Decoupling policy from configuration in campus and enterprise networks
| Title | Decoupling policy from configuration in campus and enterprise networks |
| Publication Type | Conference Papers |
| Year of Publication | 2010 |
| Authors | Feamster N, Nayak A, Kim H, Clark R, Mundada Y, Ramachandran A, bin Tariq M |
| Conference Name | Local and Metropolitan Area Networks (LANMAN), 2010 17th IEEE Workshop on |
| Date Published | 2010/05// |
| Keywords | Access control, Business communication, campus network, decoupling policy, enterprise network management tasks, enterprise network operator, information flow control, software defined network, software radio, telecommunication network management, telecommunication security |
| Abstract | This paper surveys our ongoing work on the use of software-defined networking to simplify two acute policy problems in campus and enterprise network operations: access control and information flow control. We describe how the current coupling of high-level policy with low-level configuration makes these problems challenging today. We describe the specific policy problems faced by campus and enterprise network operators; illustrate our approach, which leverages recent trends in separating the network's #x201C;control plane #x201D; from the data plane; and show how this approach can be applied to simplify these two enterprise network management tasks. We also describe our ongoing deployment efforts to build a campus network testbed where trial designs can be deployed and evaluated. We close with a summary of current and future research challenges for solving challenges within enterprise networks within the context of this new paradigm. |
| DOI | 10.1109/LANMAN.2010.5507162 |