Towards Model Checking Real-World Software-Defined Networks (version with appendix)

04/24/2020
by   Vasileios Klimis, et al.
0

In software-defined networks (SDN), a controller program is in charge of deploying diverse network functionality across a large number of switches, but this comes at a great risk: deploying buggy controller code could result in network and service disruption and security loopholes. The automatic detection of bugs or, even better, verification of their absence is thus most desirable, yet the size of the network and the complexity of the controller makes this a challenging undertaking. In this paper we propose MOCS, a highly expressive, optimised SDN model that allows capturing subtle real-world bugs, in a reasonable amount of time. This is achieved by (1) analysing the model for possible partial order reductions, (2) statically pre-computing packet equivalence classes and (3) indexing packets and rules that exist in the model. We demonstrate its superiority compared to the state of the art in terms of expressivity, by providing examples of realistic bugs that a prototype implementation of MOCS in UPPAAL caught, and performance/scalability, by running examples on various sizes of network topologies, highlighting the importance of our abstractions and optimisations.

READ FULL TEXT
research
04/24/2020

Towards Model Checking Real-World Software-Defined Networks

In software-defined networks (SDN) a controller program is in charge of ...
research
08/14/2020

Model Checking Software-Defined Networks with Flow Entries that Time Out

Software-defined networking (SDN) enables advanced operation and managem...
research
01/20/2023

Defending SDN against packet injection attacks using deep learning

The (logically) centralised architecture of the software-defined network...
research
01/27/2020

Actor-Based Model Checking for SDN Networks

Software-Defined Networking (SDN) is a networking paradigm that has beco...
research
07/06/2021

Towards Network Behaviour Trend Evaluation in Software Defined Network (SDN) Considering the number of paths

There is a wide range of topologies to use in simulation that can make r...
research
09/19/2018

Gwardar: Towards Protecting a Software-Defined Network from Malicious Network Operating Systems

A Software-Defined Network (SDN) controller (aka. Network Operating Syst...

Please sign up or login with your details

Forgot password? Click here to reset