TY - JOUR
T1 - Implementing novel reactive defense functionality in MPLS networks using hyperspeed signaling
AU - Guernsey, Daniel
AU - Rice, Mason
AU - Shenoi, Sujeet
PY - 2012/3
Y1 - 2012/3
N2 - Imagine if a network administrator had powers like the superhero Flash-perceived invisibility, omnipresence and superior surveillance and reconnaissance abilities-that would enable the administrator to send early warnings of threats and trigger mitigation efforts before malicious traffic reaches its target.This paper describes the hyperspeed signaling paradigm, which can endow a network administrator with Flash-like superpowers. Hyperspeed signaling uses optimal (hyperspeed) paths to transmit high priority traffic while other traffic is sent along suboptimal (slower) paths. Slowing the traffic ever so slightly enables the faster command and control messages to implement sophisticated network defense mechanisms. The core defensive capabilities offered by hyperspeed signaling include distributed filtering, teleporting packets, quarantining network devices, tagging and tracking suspicious packets, projecting holographic network topologies and transfiguring networks.Hyperspeed signaling is enabled by the δ. c Algorithm, which is articulated as a distributed routing protocol for constructing hyperspeed label switching paths (LSPs) in multiprotocol label switching (MPLS) networks. The routing protocol, called the δ. c Label Distribution Protocol, enables service providers to implement the novel reactive defense mechanisms. This paper describes the core defensive capabilities offered by hyperspeed signaling and the δ. c Label Distribution Protocol. In addition to a theoretical analysis of the protocol, simulation results are provided that demonstrate its performance characteristics for various network and protocol configurations.
AB - Imagine if a network administrator had powers like the superhero Flash-perceived invisibility, omnipresence and superior surveillance and reconnaissance abilities-that would enable the administrator to send early warnings of threats and trigger mitigation efforts before malicious traffic reaches its target.This paper describes the hyperspeed signaling paradigm, which can endow a network administrator with Flash-like superpowers. Hyperspeed signaling uses optimal (hyperspeed) paths to transmit high priority traffic while other traffic is sent along suboptimal (slower) paths. Slowing the traffic ever so slightly enables the faster command and control messages to implement sophisticated network defense mechanisms. The core defensive capabilities offered by hyperspeed signaling include distributed filtering, teleporting packets, quarantining network devices, tagging and tracking suspicious packets, projecting holographic network topologies and transfiguring networks.Hyperspeed signaling is enabled by the δ. c Algorithm, which is articulated as a distributed routing protocol for constructing hyperspeed label switching paths (LSPs) in multiprotocol label switching (MPLS) networks. The routing protocol, called the δ. c Label Distribution Protocol, enables service providers to implement the novel reactive defense mechanisms. This paper describes the core defensive capabilities offered by hyperspeed signaling and the δ. c Label Distribution Protocol. In addition to a theoretical analysis of the protocol, simulation results are provided that demonstrate its performance characteristics for various network and protocol configurations.
KW - Distributed protocol
KW - Hyperspeed paths
KW - MPLS networks
KW - Network simulation
KW - Routing algorithm
UR - http://www.scopus.com/inward/record.url?scp=84858298965&partnerID=8YFLogxK
U2 - 10.1016/j.ijcip.2012.02.001
DO - 10.1016/j.ijcip.2012.02.001
M3 - Article
AN - SCOPUS:84858298965
SN - 1874-5482
VL - 5
SP - 40
EP - 52
JO - International Journal of Critical Infrastructure Protection
JF - International Journal of Critical Infrastructure Protection
IS - 1
ER -