TY - JOUR
T1 - Decentralizing SDN Policies
AU - Padon, Oded
AU - Immerman, Neil
AU - Karbyshev, Aleksandr
AU - Lahav, Ori
AU - Sagiv, Mooly
AU - Shoham, Sharon
N1 - Publisher Copyright:
© 2015 ACM.
PY - 2015/1/14
Y1 - 2015/1/14
N2 - Software-defined networking (SDN) is a new paradigm for operating and managing computer networks. SDN enables logically-centralized control over network devices through a "controller"- - software that operates independently of the network hardware. Network operators can run both in-house and third-party SDN programs on top of the controller, e.g., to specify routing and access control policies. In practice, having the controller handle events limits the network scalability. Therefore, the feasibility of SDN depends on the ability to efficiently decentralize network event-handling by installing forwarding rules on the switches. However, installing a rule too early or too late may lead to incorrect behavior, e.g., (1) packets may be forwarded to the wrong destination or incorrectly dropped; (2) packets handled by the switch may hide vital information from the controller, leading to incorrect forwarding behavior. The second issue is subtle and sometimes missed even by experienced programmers. The contributions of this paper are two fold. First, we formalize the correctness and optimality requirements for decentralizing network policies. Second, we identify a useful class of network policies which permits automatic synthesis of a controller which performs optimal forwarding rule installation.
AB - Software-defined networking (SDN) is a new paradigm for operating and managing computer networks. SDN enables logically-centralized control over network devices through a "controller"- - software that operates independently of the network hardware. Network operators can run both in-house and third-party SDN programs on top of the controller, e.g., to specify routing and access control policies. In practice, having the controller handle events limits the network scalability. Therefore, the feasibility of SDN depends on the ability to efficiently decentralize network event-handling by installing forwarding rules on the switches. However, installing a rule too early or too late may lead to incorrect behavior, e.g., (1) packets may be forwarded to the wrong destination or incorrectly dropped; (2) packets handled by the switch may hide vital information from the controller, leading to incorrect forwarding behavior. The second issue is subtle and sometimes missed even by experienced programmers. The contributions of this paper are two fold. First, we formalize the correctness and optimality requirements for decentralizing network policies. Second, we identify a useful class of network policies which permits automatic synthesis of a controller which performs optimal forwarding rule installation.
KW - distributed systems
KW - logic programming
KW - network programming languages
KW - software-defined networking
KW - synthesis
UR - http://www.scopus.com/inward/record.url?scp=85106672197&partnerID=8YFLogxK
U2 - 10.1145/2775051.2676990
DO - 10.1145/2775051.2676990
M3 - ???researchoutput.researchoutputtypes.contributiontojournal.article???
AN - SCOPUS:85106672197
SN - 1523-2867
VL - 50
SP - 663
EP - 676
JO - ACM SIGPLAN Notices
JF - ACM SIGPLAN Notices
IS - 1
ER -