Experiences with capsule-based active networking

Active networking adds programmability to the elements of the network, most aggressively by using programmable packets, or capsules. ANTS [22, 21] and PLANet [10, 8] are the most mature examples of capsule-based systems, both having been publicly available for several years. This paper presents our experience with these systems and the lessons they hold for the future of capsule-based active networking. The paper focuses on four key issues: flexibility, performance, security, and usability. We consider how ANTS and PLANet address these issues, noting that despite substantial surface differences, both systems identify similar key problems and use closely related solutions. Based on our experience with these systems we conclude that capsule-based systems can achieve useful levels of flexibility, performance, and usability. Many aspects of security can also be adequately addressed, but some important problems related to denial of service remain as open problems.

[1]  Scott Nettles,et al.  Practical programmable packets , 2001, Proceedings IEEE INFOCOM 2001. Conference on Computer Communications. Twentieth Annual Joint Conference of the IEEE Computer and Communications Society (Cat. No.01CH37213).

[2]  Carl A. Gunter,et al.  PLAN: a packet language for active networks , 1998, ICFP '98.

[3]  Jonathan M. Smith,et al.  On-the-fly programmable hardware for networks , 1998, IEEE GLOBECOM 1998 (Cat. NO. 98CH36250).

[4]  John V. Guttag,et al.  ANTS: a toolkit for building and dynamically deploying network protocols , 1998, 1998 IEEE Open Architectures and Network Programming.

[5]  Stephen J. Garland,et al.  PAN: a high-performance active network node supporting multiple mobile code systems , 1999, 1999 IEEE Second Conference on Open Architectures and Network Programming. Proceedings. OPENARCH '99 (Cat. No.99EX252).

[6]  Jonathan T. Moore Safe and Efficient Active Packets , 1999 .

[7]  Marianne Shaw,et al.  Active bridging , 1997, SIGCOMM '97.

[8]  Xavier Leroy The objective caml system release 3 , 2001 .

[9]  Jeffrey D. Case,et al.  Simple Network Management Protocol (SNMP) , 1990, RFC.

[10]  Robert Wahbe,et al.  Efficient software-based fault isolation , 1994, SOSP '93.

[11]  Michael Hicks Plan System Security , 1998 .

[12]  Angelos D. Keromytis,et al.  A secure PLAN (extended version) , 2002, Proceedings DARPA Active Networks Conference and Exposition.

[13]  Sushil da Silva,et al.  TOWARDS PROGRAMMABLE NETWORKS , 1996 .

[14]  Dan Grossman,et al.  TALx86: A Realistic Typed Assembly Language∗ , 1999 .

[15]  Michael Hicks,et al.  Chunks in PLAN: Language Support for Programs as Packets , 1999 .

[16]  Karl Crary,et al.  Resource bound certification , 2000, POPL '00.

[17]  Jeffrey D. Case,et al.  Simple Network Management Protocol (SNMP) , 1989, RFC.

[18]  Angelos D. Keromytis,et al.  A secure PLAN , 1999, IEEE Trans. Syst. Man Cybern. Part C.

[19]  John V. Guttag,et al.  Using Network-Level Support to Improve Cache Routing , 1998, Comput. Networks.

[20]  R. D. Rockwell,et al.  Smart Packets for active networks , 1999, 1999 IEEE Second Conference on Open Architectures and Network Programming. Proceedings. OPENARCH '99 (Cat. No.99EX252).

[21]  David Wetherall,et al.  Active network vision and reality: lessions from a capsule-based system , 1999, SOSP.

[22]  Carl A. Gunter,et al.  PLANet: an active internetwork , 1999, IEEE INFOCOM '99. Conference on Computer Communications. Proceedings. Eighteenth Annual Joint Conference of the IEEE Computer and Communications Societies. The Future is Now (Cat. No.99CH36320).

[23]  Jonathan M. Smith,et al.  Agents in Network Management , 2000 .

[24]  David Wetherall,et al.  Active network vision and reality: lessons from a capsule-based system , 1999, OPSR.

[25]  Ronald L. Rivest,et al.  The MD5 Message-Digest Algorithm , 1992, RFC.