DEFINE: A Service-Oriented Dynamically Enabling Function Model
With the rapid expansion of network scale and the continuous evolution of network applications, the Internet becomes much more open and uncontrollable, and inevitably faces a variety of security threats. In order to satisfy the requirements of the current Internet security and transmission performan...
Main Authors: | , , |
---|---|
Format: | Article |
Language: | English |
Published: |
EDP Sciences
2017-01-01
|
Series: | ITM Web of Conferences |
Online Access: | https://doi.org/10.1051/itmconf/20171203022 |
id |
doaj-74da0df37b6f4d20afc7191f789f0cba |
---|---|
record_format |
Article |
spelling |
doaj-74da0df37b6f4d20afc7191f789f0cba2021-02-02T05:51:39ZengEDP SciencesITM Web of Conferences2271-20972017-01-01120302210.1051/itmconf/20171203022itmconf_ita2017_03022DEFINE: A Service-Oriented Dynamically Enabling Function ModelTan Wei-Yi0Sun Zhi-Gang1Quan Wei2National University of Defense TechnologyNational University of Defense TechnologyNational University of Defense TechnologyWith the rapid expansion of network scale and the continuous evolution of network applications, the Internet becomes much more open and uncontrollable, and inevitably faces a variety of security threats. In order to satisfy the requirements of the current Internet security and transmission performance, the general solution is increasing specific devices (e.g., firewalls, network monitors) to detect and defend against attacks. However, these devices typically use a dedicated hardware-based or software-based architecture which is closed, leading to limited scalability, management complexity. And deploying a new application needs to develop new equipment, which take a long development cycle and costs a lot. In this paper, we introduce an innovative Dynamically Enable Function In Network Equipment (DEFINE) to allow tenant get the network service quickly. First, DEFINE decouples an application into different functional components, and connects these function components in a reconfigurable method. Second, DEFINE provides a programmable interface to the third party, who can develop their own processing modules according to their own needs. To verify the effectiveness of this model, we set up an evaluating network with a FPGA-based OpenFlow switch prototype, and deployed several applications on it. Our results show that DEFINE has excellent flexibility and performance.https://doi.org/10.1051/itmconf/20171203022 |
collection |
DOAJ |
language |
English |
format |
Article |
sources |
DOAJ |
author |
Tan Wei-Yi Sun Zhi-Gang Quan Wei |
spellingShingle |
Tan Wei-Yi Sun Zhi-Gang Quan Wei DEFINE: A Service-Oriented Dynamically Enabling Function Model ITM Web of Conferences |
author_facet |
Tan Wei-Yi Sun Zhi-Gang Quan Wei |
author_sort |
Tan Wei-Yi |
title |
DEFINE: A Service-Oriented Dynamically Enabling Function Model |
title_short |
DEFINE: A Service-Oriented Dynamically Enabling Function Model |
title_full |
DEFINE: A Service-Oriented Dynamically Enabling Function Model |
title_fullStr |
DEFINE: A Service-Oriented Dynamically Enabling Function Model |
title_full_unstemmed |
DEFINE: A Service-Oriented Dynamically Enabling Function Model |
title_sort |
define: a service-oriented dynamically enabling function model |
publisher |
EDP Sciences |
series |
ITM Web of Conferences |
issn |
2271-2097 |
publishDate |
2017-01-01 |
description |
With the rapid expansion of network scale and the continuous evolution of network applications, the Internet becomes much more open and uncontrollable, and inevitably faces a variety of security threats. In order to satisfy the requirements of the current Internet security and transmission performance, the general solution is increasing specific devices (e.g., firewalls, network monitors) to detect and defend against attacks. However, these devices typically use a dedicated hardware-based or software-based architecture which is closed, leading to limited scalability, management complexity. And deploying a new application needs to develop new equipment, which take a long development cycle and costs a lot.
In this paper, we introduce an innovative Dynamically Enable Function In Network Equipment (DEFINE) to allow tenant get the network service quickly. First, DEFINE decouples an application into different functional components, and connects these function components in a reconfigurable method. Second, DEFINE provides a programmable interface to the third party, who can develop their own processing modules according to their own needs. To verify the effectiveness of this model, we set up an evaluating network with a FPGA-based OpenFlow switch prototype, and deployed several applications on it. Our results show that DEFINE has excellent flexibility and performance. |
url |
https://doi.org/10.1051/itmconf/20171203022 |
work_keys_str_mv |
AT tanweiyi defineaserviceorienteddynamicallyenablingfunctionmodel AT sunzhigang defineaserviceorienteddynamicallyenablingfunctionmodel AT quanwei defineaserviceorienteddynamicallyenablingfunctionmodel |
_version_ |
1724302464316866560 |