通讯作者：Guo, L (reprint author), Northeastern Univ, Minist Educ, Key Lab Med Image Comp, Shenyang 110819, Liaoning, Peoples R China.; Ning, ZL (reprint author), Dalian Univ Technol, Sch Software, Dalian 116024, Peoples R China.
合写作者：Ning, Zhaolong,Guo, Lei,Chen, Zhikui,Obaidat, Mohammad S.
发表刊物：IEEE SYSTEMS JOURNAL
关键字：Optical data center network (ODCN); risk detection and isolation; virtual network embedding
摘要：The traffic between geographically distributed data centers (DCs) becomes bandwidth hungry. Since the optical interconnection has a high capacity, the optical data center network (ODCN)-where DCs are located at the edge of the optical backbone-emerges. By virtualization, the virtual networks- representing service requirements-are embedded onto the same part of the substrate ODCN. Each virtual network has virtual machine (VM) nodes interconnected by virtual links (VLs). Therefore, a virtual network embedding (VNE) operation includes two components: 1) the VM mapping for putting a VM into the server of an appropriate DC and 2) the VL mapping for establishing one substrate path to support inter-VM communications. In this paper, we focus on a risk-aware VNE framework because a blind VNE operation would result in severe information leakage among coresident VMs in the server. By evaluating VM threat and vulnerability, risky VMs are identified according to experimental results. To perform physical isolation between risky and security VMs, a risk-aware VNE heuristic algorithm is proposed. The simulation results show that our heuristic algorithm performs better than the benchmark in terms of maintaining ODCN security and earning rental revenue. There is also a good match between our algorithm solution and the problem bound.