@inproceedings{aedaf979765942029813f5d919ae32b3,
title = "An adaptable rule placement for software-defined networks",
abstract = "There is a strong trend in networking to move towards Software-Defined Networks (SDN). SDNs enable easier network configuration through a separation between a centralized controller and a distributed data plane comprising a network of switches. The controller implements network policies through installing rules on switches. Recently the 'Big Switch' abstraction [1] was proposed as a specification mechanism for high-level network behavior, i.e., the network policies. The network operating system or compiler can use his specification for placing rules on individual switches. However, this is constrained by the limited capacity of the Ternary Content Addressable Memories (TCAMs) used for rules in each switch. We propose an Integer Linear Programming (ILP) based solution for placing rules on switches for a given firewall policy while optimizing for the total number of rules and meeting the switch capacity constraints. Experimental results demonstrate that our approach is scalable to practical sized networks.",
keywords = "Big Switch Abstraction, Distributed Firewall, Rule Placement, SDN",
author = "Shuyuan Zhang and Franjo Ivan{\v c}i{\'c} and Cristian Lumezanu and Yifei Yuan and Aarti Gupta and Sharad Malik",
note = "Publisher Copyright: {\textcopyright} 2014 IEEE.; 44th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2014 ; Conference date: 23-06-2014 Through 26-06-2014",
year = "2014",
month = sep,
day = "18",
doi = "10.1109/DSN.2014.24",
language = "English (US)",
series = "Proceedings of the International Conference on Dependable Systems and Networks",
publisher = "IEEE Computer Society",
pages = "88--99",
booktitle = "Proceedings of the International Conference on Dependable Systems and Networks",
address = "United States",
}