International Journal of Communication Networks and Distributed Systems

Abed, Amr S.; Azab, Mohamed; Clancy, Charles; Kashkoush, Mona S.

doi: 10.1504/IJCNDS.2020.103857pmid: N/A

The lightweight virtualisation and isolated execution offered by Linux containers qualify it to be the dominant virtualisation platform for cloud-based applications. The fact that Linux containers run on the same host while sharing the same kernel opens the door for new attacks. However, limited research has been conducted in the area of securing cloud containers. This paper presents a resilient intrusion detection and resolution system for cloud-based containers. The system relies on two main pillars, a real-time smart behaviour monitoring mechanism to detect maliciously behaving containers, and a moving-target defence approach that applies runtime container migration to quarantine such containers and to minimise attack dispersion. To avoid zero-day targeted attacks, the system also induces random live migrations between running containers to obfuscate its execution behaviour. Such obfuscation makes it harder for attackers to execute their targeted attacks. The system was tested by a big-data application using a container-based Apache Hadoop cluster to demonstrate the system's ability to automatically deploy, monitor, detect, and respond to maliciously behaving applications by live migration or by rolling back the container to a safe state. Results showed that the proposed system efficiently ensure safe and secure container operation.

Borkar, Gautam M.; Mahajan, A.R.

doi: 10.1504/IJCNDS.2020.103858pmid: N/A

Wireless communication formly mobile ad-hoc network (MANET) plays a significant role in modern technology for transmitting the packets from source node to destination node. The absence of any central contrivance makes MANETs more prone to cyber-attacks. So it is expected to meet the different security requirements such as authentication, confidentiality, integrity, anonymity, and availability. So this paper, developed a detailed survey about the techniques used for solving the various issues like security, authentication and routing. In addition to that, the authentication problem is also focused by providing more security by means of identifying one another. Moreover, the problem of incorporating security into routing protocols, many algorithms have been employed which is very challenging to find out the optimal and efficient method that can be used globally. Finally paper analysed various existing techniques and then critically analysed the work done in the field of MANETs.

Iyer, Sridhar

doi: 10.1504/IJCNDS.2020.103864pmid: N/A

For an elastic optical network (EON), considering cases of various lightpaths pairs requiring different actual guard bands, we propose an adaptive spectrum assignment (ASA) model which formulates the problem such that, it is possible to investigate as to how spectrum resources can be efficiently assigned in the considered cases. Initially, ASA is formulated as an integer linear program (ILP), followed by its simplification to an ordered-ASA (O-ASA) problem which is solvable in polynomial time. To solve ASA in tractable time, we propose a dual stage heuristic algorithm in which, an initial solution is obtained in the first stage, followed by a second stage which resorts to the use of random optimisation for improving the initial solution's quality. We conduct simulations considering various graph types and realistic network topology(s), and the obtained results show that, in comparison to ILP model, the proposed dual stage heuristic algorithm finds almost optimal solutions for the ASA.

Tyagi, Sapna; Agarwal, Amit; Avasthi, Vinay; Maheshwari, Piyush

doi: 10.1504/IJCNDS.2020.103865pmid: N/A

As one of the principle patterns of communication technology for 3D-integrated circuit (ICs), the 3D-networks-on-chips (3D-NoCs) have lot of attention from scientific research community. 3D-NoCs has been provided as a propitious solution merging the high parallelism of network-on-chip (NoCs) interconnect paradigm with the high-performance and lower interconnect-power of three-dimensional integration circuits. For the permanent link faults, the fault-tolerant routing scheme has been regarded as an effective mechanism to ensure the performance of the 2D NoCs. In this paper, we propose a triggered fault-free route forwarding model called TFRF for 3D mesh NoCs without requiring any virtual channels (VCs).TFRF is a deadlock-free scheme by adopting a logic-based routing named TFRF guided by a turn activating rule model. The experimental results show that TFRF possesses better performance, improved reliability and lower overhead compared with the state-of-the-art reliable routing schemes.

Nakamura, Shigenari; Enokido, Tomoya; Takizawa, Makoto

doi: 10.1504/IJCNDS.2020.103926pmid: N/A

In this paper, we discuss a peer-to-peer type of publish/subscribe (P2PPS) model which is composed of peer processes (peers). Here, each peer publishes event messages while receiving event messages. In the topic-based access control (TBAC) model proposed in our previous studies, only a peer granted publication and subscription rights on topics is allowed to publish and subscribe event messages on the topics, respectively. In our previous studies, the subscription-based synchronisation (SBS) protocol is proposed where illegal event messages are banned. It is checked whether or not each event message received is illegal in terms of subscription and publication rights granted to each peer. However, even some legal event messages are unnecessarily banned. In this paper, we newly propose a topic-based synchronisation (TBS) protocol where only and every illegal event message is banned. In the evaluation, we show only and every illegal event message is banned in the TBS protocol.