Skip to main content
SpringerLink
Log in

Digital forensics framework for intent-based networking over software-defined networks

  • Published:
Telecommunication Systems Aims and scope Submit manuscript

Abstract

Intent-based networking (IBN) is an evolutionary paradigm. Its recent adaptation has been increased substantially by Cloud Service Providers, Telecom, and network operators due to its automation capabilities. However, there are certain challenges specifically related to security. One of the core challenges is the lack of a forensic framework for identifying different incidents inside IBN. In this paper, we have proposed a framework to perform the forensics investigation of an IBN inside a software defined networking (SDN) environment. This framework is based on the steps of the forensics investigation process and consists of four modules: Identification, Collection, Analysis, and Reporting. Identification includes logs searching for specific events. Logs are searched through keywords, Time, Date, and Event ID. Pieces of evidence are collected from the Application, Control, and Infrastructure Layers of SDN by exploiting the default log file of ONOS and third-party tools. The analysis is performed using manual analysis of the raw log entries and third-party tools such as Loki/Grafana. This framework is implemented by utilizing ONOS as an SDN controller. The emulator used for creating the experimental network is Mininet on two different use cases: Normal Traffic Routing and Redirection of Attack Traffic, to analyze the difference in log files generated by the SDN controller. These files are manually analyzed and sent to the Loki–Grafana server for better analysis, visualization, and real-time monitoring of IBN logs. Assessment of the obtained experimental results is based on the states defined in the Intent Framework of ONOS.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Log in via an institution

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Institutional subscriptions

Fig. 1
Fig. 2
Fig. 3
Fig. 4
Fig. 5
Fig. 6
Fig. 7
Fig. 8
Fig. 9
Fig. 10
Fig. 11
Fig. 12
Fig. 13
Fig. 14
Fig. 15
Fig. 16
Fig. 17
Fig. 18
Fig. 19
Fig. 20
Fig. 21
Fig. 22
Fig. 23
Fig. 24
Fig. 25
Fig. 26
Fig. 27

Similar content being viewed by others

Data availibility

Data is available on request from the authors.

References

  1. Lerner, A. (2017). Intent-based networking. Gartner Blogs. https://blogs.gartner.com/andrew-lerner/2017/02/07/intent-based-networking/. Accessed February 23, 2022.

  2. Boyd, N. (2018). What is intent-based networking? SDxCentral. https://www.sdxcentral.com/artificial-intelligence/automation/intent-based/definitions/what-is-intent-based-networking/. Aaccessed February 23, 2022.

  3. Chiara, L. F., Coscia, P., Das, S., Calderara, S., Cucchiara, R., & Ballan, L. (2022). Goal-driven self-attentive recurrent networks for trajectory prediction. arXiv preprint arXiv:2204.11561. April 25.

  4. Beshley, M., Pryslupskyi, A., Panchenko, O., & Seliuchenko, M. (2020). Dynamic switch migration method based on QoE-aware priority marking for intent-based networking. In 2020 IEEE 15th international conference on advanced trends in radioelectronics, telecommunications and computer engineering (TCSET), Feb 25 (pp. 864–868). IEEE.

  5. Pang, L., Yang, C., Chen, D., Song, Y., & Guizani, M. (2020). A survey on intent-driven networks. IEEE Access, 8, 22862–22873.

    Article  Google Scholar 

  6. Shirmarz, A., & Ghaffari, A. (2020). Performance issues and solutions in SDN-based data center: A survey. The Journal of Supercomputing, 76(10), 7545–93.

    Article  Google Scholar 

  7. Global Market Insights. (2019). https://www.gminsights.com/industry-analysis/intent-based-networking-ibn-market. Accessed February 21, 2022.

  8. An Intent-Based Future: Forecasting the Emergence of IBN (2019). https://medium.datadriveninvestor.com/an-intent-based-future-1e1145ff317. Accessed February 21, 2022.

  9. Acadia Technology Group. Intent based networking positioned to transform the IT industry (2017). https://www.acadiatech.com/blog/intent-based-networking-positioned-to-transform-the-it-industry/.

