A Heterogeneous Service-Oriented Deep Packet Inspection and Analysis Framework for Traffic-Aware Network Management and Security Systems
A variety of Web-based applications, mobile apps, and other over the top data services with affordable 3G/4G enabled smart devices are major factors for enormous increase in heterogeneous data traffic at enterprise and mobile networks. This creates challenges regarding traffic management and require...
| Main Authors: | , , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
IEEE
2016-01-01
|
| Series: | IEEE Access |
| Subjects: | |
| Online Access: | https://ieeexplore.ieee.org/document/7567523/ |
| _version_ | 1818331440144711680 |
|---|---|
| author | Muhammad Asrar Ashraf Habibullah Jamal Shoab Ahmed Khan Zaheer Ahmed Muhammad Iram Baig |
| author_facet | Muhammad Asrar Ashraf Habibullah Jamal Shoab Ahmed Khan Zaheer Ahmed Muhammad Iram Baig |
| author_sort | Muhammad Asrar Ashraf |
| collection | DOAJ |
| description | A variety of Web-based applications, mobile apps, and other over the top data services with affordable 3G/4G enabled smart devices are major factors for enormous increase in heterogeneous data traffic at enterprise and mobile networks. This creates challenges regarding traffic management and requires traffic-aware intelligent network management to deliver sustained quality of experience for subscribers. Deep packet inspection and analysis (DPIA) provides base platform for development of traffic-aware intelligent network management and security systems. However, computationally complex DPIA-related packet processing for high speed data traffic makes these systems expensive. Furthermore, conventionally these traffic-aware network management and security systems are deployed in enterprise networks with independent and dedicated DPIA-related processing resources and require multiple copies of passively provisioned high speed data from network, while performing similar DPIA operations over the same data again and again. This duplicate deployment of expensive software and hardware resources for DPIA processing eventually results in higher capital expenditures as well as operational expenditures for network operators. We have proposed a novel service-oriented framework for heterogeneous deep packet inspection and analysis (SoDPI) that simultaneously provides diversified DPIA services to multiple client applications for network management and security operations in high-speed networks. Proposed framework provides flexible and comprehensive API-based service interface for client applications to register required DPIA services. SoDPI framework implementation is based on commodity hardware and deploys shared set of DPIA-related packet processing components, requiring only single copy of passive data provisioned from network. Experimental evaluations show that novel SoDPI framework requires considerably reduced amount of software and hardware resources to fulfill heterogeneous DPIA packet processing requirements for multiple client applications in comparison with conventional network management and security applications with dedicated DPIA components. This results in lower cost impacts for network operators with more network manageability. |
| first_indexed | 2024-12-13T13:19:53Z |
| format | Article |
| id | doaj.art-df7874a4eac74999a1cba9ac0a709ceb |
| institution | Directory Open Access Journal |
| issn | 2169-3536 |
| language | English |
| last_indexed | 2024-12-13T13:19:53Z |
| publishDate | 2016-01-01 |
| publisher | IEEE |
| record_format | Article |
| series | IEEE Access |
| spelling | doaj.art-df7874a4eac74999a1cba9ac0a709ceb2022-12-21T23:44:25ZengIEEEIEEE Access2169-35362016-01-0145918593610.1109/ACCESS.2016.26093987567523A Heterogeneous Service-Oriented Deep Packet Inspection and Analysis Framework for Traffic-Aware Network Management and Security SystemsMuhammad Asrar Ashraf0https://orcid.org/0000-0001-6751-6245Habibullah Jamal1Shoab Ahmed Khan2Zaheer Ahmed3Muhammad Iram Baig4Department of Computer Engineering, University of Engineering and Technology, Taxila, PakistanGhulam Ishaq Khan Institute of Engineering Sciences and Technology, Topi, PakistanCollege of Electrical and Mechanical Engineering, Rawalpindi, PakistanCenter for Advanced Studies in Engineering, Islamabad, PakistanDepartment of Computer Engineering, University of Engineering and Technology, Taxila, PakistanA variety of Web-based applications, mobile apps, and other over the top data services with affordable 3G/4G enabled smart devices are major factors for enormous increase in heterogeneous data traffic at enterprise and mobile networks. This creates challenges regarding traffic management and requires traffic-aware intelligent network management to deliver sustained quality of experience for subscribers. Deep packet inspection and analysis (DPIA) provides base platform for development of traffic-aware intelligent network management and security systems. However, computationally complex DPIA-related packet processing for high speed data traffic makes these systems expensive. Furthermore, conventionally these traffic-aware network management and security systems are deployed in enterprise networks with independent and dedicated DPIA-related processing resources and require multiple copies of passively provisioned high speed data from network, while performing similar DPIA operations over the same data again and again. This duplicate deployment of expensive software and hardware resources for DPIA processing eventually results in higher capital expenditures as well as operational expenditures for network operators. We have proposed a novel service-oriented framework for heterogeneous deep packet inspection and analysis (SoDPI) that simultaneously provides diversified DPIA services to multiple client applications for network management and security operations in high-speed networks. Proposed framework provides flexible and comprehensive API-based service interface for client applications to register required DPIA services. SoDPI framework implementation is based on commodity hardware and deploys shared set of DPIA-related packet processing components, requiring only single copy of passive data provisioned from network. Experimental evaluations show that novel SoDPI framework requires considerably reduced amount of software and hardware resources to fulfill heterogeneous DPIA packet processing requirements for multiple client applications in comparison with conventional network management and security applications with dedicated DPIA components. This results in lower cost impacts for network operators with more network manageability.https://ieeexplore.ieee.org/document/7567523/Deep packet inspectionnetwork monitoringservice orientedtraffic-aware network managementcost effective |
| spellingShingle | Muhammad Asrar Ashraf Habibullah Jamal Shoab Ahmed Khan Zaheer Ahmed Muhammad Iram Baig A Heterogeneous Service-Oriented Deep Packet Inspection and Analysis Framework for Traffic-Aware Network Management and Security Systems IEEE Access Deep packet inspection network monitoring service oriented traffic-aware network management cost effective |
| title | A Heterogeneous Service-Oriented Deep Packet Inspection and Analysis Framework for Traffic-Aware Network Management and Security Systems |
| title_full | A Heterogeneous Service-Oriented Deep Packet Inspection and Analysis Framework for Traffic-Aware Network Management and Security Systems |
| title_fullStr | A Heterogeneous Service-Oriented Deep Packet Inspection and Analysis Framework for Traffic-Aware Network Management and Security Systems |
| title_full_unstemmed | A Heterogeneous Service-Oriented Deep Packet Inspection and Analysis Framework for Traffic-Aware Network Management and Security Systems |
| title_short | A Heterogeneous Service-Oriented Deep Packet Inspection and Analysis Framework for Traffic-Aware Network Management and Security Systems |
| title_sort | heterogeneous service oriented deep packet inspection and analysis framework for traffic aware network management and security systems |
| topic | Deep packet inspection network monitoring service oriented traffic-aware network management cost effective |
| url | https://ieeexplore.ieee.org/document/7567523/ |
| work_keys_str_mv | AT muhammadasrarashraf aheterogeneousserviceorienteddeeppacketinspectionandanalysisframeworkfortrafficawarenetworkmanagementandsecuritysystems AT habibullahjamal aheterogeneousserviceorienteddeeppacketinspectionandanalysisframeworkfortrafficawarenetworkmanagementandsecuritysystems AT shoabahmedkhan aheterogeneousserviceorienteddeeppacketinspectionandanalysisframeworkfortrafficawarenetworkmanagementandsecuritysystems AT zaheerahmed aheterogeneousserviceorienteddeeppacketinspectionandanalysisframeworkfortrafficawarenetworkmanagementandsecuritysystems AT muhammadirambaig aheterogeneousserviceorienteddeeppacketinspectionandanalysisframeworkfortrafficawarenetworkmanagementandsecuritysystems AT muhammadasrarashraf heterogeneousserviceorienteddeeppacketinspectionandanalysisframeworkfortrafficawarenetworkmanagementandsecuritysystems AT habibullahjamal heterogeneousserviceorienteddeeppacketinspectionandanalysisframeworkfortrafficawarenetworkmanagementandsecuritysystems AT shoabahmedkhan heterogeneousserviceorienteddeeppacketinspectionandanalysisframeworkfortrafficawarenetworkmanagementandsecuritysystems AT zaheerahmed heterogeneousserviceorienteddeeppacketinspectionandanalysisframeworkfortrafficawarenetworkmanagementandsecuritysystems AT muhammadirambaig heterogeneousserviceorienteddeeppacketinspectionandanalysisframeworkfortrafficawarenetworkmanagementandsecuritysystems |