Archivio Istituzionale della RicercaIn stateful Software Defined Network (SDN) data planes, network switches hold some local flow-related states thanks to which they are able to perform decisions by locally executing simple algorithms. While stateful data planes provide better reactiveness in respect to vanilla SDN, states are still bounded to single switches which represents a significant restraint for network-wide applications. To deal with the current limitations of stateful data planes we introduce and provide design guidelines for LODGE, a model according to which distributed network applications are able to make local decisions at each switche based on some global variables shared across other switches. We describe the implementation of LODGE with a basic application providing support for the detection of Distributed Denial of Service (DDoS) attack in a scenario of stateful data planes involving P4 and Open Packet Processor (OPP) enabled switches. We validate the two implementations in a small emulated testbed and we show the beneficial effects on the reduction of the total network traffic.
LODGE: LOcal Decisions on Global statEs in programmable data planes / Sviridov, German; Bonola, Marco; Tulumello, Angelo; Giaccone, Paolo; Bianco, Andrea; Bianchi, Giuseppe. - ELETTRONICO. - (2018), pp. 28-36. (Intervento presentato al convegno IEEE Conference on Network Softwarization and Workshops (NetSoft) tenutosi a Montreal, Canada nel 2018) [10.1109/NETSOFT.2018.8460115].
LODGE: LOcal Decisions on Global statEs in programmable data planes
Sviridov, German;Giaccone, Paolo;Bianco, Andrea;
2018
Abstract
In stateful Software Defined Network (SDN) data planes, network switches hold some local flow-related states thanks to which they are able to perform decisions by locally executing simple algorithms. While stateful data planes provide better reactiveness in respect to vanilla SDN, states are still bounded to single switches which represents a significant restraint for network-wide applications. To deal with the current limitations of stateful data planes we introduce and provide design guidelines for LODGE, a model according to which distributed network applications are able to make local decisions at each switche based on some global variables shared across other switches. We describe the implementation of LODGE with a basic application providing support for the detection of Distributed Denial of Service (DDoS) attack in a scenario of stateful data planes involving P4 and Open Packet Processor (OPP) enabled switches. We validate the two implementations in a small emulated testbed and we show the beneficial effects on the reduction of the total network traffic.
| File | Dimensione | Formato | |
|---|---|---|---|
|
cameraready.pdf
accesso aperto
Descrizione: Camera ready
Tipologia:
2. Post-print / Author's Accepted Manuscript
Licenza:
PUBBLICO - Tutti i diritti riservati
Dimensione
221.65 kB
Formato
Adobe PDF
|
221.65 kB | Adobe PDF | Visualizza/Apri |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
https://hdl.handle.net/11583/2721448
Attenzione
Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo