---
_id: '9809'
abstract:
- lang: eng
text: Remarkable advantages of Containers (CNs) over Virtual Machines (VMs) such
as lower overhead and faster startup has gained the attention of Communication
Service Providers (CSPs) as using CNs for providing Virtual Network Functions
(VNFs) can save costs while increasing the service agility. However, as it is
not feasible to realise all types of VNFs in CNs, the coexistence of VMs and CNs
is proposed. To put VMs and CNs together, an orchestration framework that can
chain services across distributed and heterogeneous domains is required. To this
end, we implemented a framework by extending and consolidating state-of-the-art
tools and technologies originated from Network Function Virtualization (NFV),
Software-defined Networking (SDN) and cloud computing environments. This framework
chains services provisioned across Kubernetes and OpenStack domains. During the
demo, we deploy a service consist of CN- and VM-based VNFs to demonstrate different
features provided by our framework.
author:
- first_name: Hadi
full_name: Razzaghi Kouchaksaraei, Hadi
id: '60845'
last_name: Razzaghi Kouchaksaraei
- first_name: Holger
full_name: Karl, Holger
id: '126'
last_name: Karl
citation:
ama: 'Razzaghi Kouchaksaraei H, Karl H. Service Function Chaining Across OpenStack
and Kubernetes Domains. In: 13th ACM International Conference on Distributed
and Event-Based Systems. Darmstadt; 2019. doi:10.1145/3328905.3332505'
apa: Razzaghi Kouchaksaraei, H., & Karl, H. (2019). Service Function Chaining
Across OpenStack and Kubernetes Domains. In 13th ACM International Conference
on Distributed and Event-based Systems. Darmstadt. https://doi.org/10.1145/3328905.3332505
bibtex: '@inproceedings{Razzaghi Kouchaksaraei_Karl_2019, place={Darmstadt}, title={Service
Function Chaining Across OpenStack and Kubernetes Domains}, DOI={10.1145/3328905.3332505},
booktitle={13th ACM International Conference on Distributed and Event-based Systems},
author={Razzaghi Kouchaksaraei, Hadi and Karl, Holger}, year={2019} }'
chicago: Razzaghi Kouchaksaraei, Hadi, and Holger Karl. “Service Function Chaining
Across OpenStack and Kubernetes Domains.” In 13th ACM International Conference
on Distributed and Event-Based Systems. Darmstadt, 2019. https://doi.org/10.1145/3328905.3332505.
ieee: H. Razzaghi Kouchaksaraei and H. Karl, “Service Function Chaining Across OpenStack
and Kubernetes Domains,” in 13th ACM International Conference on Distributed
and Event-based Systems, Darmstadt, 2019.
mla: Razzaghi Kouchaksaraei, Hadi, and Holger Karl. “Service Function Chaining Across
OpenStack and Kubernetes Domains.” 13th ACM International Conference on Distributed
and Event-Based Systems, 2019, doi:10.1145/3328905.3332505.
short: 'H. Razzaghi Kouchaksaraei, H. Karl, in: 13th ACM International Conference
on Distributed and Event-Based Systems, Darmstadt, 2019.'
conference:
end_date: 2019-06-28
location: Darmstadt
name: 13th ACM International Conference on Distributed and Event-based Systems
start_date: 2019-06-24
date_created: 2019-05-14T05:43:57Z
date_updated: 2022-01-06T07:04:21Z
ddc:
- '004'
department:
- _id: '34'
doi: 10.1145/3328905.3332505
file:
- access_level: closed
content_type: application/pdf
creator: ups
date_created: 2019-08-26T09:09:50Z
date_updated: 2019-08-26T09:09:50Z
file_id: '12953'
file_name: p240-Kouchaksaraei.pdf
file_size: 1206037
relation: main_file
file_date_updated: 2019-08-26T09:09:50Z
has_accepted_license: '1'
keyword:
- Network Function Virtualization
- Software-defined Networking
- Cloud Computing
- service orchestration
- OpenStack
- Kubernetes
language:
- iso: eng
place: Darmstadt
project:
- _id: '23'
grant_number: '762057'
name: 5G Programmable Infrastructure Converging disaggregated neTwork and compUte
Resources
- _id: '1'
name: SFB 901
- _id: '4'
name: SFB 901 - Project Area C
- _id: '16'
name: SFB 901 - Subproject C4
publication: 13th ACM International Conference on Distributed and Event-based Systems
publication_status: published
status: public
title: Service Function Chaining Across OpenStack and Kubernetes Domains
type: conference
user_id: '477'
year: '2019'
...
