Abstract

802.1X, MACsec, and IPsec are widespread network security mechanisms that control network access and add encryption and authentication to L2 and L3 networking. They are standardized by IEEE and IETF, and are part of most open-source and commercial network hardware and software appliances. However, lots of manual configuration is needed for their application in traditional networks. In this work, we present P4sec, a three-tier control architecture for automated configuration of these security protocols in networks with multiple sites. P4sec leverages P4-programmable switches and operates them through distributed controllers. We briefly introduce data plane programming with P4 and give an overview of 802.1X, MACsec, and IPsec. We explain the three-tier control architecture P4sec and validate it by a prototype which is published under the Apache v2 license on GitHub. Finally, we discuss opportunities and challenges.

Full Text
Published version (Free)

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Dancing with the Adversary: A Tale of Wimps and Giants
Virgil Gligor
-
Virgil GligorVirgil Gligor
01 Jan 2014
Side-Channel Attacks Meet Secure Network Protocols
Alex Biryukov ... Daniel Dinu
-
Alex Biryukov, et. al.Alex Biryukov ... Daniel Dinu
01 Jan 2017
On the middle ground between open source and commercial software - the case of the Newbler program
Alexander J Nederbragt
Genome Biology | VOL. 15
Alexander J NederbragtAlexander J Nederbragt
01 Jan 2014
On a framework for energy-efficient security protocols in wireless networks
Phongsak Prasithsangaree ... Prashant Krishnamurthy
Computer Communications | VOL. 27
Phongsak Prasithsangaree, et. al.Phongsak Prasithsangaree ... Prashant Krishnamurthy
01 Jul 2004
View more papers

More From: IEEE access : practical innovations, open solutions

Paper Title
Journal
Date
Author
Self-Supervised Real-World Image Denoising Based on Multi-Scale Feature Enhancement and Attention Fusion
Hailiang Tang ... Ke Zhao
IEEE access : practical innovations, open solutions | VOL. 12
Hailiang Tang, et. al.Hailiang Tang ... Ke Zhao
01 Jan 2024
Efficient Power Control and Resource Allocation for LTE-D2D Communication: A Multi-Objective Optimization Approach
Faisal Hussain ... Muhammad Mahbub Alam
IEEE access : practical innovations, open solutions | VOL. 12
Faisal Hussain, et. al.Faisal Hussain ... Muhammad Mahbub Alam
01 Jan 2024
Korean Sign Language Alphabet Recognition Through the Integration of Handcrafted and Deep Learning-Based Two-Stream Feature Extraction Approach
Jungpil Shin ... Koki Hirooka
IEEE access : practical innovations, open solutions | VOL. 12
Jungpil Shin, et. al.Jungpil Shin ... Koki Hirooka
01 Jan 2024
Joint Learning of Spectral Clustering and Low-Rank Representation Based on Precise Segmentation Cost for Cancer Subtype Identification
Yanming Cao ... Zeyuan Wang
IEEE access : practical innovations, open solutions | VOL. 12
Yanming Cao, et. al.Yanming Cao ... Zeyuan Wang
01 Jan 2024
View more papers