A dynamic network architecture
ACM Transactions on Computer Systems (TOCS)
Practical network support for IP traceback
Proceedings of the conference on Applications, Technologies, Architectures, and Protocols for Computer Communication
ACM Transactions on Computer Systems (TOCS)
Building a robust software-based router using network processors
SOSP '01 Proceedings of the eighteenth ACM symposium on Operating systems principles
An empirical study of industrial security-engineering practices
Journal of Systems and Software
Programming language optimizations for modular router configurations
Proceedings of the 10th international conference on Architectural support for programming languages and operating systems
Virtual-Time Round-Robin: An O(1) Proportional Share Scheduler
Proceedings of the General Track: 2002 USENIX Annual Technical Conference
You Can Run, But You Can't Hide: An Effective Methodology to Traceback DDoS Attackers
MASCOTS '02 Proceedings of the 10th IEEE International Symposium on Modeling, Analysis, and Simulation of Computer and Telecommunications Systems
Dynamic class-based queue management for scalable media servers
Journal of Systems and Software
Proactive QoS negotiation in asynchronous real-time distributed systems
Journal of Systems and Software - Special issue: Performance modeling and analysis of computer systems and networks
Defending Against Low-Rate TCP Attacks: Dynamic Detection and Protection
ICNP '04 Proceedings of the 12th IEEE International Conference on Network Protocols
A novel algorithm for multimedia multicast routing in a large scale network
Journal of Systems and Software
You Can Run, But You Can't Hide: An Effective Statistical Methodology to Trace Back DDoS Attackers
IEEE Transactions on Parallel and Distributed Systems
Resource management in software-programmable router operating systems
IEEE Journal on Selected Areas in Communications
A Distributed Throttling Approach for Handling High Bandwidth Aggregates
IEEE Transactions on Parallel and Distributed Systems
Architectural designs for a scalable reconfigurable IP router
Journal of Systems Architecture: the EUROMICRO Journal
A hybrid scheme using packet marking and logging for IP traceback
International Journal of Internet Protocol Technology
Semantic -based QoS provisioning for wireline and wireless networks
ACA'12 Proceedings of the 11th international conference on Applications of Electrical and Computer Engineering
| Hi-index | 0.00 |
In this paper, we present the design and implementation of a programmable and extensible router architecture. The proposed architecture not only provides the conventional packet forward/routing functions, but also the flexibility to integrate additional services (or extension) into a router. These extensions are dynamically loadable modules so one can easily deploy new services, such as reliability and security enhancement, onto the router in a dynamic and incremental fashion. To avoid new extensions that may monopolize system resource and degrade the performance of normal packet forwarding/routing function, we propose a novel CPU resource reservation scheme which facilitates the efficient use of resources and increases the stability of extension execution. To illustrate the ''extensibility'' and ''effectiveness'' of the proposed architecture, we present the results of a new service, namely, how to perform ''Distributed Denial-of-Service (DDoS) attack traceback''. In particular, we illustrate the deployment of the probabilistic marking in performing IP traceback. Note that this approach requires the collaboration of routers so that effective traceback can be performed. Currently, the programmable router platform is released as an open source and we believe the system provides an ideal platform for researchers to experiment and to validate new services and protocols.