Hop-by-Hop Verification Mechanism of Packet Forwarding Path Oriented to Programmable Data Plane

被引:1
|
作者
Zeng, Junsan [1 ]
Liu, Ying [1 ]
Zhang, Weiting [1 ]
Yan, Xincheng [2 ,3 ]
Zhou, Na [2 ,3 ]
Jiang, Zhihong [2 ,3 ]
机构
[1] Beijing Jiaotong Univ, Natl Engn Res Ctr Adv Network Technol, Beijing, Peoples R China
[2] State Key Lab Mobile Network & Mobile Multimedia, Shenzhen 518055, Peoples R China
[3] ZTE Corp, Nanjing 210012, Peoples R China
来源
EMERGING NETWORKING ARCHITECTURE AND TECHNOLOGIES, ICENAT 2022 | 2023年 / 1696卷
关键词
Path verification; SDN; P4; INT; NETWORKS;
D O I
10.1007/978-981-19-9697-9_37
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
Attacks against the forwarding path could deviate data packets from the predefined route to achieve ulterior purposes, which has posed a serious threat to the software-defined network. Previous studies attempted to solve this security issue through complex authentication or traffic statistics methods. However, existing schemes have the disadvantages of high bandwidth overhead and high process delay. Hence, this article proposed a lightweight forwarding path verification mechanism based on P4 implementation. First, we deployed inband network telemetry to obtain path information, and then performed the path verification inside each hop in the programmable data plane to ensure that various attacks against forwarding paths could be intercepted. Finally, complete path verification information would convey to the control plane for backup. Corresponding experimental results demonstrate that our mechanism can effectively improve the security of the packet forwarding path with acceptable throughput and delay.
引用
收藏
页码:454 / 466
页数:13
相关论文
共 50 条
  • [41] An Efficient Privacy-Friendly Hop-by-Hop Data Aggregation Scheme for Smart Grids
    Gope, Prosanta
    Sikdar, Biplab
    IEEE SYSTEMS JOURNAL, 2020, 14 (01): : 343 - 352
  • [42] A multi-path interleaved hop-by-hop en-route filtering scheme in wireless sensor networks
    Nghiem, Thao P.
    Cho, Tae Ho
    COMPUTER COMMUNICATIONS, 2010, 33 (10) : 1202 - 1209
  • [43] Optimal multimedia data rate control with hop-by-hop approach in wireless ad hoc networks
    Lim, Kyung Mook
    Joo, Seong-Soon
    2006 IEEE TENTH INTERNATIONAL SYMPOSIUM ON CONSUMER ELECTRONICS, PROCEEDINGS, 2006, : 148 - 153
  • [44] AVN-AHH-VBF: Avoiding void node with adaptive hop-by-hop vector based forwarding for underwater wireless sensor networks
    Hafeez, Taimur
    Javaid, Nadeem
    Hameed, Ahmad Raza
    Sher, Arshad
    Khan, Zahoor Ali
    Qasim, Umar
    2016 10TH INTERNATIONAL CONFERENCE ON INNOVATIVE MOBILE AND INTERNET SERVICES IN UBIQUITOUS COMPUTING (IMIS), 2016, : 49 - 56
  • [45] A Local Fast-Reroute mechanism for single node or link protection in hop-by-hop routed networks
    Su, Hui-Kai
    COMPUTER COMMUNICATIONS, 2012, 35 (08) : 970 - 979
  • [46] Link-State Routing With Hop-By-Hop Forwarding Can Achieve Optimal Traffic Engineering (vol 19, pg 1717, 2011)
    Xu, Dahai
    Chiang, Mung
    Rexford, Jennifer
    IEEE-ACM TRANSACTIONS ON NETWORKING, 2015, 23 (05) : 1702 - 1703
  • [47] Data transmission reliability assurance scheme based on hop-by-hop adaptive FEC for wireless sensor networks
    Xia M.
    Dong Y.-B.
    Lu D.-M.
    Zhejiang Daxue Xuebao (Gongxue Ban)/Journal of Zhejiang University (Engineering Science), 2011, 45 (02): : 273 - 279
  • [48] R2T : A Rapid and Reliable Hop-by-Hop Transport Mechanism for Information-Centric Networking
    Wang, Zhaoxu
    Luo, Hongbin
    Zhou, Huachun
    Li, Jiawei
    IEEE ACCESS, 2018, 6 : 15311 - 15325
  • [49] Optimizing the packet forwarding throughput of multi-hop wireless chain networks
    Wang, SY
    COMPUTER COMMUNICATIONS, 2003, 26 (14) : 1515 - 1532
  • [50] MultiSec: A Multi-Protocol Security Forwarding Mechanism Based on Programmable Data Plane
    Liu, Zeying
    Cui, Pengshuai
    Dong, Yongji
    Xue, Lei
    Hu, Yuxiang
    ELECTRONICS, 2022, 11 (15)
12345