High-Speed Inter-Domain Fault Localization
Data-plane fault localization enhances network availability and reliability by enabling localization and circumvention of malicious entities on a network path. Algorithms for data-plane fault localization exist for intra-domain settings, however, the per-flow or per-source state required at intermed...
Saved in:
| Published in | 2016 IEEE Symposium on Security and Privacy (SP) pp. 859 - 877 |
|---|---|
| Main Authors | , , , |
| Format | Conference Proceeding Journal Article |
| Language | English |
| Published |
IEEE
01.05.2016
|
| Subjects | |
| Online Access | Get full text |
Cover
Loading…
| Abstract | Data-plane fault localization enhances network availability and reliability by enabling localization and circumvention of malicious entities on a network path. Algorithms for data-plane fault localization exist for intra-domain settings, however, the per-flow or per-source state required at intermediate routers makes them prohibitively expensive in inter-domain settings. We present Faultprints, the first secure data-plane fault localization protocol that is practical for inter-domain settings. Faultprints enables a source to precisely localize malicious network links that drop, delay, or modify packets. We implemented an efficient version of Faultprints on a software router by taking advantage of the parallelism in the AES-NI module of Intel CPUs. Our evaluation on real-world traffic shows fast forwarding on a commodity server at 116.95 Gbps out of 120 Gbps capacity, and a goodput of 94 Gbps. Additionally, Faultprints achieves a high failure localization rate, while incurring a low communication overhead. |
|---|---|
| AbstractList | Data-plane fault localization enhances network availability and reliability by enabling localization and circumvention of malicious entities on a network path. Algorithms for data-plane fault localization exist for intra-domain settings, however, the per-flow or per-source state required at intermediate routers makes them prohibitively expensive in inter-domain settings. We present Faultprints, the first secure data-plane fault localization protocol that is practical for inter-domain settings. Faultprints enables a source to precisely localize malicious network links that drop, delay, or modify packets. We implemented an efficient version of Faultprints on a software router by taking advantage of the parallelism in the AES-NI module of Intel CPUs. Our evaluation on real-world traffic shows fast forwarding on a commodity server at 116.95 Gbps out of 120 Gbps capacity, and a goodput of 94 Gbps. Additionally, Faultprints achieves a high failure localization rate, while incurring a low communication overhead. |
| Author | Basescu, Cristina Haoming Zhang Yue-Hsun Lin Perrig, Adrian |
