Router Framework for Secured Network Virtualization in Data Center of IaaS Cloud

  • Anant V. Nimkar
  • Soumya K. Ghosh
Conference paper
Part of the Smart Innovation, Systems and Technologies book series (SIST, volume 44)


Data center exploits network virtualization to fully utilize physical network resources by collocating tenants’ virtual networks. The virtual networks consist of sets of virtual routers connected by virtual links. The network virtualization must efficiently embed virtual networks on a physical network of the data center to balance load among physical resources to fully utilize the physical network. The virtual networks must also be securely managed so that they are not compromised by collocated users or a data center network administrator who has direct access to the physical network. In this paper, we propose a router framework in which virtual routers and links can be securely placed on physical router by adding a virtual plane on top of data and control planes, two abstract protocols and an enforcement of Federation Access Control Model (FACM). The two abstract protocols, viz. Secure Virtual Topology Embedding Protocol (SVTEP) and Node-and-Path Label Distribution Protocol (NPLDP) are presented along with a theoretical evaluation of the proposed router framework to fulfill all the aforesaid requirements.


Router framework Access control model Network virtualization Virtual network embedding IaaS Cloud Data center 


  1. 1.
    Chowdhury, N.M.K., Boutaba, R.: A survey of network virtualization. Comput. Netw. 54, 862–876 (2010)CrossRefMATHGoogle Scholar
  2. 2.
    Nimkar, A.V., Ghosh, S. K.: Towards full network virtualization in horizontal iaas federation: security issues. J. Cloud Comput.: Adv. Syst. Appl., SpringerOpen 2(19), 19:1–19:13 (2013)Google Scholar
  3. 3.
    Fischer, A., Botero, J., Till Beck, M., de Meer, H., Hesselbach, X.: Virtual network embedding: a survey. Commun. Surv. Tutorials IEEE 15, 1888–1906 (2013)CrossRefGoogle Scholar
  4. 4.
    Fan, P., Chen, Z., Wang, J., Zheng, Z., Lyu, M.: Topology-aware deployment of scientific applications in cloud computing. In: 2012 IEEE 5th International Conference on Cloud Computing (CLOUD), pp. 319–326, June 2012Google Scholar
  5. 5.
    Egi, N., Greenhalgh, A., Handley, M., Hoerdt, M., Huici, F., Mathy, L.: Fairness issues in software virtual routers. In: Proceedings of the ACM Workshop on Programmable Routers for Extensible Services of Tomorrow, PRESTO ‘08. ACM, New York, NY, USA, pp. 33–38 (2008)Google Scholar
  6. 6.
    Rathore, M., Hidell, M., Sjdin, P.: Data plane optimization in open virtual routers. In: Networking 2011, Lecture Notes in Computer Science, vol. 6640, pp. 379–392, Springer Berlin Heidelberg (2011)Google Scholar
  7. 7.
    Mattos, D.M.F., Ferraz, L.H.G., Costa, L.H.M.K., Duarte, O.C.M.B.: Evaluating virtual router performance for a pluralist future internet. In: Proceedings of the 3rd International Conference on Information and Communication Systems, ICICS ‘12. ACM, New York, NY, USA, pp. 4:1–4:7 (2012)Google Scholar
  8. 8.
    Lakshman, T.V., Nandagopal, T., Ramjee, R., Sabnani, K., Woo, T.: The softrouter architecture. In: Third Workshop on Hot Topics in Networks HotNets-III, ACM, San Diego, CA, USA, Nov 2004Google Scholar
  9. 9.
    Bozakov, Z., Papadimitriou, P.: Openvroute: an open architecture for high-performance programmable virtual routers. In: IEEE 14th International Conference on High Performance Switching and Routing (HPSR), pp. 191–196 (2013)Google Scholar
  10. 10.
    Sarrar, N., Feldmann, A., Uhlig, S., Sherwood, R., Huang, X.: Fibium-towards hardware accelerated software routers. EuroView 2010 (poster session) 9, 1–17 (2010)Google Scholar
  11. 11.
    Louati, W., Houidi, I., Zeghlache, D.: Autonomic virtual routers for the future internet. In: Proceedings of the 9th IEEE International Workshop on IP Operations and Management, IPOM ‘09, Springer-Verlag, Heidelberg, pp. 104–115 (2009)Google Scholar
  12. 12.
    Nimkar, A.V., Ghosh, S.K.: A theoretical study on access control model in federated systems. In: Communications in Computer and Information Science, Recent Trends in Computer Networks and Distributed Systems Security, vol. 420, pp. 310–321, Springer Berlin Heidelberg (2014)Google Scholar
  13. 13.
    Bozakov, Z.: An open router virtualization framework using a programmable forwarding plane. SIGCOMM Comput. Commun. Rev. 40(4), 439–440 (2010)CrossRefGoogle Scholar
  14. 14.
    Bozakov, Z.: Architecture and algorithms for virtual routers as a service. In: 2011 IEEE 19th International Workshop on Quality of Service (IWQoS), pp. 1–3 (2011)Google Scholar
  15. 15.
    Wang, Y., Keller, E., Biskeborn, B., van der Merwe, J., Rexford, J.: Virtual routers on the move: live router migration as a network-management primitive. SIGCOMM Comput. Commun. Rev. 38, 231–242 (2008)CrossRefGoogle Scholar

Copyright information

© Springer India 2016

Authors and Affiliations

  1. 1.School of Information TechnologyIndian Institute of TechnologyKharagpurIndia

Personalised recommendations