TY - GEN
T1 - Range Encoding-Based Network Verification in SDN
AU - Tseng, Yen Lun
AU - Chang, Guey Yun
AU - Shih, Chun Chung
AU - Liu, Yue Xin
AU - Wu, Tien Hsiang
N1 - Publisher Copyright:
© 2016 IEEE.
PY - 2016/10/11
Y1 - 2016/10/11
N2 - In modern networks, faults in the network state, e.g., loops, black holes and access control violations that make services unavailable, arise commonly. To ensure networks' correctness, existing approaches verify network-wide invariants. However, these approaches cannot detect or prevent faults immediately as they arise, so that network performance is not affected. In this paper, we present a data plane verification algorithm with low latency. To provide live protection, our algorithm detects faulty rules issued by SDN applications, and prevent them from reaching the data plane of network. According to experiments which use real world network rule sets, our algorithm efficiently processes rule update and verification.
AB - In modern networks, faults in the network state, e.g., loops, black holes and access control violations that make services unavailable, arise commonly. To ensure networks' correctness, existing approaches verify network-wide invariants. However, these approaches cannot detect or prevent faults immediately as they arise, so that network performance is not affected. In this paper, we present a data plane verification algorithm with low latency. To provide live protection, our algorithm detects faulty rules issued by SDN applications, and prevent them from reaching the data plane of network. According to experiments which use real world network rule sets, our algorithm efficiently processes rule update and verification.
KW - Network Verification
KW - Range Encoding
KW - Software-defined Networks
KW - Ternary Content Addressable Memory
UR - http://www.scopus.com/inward/record.url?scp=84995487804&partnerID=8YFLogxK
U2 - 10.1109/DASC-PICom-DataCom-CyberSciTec.2016.82
DO - 10.1109/DASC-PICom-DataCom-CyberSciTec.2016.82
M3 - 會議論文篇章
AN - SCOPUS:84995487804
T3 - Proceedings - 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 2016 IEEE 14th International Conference on Pervasive Intelligence and Computing, PICom 2016, 2016 IEEE 2nd International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016
SP - 400
EP - 405
BT - Proceedings - 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 2016 IEEE 14th International Conference on Pervasive Intelligence and Computing, PICom 2016, 2016 IEEE 2nd International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016
A2 - Wang, Kevin I-Kai
A2 - Jin, Qun
A2 - Bhuiyan, Md Zakirul Alam
A2 - Zhang, Qingchen
A2 - Hsu, Ching-Hsien
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 14th IEEE International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 14th IEEE International Conference on Pervasive Intelligence and Computing, PICom 2016, 2nd IEEE International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016
Y2 - 8 August 2016 through 10 August 2016
ER -