic/Agile 283</p> <p>9.2.5 Flow-Based Management 283</p> <p>9.2.6 Programmable 283</p> <p>9.3 Applications of Software-Defined Networking 284</p> <p>9.3.1 Specific Purposes 284</p> <p>9.3.1.1 Network Management 284</p> <p>9.3.1.2 Middle-Box 284</p> <p>9.3.2 Security 285</p> <p>9.3.3 Networks 285</p> <p>9.3.3.1 Optical Network 286</p> <p>9.3.3.2 Home Network 286</p> <p>9.3.3.3 Wireless Network 286</p> <p>9.4 Security Issues in Software-Defined Networking 287</p> <p>9.4.1 Authentication and Authorization 287</p> <p>9.4.2 Access Control and Accountability 288</p> <p>9.4.3 Threats from Applications 289</p> <p>9.4.4 Threats Due to Scalability 289</p> <p>9.4.5 Denial of Service (DoS) Attacks 290</p> <p>9.4.6 Challenges in Distributed Control Plane 290</p> <p>9.5 Potential Attacks in Software-Defined Networking 291</p> <p>9.5.1 Spoofing 291</p> <p>9.5.2 ARP Spoofing 291</p> <p>9.5.2.1 IP Spoofing 293</p> <p>9.5.3 Tampering 293</p> <p>9.5.4 Repudiation 294</p> <p>9.5.5 Information Disclosure 295</p> <p>9.5.6 DoS 295</p> <p>9.5.7 Elevation of Privilege 296</p> <p>9.6 Solutions to Security Issues and Attacks in Software-Defined Networking 297</p> <p>9.6.1 Spoofing 297</p> <p>9.6.1.1 ARP Spoofing 297</p> <p>9.6.1.2 IP Spoofing 301</p> <p>9.6.2 Tampering 301</p> <p>9.6.3 Repudiation 301</p> <p>9.6.3.1 Nonrepudiation Verification 301</p> <p>9.6.3.2 Accountability 302</p> <p>9.6.4 Information Disclosure 302</p> <p>9.6.4.1 Scanning-Based Solutions 302</p> <p>9.6.4.2 Information Disclosure Countermeasure 302</p> <p>9.6.5 Denial of Service (DoS) 302</p> <p>9.6.6 Elevation of Privilege 303</p> <p>9.7 Software-Defined Networking Framework 303</p> <p>9.7.1 Global Flow Table 304</p> <p>9.7.2 VNGuard 304</p> <p>9.8 Security Enhancement Using the Software-Defined Networking Framework 305</p> <p>9.8.1 SDN Firewall 305</p> <p>9.8.2 Access Control 307</p> <p>9.8.3 Intrusion Detection System/Intrusion Prevention System (IDS/IPS) 307</p> <p>9.8.4 SDN Policies 307</p> <p>9.8.5 Monitoring and Auditing 308</p> <p>9.8.6 Privacy Protection 308</p> <p>9.8.7 SDN WiFi Networks 308</p> <p>9.8.8 Mobile SDN 309</p> <p>9.8.9 BYOD 309</p> <p>9.8.10 SDN Open Labs 309</p> <p>9.9 Open Challenge 310</p> <p>9.9.1 Interaction Between Different Controllers and Switches 310</p> <p>9.9.2 Controller Security 310</p> <p>9.9.3 Managing Heterogenous Controllers 310</p> <p>9.9.4 Standard Protocol for Controller 311</p> <p>9.9.5 Standard Protocol Between Control and Management Plane 311</p> <p>9.9.6 Managing the Load Between Controllers 311</p> <p>9.10 Recommended Best Practices 311</p> <p>9.10.1 Authentication 312</p> <p>9.10.2 Access Control 312</p> <p>9.10.3 Data Confidentiality 312</p> <p>9.10.4 Nonrepudiation 312</p> <p>9.10.5 Data Integrity 313</p> <p>9.10.6 Communication Security 313</p> <p>9.10.7 Privacy 313</p> <p>9.10.8 Availability 313</p> <p>9.11 Conclusion and Future Scope 314</p> <p>References 315</p> <p><b>10 Security Challenges and Analysis for SDN-Based Networks 321<br /></b><i>Priyanka Kujur, Subhra Priyadarshini Biswal and Sanjeev Patel</i></p> <p>10.1 Introduction 322</p> <p>10.2 Threat Model 325</p> <p>10.2.1 Spoofing 325</p> <p>10.2.2 Tampering 325</p> <p>10.2.3 Repudiation 325</p> <p>10.2.4 Information Disclosure 325</p> <p>10.2.5 Denial of Service 326</p> <p>10.2.6 Elevation of Privileges 326</p> <p>10.2.7 Threats in SDN Networks 326</p> <p>10.2.7.1 Attack Surface in SDN 326</p> <p>10.2.7.2 Security Issues in SDN 327</p> <p>10.2.7.3 Addressing SDN Security Matters 328</p> <p>10.2.7.4 Attack to the SDN Architecture 328</p> <p>10.2.8 Policy-Based SDN Security Architecture 330</p> <p>10.3 Control Plane Security of SDN 331</p> <p>10.3.1 Application Coexistence 331</p> <p>10.3.2 Flow Constraints vs. Flow Circuits 332</p> <p>10.3.3 An Application Permission Model 332</p> <p>10.3.4 Application Accountability 332</p> <p>10.3.5 Toward a Security-Enhanced Control Layer 332</p> <p>10.4 Security Analysis 332</p> <p>10.5 Network-Wide Security in SDN 333</p> <p>10.5.1 Security Systems Development 334</p> <p>10.5.2 Flow Sampling 335</p> <p>10.5.3 Traffic Monitoring 336</p> <p>10.5.4 Access Control 337</p> <p>10.5.5 Content Inspection 337</p> <p>10.5.6 Network Resilience 338</p> <p>10.5.7 Security Middle Boxes 339</p> <p>10.5.8 Security Challenges in SDN 339</p> <p>10.6 SDN-Based Virtual and Cloud Networks Security 340</p> <p>10.6.1 Virtual Networks Security 340</p> <p>10.6.2 Cloud Networks Security 340</p> <p>10.7 SDN-Based Secure IoT Frameworks 341</p> <p>10.8 Conclusion and Future Scope 341</p> <p>References 342</p> <p><b>11 A Novel Secure SDN Architecture for Reliable Data Transmission in 5G Networks 347<br /></b><i>J. Sathiamoorthy, Usha M. and R. Bhagavath Nishant</i></p> <p>11.1 Introduction 348</p> <p>11.1.1 Organization of the Chapter 352</p> <p>11.2 Related Work 352</p> <p>11.3 SDN-5G Networks—What Does the Future Hold? 356</p> <p>11.4 Layers in SDN-5G Networks 358</p> <p>11.5 Security Threats 359</p> <p>11.5.1 Control Plane 360</p> <p>11.5.2 Data Plane 361</p> <p>11.5.3 Application Plane 361</p> <p>11.6 SDN-5G Networks—Possible Attacks and Threats 362</p> <p>11.6.1 Distributed Denial of Services (DDoS) 362</p> <p>11.6.2 Solution for DDoS—To Analyze User’s Behavior via Detection Through Entropy 363</p> <p>11.6.3 Solution for Packet Sniffing 363</p> <p>11.6.4 Steps in the Handshake Process 364</p> <p>11.6.5 ARP Spoofing Attack 365</p> <p>11.6.5.1 ARP Authentication 365</p> <p>11.6.5.2 Operating System Patching 365</p> <p>11.6.5.3 API Exploitation 366</p> <p>11.6.5.4 Password Guessing or Brute Force 366</p> <p>11. 7 Proposed Methodology 367</p> <p>11.7.1 Strong Security Architecture for SDN-Based 5G Networks 367</p> <p>11.8 Security Analysis 373</p> <p>11.8.1 IP Spoofing 373</p> <p>11.8.2 MITM Attack 379</p> <p>11.8.3 Replay Attack 379</p> <p>11.9 Conclusion and Future Scope 388</p> <p>References 388</p> <p><b>12 Security and Privacy Issues in 5G/6G-Assisted Software-Defined Networks 391<br /></b><i>Durbadal Chattaraj and Ashok Kumar Das</i></p> <p>12.1 Introduction 392</p> <p>12.1.1 SDN Applications 394</p> <p>12.1.2 Security and Privacy Issues in SDN 396</p> <p>12.1.3 Chapter Contributions 397</p> <p>12.1.4 Chapter Organization 397</p> <p>12.2 Security and Functionality Requirements in SDN 398</p> <p>12.3 Network and Threat Models 399</p> <p>12.3.1 Network Model 399</p> <p>12.3.2 Adversary Model 402</p> <p>12.4 Taxonomy of Security Protocols in SDN 405</p> <p>12.5 Security Solutions in SDN 406</p> <p>12.5.1 Authentication 407</p> <p>12.5.2 Access Control 408</p> <p>12.5.3 Key Management 409</p> <p>12.5.4 Intrusion Detection 