  10. Sanvito, D., Moro, D., Gulli, M., Filippini, I., Capone, A., & Campanella, A. (2018). ONOS intent monitor and reroute service: Enabling plug &play routing logic. In 2018 4th IEEE Conference on Network Softwarization and Workshops (NetSoft) (pp. 272–276). IEEE.

  11. Rafiq, A., Afaq, M., & Song, W. C. (2020). Intent-based networking with proactive load distribution in data center using IBN manager and Smart Path manager. Journal of Ambient Intelligence and Humanized Computing, 11(11), 4855–4872.

    Article  Google Scholar 

  12. Yungaicela-Naula, N. M., Vargas-Rosales, C., Pérez-Díaz, J. A., & Zareei, M. (2022). Towards security automation in software defined networks. Computer Communications, 183, 64–82.

    Article  Google Scholar 

  13. Intent Based Networking (IBN) (2020). https://www.geeksforgeeks.org/intent-based-networking-ibn/. Accessed February 22, 2022.

  14. Dmitrieva, J. (2022). Comparative analysis of network resource management methods in SDN. Proceedings of Telecommunication Universities, 8(1), 73–83.

  15. Medvetskyi, M., Beshley, M., & Klymash, M. (2021). A quality of experience management method for intent-based software-defined networks. In 2021 IEEE 16th international conference on the experience of designing and application of CAD systems (CADSM) Feb 22 (pp. 59–62). IEEE.

  16. Perez, R., Zabala, A., & Banchs, A. (2021). Alviu: An intent-based SD-WAN orchestrator of network slices for enterprise networks. In 2021 IEEE 7th international conference on network softwarization (NetSoft) (pp. 211–215). IEEE.

  17. Abbas, K., Khan, T. A., Afaq, M., & Song, W. C. (2021). Network slice lifecycle management for 5g mobile networks: An intent-based networking approach. IEEE Access, 9, 80128–80146.

    Article  Google Scholar 

  18. Abbas, K., Afaq, M., Ahmed Khan, T., Rafiq, A., & Song, W. C. (2020). Slicing the core network and radio access network domains through intent-based networking for 5g networks. Electronics, 9(10), 1710.

    Article  Google Scholar 

  19. Mathew, A. (2020). Artificial intelligence for intent based networking. International Journal of Computer Science Trends and Technology (IJCST), 8(2), 13–17.

    Google Scholar 

  20. Khan, T. A., Mehmood, A., Ravera, J. J. D., Muhammad, A., Abbas, K., & Song, W. C. (2020). Intent-based orchestration of network slices and resource assurance using machine learning. In NOMS 2020–2020 IEEE/IFIP network operations and management symposium (pp. 1–2). IEEE.

  21. Mahtout, H., Kiran, M., Mercian, A., & Mohammed, B. (2020). Using machine learning for intent-based provisioning in high-speed science networks. In Proceedings of the 3rd international workshop on systems and network telemetry and analytics (pp. 27–30).

  22. Andrushchak, V., Beshley, M., Dutko, L., Maksymyuk, T., & Andrukhiv, T. (2022). Intelligent traffic engineering for future intent-based software-defined transport network. In Future Intent-Based Networking (pp. 161–181). Cham: Springer.

  23. Assis, M. V. O., Carvalho, L. F., Lloret, J., & Proença, M. L., Jr. (2021). A GRU deep learning system against attacks in software defined networks. Journal of Network and Computer Applications, 177, 102942.

    Article  Google Scholar 

  24. Berde, P., Gerola, M., Hart, J., Higuchi, Y., Kobayashi, M., Koide, T., Lantz, B., et al. (2014). ONOS: Towards an open, distributed SDN OS. In Proceedings of the third workshop on Hot topics in software defined networking (pp. 1–6).

  25. Medved, J., Varga, R., Tkacik, A., & Gray, K. (2014). Opendaylight: Towards a model-driven sdn controller architecture. In Proceeding of IEEE international symposium on a world of wireless, mobile and multimedia networks 2014 (pp. 1–6). IEEE.

  26. Kaur, S., Singh, J., & Singh Ghumman, N. (2014). Network programmability using POX controller. In ICCCS international conference on communication, computing and systems (Vol. 138, p. 70. sn). IEEE.

