The fifth-generation (5G) mobile networks aim to host different types of services on the same physical infrastructure. Network slicing is considered as the key enabler for achieving this goal. Although there is some progress in applying and implementing network slicing in the context of 5G, the security and performance of network slicing still have many open research questions. In this paper, we propose the first OSM-WireGuard framework and its lifecycle. We implement the WireGuard secure network tunneling protocol in a 5G network to provide a VPN-as-a-Service (VPNaaS) functionality for virtualized network functions. We demonstrate that OSM instantiates WireGuard-enabled services up and running in 4 min 26 sec, with potential the initialization time to go down to 2 min 44 sec if the operator prepares images with a pre-installed and up-to-date version of WireGuard before the on-boarding process. We also show that the OSM-WireGuard framework provides considerable enhancement of up to 5.3 times higher network throughput and up to 41% lower latency compared to OpenVPN. The reported results show that the proposed framework is a promising solution for providing traffic isolation with strict latency and throughput requirements.
翻译:第五代(5G)移动网络旨在在同一有形基础设施上提供不同类型的服务。网络切片被认为是实现这一目标的关键促进因素。虽然在5G背景下应用和实施网络切片方面取得了一些进展,但网络切片的安全和性能仍然有许多开放的研究问题。在本文件中,我们提议第一个OSM-WireGuard框架及其生命周期。我们在一个5G网络中实施WireGuard安全网络隧道操作协议,为虚拟化网络功能提供VPN-as-a-Service(VPNAAS)功能。我们证明,OSM即时传输和运行WireGuard启动的服务在4分26秒内运行,如果操作者在登机前用预先安装和最新版本的WireGuard图像制作图像,初始化时间可能降至2分44秒。我们还表明,OSM-WireGuard框架大大改进了5.3倍的网络配置,而低纬度为41%,与OpenVPN相比,提供有希望的通信解决方案。我们报告的结果显示,与OpenVPN相比,提供有希望的透明度。