Advanced search
2 files | 1.88 MB Add to list

Scalability evaluation of VPN technologies for secure container networking

Tom Goethals (UGent) , Dwight Kerkhove (UGent) , Bruno Volckaert (UGent) and Filip De Turck (UGent)
Author
Organization
Abstract
For years, containers have been a popular choice for lightweight virtualization in the cloud. With the rise of more powerful and flexible edge devices, container deployment strategies have arisen that leverage the computational power of edge devices for optimal workload distribution. This move from a secure data center network to heterogenous public and private networks presents some issues in terms of security and network topology that can be partially solved by using a Virtual Private Network (VPN) to connect edge nodes to the cloud. In this paper, the scalability of VPN software is evaluated to determine if and how it can be used in large-scale clusters containing edge nodes. Benchmarks are performed to determine the maximum number of VPN-connected nodes and the influence of network degradation on VPN performance, primarily using traffic typical for edge devices generating IoT data. Some high level conclusions are drawn from the results, indicating that WireGuard is an excellent choice of VPN software to connect edge nodes in a cluster. Analysis of the results also shows the strengths and weaknesses of other VPN software.

Downloads

  • Goethals T et al accepted version.pdf
    • full text (Accepted manuscript)
    • |
    • open access
    • |
    • PDF
    • |
    • 228.43 KB
  • (...).pdf
    • full text (Published version)
    • |
    • UGent only
    • |
    • PDF
    • |
    • 1.65 MB

Citation

Please use this url to cite or link to this publication:

MLA
Goethals, Tom, et al. “Scalability Evaluation of VPN Technologies for Secure Container Networking.” 2019 15th International Conference on Network and Service Management (CNSM), edited by Hanan Lutfiyya et al., IEEE, 2019.
APA
Goethals, T., Kerkhove, D., Volckaert, B., & De Turck, F. (2019). Scalability evaluation of VPN technologies for secure container networking. In H. Lutfiyya, Y. Diao, N. Zincir-Heywood, R. Badonnel, & E. Madeira (Eds.), 2019 15th International Conference on Network and Service Management (CNSM). Halifax, Canada: IEEE.
Chicago author-date
Goethals, Tom, Dwight Kerkhove, Bruno Volckaert, and Filip De Turck. 2019. “Scalability Evaluation of VPN Technologies for Secure Container Networking.” In 2019 15th International Conference on Network and Service Management (CNSM), edited by Hanan Lutfiyya, Yixin Diao, Nur Zincir-Heywood, Remi Badonnel, and Edmundo Madeira. IEEE.
Chicago author-date (all authors)
Goethals, Tom, Dwight Kerkhove, Bruno Volckaert, and Filip De Turck. 2019. “Scalability Evaluation of VPN Technologies for Secure Container Networking.” In 2019 15th International Conference on Network and Service Management (CNSM), ed by. Hanan Lutfiyya, Yixin Diao, Nur Zincir-Heywood, Remi Badonnel, and Edmundo Madeira. IEEE.
Vancouver
1.
Goethals T, Kerkhove D, Volckaert B, De Turck F. Scalability evaluation of VPN technologies for secure container networking. In: Lutfiyya H, Diao Y, Zincir-Heywood, N, Badonnel R, Madeira E, editors. 2019 15th International Conference on Network and Service Management (CNSM). IEEE; 2019.
IEEE
[1]
T. Goethals, D. Kerkhove, B. Volckaert, and F. De Turck, “Scalability evaluation of VPN technologies for secure container networking,” in 2019 15th International Conference on Network and Service Management (CNSM), Halifax, Canada, 2019.
@inproceedings{8634434,
  abstract     = {For years, containers have been a popular choice for lightweight virtualization in the cloud. With the rise of more powerful and flexible edge devices, container deployment strategies have arisen that leverage the computational power of edge devices for optimal workload distribution. This move from a secure data center network to heterogenous public and private networks presents some issues in terms of security and network topology that can be partially solved by using a Virtual Private Network (VPN) to connect edge nodes to the cloud. In this paper, the scalability of VPN software is evaluated to determine if and how it can be used in large-scale clusters containing edge nodes. Benchmarks are performed to determine the maximum number of VPN-connected nodes and the influence of network degradation on VPN performance, primarily using traffic typical for edge devices generating IoT data. Some high level conclusions are drawn from the results, indicating that WireGuard is an excellent choice of VPN software to connect edge nodes in a cluster. Analysis of the results also shows the strengths and weaknesses of other VPN software.},
  author       = {Goethals, Tom and Kerkhove, Dwight and Volckaert, Bruno and De Turck, Filip},
  booktitle    = {2019 15th International Conference on Network and Service Management (CNSM)},
  editor       = {Lutfiyya, Hanan and Diao, Yixin and Zincir-Heywood,, Nur and Badonnel, Remi and Madeira, Edmundo},
  isbn         = {9783903176249},
  issn         = {2165-963X},
  language     = {eng},
  location     = {Halifax, Canada},
  pages        = {7},
  publisher    = {IEEE},
  title        = {Scalability evaluation of VPN technologies for secure container networking},
  url          = {http://dx.doi.org/10.23919/CNSM46954.2019.9012673},
  year         = {2019},
}

Altmetric
View in Altmetric