Научная статья на тему 'Производительность мультисервисных телекоммуникационных сетей на базе архитектурной концепции fn с использованием технологии SD'

Производительность мультисервисных телекоммуникационных сетей на базе архитектурной концепции fn с использованием технологии SD Текст научной статьи по специальности «Компьютерные и информационные науки»

CC BY
185
33
i Надоели баннеры? Вы всегда можете отключить рекламу.
Ключевые слова
БУДУЩИЕ СЕТИ / SDN / НАДЕЖНОСТЬ / ПРОИЗВОДИТЕЛЬНОСТЬ / ОТКАЗОУСТОЙЧИВОСТЬ / МЕЖСЕТЕВЫЕ ЭКРАНЫ / КАЧЕСТВО ОБСЛУЖИВАНИЯ / УГРОЗА БЕЗОПАСНОСТИ / DDOS АТАКА

Аннотация научной статьи по компьютерным и информационным наукам, автор научной работы — Ибрагимов Байрам Ганимат Оглы, Гумбатов Рамиз Топуш Оглы, Ибрагимов Руфат Фикрет Оглы

В данной статье предметом исследования является сетевая мультисервисная инфраструктура на базе архитектурной концепции будущих сетей FN (FN, Future Networks) с использованием технологии программно-конфигурируемых сетей SDN (Software Defined Networks), поддерживающая широкий спектр услуг. Основой данной архитектуры является мультисервисных телекоммуникационных сетей с использованием технологии SDN, состоящие из набора специализированных модулей, отвечающих за различные функции для организация сетевого взаимодействия. SDN является динамичная, управляемая и адаптируемая сетевая архитектура, в которой разделены на уровни управления сетью и передачи данных, что обеспечивает программное управления сетью. Целью данной работы является исследование и анализ показателей производительности MTC на базе архитектурную концепцию FN с использование технологий SDN при оказании мультимедийных услуг. В качестве производительность сети SDN выбраны вероятностно-временных характеристик полезного и служебного трафиков, риски угрозы информационной безопасности и показателей отказоустойчивости функционирования системы. Получены аналитические выражения, позволяющие оценить показатели качества обслуживания, информационной безопасности и отказоустойчивости функционирования системы при оказании мультимедийных услуг.

i Надоели баннеры? Вы всегда можете отключить рекламу.

Похожие темы научных работ по компьютерным и информационным наукам , автор научной работы — Ибрагимов Байрам Ганимат Оглы, Гумбатов Рамиз Топуш Оглы, Ибрагимов Руфат Фикрет Оглы

iНе можете найти то, что вам нужно? Попробуйте сервис подбора литературы.
i Надоели баннеры? Вы всегда можете отключить рекламу.

Текст научной работы на тему «Производительность мультисервисных телекоммуникационных сетей на базе архитектурной концепции fn с использованием технологии SD»

ANALYSIS PERFORMANCE MULTISERVICE TELECOMMUNICATION NETWORKS WITH USING ARCHITECTURAL CONCEPT FUTURE NETWORKS

DOI 10.24411/2072-8735-2018-10206

Bayram G. Ib^himov,

Azerbaijan Technical University, Baku, Azerbaijan, [email protected]

Ramiz T. Humbatov,

Institute of Control Systems NASA, Baku, Azerbaijan, [email protected]

Rufat F. Ibrahimov, Keywords: future networks, SDN, reliability,

Institute of Control Systems NASA, Baku, Azerbaijan, performance, fault tolerance, firewalls,

[email protected] quality of service, security risk, DDoS attack.

In this article, the subject of study is a network multiservice infrastructure based on the architectural concept future networks FN (Future Network) with using the technology software- defined network - SDN (Software Defined Networks), which supports a wide range of services. The basis of this architecture is multiservice telecommunications networks with using SDN technology, consisting a set of specialized modules, responsible for various functions for organizing network interaction. SDN is a dynamic, manageable and adaptable network architecture, which is divided into network management and data transmission levels, which provides software network management. The purpose of this work is to research and analyze MTN performance indicators based on the architectural concept FN with using SDN technologies in the provision multimedia service. As the SDN network performance, the probability -time characteristics of the useful and service traffic, the risks to the threat information security, and the resiliency indicators of the functioning of the systems where chosen. The complex performance indicators multiservice telecommunications network based on FN network with using SDN technologies are investigated.

