Performance Evaluation of Data Center Network with Network Micro-segmentation

Muhammad Mujib, Riri Fitri Sari

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

Research on the design of data center infrastructure is increasing, both from academia and industry, due to the rapid development of cloud-based applications such as search engines, social networks, and large-scale computing. On a large scale, data centers can consist of hundreds to thousands of servers that require systems with high-performance requirements and low downtime. To meet the network's needs in a dynamic data center, infrastructure of applications and services are growing. It takes a process of designing a network topology so that it can guarantee availability and security. One way to surmount this is by implementing the zero trust security model based on micro-segmentation. Zero trust is a security idea based on the principle of "never trust, always verify"in which no concepts of trust and untrust in network traffic. The zero trust security model implemented network traffic in the form of untrust. Micro-segmentation is a way to achieve zero trust by dividing a network into smaller logical segments to restrict the traffic. In this research, data center network performance based on software-defined networking with zero trust security model using micro-segmentation has been evaluated using a testbed simulation of Cisco Application Centric Infrastructure by measuring the round trip time, jitter, and packet loss during experiments. Performance evaluation results show that micro-segmentation adds an average round trip time of 4 µs and jitter of 11 µs without packet loss so that the security can be improved without significantly affecting network performance on the data center.

Original languageEnglish
Title of host publicationICITEE 2020 - Proceedings of the 12th International Conference on Information Technology and Electrical Engineering
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages27-32
Number of pages6
ISBN (Electronic)9781728110974
DOIs
Publication statusPublished - 6 Oct 2020
Event12th International Conference on Information Technology and Electrical Engineering, ICITEE 2020 - Virtual, Yogyakarta, Indonesia
Duration: 6 Oct 20208 Oct 2020

Publication series

NameICITEE 2020 - Proceedings of the 12th International Conference on Information Technology and Electrical Engineering

Conference

Conference12th International Conference on Information Technology and Electrical Engineering, ICITEE 2020
Country/TerritoryIndonesia
CityVirtual, Yogyakarta
Period6/10/208/10/20

Keywords

  • data center network
  • micro-segmentation
  • software defined networking
  • zero trust security

Fingerprint

Dive into the research topics of 'Performance Evaluation of Data Center Network with Network Micro-segmentation'. Together they form a unique fingerprint.

Cite this