Range Encoding-Based Network Verification in SDN

Yen Lun Tseng; Guey Yun Chang; Chun Chung Shih; Yue Xin Liu; Tien Hsiang Wu

doi:10.1109/DASC-PICom-DataCom-CyberSciTec.2016.82

Range Encoding-Based Network Verification in SDN

Yen Lun Tseng, Guey Yun Chang, Chun Chung Shih, Yue Xin Liu, Tien Hsiang Wu

Department of Computer Science and Information Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

1 Scopus citations

Abstract

In modern networks, faults in the network state, e.g., loops, black holes and access control violations that make services unavailable, arise commonly. To ensure networks' correctness, existing approaches verify network-wide invariants. However, these approaches cannot detect or prevent faults immediately as they arise, so that network performance is not affected. In this paper, we present a data plane verification algorithm with low latency. To provide live protection, our algorithm detects faulty rules issued by SDN applications, and prevent them from reaching the data plane of network. According to experiments which use real world network rule sets, our algorithm efficiently processes rule update and verification.

Original language	English
Title of host publication	Proceedings - 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 2016 IEEE 14th International Conference on Pervasive Intelligence and Computing, PICom 2016, 2016 IEEE 2nd International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016
Editors	Kevin I-Kai Wang, Qun Jin, Md Zakirul Alam Bhuiyan, Qingchen Zhang, Ching-Hsien Hsu
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	400-405
Number of pages	6
ISBN (Electronic)	9781509040650
DOIs	https://doi.org/10.1109/DASC-PICom-DataCom-CyberSciTec.2016.82
State	Published - 11 Oct 2016
Event	14th IEEE International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 14th IEEE International Conference on Pervasive Intelligence and Computing, PICom 2016, 2nd IEEE International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016 - Auckland, New Zealand Duration: 8 Aug 2016 → 10 Aug 2016

Publication series

Name

Proceedings - 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 2016 IEEE 14th International Conference on Pervasive Intelligence and Computing, PICom 2016, 2016 IEEE 2nd International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016

Conference

Conference	14th IEEE International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 14th IEEE International Conference on Pervasive Intelligence and Computing, PICom 2016, 2nd IEEE International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016
Country/Territory	New Zealand
City	Auckland
Period	8/08/16 → 10/08/16

Keywords

Network Verification
Range Encoding
Software-defined Networks
Ternary Content Addressable Memory

Access to Document

10.1109/DASC-PICom-DataCom-CyberSciTec.2016.82

Cite this

Tseng, Y. L., Chang, G. Y., Shih, C. C., Liu, Y. X., & Wu, T. H. (2016). Range Encoding-Based Network Verification in SDN. In K. I-K. Wang, Q. Jin, M. Z. A. Bhuiyan, Q. Zhang, & C-H. Hsu (Eds.), Proceedings - 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 2016 IEEE 14th International Conference on Pervasive Intelligence and Computing, PICom 2016, 2016 IEEE 2nd International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016 (pp. 400-405). [7588876] (Proceedings - 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 2016 IEEE 14th International Conference on Pervasive Intelligence and Computing, PICom 2016, 2016 IEEE 2nd International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/DASC-PICom-DataCom-CyberSciTec.2016.82

Tseng, Yen Lun ; Chang, Guey Yun ; Shih, Chun Chung et al. / Range Encoding-Based Network Verification in SDN. Proceedings - 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 2016 IEEE 14th International Conference on Pervasive Intelligence and Computing, PICom 2016, 2016 IEEE 2nd International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016. editor / Kevin I-Kai Wang ; Qun Jin ; Md Zakirul Alam Bhuiyan ; Qingchen Zhang ; Ching-Hsien Hsu. Institute of Electrical and Electronics Engineers Inc., 2016. pp. 400-405 (Proceedings - 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 2016 IEEE 14th International Conference on Pervasive Intelligence and Computing, PICom 2016, 2016 IEEE 2nd International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016).

@inproceedings{80f01310525b47a09685082a7475d137,

title = "Range Encoding-Based Network Verification in SDN",

abstract = "In modern networks, faults in the network state, e.g., loops, black holes and access control violations that make services unavailable, arise commonly. To ensure networks' correctness, existing approaches verify network-wide invariants. However, these approaches cannot detect or prevent faults immediately as they arise, so that network performance is not affected. In this paper, we present a data plane verification algorithm with low latency. To provide live protection, our algorithm detects faulty rules issued by SDN applications, and prevent them from reaching the data plane of network. According to experiments which use real world network rule sets, our algorithm efficiently processes rule update and verification.",

keywords = "Network Verification, Range Encoding, Software-defined Networks, Ternary Content Addressable Memory",

author = "Tseng, {Yen Lun} and Chang, {Guey Yun} and Shih, {Chun Chung} and Liu, {Yue Xin} and Wu, {Tien Hsiang}",

note = "Publisher Copyright: {\textcopyright} 2016 IEEE.; null ; Conference date: 08-08-2016 Through 10-08-2016",

year = "2016",

month = oct,

day = "11",

doi = "10.1109/DASC-PICom-DataCom-CyberSciTec.2016.82",

language = "???core.languages.en_GB???",

series = "Proceedings - 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 2016 IEEE 14th International Conference on Pervasive Intelligence and Computing, PICom 2016, 2016 IEEE 2nd International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "400--405",

editor = "Wang, {Kevin I-Kai} and Qun Jin and Bhuiyan, {Md Zakirul Alam} and Qingchen Zhang and Ching-Hsien Hsu",

booktitle = "Proceedings - 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 2016 IEEE 14th International Conference on Pervasive Intelligence and Computing, PICom 2016, 2016 IEEE 2nd International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016",

