SDN-Based Secure Application Admission and Execution for Many-Cores

Ruaro, Marcelo; Caimi, Luciano L.; Moraes, Fernando

doi:10.1109/access.2020.3025206

Cited by 7 publications

(6 citation statements)

References 30 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Then, in [ 16 ] Ruaro et al defined secure zones in an SoC employing an SDNoC architecture. They use an application admission mechanism to accept new applications in a secure zone.…”

Section: Literature Reviewmentioning

confidence: 99%

“…Having a scalable network of thousands of processing cores is not an easy task, and a layered approach is needed to address different problems in a modular way. However, The NoC design complexity increases with the adaptive requirements due to dynamic workload [ 16 ], which makes the management of a network of thousands of elements a complex and interesting problem.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A Survey of Software-Defined Networks-on-Chip: Motivations, Challenges and Opportunities

et al. 2021

View full text Add to dashboard Cite

Current computing platforms encourage the integration of thousands of processing cores, and their interconnections, into a single chip. Mobile smartphones, IoT, embedded devices, desktops, and data centers use Many-Core Systems-on-Chip (SoCs) to exploit their compute power and parallelism to meet the dynamic workload requirements. Networks-on-Chip (NoCs) lead to scalable connectivity for diverse applications with distinct traffic patterns and data dependencies. However, when the system executes various applications in traditional NoCs—optimized and fixed at synthesis time—the interconnection nonconformity with the different applications’ requirements generates limitations in the performance. In the literature, NoC designs embraced the Software-Defined Networking (SDN) strategy to evolve into an adaptable interconnection solution for future chips. However, the works surveyed implement a partial Software-Defined Network-on-Chip (SDNoC) approach, leaving aside the SDN layered architecture that brings interoperability in conventional networking. This paper explores the SDNoC literature and classifies it regarding the desired SDN features that each work presents. Then, we described the challenges and opportunities detected from the literature survey. Moreover, we explain the motivation for an SDNoC approach, and we expose both SDN and SDNoC concepts and architectures. We observe that works in the literature employed an uncomplete layered SDNoC approach. This fact creates various fertile areas in the SDNoC architecture where researchers may contribute to Many-Core SoCs designs.

show abstract

“…Then, in [ 16 ] Ruaro et al defined secure zones in an SoC employing an SDNoC architecture. They use an application admission mechanism to accept new applications in a secure zone.…”

Section: Literature Reviewmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

A Survey of Software-Defined Networks-on-Chip: Motivations, Challenges and Opportunities

et al. 2021

View full text Add to dashboard Cite

show abstract

“…Gomez-Rodriges et al [ 40 ] present a wide overview of the literature on software-defined network-on-chip (SDNoC) use in MCSoC applications. They point out some security-oriented approaches supporting the SDNoC architecture that apply a security protocol for network configuration, as proposed by Ruaro et al [ 41 ], or define security zones and apply an admission mechanism to accept new applications in a security zone, as presented by Ruaro et al [ 42 ]. Security vulnerabilities, especially in the IoT context, arise due to exposure of the MCSoC infrastructure to DoS attacks by malicious users.…”

Section: Related Workmentioning

confidence: 99%

Detection and Classification of Malicious Flows in Software-Defined Networks Using Data Mining Techniques

Amanowicz

Jankowski²

2021

Sensors

View full text Add to dashboard Cite

The increasing availability of mobile devices and applications, the progress in virtualisation technologies, and advances in the development of cloud-based distributed data centres have significantly stimulated the growing interest in the use of software-defined networks (SDNs) for both wired and wireless applications. Standards-based software abstraction between the network control plane and the underlying data forwarding plane, including both physical and virtual devices, provides an opportunity to significantly increase network security. In this paper, to secure SDNs against intruders’ actions, we propose a comprehensive system that exploits the advantages of SDNs’ native features and implements data mining to detect and classify malicious flows in the SDN data plane. The architecture of the system and its mechanisms are described, with an emphasis on flow rule generation and flow classification. The concept was verified in the SDN testbed environment that reflects typical SDN flows. The experiments confirmed that the system can be successfully implemented in SDNs to mitigate threats caused by different malicious activities of intruders. The results show that our combination of data mining techniques provides better detection and classification of malicious flows than other solutions.

show abstract

“…(iv) SDN (Software-Defined Networking Most works adopt isolation in continuous regions, using SZs. Ruaro et al [57] propose an alternative to SZs, which is the SDN-based management to implement the communication isolation at runtime. The method adopts two constraints.…”

Section: (I) Secure Zones -Partition and Encryptionmentioning

confidence: 99%

“…Two recent works present systemic solutions, opaque secure zones (OSZ) [56] and the use of SDN to define paths through circuit-switching [57].…”

Section: A Final Remarksmentioning

confidence: 99%

A Survey on Security Mechanisms for NoC-based Many-Core SoCs

Caimi

Faccenda

Moraes

2021

JICS

Self Cite

View full text Add to dashboard Cite

The adoption of many-cores systems introduces the concern for data protection as a critical design requirement due to the resource sharing and the simultaneous executions of several applications on the platform. A secure application that processes sensitive data may have its security harmed by a malicious process. The literature contains several proposals to protect many-cores against attacks, focusing on the protection of the application execution or the access to shared memories. However, there is a gap to be fulfilled: a solution covering the entire application lifetime, including its admission, execution, and peripheral's access. This survey discusses three security-related issues: the secure admission of applications, the prevention of resource sharing during their execution, and the safe access to external devices. This survey concludes with an evaluation of the studied methods, pointing out directions and research opportunities.

show abstract

SDN-Based Secure Application Admission and Execution for Many-Cores

Cited by 7 publications

References 30 publications

A Survey of Software-Defined Networks-on-Chip: Motivations, Challenges and Opportunities

A Survey of Software-Defined Networks-on-Chip: Motivations, Challenges and Opportunities

Detection and Classification of Malicious Flows in Software-Defined Networks Using Data Mining Techniques

A Survey on Security Mechanisms for NoC-based Many-Core SoCs

Contact Info

Product

Resources

About