As a result MTN research using the architectural concepts FN networks, a mathematical model network performance is proposed. Analytical expressions are obtained, allowing to evaluate indicators quality of service, information security and fault tolerance of the functioning of the system when providing multimedia services.

Information about authors:

Bayram G. Ibmhimov, Doctor of Technical Sciences, Professor, Department of "Multichannel telecommunication systems", Azerbaijan Technical University, Baku, Azerbaijan

Ramiz T. Humbatov, Doctor of Technical Sciences, Professor, Institute of Control Systems NASA, Baku, Azerbaijan Rufat F. Ibrahimov, Doctorant of the Institute of Control Systems NASA, Baku, Azerbaijan

Для цитирования:

Ибрагимов Б.Г., Гумбатов Р.Т., Ибрагимов Р.Ф. Производительность мультисервисных телекоммуникационных cетей на базе архитектурной концепции FN с использованием технологии SD // T-Comm: Телекоммуникации и транспорт. 2018. Том 12. №12. С. 84-88.

For citation:

Ibrahimov B.G., Humbatov R.T., Ibrahimov R.F. (2018). Analysis performance multiservice telecommunication networks with using architectural concept future networks. T-Comm, vol. 12, no.12, pр. 84-88.

7ТЛ

Introduction

One of the important direetions for achieving the goals of the digital economy of the Republic of Azerbaijan is the construction of a developed unified information and communication space and a single multioperator environment based on the architectural concepts of the Future Networks, providing for the modernization of the network subscriber and network access at a broad level, and transport communication networks with using new ICT[1,2].

The future networks, as well as NGN (Next Generation Network) networks, are based on the principle of "Multiple multimedia services - one network", which are based on technology - SDN, virtualization network functions (VNF) and IMS (EP multimedia subsystem).

Based on the analysis, it is established that SDN technology occupies an important place among the technologies mentioned above, which assumes a new approach to the construction MTS and the organization network interaction [3-5].

Consequently, the creation MTN of the future generation FN based on SDN technologies requires the development analysis methods and the formation of a correct assessment of the performance indicators communication networks, is very important. Network performance takes into account factors - a threat to information security, an indicator quality of service (Quality of Service, QoS) and system fault tolerance [5, 6J

In this paper, studies are devoted to solving the problem analyzing the performance future generation MTS, using SDN technologies.

Genera] formulation of the problem

Based on the research MTN on the basis SDN technologies in the provision of multimedia services, it has been established that insufficient attention has been paid to ensuring information security and guaranteed quality of service of useful and service traffic flows [1, 6, 7]. In addition, in [8, 9], as non-functional requirements for the operation of the MTS, the methods supporting the fault tolerance of the system under the influence DDoS (DDoS, Distributed Denial of Service) and DoS (DoS, Denial of Service), and ensuring the required level system performance indicators are not precisely defined.

To solve these problem, we proposed a mathematical model (MM) of network performance that takes into account telecommunication processes occurring in the MTN study based on architectural concepts FN, with using SDN technology 17, 8, 10]. Assume that the incoming flow requests to the system is stationary Poisson with the parameter A-, the duration servicing Mh of the traffic has a distribution function B(t) with the

moments B{n. We assume that in the nodes of the SDN networks the number places for waiting is limited to Mh at the critical

load pj <1, i =\,K .

The mathematical formulation of the problem of the proposed MM performance networks D(Z ) depending on the intensity

X-t of the incoming i-th stream traffic packets is described by the

following objective functions:

Ep„. = W[Argmax(D(A<)}, i = \J (1)

under the following restrictions

m <PM,(t),i=i~K, (2)

where E[Tia{A:)\ - the average time spent by the i-fh packets in the network, i-\,K\ P¡{t) - probability trouble-free operation of the network when servicing the i-th packet flow, i -\,K ; C — cost of hardware and software networks. i = i,K ;

i.ap

PiMii.(0> CÍJVJB, ^„„(/^-respectively, the allowable value

of the probability of failure-free operation of the network, the cost hardware and software, the average time of the remaining

/-th packet flow, i = I, K .

Expressions (1) and (2) define the essence of the new approach under consideration, on the basis which the MM is proposed to evaluate MTN performance indicators on the basis FN with using SDN technologies in the provision multimedia services.

The purpose this work is to study and analyze performance indicators multiservice telecommunication network based on the architectural concept FN with the use SDN technologies in the provision multimedia services.

Analysis of information security threats in MTN networks

It is known [2, 5] that the investigated SDN network contains the same factors of information security risks that exist on traditional NGN-based communication networks.

Therefore, in this paper, we consider the new security risks that SDN technologies bring with the use OpenFlow protocols. In this case, the encryption of this channel is important, but it is not able to fully protect against the denial-of-service attack DDoS and DoS. The latter is a tool for cyber attacks and threats.

Suppose the operation of the SDN network can be used by an attacker for DDoS/DoS attacks on the controller by sending a large number of requests for route calculation, which is described by the penalty function. The penalty for DDoS/DoS attacks on the SDN network controller is expressed as follows [8]:

<W«í/vVr«' i = T^> <3>

i=L

where A. — incoming traffic speed of the i-th traffic packet,

i—\,K',Tijd — the delay time Mh of the traffic packet flow and depends on the controller speed and the traffic management rule by the switch; ai - the penally factor, which determines the delay time when processing i-th stream of the packet, i = \,K.

For the continuous operation of the system and the security traffic flow of traffic packets in nodes of SDN networks, it is necessary to use firewalls (FW, Firewalls).

However, the participation FW in communication networks lowers the reliability of the system, increases the traffic transmission time and the load factor of the nodes of the SDN switch when filtering and servicing the traffic flow [6].

Taking into account the performance of the SDN network D(A-) and above, the main tasks formulated to prevent possible DDoS/DoS attacks (3) will take the following form:

Pi B

(4)

where B[,) — the time of the transmission j-th stream of the traffic packet, and characterizes the moment of time i'-th traffic servicing; p. - system load factor when servicing z'-th traftic stream

and equally p. - (A. ■ Ln / Nt ■ Ci nm) < 1 , / = 1,K , where L - average length of served traffic in FW; C, max —the maximum value network bandwidth when serving f'-th traffic flow, i = UK.

Expression (4) characterizes the information security threat indicators in the networks with which you can prevent possible DDoS / DoS attacks.

Research fault tolerance functioning MTN network nodes

To provide multimedia services in MTN based on FN, it is necessary to ensure the continuous operation of the SDN network and the fault tolerance of the system [2, 5,9].

Consider variants of a fault-tolerant system, including groups firewalls Nt, each of which serves traftic to one server group and is defined as follows:

P^TLI^^UK, (5)

/=1

Where P. (?) — probability of uptime networks MTN with a firewall and is expressed as follows:

w-i-[i- P,,(/)]*, PM=mi-K t)-i=hK, (6)

where Ar - the failure rate nodes level (l/s) input switches and

firewalls, i= \,K.

Expressions (5) and (6) characterize the fault tolerance of the operation of systems and show that an increase in the number FW leads to improved performance and improved security for future generations MTN using SDN technologies.

Based on the reliability study of the system, it was found that with increasing the probability of failure pni and reducing the

probability performing a recovery operation ph, the dispersion

er2 significantly increases. This leads to deterioration in the characteristics of the switching node of the SDN network with the participation FW.

Evaluation of the probability blocking in the switching nodes of the networks MTN

The investigated SDN network is represented as QS, which consists three systems - the buffer storage of the input interface, the buffer storage to the ring receiving system, the systems servicing the packets of service and useful traffic packets, the output systems [5].

Based on QS of a general type, under the influence DDoS/DoS attacks oil the buffer storage of the controller, the probability blocking in SDN switching nodes is calculated as follows [10. 11]:

i = l,K . (7)

Expression (7) in SDN networks means that traffic packets can not be received by the system, because the QS of the SDN network element is full due to the impact DDoS/DoS attacks.

