M. Liyanage, M. Ylianttila and A. Gurtov, "Enhancing Security, Scalability and Flexibility of Virtual Private LAN Services," 2017 IEEE International Conference on Computer and Information Technology (CIT), Helsinki, 2017, pp. 286-291. doi: 10.1109/CIT.2017.45
Enhancing security, scalability and flexibility of virtual private LAN services
|Author:||Liyanage, Madhusanka1; Ylianttila, Mika1; Gurtov, Andrei2|
1Centre for Wireless Communications (CWC), University of Oulu, Finland
2Department of Computer and Information Science, Linköping University, Sweden
|Online Access:||PDF Full Text (PDF, 0.5 MB)|
|Persistent link:|| http://urn.fi/urn:nbn:fi-fe2018080233260
Institute of Electrical and Electronics Engineers,
|Publish Date:|| 2018-08-02
Ethernet based VPLS (Virtual Private LAN Service) networks are now becoming attractive in many enterprise applications due to simple, protocol-independent and cost efficient operation. However, new VPLS applications demand additional requirements, such as elevated security, enhanced scalability and improved flexibility. This paper summarized the results of a thesis which focused to increase the scalability, flexibility and compatibility of secure VPLS networks. First, we propose a scalable secure flat-VPLS architecture based on Host Identity Protocol (HIP) to increase the forwarding and security plane scalability. Then, a secure hierarchical-VPLS architecture has been proposed by extending the previous proposal to achieve control plane scalability as well. To solve the compatibility issues of Spanning Tree Protocol (STP) in VPLS networks, a novel Distributed STP (DSTP) is proposed. Lastly, we propose a novel SDN (Software Defined Networking) based VPLS (SoftVPLS) architecture to overcome tunnel management limitations in legacy secure VPLS architectures. Simulation models and testbed implementations are used to verify the performance of proposed solutions.
|Pages:||286 - 291|
17th IEEE International Conference on Computer and Information Technology (CIT), 2017. 21-23 August 2017, Helsinki, Finland
IEEE International Conference on Computer and Information Technology
|Type of Publication:||
A4 Article in conference proceedings
|Field of Science:||
213 Electronic, automation and communications engineering, electronics
113 Computer and information sciences
This work has been performed in the framework of the SIGMONA, SECUREConnect, Naked Approach, Towards Digital Paradise and CENIIT 17.01 projects. This research is funded by Academy of Finland and TEKES, Finland.
© 2017 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.