NDLI: Good Network Updates for Bad Packets: Waypoint Enforcement Beyond DestinationBased Routing Policies,” in HotNets (2014)

Please wait, while we are loading the content...

Good Network Updates for Bad Packets: Waypoint Enforcement Beyond DestinationBased Routing Policies,” in HotNets (2014)

Content Provider	CiteSeerX
Author	Ludwig, Arne Rost, Matthias Foucard, Damien Schmid, Stefan
Abstract	Networks are critical for the security of many computer sys-tems. However, their complex and asynchronous nature of-ten renders it difficult to formally reason about network be-havior. Accordingly, it is challenging to provide correctness guarantees, especially during network updates. This paper studies how to update networks while main-taining a most basic safety property, Waypoint Enforce-ment (WPE): each packet is required to traverse a certain checkpoint (for instance, a firewall). Waypoint enforcement is particularly relevant in today’s increasingly virtualized and software-defined networks, where new in-network func-tionality is introduced flexibly. We show that WPE can easily be violated during network updates, even though both the old and the new policy ensure WPE. We then present an algorithm WayUp that guaran-tees WPE at any time, while completing updates quickly. We also find that in contrast to other transient consistency properties, WPE cannot always be implemented in a wait-free manner, and that WPE may even conflict with Loop-Freedom (LF). Finally, we present an optimal policy update algorithm OptRounds, which requires a minimum num-ber of communication rounds while ensuring both WPE and LF, whenever this is possible.
File Format	PDF
Publisher Date	2014-01-01
Access Restriction	Open
Subject Keyword	Waypoint Enforcement Beyond Bad Packet Good Network Update Routing Policy Network Update New In-network Func-tionality Waypoint Enforcement Certain Checkpoint Minimum Num-ber Many Computer Sys-tems Paper Study Waypoint Enforce-ment Wait-free Manner Transient Consistency Property Software-defined Network Algorithm Wayup Basic Safety Property Optimal Policy Update Algorithm Optrounds Wpe Cannot Correctness Guarantee Asynchronous Nature Of-ten Render Guaran-tees Wpe New Policy Communication Round
Content Type	Text
Resource Type	Article

Central Library (ISO-9001:2015 Certified)
Indian Institute of Technology Kharagpur
Kharagpur, West Bengal, India | PIN - 721302

See location in the Map
03222 282435
Mail: support@ndl.gov.in

Sl.	Authority	Responsibilities	Communication Details
1	Ministry of Education (GoI), Department of Higher Education	Sanctioning Authority	https://www.education.gov.in/ict-initiatives
2	Indian Institute of Technology Kharagpur	Host Institute of the Project: The host institute of the project is responsible for providing infrastructure support and hosting the project	https://www.iitkgp.ac.in
3	National Digital Library of India Office, Indian Institute of Technology Kharagpur	The administrative and infrastructural headquarters of the project	Dr. B. Sutradhar bsutra@ndl.gov.in
4	Project PI / Joint PI	Principal Investigator and Joint Principal Investigators of the project	Dr. B. Sutradhar bsutra@ndl.gov.in Prof. Saswat Chakrabarti will be added soon
5	Website/Portal (Helpdesk)	Queries regarding NDLI and its services	support@ndl.gov.in
6	Contents and Copyright Issues	Queries related to content curation and copyright issues	content@ndl.gov.in
7	National Digital Library of India Club (NDLI Club)	Queries related to NDLI Club formation, support, user awareness program, seminar/symposium, collaboration, social media, promotion, and outreach	clubsupport@ndl.gov.in
8	Digital Preservation Centre (DPC)	Assistance with digitizing and archiving copyright-free printed books	dpc@ndl.gov.in
9	IDR Setup or Support	Queries related to establishment and support of Institutional Digital Repository (IDR) and IDR workshops	idr@ndl.gov.in