Thus, taking into account the probability P0 in the system with a limited queue, expression (7) takes the following form:

t-p

.«i

■P

p< I.

(8)

l-p.p'

On the basis MM and (8), one can find the dependence of the probability of losses in the nodes ofSDN networks using FW on the value of the load p according to the formula:

P„{p) = [pXh(\~p)-p]'[l-p2-pM>] ■ (9)

Expressions (9) determine the quality of service in nodes networks MTN and is an important indicator QoS when filtering multimedia traffic.

Investigation and analysis probability-time characteristics

MTN networks

Assume that the flow of traffic packets arrives at the switch, then the switch analyzes the packet header and looks for routing rules in the routing table for its processing and transmission.

It is known [2, 5] that in the MTN on the basis SDN technologies the rules of interaction between the switch and the controller is the OpenFlow protocol. Here, the controller configures the routing rules on the switches before the traftic flows on the communication network. If the rule is found, then the packet is transferred to the next switch, otherwise the packet is stored in the buffer memory of the switch, and the header is sent to the controller.

One of the most important QS indicators of a general type is the average queue length and, on the basis Little's formula, is determined by the following expression [8]:

£!%(*}]=crate w^m - <io>

l„

where E\TK!{/?,)] — average waiting time in the queue.

Figure 1 shows the graphical dependence of the average queue length in QS type M/G/Nt/ Mb on the load factor of

the SDN network = W[Cmm,p№A<),Pb] for a

given system capacity Cm(K and service load intensities V(A).

| c^-MMbps |

H---1----1---1—H—-f-

| MiG/mit, t |

iНе можете найти то, что вам нужно? Попробуйте сервис подбора литературы.

: 0,999

120

& ed

---h--1--+ — + — + —+ '

1/ I

_4_,

I Ell

60 -

30---

--b — 1 41 -H—H—j H MlQNk/Mb | 0 " ---K UJm4f

—-h— 1 -f-1 1 ..I---" Tc n| ~

■pmyV2 |

Ï--+/

02

0,3

0,4

Pb=( 0,999 |

0.7

Fig, 1. The graph of the dependence of the average packet queue length on the load factor network nodes SDN (I - M/G/Nk/Mb; 2 - M/G/t/Mb)

Analysis of the graphical dependence for QS type MIGlNJNb and MIG!\INh shows that in the case of

improved performance of the MTN, with the growth of the load factor of the SDN network meeting the requirements fault toler-

W

ance of the system and the efficient use of the switch and the SDN controller, the average queue length in the network nodes Cnias = 750 Mbps, Tcn = (7,0 ,,,,,10) ms, cr3 = (3.....12) ms,

pb = 0,999, y(Ae) < 0,40 Erlanqs and C2B = 0,5,...,1,0 . From

the graphic family it is dear that their noticeable change begins with the values p > 0,60.

One of the key indicators of the probability-time characteristics SDN networks when using traffic filtering in FW and is the average time of the packets stay in QS E[TM{A)~\. From the Polyaczek-Khinehiu formula is found both:

E[t m\=—-bw p(l~c*\ p<h (ii) 1 -p 2(1 -p)

where C2B - square of the coefficient of variation of the packet

transmission time and is equal to, C2B - a2 / TTtn ~ average

traffic transmission time; B' — the first point in time for servicing packages [8, 101-

It follows from expression (11) that, for —» I, the average time of the packet stay in the queue increases sharply. It is possible to find the dependencies of the mean time of the packet stay in the switching node on the load value p by the formula:

E[Tal{A,p)} = —-B0> p<\ (¡2)

1-/7 2Nk{\-p) Cm

Expressions (10) ,.,., (12) define the Poiyaczek-Khinchin formulas for useful and service traffics.

Taking into account the coefficient of the variation in the duration of servicing of traffic packet flows CB, the average wait

time for the start of packet flow maintenance is expressed as follows:

E[r = l» +WpCB)\ p<\, (13)

2(1 -p) Cmax ■ Nk 1 -p Expressions (13) define one of the most important indicators of the quality work MTN on the basis FN and is the average waiting time of the packet E[T,n (/!)] in the queue for servicing

in network switching nodes.

