LPM

Layered policy management for software-defined networks

Wonkyu Han, Hongxin Hu, Gail-Joon Ahn

Research output: Chapter in Book/Report/Conference proceedingConference contribution

6 Citations (Scopus)

Abstract

Software-Defined Networking (SDN) as an emerging paradigm in networking divides the network architecture into three distinct layers such as application, control, and data layers. The multi-layered network architecture in SDN tremendously helps manage and control network traffic flows but each layer heavily relies on complex network policies. Managing and enforcing these network policies require dedicated cautions since combining multiple network modules in an SDN application not only becomes a non-trivial job, but also requires considerable efforts to identify dependencies within a module and between modules. In addition, multi-tenant SDN applications make network management tasks more difficult since there may exist unexpected interferences between traffic flows. In order to accommodate such complex network dynamics in SDN, we propose a novel policy management framework for SDN, called layered policy management (LPM). We also articulate challenges for each layer in terms of policy management and describe appropriate resolution strategies. In addition, we present a proof-of-concept implementation and demonstrate the feasibility of our approach with an SDN-based simulated network.

Original languageEnglish (US)
Title of host publicationLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
PublisherSpringer Verlag
Pages356-363
Number of pages8
Volume8566 LNCS
ISBN (Print)9783662439357
DOIs
StatePublished - 2014
Event28th Annual IFIP WG 11.3 Working Conference on Data and Applications Security and Privacy, DBSEC 2014 - Vienna, Austria
Duration: Jul 14 2014Jul 16 2014

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume8566 LNCS
ISSN (Print)03029743
ISSN (Electronic)16113349

Other

Other28th Annual IFIP WG 11.3 Working Conference on Data and Applications Security and Privacy, DBSEC 2014
CountryAustria
CityVienna
Period7/14/147/16/14

Fingerprint

Networking
Software
Complex networks
Network architecture
Network Architecture
Traffic Flow
Complex Networks
Module
Network management
Network Dynamics
Policy
Software defined networking
Network Flow
Network Management
Telecommunication traffic
Network Traffic
Complex Dynamics
Divides
Interference
Paradigm

Keywords

  • Policy Management
  • Security
  • Software-Defined Networking

ASJC Scopus subject areas

  • Computer Science(all)
  • Theoretical Computer Science

Cite this

Han, W., Hu, H., & Ahn, G-J. (2014). LPM: Layered policy management for software-defined networks. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 8566 LNCS, pp. 356-363). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 8566 LNCS). Springer Verlag. https://doi.org/10.1007/978-3-662-43936-4_23

LPM : Layered policy management for software-defined networks. / Han, Wonkyu; Hu, Hongxin; Ahn, Gail-Joon.

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 8566 LNCS Springer Verlag, 2014. p. 356-363 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 8566 LNCS).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Han, W, Hu, H & Ahn, G-J 2014, LPM: Layered policy management for software-defined networks. in Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). vol. 8566 LNCS, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 8566 LNCS, Springer Verlag, pp. 356-363, 28th Annual IFIP WG 11.3 Working Conference on Data and Applications Security and Privacy, DBSEC 2014, Vienna, Austria, 7/14/14. https://doi.org/10.1007/978-3-662-43936-4_23
Han W, Hu H, Ahn G-J. LPM: Layered policy management for software-defined networks. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 8566 LNCS. Springer Verlag. 2014. p. 356-363. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). https://doi.org/10.1007/978-3-662-43936-4_23
Han, Wonkyu ; Hu, Hongxin ; Ahn, Gail-Joon. / LPM : Layered policy management for software-defined networks. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Vol. 8566 LNCS Springer Verlag, 2014. pp. 356-363 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).
@inproceedings{f468be54e72540238065bb3b4c87273e,
title = "LPM: Layered policy management for software-defined networks",
abstract = "Software-Defined Networking (SDN) as an emerging paradigm in networking divides the network architecture into three distinct layers such as application, control, and data layers. The multi-layered network architecture in SDN tremendously helps manage and control network traffic flows but each layer heavily relies on complex network policies. Managing and enforcing these network policies require dedicated cautions since combining multiple network modules in an SDN application not only becomes a non-trivial job, but also requires considerable efforts to identify dependencies within a module and between modules. In addition, multi-tenant SDN applications make network management tasks more difficult since there may exist unexpected interferences between traffic flows. In order to accommodate such complex network dynamics in SDN, we propose a novel policy management framework for SDN, called layered policy management (LPM). We also articulate challenges for each layer in terms of policy management and describe appropriate resolution strategies. In addition, we present a proof-of-concept implementation and demonstrate the feasibility of our approach with an SDN-based simulated network.",
keywords = "Policy Management, Security, Software-Defined Networking",
author = "Wonkyu Han and Hongxin Hu and Gail-Joon Ahn",
year = "2014",
doi = "10.1007/978-3-662-43936-4_23",
language = "English (US)",
isbn = "9783662439357",
volume = "8566 LNCS",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer Verlag",
pages = "356--363",
booktitle = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

}

TY - GEN

T1 - LPM

T2 - Layered policy management for software-defined networks

AU - Han, Wonkyu

AU - Hu, Hongxin

AU - Ahn, Gail-Joon

PY - 2014

Y1 - 2014

N2 - Software-Defined Networking (SDN) as an emerging paradigm in networking divides the network architecture into three distinct layers such as application, control, and data layers. The multi-layered network architecture in SDN tremendously helps manage and control network traffic flows but each layer heavily relies on complex network policies. Managing and enforcing these network policies require dedicated cautions since combining multiple network modules in an SDN application not only becomes a non-trivial job, but also requires considerable efforts to identify dependencies within a module and between modules. In addition, multi-tenant SDN applications make network management tasks more difficult since there may exist unexpected interferences between traffic flows. In order to accommodate such complex network dynamics in SDN, we propose a novel policy management framework for SDN, called layered policy management (LPM). We also articulate challenges for each layer in terms of policy management and describe appropriate resolution strategies. In addition, we present a proof-of-concept implementation and demonstrate the feasibility of our approach with an SDN-based simulated network.

AB - Software-Defined Networking (SDN) as an emerging paradigm in networking divides the network architecture into three distinct layers such as application, control, and data layers. The multi-layered network architecture in SDN tremendously helps manage and control network traffic flows but each layer heavily relies on complex network policies. Managing and enforcing these network policies require dedicated cautions since combining multiple network modules in an SDN application not only becomes a non-trivial job, but also requires considerable efforts to identify dependencies within a module and between modules. In addition, multi-tenant SDN applications make network management tasks more difficult since there may exist unexpected interferences between traffic flows. In order to accommodate such complex network dynamics in SDN, we propose a novel policy management framework for SDN, called layered policy management (LPM). We also articulate challenges for each layer in terms of policy management and describe appropriate resolution strategies. In addition, we present a proof-of-concept implementation and demonstrate the feasibility of our approach with an SDN-based simulated network.

KW - Policy Management

KW - Security

KW - Software-Defined Networking

UR - http://www.scopus.com/inward/record.url?scp=84958529476&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84958529476&partnerID=8YFLogxK

U2 - 10.1007/978-3-662-43936-4_23

DO - 10.1007/978-3-662-43936-4_23

M3 - Conference contribution

SN - 9783662439357

VL - 8566 LNCS

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 356

EP - 363

BT - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

PB - Springer Verlag

ER -