Port address overloading based packet forwarding verification in SDN

Ping WU; Chaowen CHANG; Yingying MA

Tongxin xuebao (Jul 2021)

Port address overloading based packet forwarding verification in SDN

Ping WU,
Chaowen CHANG,
Yingying MA

Affiliations

Ping WU
Chaowen CHANG
Yingying MA

Journal volume & issue: Vol. 42
pp. 70 – 83

Abstract

Read online

Aiming at the problem that the existing forwarding verification mechanisms in software-defined networking (SDN) incur significant communication overhead caused by embedding additional packet fields, a packet forwarding verification mechanism based on port address overloading was proposed, which key idea was the ingress switch implemented port address overloading by reconstructing port and address of packet, downstream switches executed packet probabilistic verification based on overloading port address, and the controller acquired valid and invalid packet statistics of node verification in the path and localized anomaly.Anomaly detection threshold of malicious injecting and dropping packets was presented by theoretical analysis.Finally, the proposed scheme was implemented and evaluated.Experiments demonstrate the proposed scheme achieves efficient forwarding and effective anomaly localization with less than 10% of additional forwarding delays and less than 8% of throughput degradation.

software-defined networking;path vector;port address overloading;probabilistic verification;anomaly localization

Published in Tongxin xuebao

ISSN: 1000-436X (Print)
Publisher: Editorial Department of Journal on Communications
Country of publisher: China
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering: Telecommunication
Website: http://www.infocomm-journal.com/txxb/EN/1000-436X/home.shtml

About the journal

Abstract

Keywords