}

Tseng, YL, Chang, GY, Shih, CC, Liu, YX & Wu, TH 2016, Range Encoding-Based Network Verification in SDN. in KI-K Wang, Q Jin, MZA Bhuiyan, Q Zhang & C-H Hsu (eds), Proceedings - 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 2016 IEEE 14th International Conference on Pervasive Intelligence and Computing, PICom 2016, 2016 IEEE 2nd International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016., 7588876, Proceedings - 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 2016 IEEE 14th International Conference on Pervasive Intelligence and Computing, PICom 2016, 2016 IEEE 2nd International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016, Institute of Electrical and Electronics Engineers Inc., pp. 400-405, 14th IEEE International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 14th IEEE International Conference on Pervasive Intelligence and Computing, PICom 2016, 2nd IEEE International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016, Auckland, New Zealand, 8/08/16. https://doi.org/10.1109/DASC-PICom-DataCom-CyberSciTec.2016.82

Range Encoding-Based Network Verification in SDN. / Tseng, Yen Lun; Chang, Guey Yun; Shih, Chun Chung et al.

Proceedings - 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 2016 IEEE 14th International Conference on Pervasive Intelligence and Computing, PICom 2016, 2016 IEEE 2nd International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016. ed. / Kevin I-Kai Wang; Qun Jin; Md Zakirul Alam Bhuiyan; Qingchen Zhang; Ching-Hsien Hsu. Institute of Electrical and Electronics Engineers Inc., 2016. p. 400-405 7588876 (Proceedings - 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 2016 IEEE 14th International Conference on Pervasive Intelligence and Computing, PICom 2016, 2016 IEEE 2nd International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Range Encoding-Based Network Verification in SDN

AU - Tseng, Yen Lun

AU - Chang, Guey Yun

AU - Shih, Chun Chung

AU - Liu, Yue Xin

AU - Wu, Tien Hsiang

PY - 2016/10/11

Y1 - 2016/10/11

N2 - In modern networks, faults in the network state, e.g., loops, black holes and access control violations that make services unavailable, arise commonly. To ensure networks' correctness, existing approaches verify network-wide invariants. However, these approaches cannot detect or prevent faults immediately as they arise, so that network performance is not affected. In this paper, we present a data plane verification algorithm with low latency. To provide live protection, our algorithm detects faulty rules issued by SDN applications, and prevent them from reaching the data plane of network. According to experiments which use real world network rule sets, our algorithm efficiently processes rule update and verification.

AB - In modern networks, faults in the network state, e.g., loops, black holes and access control violations that make services unavailable, arise commonly. To ensure networks' correctness, existing approaches verify network-wide invariants. However, these approaches cannot detect or prevent faults immediately as they arise, so that network performance is not affected. In this paper, we present a data plane verification algorithm with low latency. To provide live protection, our algorithm detects faulty rules issued by SDN applications, and prevent them from reaching the data plane of network. According to experiments which use real world network rule sets, our algorithm efficiently processes rule update and verification.

KW - Network Verification

KW - Range Encoding

KW - Software-defined Networks

KW - Ternary Content Addressable Memory

UR - http://www.scopus.com/inward/record.url?scp=84995487804&partnerID=8YFLogxK

U2 - 10.1109/DASC-PICom-DataCom-CyberSciTec.2016.82

DO - 10.1109/DASC-PICom-DataCom-CyberSciTec.2016.82

M3 - 會議論文篇章

AN - SCOPUS:84995487804

T3 - Proceedings - 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 2016 IEEE 14th International Conference on Pervasive Intelligence and Computing, PICom 2016, 2016 IEEE 2nd International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016

SP - 400

EP - 405

BT - Proceedings - 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 2016 IEEE 14th International Conference on Pervasive Intelligence and Computing, PICom 2016, 2016 IEEE 2nd International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016

A2 - Wang, Kevin I-Kai

A2 - Jin, Qun

A2 - Bhuiyan, Md Zakirul Alam

A2 - Zhang, Qingchen

A2 - Hsu, Ching-Hsien

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 8 August 2016 through 10 August 2016

ER -

Tseng YL, Chang GY, Shih CC, Liu YX, Wu TH. Range Encoding-Based Network Verification in SDN. In Wang KI-K, Jin Q, Bhuiyan MZA, Zhang Q, Hsu C-H, editors, Proceedings - 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 2016 IEEE 14th International Conference on Pervasive Intelligence and Computing, PICom 2016, 2016 IEEE 2nd International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016. Institute of Electrical and Electronics Engineers Inc. 2016. p. 400-405. 7588876. (Proceedings - 2016 IEEE 14th International Conference on Dependable, Autonomic and Secure Computing, DASC 2016, 2016 IEEE 14th International Conference on Pervasive Intelligence and Computing, PICom 2016, 2016 IEEE 2nd International Conference on Big Data Intelligence and Computing, DataCom 2016 and 2016 IEEE Cyber Science and Technology Congress, CyberSciTech 2016, DASC-PICom-DataCom-CyberSciTech 2016). doi: 10.1109/DASC-PICom-DataCom-CyberSciTec.2016.82

Range Encoding-Based Network Verification in SDN

Abstract

Publication series

Conference

Keywords

Access to Document

Fingerprint

Cite this