Policy Transformation in Software Defined Networks

被引：15

作者：

Kang, Nanxi ^{[1
]}

Reich, Joshua ^{[1
]}

Rexford, Jennifer ^{[1
]}

Walker, David ^{[1
]}

机构：

[1] Princeton Univ, Princeton, NJ 08544 USA

来源：

ACM SIGCOMM COMPUTER COMMUNICATION REVIEW | 2012年 / 42卷 / 04期

关键词：

software defined networks; network virtualization; OpenFlow;

D O I：

10.1145/2377677.2377745

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

A Software Defined Network (SDN) enforces network-wide policies by installing packet-handling rules across a distributed collection of switches. Today's SDN platforms force programmers to decide how to decompose a high-level policy into the low-level rules in each switch. We argue that future SDN platforms should support automatic transformation of policies by moving, merging, or splitting rules across multiple switches. This would simplify programming by allowing programs written on one abstract switch to run over a more complex network topology, and simplify analysis by consolidating a policy spread over multiple switches into a single list of rules. This poster presents our ongoing work on a sound and complete set of axioms for policy transformation, to enable rewriting of rules across multiple switches while preserving the forwarding policy. These axioms are invaluable for creating and analyzing algorithms for optimizing the rewriting of rules.

引用

页码：309 / 310

页数：2

共 50 条

[1] Security Policy Transition Framework for Software Defined Networks
Cox, Jacob H., Jr.
Clark, Russell J.
Owen, Henry L.
[J]. 2016 IEEE CONFERENCE ON NETWORK FUNCTION VIRTUALIZATION AND SOFTWARE DEFINED NETWORKS (NFV-SDN), 2016, : 56 - 61
[2] Policy and Resource Orchestration in Software-Defined Networks
Wang, Anduo
Wu, Jie
[J]. 2018 4TH IEEE INTERNATIONAL CONFERENCE ON COLLABORATION AND INTERNET COMPUTING (CIC 2018), 2018, : 203 - 206
[3] A Policy Based Framework for Software Defined Optical Networks
Biswas, Md Israfil
Abu-Tair, Mamun
Morrow, Philip
McClean, Sally
Scotney, Bryan
Parr, Gerard
[J]. ADVANCES ON P2P, PARALLEL, GRID, CLOUD AND INTERNET COMPUTING (3PGCIC-2017), 2018, 13 : 253 - 265
[4] A Framework for Policy Inconsistency Detection in Software-Defined Networks
Lee, Seungsoo
Woo, Seungwon
Kim, Jinwoo
Nam, Jaehyun
Yegneswaran, Vinod
Porras, Phillip
Shin, Seungwon
[J]. IEEE-ACM TRANSACTIONS ON NETWORKING, 2022, 30 (03) : 1410 - 1423
[5] LPM: Layered Policy Management for Software-Defined Networks
Han, Wonkyu
Hu, Hongxin
Ahn, Gail-Joon
[J]. DATA AND APPLICATIONS SECURITY AND PRIVACY XXVIII, 2014, 8566 : 356 - 363
[6] A security policy model transformation and verification approach for software defined networking
Meng, Yunfei
Huang, Zhiqiu
Shen, Guohua
Ke, Changbo
[J]. COMPUTERS & SECURITY, 2021, 100
[7] Software Defined Networks
Leon-Garcia, Alberto
Ashwood-Smith, Peter
Ganjali, Yashar
[J]. COMPUTER NETWORKS, 2015, 92 : 209 - 210
[8] SOFTWARE DEFINED NETWORKS
Li, Chung-Sheng
Liao, Wanjiun
[J]. IEEE COMMUNICATIONS MAGAZINE, 2013, 51 (02) : 113 - 113
[9] SOFTWARE DEFINED NETWORKS
Doughty, Mark
[J]. JOURNAL OF THE INSTITUTE OF TELECOMMUNICATIONS PROFESSIONALS, 2015, 9 : 40 - 44
[10] A SOFTWARE DEFINED RADIO TRANSFORMATION
Shanton, John L., III
[J]. MILCOM 2009 - 2009 IEEE MILITARY COMMUNICATIONS CONFERENCE, VOLS 1-4, 2009, : 1318 - 1322

← 1 2 3 4 5 →