As a result of the research it was established that an acceptable average delay time of a packet, provided that failures can occur A with a given probability of their recovery operations Ph —0,999, can be determined by formula (12) or (13). This uniquely corresponds to the values p < 1 and permissible intensity of the input load A.

On the basis MM, the obtained expressions (7), (13) determine the probability-time characteristics network nodes and are boundary indicators of the quality of service traffic packets.

Thus, the study and system analysis MTN based on the architectural concept FN using SDN technology show that, with their high performance, information security and fault tolerance, they

must have a low system cost, which makes it necessary to optimize them.

The target and fundamental performance characteristics MTN based on FN using SDN technologies have been analyzed and one of them is the principle technological separation switching, traffic management and service management.

Based on the MTN study based on the architectural concept FN, MM proposed network performance using FW in the form QS, taking into account the risks information security threats, probabilistic-time characteristics useful and service traffics, and indicators of system resiliency.

As a result of the MM study, analytical expressions were obtained for estimating the probabilistic-time characteristics MTN networks based on a switch controller using OpenFlow protocols, fine FW functions when filtering multimedia traffic with necessary parameters and probability trouble-free operation nodes SDN networks.

These indicators provide a guaranteed QoS in MTN networks based on FN, regulated in the recommendations ITU-T, the Y.3000 series.

1. G oralis on P., BlackC..Culver T. (2017/ Soft ware-Defined Networks: A Comprehensive Approach. Cambridge Elsevier. 409 p.

2. Efimushkin V.A., Ledokovskikh T.V., Ivanov A.B., Shalaginov V.A. (2018).The role of SDN/NFV technologies in the digital economy infrastructure. Experience of testing and implementation. Telecommunications. No. 3, pp.27-36.

3. A teva A., Vybornova A., Samouylov K., Koucheryavy A. (2017). System Model for Mulii-level Cloud Bazed Tactile Internet System. Lecture Notes in Computer Science. Vo!. 10372, pp.77-86.

4. ROsIyakov A.V., Vanyashin S.V. (2015), Future Networks. Samara. PSUT1,274 p.

5. Ibrahimov B.G. (2018). Analysis Multiservice Telecommunication Networks of the FN on the Basis of the Architectural Concept SDN & NFV and IMS. Scientific Wolfe AzTU. No.3, pp. 34-38.

6. Samouylov K.. BotvinkoA., Zaripova E. (2016). Estimating the lime for establishing a session between users in the presence of a firewall. Bulletin of the Peoples' Friendship University of Russia. Series Mathematics. Computer science Physics. Vol. 1, pp. 59-66.

7. Kerner Y, (2008}.The conditional distribution of the residual service time in the M„/G/L queue. Stock. Models. Vol. 24, pp. 364-375.

8. Ibrahimov B.G., Ismaylova S.R. (2018). The Effectiveness NGN/IMS Networks in the Estab- lishment of a Multimedia Session, American Journal of Networks and Communications. Vol. 7,pp. 1-5.

9. Romanov M. (2007). Fault Tolerant Security, Storage News, Vol. 2, pp. 20-24.

10. Sokolov A.M., Sokolov H.A, (2010). Single line Queuing Systems. Teledom, St. Petersburg.

11. Abouee-Mehrizi H„ Baron O. (2016). State-dependent M/G/l queuing systems. QueueingSystems. Vol. 82, pp. 121-148.

Conclusion

References

ПРОИЗВОДИТЕЛЬНОСТЬ МУЛЬТИСЕРВИСНЫХ ТЕЛЕКОММУНИКАЦИОННЫХ CЕТЕЙ НА БАЗЕ АРХИТЕКТУРНОЙ КОНЦЕПЦИИ FN С ИСПОЛЬЗОВАНИЕМ ТЕХНОЛОГИИ SDN

Ибрагимов Байрам Ганимат оглы, Азербайджанский Технический Университет, г. Баку, Азербайджан, i. [email protected] Гумбатов Рамиз Топуш оглы, Институт Систем Управления НАН Азербайджана, г. Баку, Азербайджан, [email protected] Ибрагимов Руфат Фикрет оглы, Институт Систем Управления НАН Азербайджана, г. Баку, Азербайджан,

