FAS: Federated Auditing for Software-defined exchanges

Joaquin Chung, Jacob Cox, Russ Clark, Henry Owen

    Research output: Chapter in Book/Report/Conference proceedingConference contribution

    3 Scopus citations

    Abstract

    The Software-defined exchange (SDX) allows multiple independent administrative domains to share computing, storage, and networking resources. One variation on the SDX applies software-defined networking (SDN) technologies to the fabric of an Internet exchange point (IXP) to support rich policy expression among participants. Similarly, Research and Education (R&E) networks are introducing SDN at exchange points to enable network operators to provision network policies over multiple independent administrative domains. The federated nature of R&E exchange points is based on a chain of trust between participant domains. However, trust and verifiability go hand in hand, an old adage says 'trust, but verify', so a responsible network operator would like to verify that his or her policies are honored by the SDN domains participating at an SDX. Moreover, some SDX participants do not want to reveal internal topology information while proving they correctly deployed the requested policies. For these reasons, we propose Federated Auditing for SDX (FAS), a federated auditing framework for SDX configuration verification, which reveals the minimal necessary information to an SDX central controller. We also show our initial proof-of-concept and preliminary evaluation.

    Original languageEnglish (US)
    Title of host publicationIEEE SoutheastCon 2017
    PublisherInstitute of Electrical and Electronics Engineers Inc.
    ISBN (Electronic)9781538615393
    DOIs
    StatePublished - May 10 2017
    EventIEEE SoutheastCon 2017 - Charlotte, United States
    Duration: Mar 30 2017Apr 2 2017

    Publication series

    NameConference Proceedings - IEEE SOUTHEASTCON
    ISSN (Print)0734-7502

    Other

    OtherIEEE SoutheastCon 2017
    Country/TerritoryUnited States
    CityCharlotte
    Period3/30/174/2/17

    ASJC Scopus subject areas

    • Computer Networks and Communications
    • Software
    • Electrical and Electronic Engineering
    • Control and Systems Engineering
    • Signal Processing

    Fingerprint

    Dive into the research topics of 'FAS: Federated Auditing for Software-defined exchanges'. Together they form a unique fingerprint.

    Cite this