Enforcing secure and robust routing with declarative policies

Enforcing secure and robust routing with declarative policies

Internet routers must adhere to many polices governing the selection of paths that meet potentially complex constraints on length, security, symmetry and organizational preferences. Many routing problems are caused by their misconfiguration, usually due to a combination of human errors and the lack...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Kodeswaran, P, Wenjia Li, Joshi, A, Finin, T, Perich, F
Format: Tagungsbericht
Sprache:eng
Schlagworte:
agent based systems
declarative network management
Internet
Knowledge based systems
Peer to peer computing
policy
Routing
Routing protocols
Security
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page 49
container_issue
container_start_page 44
container_title
container_volume
creator Kodeswaran, P
Wenjia Li
Joshi, A
Finin, T
Perich, F
description Internet routers must adhere to many polices governing the selection of paths that meet potentially complex constraints on length, security, symmetry and organizational preferences. Many routing problems are caused by their misconfiguration, usually due to a combination of human errors and the lack of a high-level formal language for specifying routing policies that can be used to generate router configurations. We describe an approach that obviates many problems by using a declarative language for specifying network-wide routing policies to automatically configure routers and also inform software agents that can diagnose and correct networking problems. Our policy language is grounded in ontologies encoded in the Semantic Web language OWL, supporting machine understanding and interoperability. Polices expressed in it can be automatically compiled into low-level router configurations and intelligent agents can reason with them to diagnose and correct routing problems. We have prototyped the approach and evaluated the results both in a simulator and on a small physical network. Our results show that the framework performs well on a number of use cases, including checking for policy coherence, preventing asymmetric routing patterns, applying organizational preferences, and diagnosing and correcting failures.
doi_str_mv 10.1109/MILCOM.2010.5680362
format Conference Proceeding
fullrecord <record><control><sourceid>ieee_6IE</sourceid><recordid>TN_cdi_ieee_primary_5680362</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><ieee_id>5680362</ieee_id><sourcerecordid>5680362</sourcerecordid><originalsourceid>FETCH-LOGICAL-i220t-f9ac1cda7e754112460c10bb5cbf292c71e55d02651c2a580a24adfed1ed42cb3</originalsourceid><addsrcrecordid>eNo9kM1Og0AUhce_xFp5gm54Aeq9lxkYFi4MabUJTTe6boaZi45BaPjR-PZiJK6-k_MlZ3GEWCGsESG72--K_LBfE0yFSjTECZ2JG5QkpUYN6lwsCJWKUqWTCxFkqZ7dFC7_XaqvRdD37wCApBPKcCHuN03VdtY3r2HPduw4NI0Lu7Yc-2HCOPyaLz-8hY5tbToz-E8OT23tref-VlxVpu45mLkUL9vNc_4UFYfHXf5QRJ4IhqjKjEXrTMqpkogkE7AIZalsWVFGNkVWygElCi0ZpcGQNK5ih-wk2TJeitXfrmfm46nzH6b7Ps5PxD8Hm06b</addsrcrecordid><sourcetype>Publisher</sourcetype><iscdi>true</iscdi><recordtype>conference_proceeding</recordtype></control><display><type>conference_proceeding</type><title>Enforcing secure and robust routing with declarative policies</title><source>IEEE Electronic Library (IEL) Conference Proceedings</source><creator>Kodeswaran, P ; Wenjia Li ; Joshi, A ; Finin, T ; Perich, F</creator><creatorcontrib>Kodeswaran, P ; Wenjia Li ; Joshi, A ; Finin, T ; Perich, F</creatorcontrib><description>Internet routers must adhere to many polices governing the selection of paths that meet potentially complex constraints on length, security, symmetry and organizational preferences. Many routing problems are caused by their misconfiguration, usually due to a combination of human errors and the lack of a high-level formal language for specifying routing policies that can be used to generate router configurations. We describe an approach that obviates many problems by using a declarative language for specifying network-wide routing policies to automatically configure routers and also inform software agents that can diagnose and correct networking problems. Our policy language is grounded in ontologies encoded in the Semantic Web language OWL, supporting machine understanding and interoperability. Polices expressed in it can be automatically compiled into low-level router configurations and intelligent agents can reason with them to diagnose and correct routing problems. We have prototyped the approach and evaluated the results both in a simulator and on a small physical network. Our results show that the framework performs well on a number of use cases, including checking for policy coherence, preventing asymmetric routing patterns, applying organizational preferences, and diagnosing and correcting failures.