[email protected]

Аннотация

В данной статье предметом исследования является сетевая мультисервисная инфраструктура на базе архитектурной концепции будущих сетей FN (FN, Future Networks) с использованием технологии программно-конфигурируемых сетей - SDN (Software Defined Networks), поддерживающая широкий спектр услуг. Основой данной архитектуры является мультисервисных телекоммуникационных сетей с использованием технологии SDN, состоящие из набора специализированных модулей, отвечающих за различные функции для организация сетевого взаимодействия. SDN является динамичная, управляемая и адаптируемая сетевая архитектура, в которой разделены на уровни управления сетью и передачи данных, что обеспечивает программное управления сетью. Целью данной работы является исследование и анализ показателей производительности MTC на базе архитектурную концепцию FN с использование технологий SDN при оказании мультимедийных услуг. В качестве производительность сети SDN выбраны вероятностно-временных характеристик полезного и служебного трафиков, риски угрозы информационной безопасности и показателей отказоустойчивости функционирования системы. Получены аналитические выражения, позволяющие оценить показатели качества обслуживания, информационной безопасности и отказоустойчивости функционирования системы при оказании мультимедийных услуг.

Ключевые слова: будущие сети, SDN, надежность, производительность, отказоустойчивость, межсетевые экраны, качество обслуживания, угроза безопасности, DDoS атака.

Литература

1. Goranson P., BlackC.,Culver T. Software-Defined Networks: A Comprehensive Approach//Cambridge. Elsevier, 2017. 409 p.

2. Ефимушкин В.А., Ледоковских Т.В., Иванов А.Б., Шалагинов В.А. Роль технологий SDN/NFV в инфраструктуре цифровой экономики. Опыт тестирования и внедрения // Электросвязь, №3, 2018. С. 27-36.

3. Ateya A., Vybornova A., Samouylov K., Koucheryavy A. System Model for Multi-level Cloud Bazed Tactile Internet System//Lecture Notes in Computer Science. 2017. Vol. 10372, pp. 77-86.

4. Росляков А.В., Ваняшин С.В. Будущие сети (Future Networks). Самара: ПГУТИ, 2015. 274 c.

5. Ибрагимов Б.Г. Анализ мультисервисных телекоммуникационных сетей связи будущего поколения на базе архитектурной концепции SDN&NFV и IMS // Ученые-записки. № 3. АзТУ. 2018. С. 34-38.

6. Самуйлов К.Е. Ботвинко А.Ю., Зарипова Э.Р. Оценка времени установления сессии между пользователями при наличии межсетевого экрана // Вестник РУДН. Серии "Математика. Информатика. Физика". М.: Изд-во РУДН. №1. 2016. С. 59-66.

7. Kerner Y. The conditional distribution of the residual service time in the Mn/G/1 queue//Stoch. Models, 2008. Vol. 24, pp. 364-375.

8. Ibrahimov B.G., Ismaylova S.R. The Effectiveness NGN/IMS Networks in the Establishment of a Multimedia Session // American Journal of Networks and Communications. 2018. Vol. 7, pp. 1-5.

9. Romanov M. Fault Tolerant Security // Storage News. 2007. Vol.2, pp. 20-24.

10. Соколов А.Н., Соколов Н.А. Однолинейные системы массового обслуживания. СПб.: Изд-во "Телеком" СПбГУТ, 2010. 112 с.

11. Abouee-Mehrizi H., Baron O. State-dependent M/G/1 queuing systems // Queueing Systems. 2016. Vol. 82, pp. 121-148.

Информация об авторах

Ибрагимов Байрам Ганимат оглы, д.т.н., профессор кафедры "Многоканальные телекоммуникационные системы" Азербайджанского Технического Университета, г. Баку, Азербайджан

Гумбатов Рамиз Топуш оглы, д.т.н., с.н.с., Институт Систем Управления НАН Азербайджана, г. Баку, Азербайджан Ибрагимов Руфат Фикрет, диссертант, Институт Систем Управления НАН Азербайджана, г. Баку, Азербайджан

7ТТ

i Надоели баннеры? Вы всегда можете отключить рекламу.