Planned intervention: On Wednesday April 3rd 05:30 UTC Zenodo will be unavailable for up to 2-10 minutes to perform a storage cluster upgrade.
Published August 3, 2021 | Version v1
Journal article Restricted

A Secure Link-Layer Connectivity Platform for Multi-Site NFV Services

  • 1. Department of Telematic Engineering, Universidad Carlos III de Madrid
  • 2. Telefónica I+D
  • 3. DriveNets
  • 4. Department of Telematic Engineering, Universidad Carlos III de Madrid; IMDEA Networks Institute

Description

Network Functions Virtualization (NFV) is a key technology for network automation and has been instrumental to materialize the disruptive view of 5G and beyond mobile networks. In particular, 5G embraces NFV to support the automated and agile provision of telecommunication and vertical services as a composition of versatile virtualized components, referred to as Virtual Network Functions (VNFs). It provides a high degree of flexibility in placing these components on distributed NFV infrastructures (e.g., at the network edge, close to end users). Still, this flexibility creates new challenges in terms of VNF connectivity. To address these challenges, we introduce a novel secure link-layer connectivity platform, L2S. Our solution can automatically be deployed and configured as a regular multi-site NFV service, providing the abstraction of a layer-2 switch that offers link-layer connectivity to VNFs deployed on remote NFV sites. Inter-site communications are effectively protected using existing security solutions and protocols, such as IP security (IPsec). We have developed a functional prototype of L2S using open-source software technologies. Our evaluation results indicate that this prototype can perform IP tunneling and cryptographic operations at Gb/s data rates. Finally, we have validated L2S using a multi-site NFV ecosystem at the Telefonica Open Network Innovation Centre (5TONIC), using our solution to support a multicast-based IP television service.

Notes

Project partially funded by the Spanish National Research Agency (PID2019-108713RB-C52/AEI/10.13039/501100011033).

Files

Restricted

The record is publicly accessible, but files are restricted to users with access.

Request access

If you would like to request access to these files, please fill out the form below.

You need to satisfy these conditions in order for this request to be accepted:

Copyrights are hold by MDPI

You are currently not logged in. Do you have an account? Log in here

Additional details

Funding

FISHY – A coordinated framework for cyber resilient supply chain systems over complex ICT infrastructures 952644
European Commission