Inter-Flow Consistency: Novel SDN Update Abstraction for Supporting Inter-Flow Constraints

Software Defined Networks (SDN) are opening a new era in the world of networking by decoupling the data plane and control plane. With the centralized control plane, updating the networks becomes much more convenient to the network operators. However, due to the distributed nature of the data plane, people fail to avoid transitional states of SDN during network updates. The transitional states may be a combination of the old and the new network configurations, which may lead to incorrectness in forwarding behaviors and security vulnerabilities. This thesis complements the large body of consistent update mechanisms of SDN by proposing a novel network update abstraction, inter-flow consistency, which can guarantee certain relationships and constraints among different flows during network updates. To the best of our knowledge, we are the first to study the update consistency abstraction across different flows. We propose an update scheduling algorithm based on dependency graphs, a data structure revealing dependency among different update operations and network elements, in order to guarantee two basic inter-flow consistency, spatial isolation and version isolation. Also, we implement a prototype system with a Mininet OpenFlow network and Ryu SDN controller to evaluate the performance of our approach.

[1]  Fernando M. V. Ramos,et al.  Towards secure and dependable software-defined networks , 2013, HotSDN '13.

[2]  Xin Jin,et al.  Dynamic scheduling of network updates , 2014, SIGCOMM.

[3]  Brighten Godfrey,et al.  Towards correct network virtualization , 2014, HotSDN.

[4]  Brighten Godfrey,et al.  VeriFlow: verifying network-wide invariants in real time , 2012, HotSDN '12.

[5]  Ratul Mahajan,et al.  On consistent updates in software defined networks , 2013, HotNets.

[6]  Rick McGeer,et al.  A safe, efficient update protocol for openflow networks , 2012, HotSDN '12.

[7]  Olivier Bonaventure,et al.  Disruption Free Topology Reconfiguration in OSPF Networks , 2007, IEEE INFOCOM 2007 - 26th IEEE International Conference on Computer Communications.

[8]  Anja Feldmann,et al.  Logically centralized?: state distribution trade-offs in software defined networks , 2012, HotSDN '12.

[9]  Mabry Tyson,et al.  FRESCO: Modular Composable Security Services for Software-Defined Networks , 2013, NDSS.

[10]  Chen-Nee Chuah,et al.  Graceful Network State Migrations , 2011, IEEE/ACM Transactions on Networking.

[11]  Olivier Bonaventure,et al.  Avoiding disruptions during maintenance operations on BGP sessions , 2007, IEEE Transactions on Network and Service Management.

[12]  Mabry Tyson,et al.  A security enforcement kernel for OpenFlow networks , 2012, HotSDN '12.

[13]  Abhijit Bose,et al.  Delayed Internet routing convergence , 2000, SIGCOMM.

[14]  Pavol Cerný,et al.  Toward Synthesis of Network Updates , 2014, SYNT.

[15]  Min Zhu,et al.  B4: experience with a globally-deployed software defined wan , 2013, SIGCOMM.

[16]  David Walker,et al.  Abstractions for network update , 2012, SIGCOMM '12.

[17]  David Walker,et al.  Transparent, Live Migration of a Software-Defined Network , 2014, SoCC.

[18]  Minlan Yu,et al.  SIMPLE-fying middlebox policy enforcement using SDN , 2013, SIGCOMM.

[19]  Nick McKeown,et al.  A network in a laptop: rapid prototyping for software-defined networks , 2010, Hotnets-IX.

[20]  Xin Wu,et al.  zUpdate: updating data center networks with zero loss , 2013, SIGCOMM.

[21]  David Walker,et al.  Incremental consistent updates , 2013, HotSDN '13.

[22]  Amin Vahdat,et al.  Hedera: Dynamic Flow Scheduling for Data Center Networks , 2010, NSDI.

[23]  Nick McKeown,et al.  OpenFlow: enabling innovation in campus networks , 2008, CCRV.

[24]  George Varghese,et al.  Usenix Association 10th Usenix Symposium on Networked Systems Design and Implementation (nsdi '13) 99 Real Time Network Policy Checking Using Header Space Analysis , 2022 .

[25]  Srikanth Kandula,et al.  Achieving high utilization with software-driven WAN , 2013, SIGCOMM.