A policy-based management architecture for active and programmable networks

Tsarouchis, C.; Denazis, Spyros; Kitahara, C.; Vivero, Julio; Salamanca, Epifanio; Magaña, Edgar; Galis, Alex; Mañas, José Luis Piñar; Carlinet, L.; Mathieu, Bertrand; Koufopavlou, O.

doi:10.1109/mnet.2003.1201473

Cited by 16 publications

(5 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The issue of determining the CPU requirement for active packet can be resolved by introducing a policy base [13,16] at the active node. Combined scheduling algorithms which could schedule both CPU and bandwidth resources adaptively and fairly among all the competing flows can be applied.…”

Section: Discussionmentioning

confidence: 99%

Resource Control and Prediction Management for Quality of Service in Heterogeneous Active Networks

Devi¹,

Mehata

2007

2007 International Conference on Signal Processing, Communications and Networking

View full text Add to dashboard Cite

Active networks provide a programmable usernetwork interface that supports dynamic modification of the network's behavior. Network nodes, in addition to forwarding packets, perform customized computation on the messages flowing through them. Individual packets carry executable code, or references to executable code. Active networks are changing considerably the scenery of computer networks and consequently, affect the way network management is conducted. Performance management is strongly related to quality of service (QoS) provisioning.In a heterogeneous networking environment, each node must understand the varying resource demands associated with specific network traffic. This paper describes and evaluates an approach to control the CPU utilization of malicious packets and to estimate the CPU demand for good packets in a heterogeneous active network environment. The network management systems can allocate the capacity better by anticipating varying demands and the network operators can better estimate the quality of service (QoS) that customers can expect.

show abstract

Section: Discussionmentioning

confidence: 99%

Resource Control and Prediction Management for Quality of Service in Heterogeneous Active Networks

Devi¹,

Mehata

2007

2007 International Conference on Signal Processing, Communications and Networking

View full text Add to dashboard Cite

show abstract

“…In the Ponder framework, PO are organised and managed in domains, following a hierarchical organisation [108]. [169]).…”

Section: Distributed Policy Storage Provisioning and Enforcementmentioning

confidence: 99%

“…Finite state machines and automata have been employed for managing the states and transitions in stateful PBM systems (e.g. DEN-ng[136], FAIN[169]). The proposed states' diagram is provided as a guideline, while thorough modelling of a stateful PO management protocol is out of the scope of this thesis.Lifecycle management states guide the behaviour of an instantiated PO in the volatile memory of the hosting device.…”

mentioning

confidence: 99%

Policy-based self-management of wireless ad hoc networks

Hadjiantonis

Pavlou

2009

2009 IFIP/IEEE International Symposium on Integrated Network Management

View full text Add to dashboard Cite

Wireless ad hoc networks pose major research challenges because of their increasing ubiquity and user-initiated formation. The motivation of this thesis emanates from the need for unrestricted wireless communication in a scalable and predictable manner. This need is accentuated by the increasing users' demand for spontaneous communication and the deficiencies of existing management frameworks. The objective is to propose a management framework able to leverage the potential of wireless ad hoc networks as an alternative communication method allowing them to coexist with other networks and to emerge as their flexible extension. In the context of this thesis, Wireless ad hoc netw>orks consist of a majority of end-user devices, capable of multihop communication, and optionally supported from limited infrastructure. The policy-based management (PBM) paradigm is employed to facilitate their self-management, combining design and theory with testbed implementation and simulation studies. The thesis contribution can be identified in tlnee areas: (1) Design o f a context-aware policy hierarchy and a hybrid role-based organisation model: The integration of policies with contextual feedback enables the creation of a closed control loop at different organisational levels, forming the basis for self-management. (2) Deployment o f distributed PBM functionality: The management of wireless ad hoc networks is possible with the decentralisation of traditional PBM concepts, based on the design and implementation of a Distributed Policy Repositoiy (DPR). The DPR assists in the coordination of dispersed policy decision points (PDPs) by facilitating the synchronisation of policies and offering a uniform view of management objectives to the PDPs. (3) Validation o f PBM functionality fo r self-management: A case study addresses the deployment of a wireless ad hoc network on a testbed, attempting to overcome the lack of central coordination and the occurrence of interference, by using policies to control its dynamic channel assigmnent. Finally, the framework is extended for service management, implementing adaptable service provisioning and offering service customisation to end-users. The elements of this thesis contribution are combined under a unified policy-based framework for the self-management of wireless ad hoc networks.

show abstract

“…Since IoT devices can carry out real-time measurements and controls much faster than human reaction times, we must design IoT networks that both detect and mitigate security risks automatically and adaptively, while preserving Quality of Service (QoS), and energy efficiency [6], [14]. Thus we propose an autonomic [15] scheme offering (a) distributed attack detection based on deep learning (DL) and graph neural networks to achieve high detection probabilities with low false alarm rates [16], [17], and (b) mitigation that exploits network Self-Awareness [18], [19] centered on Software Defined Networks [20] to achieve secure QoS based routing of traffic flows using machine learning and adaptivity [21], [22].…”

Section: Introductionmentioning

confidence: 99%

IoT Network Attack Detection and Mitigation

Gelenbe¹,

Fröhlich²,

Nowak³

et al. 2020

2020 9th Mediterranean Conference on Embedded Computing (MECO)

View full text Add to dashboard Cite

Cyberattacks on the Internet of Things (IoT) can cause major economic and physical damage, and disrupt production lines, manufacturing processes, supply chains, impact the physical safety of vehicles, and damage the health of human beings. Thus we describe and evaluate a distributed and robust attack detection and mitigation system for network environments where communicating decision agents use Graph Neural Networks to provide attack alerts. We also present an attack mitigation system that uses a Reinforcement Learning driven Software Defined Network to process the alerts generated by the attack detection sysem, together with Quality of Service measurements, so as to reroute sensitive traffic away from compromised network paths using. Experimental results illustrate both the detection and rerouting scheme.

show abstract

A policy-based management architecture for active and programmable networks

Cited by 16 publications

References 15 publications

Resource Control and Prediction Management for Quality of Service in Heterogeneous Active Networks

Resource Control and Prediction Management for Quality of Service in Heterogeneous Active Networks

Policy-based self-management of wireless ad hoc networks

IoT Network Attack Detection and Mitigation

Contact Info

Product

Resources

About