Hidayat, Rifki Pinto (2017) Analisis Performa Centralized Firewall Pada Multi Domain Controller di Arsitektur Software-Defined Networking (SDN). Sarjana thesis, Universitas Brawijaya.
Abstract
Software Defined Network merupakan terobosan terbaru dalam pemodelan jaringan modern dimana control plane dan data plane telah dipisahkan satu sama lain. Dimana pada SDN control plane diletakkan pada controller yang bertugas untuk mengatur dan menyediakan segala keperluan yang ada di jaringan. Controller akan melakukan monitoring keadaan jaringan setiap saat dan jugs melakukan proses perbaikan apabila terjadi kerusakan di jaringan, yang salah satunya bisa disebabkan oleh adanya serangan Denial of Services (DoS) dan Distributed — Denial of Services (DDoS) Attacks. Dimana controller memerlukan suatu sistem pertahanan yang dapat melindunggi dirinya sendiri dan device yang ada di jaringan, sistem pertahanan tersebut salah satunya adalah firewall. Dengan menerapkan firewall secara terpusat pada controller, controller dapat dengan cepat mendeteksi ketika terjadi serangan di jaringan baik serangan yang dilakukan oleh host di domainnya maupun oleh host di domain jaringan lain, sehingga proses penangganan serangan sendiri menjadi lebih cepat dan efektif. Hal tersebut dibuktikan berdasarkan pada rata — rata waktu penangganan serangan yang dibutuhkan adalah sekitar 6.042 seconds dengan rata —rata penggunaan resource cpu adalah 18.4% dan bitrate yang diterima oleh host victim sebesar 13.582 Kbps setelah serangan tertanggani oleh controller, menandakan bahwa penerapan centralized firewall di controller dapat dengan cepat mendeteksi dan melakukan penangganan serangan yang terjadi, dengan menggunakan resource cpu yang tidak terlalu besar dan menekan jumlah packet data yang dikirim sehingga dapat menghemat penggunaan bandwith di jaringan.
English Abstract
Software Defined Network is the latest breakthrough in modern network modeling where control plane and data plane have been separated from each other. Where on the SDN control plane is placed on the controller in charge of organizing and providing all the needs that exist in the network. The controller will monitor the state of the network at all times and also perform the repair process in case of damage to the network, one of which can be caused by Denial of Service (DoS) and Distributed - Denial of Service (DDoS) Attacks attacks. Where the controller requires a defense system that can protect themselves and devices that exist in the network, the defense system is one of them is a firewall. Implementing a centralized firewall on the controller, the controller can quickly detect when a network attacks occurs either by hosts hosted on their domains or by hosts in other network domains, so the process of own attack subscribing becomes faster and more effective. That things proved based on the average attack time the required subscription is about 6.042 seconds with average use of cpu resource is 18.4% and bitrate received by host victim 13.582 Kbps after attacking by the controller, indicating that the implementation of centralized firewall in the controller can quickly detect and subscribe to attack that occur, using a resource cpu that is not too large and pressing the number of packets of data sent so as to save on bandwidth usage in the network.
| Item Type: | Thesis (Sarjana) |
|---|---|
| Identification Number: | SKR/FTIK/2017/575/051708087 |
| Uncontrolled Keywords: | Software Defined Network, controller, firewall, DoS, DDoS, Resource CPU, Bitrate |
| Subjects: | 000 Computer science, information and general works > 004 Computer science > 004.2 System analysis and design, computer architecture, performance evaluation |
| Divisions: | Fakultas Ilmu Komputer > Teknik Informatika |
| Depositing User: | Yusuf Dwi N. |
| Date Deposited: | 04 Oct 2017 02:18 |
| Last Modified: | 13 Nov 2020 13:26 |
| URI: | http://repository.ub.ac.id/id/eprint/3215 |
![[thumbnail of Bagian Depan.pdf]](http://repository.ub.ac.id/style/images/fileicons/text.png) |
Text
Bagian Depan.pdf Download (6MB) |
Preview |
Text
BAB I.pdf Download (2MB) | Preview |
|
Text
BAB II.pdf Download (13MB) |
|
Text
BAB III.pdf Download (3MB) |
|
Text
BAB IV.pdf Download (14MB) |
|
Text
BAB V.pdf Download (32MB) |
Actions (login required)
 |
View Item |