软件定义网络的动态ACL策略实现

2020 IEEE 17th International Conference on Smart Communities: Improving Quality of Life Using ICT, IoT and AI (HONET) Pub Date : 2020-12-14 DOI:10.1109/HONET50430.2020.9322835

Mujahid Ali, Nadir Shah, Muazzam A. Khan Khattak

{"title":"软件定义网络的动态ACL策略实现","authors":"Mujahid Ali, Nadir Shah, Muazzam A. Khan Khattak","doi":"10.1109/HONET50430.2020.9322835","DOIUrl":null,"url":null,"abstract":"Existing approaches of SDN declare the Access Control List (ACL) policies at the controller. For computing the path, the controller matches the packet with all ACL policies irrespective that whether the hosts of an ACL policy are connected or not to the network. It incurs longer processing delay at the controller, which causes a longer end-to-end delay for the data packets and limits the controller's scalability. This paper suggests a novel mechanism called Dynamic ACL policy Implementation (DAI), for SDN, to address this problem that matches the controller's packet with only active ACL policies. Active ACL policies are those whose hosts are connected to the network. This mechanism reduces the processing delay at the controller and would reduce the end-to-end delay for data packets. Moreover, this will increase the scalability of the SDN controller because the saved timing could be used by the controller to process other tasks. Through simulation results, we show that our proposed approach performs better than the existing approach.","PeriodicalId":245321,"journal":{"name":"2020 IEEE 17th International Conference on Smart Communities: Improving Quality of Life Using ICT, IoT and AI (HONET)","volume":"2019 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-12-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":"{\"title\":\"DAI: Dynamic ACL Policy Implementation for Software-Defined Networking\",\"authors\":\"Mujahid Ali, Nadir Shah, Muazzam A. Khan Khattak\",\"doi\":\"10.1109/HONET50430.2020.9322835\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Existing approaches of SDN declare the Access Control List (ACL) policies at the controller. For computing the path, the controller matches the packet with all ACL policies irrespective that whether the hosts of an ACL policy are connected or not to the network. It incurs longer processing delay at the controller, which causes a longer end-to-end delay for the data packets and limits the controller's scalability. This paper suggests a novel mechanism called Dynamic ACL policy Implementation (DAI), for SDN, to address this problem that matches the controller's packet with only active ACL policies. Active ACL policies are those whose hosts are connected to the network. This mechanism reduces the processing delay at the controller and would reduce the end-to-end delay for data packets. Moreover, this will increase the scalability of the SDN controller because the saved timing could be used by the controller to process other tasks. Through simulation results, we show that our proposed approach performs better than the existing approach.\",\"PeriodicalId\":245321,\"journal\":{\"name\":\"2020 IEEE 17th International Conference on Smart Communities: Improving Quality of Life Using ICT, IoT and AI (HONET)\",\"volume\":\"2019 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2020-12-14\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"4\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2020 IEEE 17th International Conference on Smart Communities: Improving Quality of Life Using ICT, IoT and AI (HONET)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/HONET50430.2020.9322835\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 IEEE 17th International Conference on Smart Communities: Improving Quality of Life Using ICT, IoT and AI (HONET)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/HONET50430.2020.9322835","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 4

摘要

现有的SDN方法在控制器上声明访问控制列表(ACL)策略。在计算路径时，无论ACL策略的主机是否接入网络，控制器都会将报文与所有ACL策略进行匹配。这会导致控制器的处理延迟变长，从而导致数据包的端到端延迟变长，限制了控制器的可扩展性。本文提出了一种新的机制，称为动态ACL策略实现(DAI)，用于SDN，以解决控制器的数据包仅与活动ACL策略相匹配的问题。激活的ACL策略是指连接到网络中的主机的ACL策略。这种机制减少了控制器的处理延迟，并将减少数据包的端到端延迟。此外，这将增加SDN控制器的可伸缩性，因为节省的时间可以被控制器用于处理其他任务。仿真结果表明，该方法的性能优于现有方法。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

DAI: Dynamic ACL Policy Implementation for Software-Defined Networking

Existing approaches of SDN declare the Access Control List (ACL) policies at the controller. For computing the path, the controller matches the packet with all ACL policies irrespective that whether the hosts of an ACL policy are connected or not to the network. It incurs longer processing delay at the controller, which causes a longer end-to-end delay for the data packets and limits the controller's scalability. This paper suggests a novel mechanism called Dynamic ACL policy Implementation (DAI), for SDN, to address this problem that matches the controller's packet with only active ACL policies. Active ACL policies are those whose hosts are connected to the network. This mechanism reduces the processing delay at the controller and would reduce the end-to-end delay for data packets. Moreover, this will increase the scalability of the SDN controller because the saved timing could be used by the controller to process other tasks. Through simulation results, we show that our proposed approach performs better than the existing approach.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2020 IEEE 17th International Conference on Smart Communities: Improving Quality of Life Using ICT, IoT and AI (HONET)

自引率

0.00%

发文量