IS2N: Intent-Driven Security Software-Defined Network With Blockchain

Authors

Yanbo Song, Xidian University
Tao Feng, Academy of Military Sciences
Chungang Yang, Xidian University
Xinru Mi, Xidian University
Shanqing Jiang, Southeast University
Mohsen Guizani, Mohamed Bin Zayed University of Artificial IntelligenceFollow

Document Type

Article

Publication Title

IEEE Network

Abstract

Software-defined network (SDN) is characterized by its programmability, flexibility, and the separation of control and data planes. However, SDN still have many challenges, particularly concerning the security of network information synchronization and network element registration. Blockchain and intent-driven networks are recent technologies to establish secure and intelligent SDN. This article investigates the blockchain-based architecture and intent-driven mechanisms to implement intent-driven security software-defined networks (IS2N). Specifically, we propose a novel four-layer architecture of the IS2N with security capabilities. We integrate an intent-driven security management mechanism in the IS2N to achieve automate network security management. Finally, we develop an IS2N platform with blockchain middle-layer to achieve security capabilities and security store network-level snapshots, such as device registration and OpenFlow messages. Our simulations show that IS2N is more flexible than conventional strategies at resolving problems during network operations and has a minimal effect on the SDN.

First Page

118

Last Page

127

DOI

10.1109/MNET.138.2200539

Publication Date

5-1-2024

Recommended Citation

Y. Song et al., "IS2N: Intent-Driven Security Software-Defined Network With Blockchain," IEEE Network, vol. 38, no. 3, pp. 118 - 127, May 2024.

The definitive version is available at https://doi.org/10.1109/MNET.138.2200539