Abstract
Router security has become more important with the increasing number of programmable routers. This paper presents a pattern router that codes the modularized dataplane and pre-combines the result to monitor and regulate the dynamic actions in the dataplane. This method uses an action identifier (AID) for each action in the dataplane and puts the normal AID into a regulated action table (RAT) before running the router. When the router is working, all the dynamic actions are verified by the RAT to secure the honesty of each action. The pattern router was implemented in a Click router and in a data plane development kit (DPDK) router with tests showing that the pattern router occupies only 2 MB and uses less than 10% of the bandwidth to capture all the abnormal actions in the dataplane.
Translated title of the contribution | Pattern router to regulate dynamic actions in the router dataplane |
---|---|
Original language | Chinese (Traditional) |
Pages (from-to) | 693-697 |
Number of pages | 5 |
Journal | Qinghua Daxue Xuebao/Journal of Tsinghua University |
Volume | 58 |
Issue number | 8 |
DOIs | |
Publication status | Published - 1 Aug 2018 |
Externally published | Yes |