  27. Shah, S. A., Faiz, J., Farooq, M., Shafi, A., & Mehdi, S. A. (2013). An architectural evaluation of SDN controllers. In 2013 IEEE international conference on communications (ICC) (pp. 3504–3508). IEEE.

  28. Ahmad, S., & Mir, A. H. (2021). Scalability, consistency, reliability and security in SDN controllers: A survey of diverse SDN controllers. Journal of Network and Systems Management, 29(1), 1–59.

    Article  Google Scholar 

  29. Campanella, A., Yan, B., Casellas, R., Giorgetti, A., Lopez, V., Zhao, Y., & Mayoral, A. (2020). Reliable optical networks with ODTN: Resiliency and fail-over in data and control planes. Journal of Lightwave Technology, 38(10), 2755–64.

    Article  Google Scholar 

  30. Zeydan, E., & Turk, Y. (2020). Recent advances in intent-based networking: A survey. In 2020 IEEE 91st vehicular technology conference (VTC2020-Spring) (pp. 1–5). IEEE.

  31. Zheng, X., & Leivadeas, A. (2021). Network assurance in intent-based networking data centers with machine learning techniques. In 2021 17th International conference on network and service management (CNSM) Oct 25 (pp. 14–20). IEEE.

  32. Laxmi, A. Intent based networking-working principle, advantages and disadvantages. https://electricalfundablog.com/intent-based-networking/. Accessed February 22, 2022.

  33. Ujcich, B. E., Bates, A., & Sanders, W. H. (2020). Provenance for intent-based networking. In 2020 6th IEEE conference on network softwarization (NetSoft) (pp. 195-199). IEEE.

  34. Koshibe, A., & Hart, J. (2016). Intent framework. https://wiki.onosproject.org/display/ONOS/Intent+Framework.

  35. Monika, P., Negara, R. M., & Sanjoyo, D. D. (2020). Performance analysis of software defined network using intent monitor and reroute method on ONOS controller. Bulletin of Electrical Engineering and Informatics, 9(5), 2065–2073. Security & Performance Analysis (Report No. 1). [Other] ONOS, 2017. https://hal.archives-ouvertes.fr/hal-03188700/document.

Download references

Acknowledgements

This research work has been supported by MoST Endowment Fund and NED University.

Funding

This research work has received funding from MoST Endowment Fund No. Acad/50(48)/10256, NED University of Engineering & Technology.

Author information

Author notes

  1. Tasbiha Fatima and Saadia Arshad have contributed equally to this work.

Authors and Affiliations

  1. Department of Software Engineering, NED University of Engineering and Technology, University Road, Karachi, 75270, Pakistan

    Muhammad Faraz Hyder

  2. Department of Computer Science and Information Technology, NED University of Engineering and Technology, University Road, Karachi, 75270, Pakistan

    Tasbiha Fatima & Saadia Arshad

Authors
  1. Muhammad Faraz Hyder
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Tasbiha Fatima
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Saadia Arshad
    View author publications

    You can also search for this author in PubMed Google Scholar

Contributions

MFH: Conceptualization, Methodology, Writing—original draft, Investigation, Experimental work, Proof Reading and Review. TF: Writing—original draft, Investigation, Experimental work. SA: Writing—original draft, Investigation, Experimental work.

Corresponding author

Correspondence to Muhammad Faraz Hyder.

Ethics declarations

Conflict of interest

The authors have no conflict of interest to declare for this manuscript.

Additional information

Publisher's Note

Springer Nature remains neutral with regard to jurisdictional claims in published maps and institutional affiliations.

Rights and permissions

Springer Nature or its licensor (e.g. a society or other partner) holds exclusive rights to this article under a publishing agreement with the author(s) or other rightsholder(s); author self-archiving of the accepted manuscript version of this article is solely governed by the terms of such publishing agreement and applicable law.

Reprints and permissions

About this article

Check for updates. Verify currency and authenticity via CrossMark

Cite this article

Hyder, M.F., Fatima, T. & Arshad, S. Digital forensics framework for intent-based networking over software-defined networks. Telecommun Syst 85, 11–27 (2024). https://doi.org/10.1007/s11235-023-01064-8

Download citation

  • Accepted:

  • Published:

  • Issue Date:

  • DOI: https://doi.org/10.1007/s11235-023-01064-8

Keywords

Search

Navigation