摘要
Router security has become more important with the increasing number of programmable routers. This paper presents a pattern router that codes the modularized dataplane and pre-combines the result to monitor and regulate the dynamic actions in the dataplane. This method uses an action identifier (AID) for each action in the dataplane and puts the normal AID into a regulated action table (RAT) before running the router. When the router is working, all the dynamic actions are verified by the RAT to secure the honesty of each action. The pattern router was implemented in a Click router and in a data plane development kit (DPDK) router with tests showing that the pattern router occupies only 2 MB and uses less than 10% of the bandwidth to capture all the abnormal actions in the dataplane.
| 投稿的翻译标题 | Pattern router to regulate dynamic actions in the router dataplane |
|---|---|
| 源语言 | 繁体中文 |
| 页(从-至) | 693-697 |
| 页数 | 5 |
| 期刊 | Qinghua Daxue Xuebao/Journal of Tsinghua University |
| 卷 | 58 |
| 期 | 8 |
| DOI | |
| 出版状态 | 已出版 - 1 8月 2018 |
| 已对外发布 | 是 |
关键词
- Pattern router
- Router action
- Router security