| Author_xml | – sequence: 1 givenname: Cristina surname: Basescu fullname: Basescu, Cristina email: cba@inf.ethz.ch organization: Dept. of Comput. Sci., ETH Zurich, Zurich, Switzerland – sequence: 2 surname: Yue-Hsun Lin fullname: Yue-Hsun Lin email: yuehhsun.lin@samsung.com organization: Samsung Res. America, Richardson, TX, USA – sequence: 3 surname: Haoming Zhang fullname: Haoming Zhang email: haoming@cmu.edu organization: Carnegie Mellon Univ., Pittsburgh, PA, USA – sequence: 4 givenname: Adrian surname: Perrig fullname: Perrig, Adrian email: adrian.perrig@inf.ethz.ch organization: Dept. of Comput. Sci., ETH Zurich, Zurich, Switzerland |
| BookMark | eNotj01LxDAUAKMouF29ePWyRxFSX5K-pDnK6roLBYXVc0nTV430y34c9Ne7sJ7mMgxMxM7ariXGrgXEQoC937_GEoSOUZ-wSCBYgFQm4pQtpDLIhQRzwaJx_AKQoGyyYHfb8PHJ9z1Rudq1Ew38sWtcaFcbN9fTKuu8q8Ovm0LXXrLzytUjXf1zyd43T2_rLc9ennfrh4wHCenEE4RKWyKRSLSFKLU2qUstCYWOsLSFUQq9VNZjJaVT2lSWfJGQ9UZoadWS3R67_dB9zzROeRNGT3XtWurmMRepQtR4uDuoN0c1EFHeD6Fxw09uMNGorPoDz7pNkQ |
| CODEN | IEEPAD |
| ContentType | Conference Proceeding Journal Article |
| DBID | 6IE 6IH CBEJK RIE RIO 7SC 8FD JQ2 L7M L~C L~D |
| DOI | 10.1109/SP.2016.56 |
| DatabaseName | IEEE Electronic Library (IEL) Conference Proceedings IEEE Proceedings Order Plan (POP) 1998-present by volume IEEE Xplore All Conference Proceedings IEEE Xplore IEEE Proceedings Order Plans (POP) 1998-present Computer and Information Systems Abstracts Technology Research Database ProQuest Computer Science Collection Advanced Technologies Database with Aerospace Computer and Information Systems Abstracts Academic Computer and Information Systems Abstracts Professional |
| DatabaseTitle | Computer and Information Systems Abstracts Technology Research Database Computer and Information Systems Abstracts – Academic Advanced Technologies Database with Aerospace ProQuest Computer Science Collection Computer and Information Systems Abstracts Professional |
| DatabaseTitleList | Computer and Information Systems Abstracts |
| Database_xml | – sequence: 1 dbid: RIE name: IEEE Xplore url: https://proxy.k.utb.cz/login?url=https://ieeexplore.ieee.org/ sourceTypes: Publisher |
| DeliveryMethod | fulltext_linktorsrc |
| Discipline | Computer Science |
| EISBN | 1509008241 9781509008247 |
| EISSN | 2375-1207 |
| EndPage | 877 |
| ExternalDocumentID | 7546539 |
| Genre | orig-research |
| GroupedDBID | 23M 29O 6IE 6IF 6IH 6IL 6IN AAJGR ABLEC ACGFS ADZIZ ALMA_UNASSIGNED_HOLDINGS BEFXN BFFAM BGNUA BKEBE BPEOZ CBEJK CHZPO IEGSK IJVOP M43 OCL RIE RIG RIL RIO RNS 7SC 8FD JQ2 L7M L~C L~D |
| ID | FETCH-LOGICAL-i208t-450f69ee14259b1d6678a89e135ae5d9b7335c239c5f22a367f9ecb4e9c716293 |
| IEDL.DBID | RIE |
| IngestDate | Thu Apr 11 20:36:51 EDT 2024 Wed Jun 26 19:23:52 EDT 2024 |
| IsPeerReviewed | false |
| IsScholarly | true |
| Language | English |
| LinkModel | DirectLink |
| MergedId | FETCHMERGED-LOGICAL-i208t-450f69ee14259b1d6678a89e135ae5d9b7335c239c5f22a367f9ecb4e9c716293 |
| Notes | ObjectType-Article-2 SourceType-Scholarly Journals-1 ObjectType-Conference-1 ObjectType-Feature-3 content type line 23 SourceType-Conference Papers & Proceedings-2 |
| PQID | 1835565509 |
| PQPubID | 23500 |
| PageCount | 19 |
| ParticipantIDs | proquest_miscellaneous_1835565509 ieee_primary_7546539 |