---
_id: '17666'
abstract:
- lang: eng
text: 'Software Defined Networks (SDN) and Network Function Virtualisation (NFV)
provide the basis for autonomous response and mitigation against attacks on networked
computer infrastructures. We propose a new framework that uses SDNs and NFV to
achieve this goal: Secure Autonomous Response Network (SARNET). In a SARNET, an
agent running a control loop constantly assesses the security state of the network
by means of observables. The agent reacts to and resolves security problems, while
learning from its previous decisions. Two main metrics govern the decision process
in a SARNET: impact and efficiency; these metrics can be used to compare and evaluate
countermeasures and are the building blocks for self-learning SARNETs that exhibit
autonomous response. In this paper we present the software implementation of the
SARNET framework, evaluate it in a real-life network and discuss the tradeoffs
between parameters used by the SARNET agent and the efficiency of its actions.'
author:
- first_name: R.
full_name: Koning, R.
last_name: Koning
- first_name: B.
full_name: de Graaff, B.
last_name: de Graaff
- first_name: Gleb
full_name: Polevoy, Gleb
id: '83983'
last_name: Polevoy
- first_name: R.
full_name: Meijer, R.
last_name: Meijer
- first_name: C.
full_name: de Laat, C.
last_name: de Laat
- first_name: P.
full_name: Grosso, P.
last_name: Grosso
citation:
ama: Koning R, de Graaff B, Polevoy G, Meijer R, de Laat C, Grosso P. Measuring
the efficiency of SDN mitigations against attacks on computer infrastructures.
Future Generation Computer Systems. 2018. doi:https://doi.org/10.1016/j.future.2018.08.011
apa: Koning, R., de Graaff, B., Polevoy, G., Meijer, R., de Laat, C., & Grosso,
P. (2018). Measuring the efficiency of SDN mitigations against attacks on computer
infrastructures. Future Generation Computer Systems. https://doi.org/10.1016/j.future.2018.08.011
bibtex: '@article{Koning_de Graaff_Polevoy_Meijer_de Laat_Grosso_2018, title={Measuring
the efficiency of SDN mitigations against attacks on computer infrastructures},
DOI={https://doi.org/10.1016/j.future.2018.08.011},
journal={Future Generation Computer Systems}, author={Koning, R. and de Graaff,
B. and Polevoy, Gleb and Meijer, R. and de Laat, C. and Grosso, P.}, year={2018}
}'
chicago: Koning, R., B. de Graaff, Gleb Polevoy, R. Meijer, C. de Laat, and P. Grosso.
“Measuring the Efficiency of SDN Mitigations against Attacks on Computer Infrastructures.”
Future Generation Computer Systems, 2018. https://doi.org/10.1016/j.future.2018.08.011.
ieee: R. Koning, B. de Graaff, G. Polevoy, R. Meijer, C. de Laat, and P. Grosso,
“Measuring the efficiency of SDN mitigations against attacks on computer infrastructures,”
Future Generation Computer Systems, 2018.
mla: Koning, R., et al. “Measuring the Efficiency of SDN Mitigations against Attacks
on Computer Infrastructures.” Future Generation Computer Systems, 2018,
doi:https://doi.org/10.1016/j.future.2018.08.011.
short: R. Koning, B. de Graaff, G. Polevoy, R. Meijer, C. de Laat, P. Grosso, Future
Generation Computer Systems (2018).
date_created: 2020-08-06T15:23:11Z
date_updated: 2022-01-06T06:53:16Z
department:
- _id: '63'
- _id: '541'
doi: https://doi.org/10.1016/j.future.2018.08.011
extern: '1'
keyword:
- Software defined networks
- Network function virtualization
- Cyber attacks
- Cyber security
- Defense efficiency
- Overlay networks
language:
- iso: eng
publication: Future Generation Computer Systems
publication_identifier:
issn:
- 0167-739X
status: public
title: Measuring the efficiency of SDN mitigations against attacks on computer infrastructures
type: journal_article
user_id: '83983'
year: '2018'
...