TY - GEN
T1 - Kirigami, the Verifiable Art of Network Cutting
AU - Thijm, Timothy Alberdingk
AU - Beckett, Ryan
AU - Gupta, Aarti
AU - Walker, David
N1 - Publisher Copyright:
© 2022 IEEE.
PY - 2022
Y1 - 2022
N2 - Satisfiability Modulo Theories (SMT)-based analysis allows exhaustive reasoning over complex distributed control plane routing behaviors, enabling verification of routing under arbitrary conditions. To improve scalability of SMT solving, we introduce a modular verification approach to network control plane verification, where we cut a network into smaller fragments. Users specify an annotated cut which describes how to generate these fragments from the monolithic network, and we verify each fragment independently, using these annotations to define assumptions and guarantees over fragments akin to assume-guarantee reasoning. We prove this modular network verification procedure is sound and complete with respect to verification over the monolithic network. We implement this procedure as Kirigami, an extension of NV [25] - a network verification language and tool - and evaluate it on industrial topologies with synthesized policies. We observe a 10x improvement in end-to-end NV verification time, with SMT solve time improving by up to 6 orders of magnitude.
AB - Satisfiability Modulo Theories (SMT)-based analysis allows exhaustive reasoning over complex distributed control plane routing behaviors, enabling verification of routing under arbitrary conditions. To improve scalability of SMT solving, we introduce a modular verification approach to network control plane verification, where we cut a network into smaller fragments. Users specify an annotated cut which describes how to generate these fragments from the monolithic network, and we verify each fragment independently, using these annotations to define assumptions and guarantees over fragments akin to assume-guarantee reasoning. We prove this modular network verification procedure is sound and complete with respect to verification over the monolithic network. We implement this procedure as Kirigami, an extension of NV [25] - a network verification language and tool - and evaluate it on industrial topologies with synthesized policies. We observe a 10x improvement in end-to-end NV verification time, with SMT solve time improving by up to 6 orders of magnitude.
KW - control plane verification
KW - modular verification
KW - network control plane
KW - routing protocols
UR - http://www.scopus.com/inward/record.url?scp=85142697803&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85142697803&partnerID=8YFLogxK
U2 - 10.1109/ICNP55882.2022.9940333
DO - 10.1109/ICNP55882.2022.9940333
M3 - Conference contribution
AN - SCOPUS:85142697803
T3 - Proceedings - International Conference on Network Protocols, ICNP
BT - 2022 IEEE 30th International Conference on Network Protocols, ICNP 2022
PB - IEEE Computer Society
T2 - 30th IEEE International Conference on Network Protocols, ICNP 2022
Y2 - 30 October 2022 through 2 November 2022
ER -