410</p> <p>12.5.5 Blockchain-Based Security Solution 412</p> <p>12.6 Comparative Analysis 413</p> <p>12.6.1 Comparative Analysis on Communication and Computational Costs 414</p> <p>12.6.2 Comparative Analysis on Security Features 415</p> <p>12.7 Conclusion and Future Scopes 419</p> <p>References 420</p> <p><b>13 Evolving Requirements and Application of SDN and IoT in the Context of Industry 4.0, Blockchain and Artificial Intelligence 427<br /></b><i>Sunil Kr. Singh, Sunil Kr Sharma, Dipesh Singla and Shabeg Singh Gill</i></p> <p>13.1 Introduction 428</p> <p>13.2 Objectives of the Chapter 430</p> <p>13.3 Organization of the Chapter 431</p> <p>13.4 Software-Defined Network Architecture 431</p> <p>13.4.1 SDN Planes 434</p> <p>13.4.1.1 Control Plane 434</p> <p>13.4.1.2 Data Plane 434</p> <p>13.4.1.3 Application/Management Plane 435</p> <p>13.4.2 QoS: Quality of Service 436</p> <p>13.4.2.1 Jitter 436</p> <p>13.4.2.2 Packet Loss 436</p> <p>13.4.2.3 Bandwidth 437</p> <p>13.4.2.4 Latency 437</p> <p>13.4.3 OpenQoS 437</p> <p>13.4.4 Secondnet 438</p> <p>13.4.5 OpenQFlow 440</p> <p>13.4.6 CloudNaaS 441</p> <p>13.4.7 Scalable QoS and Automated Control for Network Convergence 442</p> <p>13.5 Security 442</p> <p>13.5.1 Fresco 442</p> <p>13.5.2 NetFuse 443</p> <p>13.5.3 Scalability 444</p> <p>13.5.4 DIFANE 444</p> <p>13.5.5 DevoFlow 445</p> <p>13.5.6 Maestro 445</p> <p>13.5.7 Load Balancing 446</p> <p>13.5.8 AsterX 446</p> <p>13.5.9 OpenFlow-Based Server Load Balancing Gone Wild 447</p> <p>13.6 Software-Defined Network (SDN) With IoT 447</p> <p>13.7 SDN-Based IoT Architecture 448</p> <p>13.7.1 IoT’s Architecture With Software Programming Functions 449</p> <p>13.7.2 SDN Controllers 449</p> <p>13.7.3 Gateways/Routers 451</p> <p>13.7.4 Sinks 452</p> <p>13.7.5 Data Center 452</p> <p>13.7.6 Design Principles 453</p> <p>13.7.7 Dynamic Deployment of Security Policies 454</p> <p>13.8 Role of SDN and IoT in Industry 4.0 456</p> <p>13.8.1 Industry 4.0 Explained 457</p> <p>13.8.1.1 Mass Customization 457</p> <p>13.8.1.2 Flexibility 457</p> <p>13.8.1.3 Additive Manufacturing 457</p> <p>13.8.1.4 Better Decision Making 458</p> <p>13.8.1.5 Simulation and Digital Twins 458</p> <p>13.8.1.6 Integrated Supply Chain 458</p> <p>13.8.1.7 Energy Management 458</p> <p>13.8.1.8 Creating Value from Big Data 459</p> <p>13.8.1.9 Cyber-Physical Systems 459</p> <p>13.8.2 Brokerage Services 462</p> <p>13.8.3 Man4Ware 464</p> <p>13.8.4 Security 466</p> <p>13.8.5 Additional Advanced Service Alternatives 467</p> <p>13.8.6 Interconnection and Integration Between IoT and Industry 4.0 467</p> <p>13.9 Work in Related Domains of IoT 468</p> <p>13.10 IoT Computing and Management With SDN 470</p> <p>13.10.1 Edge Computing 470</p> <p>13.10.2 Convergence of NFV and Edge Computing 471</p> <p>13.10.3 Use of Artificial Intelligence (AI) in Software-Defined Networks (SDN) 472</p> <p>13.10.4 SDN Network Structure and OpenFlow (OF) Protocol 473</p> <p>13.11 Scope of Blockchain to Secure IoT Using SDN 474</p> <p>13.11.1 The Architecture of Blockchain-Based SDN 475</p> <p>13.11.2 Workflow of BC-SDN and Smart Contracts 477</p> <p>13.11.2.1 Key Components of Workflow 478</p> <p>13.12 SDN in Various Emerging Areas of IoT 481</p> <p>13.13 Conclusion and Future Scope 486</p> <p>References 489</p> <p><b>14 SDN-Based