NetSheriff: sheltering software-defined networks from rogue switches

Laffranchini, Paolo;Miranda, Joao;Machado, Nuno;Rodrigues, Luis;Sadre, Ramin;et.al.
(2020) 8th International Conference, NETYS 2019 — Location: Marrackech, Morocco (3.June.2020)

Files

NetSheriff_NETYS_Final.pdf
  • Open Access
  • Adobe PDF
  • 1.6 MB
Download

Details

Authors
  • Laffranchini, Paoloorcid-logoUCLouvain
    Author
  • Miranda, JoaoINESC-ID, IST, ULisboa, Portugal
    Author
  • Machado, NunoTerradata
    Author
  • Rodrigues, LuisINESC-ID, IST, ULisboa, Portugal
    Author
  • Riviere, EtienneUCLouvain
    Author
  • Sadre, RaminUCLouvain
    Author
Show more
Abstract
We present NetSheriff – a system to automatically isolate faulty switches in Software-Defined Networks. To pinpoint the devices responsible for network misbehaviors, NetSheriff performs a differential analysis between expected paths of packets (obtained from a formal model of the network forwarding specification) and the corresponding observed paths taken by flows (obtained through network monitoring). We have built a prototype of NetSheriff supporting both OpenFlow and P4 Programmable devices and evaluated it on different network topologies, simulating real traffic behavior following recent data center studies. Our results show that NetSheriff is able to accurately identify the switch(es) responsible for different types of errors.
Affiliations

Citations

  • APA
  • Chicago
  • FWB

Laffranchini, P., Miranda, J., Machado, N., Rodrigues, L., Riviere, E., & Sadre, R. (2020). NetSheriff: sheltering software-defined networks from rogue switches. 8th International Conference, NETYS 2019. Published. 8th International Conference, NETYS 2019, Marrackech, Morocco. https://hdl.handle.net/2078.5/256294