| PublicationCentury | 2000 |
| PublicationDate | 20160501 |
| PublicationDateYYYYMMDD | 2016-05-01 |
| PublicationDate_xml | – month: 05 year: 2016 text: 20160501 day: 01 |
| PublicationDecade | 2010 |
| PublicationTitle | 2016 IEEE Symposium on Security and Privacy (SP) |
| PublicationTitleAbbrev | SP |
| PublicationYear | 2016 |
| Publisher | IEEE |
| Publisher_xml | – name: IEEE |
| SSID | ssj0020394 |
| Score | 2.093452 |
| Snippet | Data-plane fault localization enhances network availability and reliability by enabling localization and circumvention of malicious entities on a network path.... |
| SourceID | proquest ieee |
| SourceType | Aggregation Database Publisher |
| StartPage | 859 |
| SubjectTerms | Algorithms Computer network reliability data plane security Delays Fault location Hardware inter-domain communication Internet Localization network reliability Networks Position (location) Privacy Routers Routing protocols secure fault localization Security |
| Title | High-Speed Inter-Domain Fault Localization |
| URI | https://ieeexplore.ieee.org/document/7546539 https://search.proquest.com/docview/1835565509 |
| hasFullText | 1 |
| inHoldings | 1 |
| isFullTextHit | |
| isPrint | |
| link | http://utb.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwjV09T8MwELVKJ6YCLaJ8KUhMCKdJbCe9GagqBKhSqdQt8sdFqoCkgmTh12MnaZGAgS2DrcQ5n9_ZfnePkMvACGtng9RiuaTc8IyCYoaikMqGCzrWWc22eIqnC36_FMsOud7mwiBiTT5D3z3Wd_mm0JU7KhslTrmbwQ7ZSQCaXK3t5ipgwNvyo2EAo_nM0bZi3wlT17Ipv9baGkAmPfK4eXXDG3nxq1L5-vNHVcb_ftseGXyn6nmzLQjtkw7mB6S30WrwWtftkytH6KDztW3n1aeA9LZ4k6vcm8jqtfQeHKS1KZkDspjcPd9MaauTQFdRMC4pF0EWA2Jo_Q9UaGILQHIMGDIhURhQCWNCRwy0yKJIsjjJALXiCNrVjwJ2SLp5keMR8bjtZDJtrKcrziFRLMkChDizkZgOtBySvht6um5KYaTtqIfkYvNzUzs93Z2DzLGoPlK7YggbM9qw5Pjvridk1xmq4RCekm75XuGZxflSndcG_gIdsagj |
| link.rule.ids | 310,311,315,783,787,792,793,799,23942,23943,25152,27936,27937,55086 |
| linkProvider | IEEE |
| linkToHtml | http://utb.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwjV3PT8IwFH5BPOgJFYz4cyaejMWxths9qwQVCAmQcFv64y0h6iC6XfzrbcfARD1426HN1r2-fl_b770HcOUbbu1skFgsl4QZlhChqCHIpbJ0QYc6KdQWw7A3ZU8zPqvAzSYWBhEL8Rm23GNxl28WOndHZbeRq9xNxRZsW17dCVfRWpvtlU8FKxOQtn1xOx454VbYcqWpi8Ipv1bbAkK6NRisX75Sjry08ky19OePvIz__bo9aHwH63mjDQztQwXTA6itqzV4pfPW4dpJOsh4adt5xTkguV-8yXnqdWX-mnl9B2plUGYDpt2HyV2PlJUSyDzwOxlh3E9Cgdi2HihU24QWgmRHYJtyidwIFVHKdUCF5kkQSBpGiUCtGArtMkgJegjVdJHiEXjMdjKJNtbXFWMiUjRKfBRhYrmY9rVsQt0NPV6ukmHE5aibcLn-ubGdoO7WQaa4yD9iu2ZwyxotMTn-u-sF7PQmg37cfxw-n8CuM9pKUXgK1ew9xzOL-pk6L4z9BRg4q24 |
| openUrl | ctx_ver=Z39.88-2004&ctx_enc=info%3Aofi%2Fenc%3AUTF-8&rfr_id=info%3Asid%2Fsummon.serialssolutions.com&rft_val_fmt=info%3Aofi%2Ffmt%3Akev%3Amtx%3Ajournal&rft.genre=proceeding&rft.title=2016+IEEE+Symposium+on+Security+and+Privacy+%28SP%29&rft.atitle=High-Speed+Inter-Domain+Fault+Localization&rft.au=Basescu%2C+Cristina&rft.au=Yue-Hsun+Lin&rft.au=Haoming+Zhang&rft.au=Perrig%2C+Adrian&rft.date=2016-05-01&rft.pub=IEEE&rft.eissn=2375-1207&rft.spage=859&rft.epage=877&rft_id=info:doi/10.1109%2FSP.2016.56&rft.externalDocID=7546539 |