</description><identifier>ISSN: 2155-7578</identifier><identifier>ISBN: 9781424481781</identifier><identifier>ISBN: 1424481783</identifier><identifier>EISSN: 2155-7586</identifier><identifier>EISBN: 1424481805</identifier><identifier>EISBN: 9781424481798</identifier><identifier>EISBN: 1424481791</identifier><identifier>EISBN: 9781424481804</identifier><identifier>DOI: 10.1109/MILCOM.2010.5680362</identifier><language>eng</language><publisher>IEEE</publisher><subject>agent based systems ; declarative network management ; Internet ; Knowledge based systems ; Peer to peer computing ; policy ; Routing ; Routing protocols ; Security</subject><ispartof>2010 - MILCOM 2010 MILITARY COMMUNICATIONS CONFERENCE, 2010, p.44-49</ispartof><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://ieeexplore.ieee.org/document/5680362$$EHTML$$P50$$Gieee$$H</linktohtml><link.rule.ids>309,310,776,780,785,786,2052,27902,54895</link.rule.ids><linktorsrc>$$Uhttps://ieeexplore.ieee.org/document/5680362$$EView_record_in_IEEE$$FView_record_in_$$GIEEE</linktorsrc></links><search><creatorcontrib>Kodeswaran, P</creatorcontrib><creatorcontrib>Wenjia Li</creatorcontrib><creatorcontrib>Joshi, A</creatorcontrib><creatorcontrib>Finin, T</creatorcontrib><creatorcontrib>Perich, F</creatorcontrib><title>Enforcing secure and robust routing with declarative policies</title><title>2010 - MILCOM 2010 MILITARY COMMUNICATIONS CONFERENCE</title><addtitle>MILCOM</addtitle><description>Internet routers must adhere to many polices governing the selection of paths that meet potentially complex constraints on length, security, symmetry and organizational preferences. Many routing problems are caused by their misconfiguration, usually due to a combination of human errors and the lack of a high-level formal language for specifying routing policies that can be used to generate router configurations. We describe an approach that obviates many problems by using a declarative language for specifying network-wide routing policies to automatically configure routers and also inform software agents that can diagnose and correct networking problems. Our policy language is grounded in ontologies encoded in the Semantic Web language OWL, supporting machine understanding and interoperability. Polices expressed in it can be automatically compiled into low-level router configurations and intelligent agents can reason with them to diagnose and correct routing problems. We have prototyped the approach and evaluated the results both in a simulator and on a small physical network. Our results show that the framework performs well on a number of use cases, including checking for policy coherence, preventing asymmetric routing patterns, applying organizational preferences, and diagnosing and correcting failures.</description><subject>agent based systems</subject><subject>declarative network management</subject><subject>Internet</subject><subject>Knowledge based systems</subject><subject>Peer to peer computing</subject><subject>policy</subject><subject>Routing</subject><subject>Routing protocols</subject><subject>Security</subject><issn>2155-7578</issn><issn>2155-7586</issn><isbn>9781424481781</isbn><isbn>1424481783</isbn><isbn>1424481805</isbn><isbn>9781424481798</isbn><isbn>1424481791</isbn><isbn>9781424481804</isbn><fulltext>true</fulltext><rsrctype>conference_proceeding</rsrctype><creationdate>2010</creationdate><recordtype>conference_proceeding</recordtype><sourceid>6IE</sourceid><sourceid>RIE</sourceid><recordid>eNo9kM1Og0AUhce_xFp5gm54Aeq9lxkYFi4MabUJTTe6boaZi45BaPjR-PZiJK6-k_MlZ3GEWCGsESG72--K_LBfE0yFSjTECZ2JG5QkpUYN6lwsCJWKUqWTCxFkqZ7dFC7_XaqvRdD37wCApBPKcCHuN03VdtY3r2HPduw4NI0Lu7Yc-2HCOPyaLz-8hY5tbToz-E8OT23tref-VlxVpu45mLkUL9vNc_4UFYfHXf5QRJ4IhqjKjEXrTMqpkogkE7AIZalsWVFGNkVWygElCi0ZpcGQNK5ih-wk2TJeitXfrmfm46nzH6b7Ps5PxD8Hm06b</recordid><startdate>20100101</startdate><enddate>20100101</enddate><creator>Kodeswaran, P</creator><creator>Wenjia Li</creator><creator>Joshi, A</creator><creator>Finin, T</creator><creator>Perich, F</creator><general>IEEE</general><scope>6IE</scope><scope>6IH</scope><scope>CBEJK</scope><scope>RIE</scope><scope>RIO</scope></search><sort><creationdate>20100101</creationdate><title>Enforcing secure and robust routing with declarative policies</title><author>Kodeswaran, P ; Wenjia Li ; Joshi, A ; Finin, T ; Perich, F</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-i220t-f9ac1cda7e754112460c10bb5cbf292c71e55d02651c2a580a24adfed1ed42cb3</frbrgroupid><rsrctype>conference_proceedings</rsrctype><prefilter>conference_proceedings</prefilter><language>eng</language><creationdate>2010</creationdate><topic>agent based systems</topic><topic>declarative network management</topic><topic>Internet</topic><topic>Knowledge based systems</topic><topic>Peer to peer computing</topic><topic>policy</topic><topic>Routing</topic><topic>Routing protocols</topic><topic>Security</topic><toplevel>online_resources</toplevel><creatorcontrib>Kodeswaran, P</creatorcontrib><creatorcontrib>Wenjia Li</creatorcontrib><creatorcontrib>Joshi, A</creatorcontrib><creatorcontrib>Finin, T</creatorcontrib><creatorcontrib>Perich, F</creatorcontrib><collection>IEEE Electronic Library (IEL) Conference Proceedings</collection><collection>IEEE Proceedings Order Plan (POP) 1998-present by volume</collection><collection>IEEE Xplore All Conference Proceedings</collection><collection>IEEE Electronic Library (IEL)</collection><collection>IEEE Proceedings Order Plans (POP) 1998-present</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Kodeswaran, P</au><au>Wenjia Li</au><au>Joshi, A</au><au>Finin, T</au><au>Perich, F</au><format>book</format><genre>proceeding</genre><ristype>CONF</ristype><atitle>Enforcing secure and robust routing with declarative policies</atitle><btitle>2010 - MILCOM 2010 MILITARY COMMUNICATIONS CONFERENCE</btitle><stitle>MILCOM</stitle><date>2010-01-01</date><risdate>2010</risdate><spage>44</spage><epage>49</epage><pages>44-49</pages><issn>2155-7578</issn><eissn>2155-7586</eissn><isbn>9781424481781</isbn><isbn>1424481783</isbn><eisbn>1424481805</eisbn><eisbn>9781424481798</eisbn><eisbn>1424481791</eisbn><eisbn>9781424481804</eisbn><abstract>Internet routers must adhere to many polices governing the selection of paths that meet potentially complex constraints on length, security, symmetry and organizational preferences. Many routing problems are caused by their misconfiguration, usually due to a combination of human errors and the lack of a high-level formal language for specifying routing policies that can be used to generate router configurations. We describe an approach that obviates many problems by using a declarative language for specifying network-wide routing policies to automatically configure routers and also inform software agents that can diagnose and correct networking problems. Our policy language is grounded in ontologies encoded in the Semantic Web language OWL, supporting machine understanding and interoperability. Polices expressed in it can be automatically compiled into low-level router configurations and intelligent agents can reason with them to diagnose and correct routing problems. We have prototyped the approach and evaluated the results both in a simulator and on a small physical network. Our results show that the framework performs well on a number of use cases, including checking for policy coherence, preventing asymmetric routing patterns, applying organizational preferences, and diagnosing and correcting failures.</abstract><pub>IEEE</pub><doi>10.1109/MILCOM.2010.5680362</doi><tpages>6</tpages><oa>free_for_read</oa></addata></record>
fulltext fulltext_linktorsrc
identifier ISSN: 2155-7578
ispartof 2010 - MILCOM 2010 MILITARY COMMUNICATIONS CONFERENCE, 2010, p.44-49
issn 2155-7578
2155-7586
language eng
recordid cdi_ieee_primary_5680362
source IEEE Electronic Library (IEL) Conference Proceedings
subjects agent based systems
declarative network management
Internet
Knowledge based systems
Peer to peer computing
policy
Routing
Routing protocols
Security
title Enforcing secure and robust routing with declarative policies
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-02-04T05%3A07%3A39IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-ieee_6IE&rft_val_fmt=info:ofi/fmt:kev:mtx:book&rft.genre=proceeding&rft.atitle=Enforcing%20secure%20and%20robust%20routing%20with%20declarative%20policies&rft.btitle=2010%20-%20MILCOM%202010%20MILITARY%20COMMUNICATIONS%20CONFERENCE&rft.au=Kodeswaran,%20P&rft.date=2010-01-01&rft.spage=44&rft.epage=49&rft.pages=44-49&rft.issn=2155-7578&rft.eissn=2155-7586&rft.isbn=9781424481781&rft.isbn_list=1424481783&rft_id=info:doi/10.1109/MILCOM.2010.5680362&rft_dat=%3Cieee_6IE%3E5680362%3C/ieee_6IE%3E%3Curl%3E%3C/url%3E&rft.eisbn=1424481805&rft.eisbn_list=9781424481798&rft.eisbn_list=1424481791&rft.eisbn_list=9781424481804&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rft_ieee_id=5680362&rfr_iscdi=true