Enforcing Secure and Robust Routing with Declarative Policies

Internet routers must adhere to many polices gov- erning the selection of paths that meet potentially complex constraints on length, security, symmetry and organizational preferences. Many routing problems are caused by their miscon- figuration, usually due to a combination of human errors and the lack of a high-level formal language for specifying routing policies that can be used to generate router congurations. We describe an approach that obviates many problems by using a declarative language for specifying network-wide routing policies to automatically congure routers and also inform software agents that can diagnose and correct networking problems. Our policy language is grounded in ontologies dened in the Semantic Web language OWL, supporting machine understanding and interoperability. polices expressed in it can be automatically compiled into low-level router congurations and intelligent agents can reason with them to diagnose and correct routing problems. We have prototyped the approach and evaluated the results in both a simulator and on a small physical network. Our results show that the framework performs well on a number of use cases, including checking for policy coherence, selecting paths to enforce security constraints, preventing asymmetric routing patterns, applying organizational preferences, and diagnosing and correcting failures.
Date: October 31, 2010
Book Title: Proceedings of the 2010 Military Communications Conference
Type: InProceedings
Address: San Jose, CA
Downloads: 751

Has 1 soft copy

size 106570 bytes


  author = "Palanivel Andiappan Kodeswaran and Filip Perich and Wenjia Li and Anupam Joshi and Tim Finin",
  title = "{Enforcing Secure and Robust Routing with Declarative Policies}",
  month = "October",
  year = "2010",
  address = ", San Jose, CA, ",
  booktitle = "Proceedings of the 2010 Military Communications Conference",