The SwitchWare active network architecture

Active networks must balance the flexibility of a programmable network infrastructure against the safety and security requirements inherent in sharing that infrastructure. Furthermore, this balance must be achieved while maintaining the usability of the network. The SwitchWare active network architecture is a novel approach to achieving this balance using three layers: active packets, which contain mobile programs that replace traditional packets; active extensions, which provide services on the network elements and can be dynamically loaded; and a secure active router infrastructure, which forms a high-integrity base on which the security of the other layers depends. In addition to integrity checking and cryptography-based authentication, security in our architecture depends heavily on verification techniques from programming languages, such as strong type checking.

[1]  Carl A. Gunter Semantics of programming languages: structures and techniques , 1993, Choice Reviews Online.

[2]  Joan Feigenbaum,et al.  Decentralized trust management , 1996, Proceedings 1996 IEEE Symposium on Security and Privacy.

[3]  Frank Yellin,et al.  The Java Virtual Machine Specification , 1996 .

[4]  George C. Necula,et al.  Safe kernel extensions without run-time checking , 1996, OSDI '96.

[5]  G.J. Minden,et al.  A survey of active network research , 1997, IEEE Communications Magazine.

[6]  Marianne Shaw,et al.  Active bridging , 1997, SIGCOMM '97.

[7]  Angelos D. Keromytis,et al.  A Secure Active Network Environment Architecture , 1997 .

[8]  Troy Downing,et al.  Java Virtual Machine , 1997 .

[9]  William A. Arbaugh,et al.  A secure and reliable bootstrap architecture , 1997, Proceedings. 1997 IEEE Symposium on Security and Privacy (Cat. No.97CB36097).

[10]  David Wetherall,et al.  Introducing new Internet services: why and how , 1998, IEEE Netw..

[11]  Jonathan M. Smith,et al.  Protocol boosters , 1998, IEEE J. Sel. Areas Commun..

[12]  Carl A. Gunter,et al.  PLAN : A Programming Language for Active Networkssubmitted to PLDI ' 98 , 1998 .

[13]  Liwu Li,et al.  The Java Language , 1998 .

[14]  Angelos D. Keromytis,et al.  A secure active network environment architecture: realization in SwitchWare , 1998, IEEE Netw..