Cloud Combining Edge Computing for IoT Infrastructure 497<br /></b><i>Jyoti Snehi, Manish Snehi, Devendra Prasad, Sarita Simaiya, Isha Kansal and Vidhu Baggan</i></p> <p>14.1 Introduction 498</p> <p>14.1.1 Architecture of SDN vs. Traditional Networks 503</p> <p>14.1.2 SDN/NFV Tiers 504</p> <p>14.1.3 Objective of Chapter 509</p> <p>14.1.4 Organization of Chapter 509</p> <p>14.2 Challenges with SDN-Based Cloud and NFV Technologies for IoT 510</p> <p>14.3 Literature Survey 519</p> <p>14.4 Knowledge-Driven SDN-Based IoT Architecture That Leverages Edge Cloud 526</p> <p>14.5 Discussion and Future Recommendation 532</p> <p>14.6 Conclusion 533</p> <p>References 533</p> <p>Index 541</p>

<p><b>Anand Nayyar, PhD,</b> received his PhD in Computer Science from Desh Bhagat University in 2017 and is currently an assistant professor, Vice-Chairman (Research) and Director (IoT and Intelligent Systems Lab) in the School of Computer Science, Duy Tan University, Da Nang, Vietnam. A Certified Professional with 100+ Professional certificates from CISCO, Microsoft, Oracle, Google, Beingcert, EXIN, GAQM, Cyberoam, and many more, he has published more than 150 research articles and ISI journals, edited 30+ books, and has 60 patents to his credit.</p> <p><b>Bhawna Singla, PhD,</B> received her PhD from Thapar University, Patiala, India and is currently a professor in the Computer Science and Engineering Department, PIET College of Engineering and Technology, Samalkha, Panipat, India. She has more than 18 years of academic experience and has published more than 35 research papers in international journals/conferences and edited books. <p><b>Preeti Nagrath, PhD, </B>is an associate professor in Bharati Vidyapeeth’s College of Engineering. She has more than 16 years of academic experience and has published more than 60 research papers in SCI-indexed journals.

<p><b>Software defined networking suggests an alternative worldview, one that comes with a new software stack to which this book is organized, with the goal of presenting a top-to-bottom tour of SDN without leaving any significant gaps that the reader might suspect can only be filled with magic or proprietary code.</b></p> <p>Software defined networking (SDN) is an architecture designed to make a network more flexible and easier to manage. SDN has been widely adopted across data centers, WANs, and access networks and serves as a foundational element of a comprehensive intent-based networking (IBN) architecture. Although SDN has so far been limited to automated provisioning and configuration, IBN now adds “translation” and “assurance” so that the complete network cycle can be automated, continuously aligning the network to business needs. <p>In 14 chapters, this book provides a comprehensive understanding of an SDN-based network as a scalable distributed system running on commodity hardware. The reader will have a one-stop reference looking into the applications, architectures, functionalities, virtualization, security, and privacy challenges connected to SDN. <p><b>Audience</b><br> Researchers in software, IT, and electronic engineering as well as industry engineers and technologists working in areas such as network virtualization, Python network programming, CISCO ACI, software defined network, and cloud computing.

US