An Approach for Behavioral Fingerprinting of P4 Programmable Switches
Resumo
Behavioral Fingerprinting is a technique used to understand the behavior of devices, enabling a better understanding of their functionality and improved anomaly detection. This paper proposes a methodology for generating the behavioral fingerprint of programmable switches. The methodology outlines the process of selecting metrics for analysis, extracting data from them, and organizing the information to construct a behavioral fingerprint for a programmable device within a network.Referências
Bai, S., Kim, H., and Rexford, J. (2022). Passive os fingerprinting on commodity switches. In 2022 IEEE 8th International Conference on Network Softwarization (NetSoft), pages 264–268.
Bondan, L., Franco, M. F., Marcuzzo, L., Venancio, G., Santos, R. L., Pfitscher, R. J., Scheid, E. J., Stiller, B., De Turck, F., Duarte, E. P., Schaeffer-Filho, A. E., d. Santos, C. R. P., and Granville, L. Z. (2019). FENDE: Marketplace-Based Distribution, Execution, and Life Cycle Management of VNFs. IEEE Communications Magazine, 57(1):13–19.
Bosshart, P., Daly, D., Gibb, G., Izzard, M., McKeown, N., Rexford, J., Schlesinger, C., Talayco, D., Vahdat, A., Varghese, G., and Walker, D. (2014). P4: Programming protocol-independent packet processors. SIGCOMM Comput. Commun. Rev., 44(3):87–95.
Kuzniar, C., Neves, M., Gurevich, V., and Haque, I. (2022a). IoT Device Fingerprinting on Commodity Switches. In NOMS 2022-2022 IEEE/IFIP Network Operations and Management Symposium, pages 1–9.
Kuzniar, C., Neves, M., and Haque, I. (2022b). IoT Device Fingerprinting on Commodity Switches. In Dalhousie Computer Science In-House Conference, pages 1–9. Poster Session.
Lantz, B., Heller, B., and McKeown, N. (2010). A network in a laptop: rapid prototyping for software-defined networks. In 9th ACM SIGCOMM Workshop on Hot Topics in Networks, pages 1–6.
Nunes, B. A. A., Mendonca, M., Nguyen, X.-N., Obraczka, K., and Turletti, T. (2014). A survey of software-defined networking: Past, present, and future of programmable networks. IEEE Communications Surveys Tutorials, 16(3):1617–1634.
Open Networking Foundation (2023). P4Language Repository. https://github.com/p4lang.
Sánchez, P. M. S., Valero, J. M. J., Celdrán, A. H., Bovet, G., Pérez, M. G., and Pérez, G. M. (2021). A survey on device behavior fingerprinting: Data sources, techniques, application scenarios, and datasets. IEEE Communications Surveys Tutorials, 23(2):1048–1077.
Tan, L., Su, W., Zhang, W., Lv, J., Zhang, Z., Miao, J., Liu, X., and Li, N. (2021). In-band Network Telemetry: A Survey. Computer Networks, 186:107763.
Tu, N. V., Hyun, J., Kim, G. Y., Yoo, J.-H., and Hong, J. W.-K. (2018). Intcollector: A high-performance collector for in-band network telemetry. In 2018 14th International Conference on Network and Service Management (CNSM), pages 10–18.
Bondan, L., Franco, M. F., Marcuzzo, L., Venancio, G., Santos, R. L., Pfitscher, R. J., Scheid, E. J., Stiller, B., De Turck, F., Duarte, E. P., Schaeffer-Filho, A. E., d. Santos, C. R. P., and Granville, L. Z. (2019). FENDE: Marketplace-Based Distribution, Execution, and Life Cycle Management of VNFs. IEEE Communications Magazine, 57(1):13–19.
Bosshart, P., Daly, D., Gibb, G., Izzard, M., McKeown, N., Rexford, J., Schlesinger, C., Talayco, D., Vahdat, A., Varghese, G., and Walker, D. (2014). P4: Programming protocol-independent packet processors. SIGCOMM Comput. Commun. Rev., 44(3):87–95.
Kuzniar, C., Neves, M., Gurevich, V., and Haque, I. (2022a). IoT Device Fingerprinting on Commodity Switches. In NOMS 2022-2022 IEEE/IFIP Network Operations and Management Symposium, pages 1–9.
Kuzniar, C., Neves, M., and Haque, I. (2022b). IoT Device Fingerprinting on Commodity Switches. In Dalhousie Computer Science In-House Conference, pages 1–9. Poster Session.
Lantz, B., Heller, B., and McKeown, N. (2010). A network in a laptop: rapid prototyping for software-defined networks. In 9th ACM SIGCOMM Workshop on Hot Topics in Networks, pages 1–6.
Nunes, B. A. A., Mendonca, M., Nguyen, X.-N., Obraczka, K., and Turletti, T. (2014). A survey of software-defined networking: Past, present, and future of programmable networks. IEEE Communications Surveys Tutorials, 16(3):1617–1634.
Open Networking Foundation (2023). P4Language Repository. https://github.com/p4lang.
Sánchez, P. M. S., Valero, J. M. J., Celdrán, A. H., Bovet, G., Pérez, M. G., and Pérez, G. M. (2021). A survey on device behavior fingerprinting: Data sources, techniques, application scenarios, and datasets. IEEE Communications Surveys Tutorials, 23(2):1048–1077.
Tan, L., Su, W., Zhang, W., Lv, J., Zhang, Z., Miao, J., Liu, X., and Li, N. (2021). In-band Network Telemetry: A Survey. Computer Networks, 186:107763.
Tu, N. V., Hyun, J., Kim, G. Y., Yoo, J.-H., and Hong, J. W.-K. (2018). Intcollector: A high-performance collector for in-band network telemetry. In 2018 14th International Conference on Network and Service Management (CNSM), pages 10–18.
Publicado
23/10/2023
Como Citar
SAUERESSIG, Matheus; FRANCO, Muriel F.; SCHEID, Eder J.; GRANVILLE, Lisandro Z..
An Approach for Behavioral Fingerprinting of P4 Programmable Switches. In: ESCOLA REGIONAL DE REDES DE COMPUTADORES (ERRC), 20. , 2023, Porto Alegre/RS.
Anais [...].
Porto Alegre: Sociedade Brasileira de Computação,
2023
.
p. 55-60.
DOI: https://doi.org/10.5753/errc.2023.915.
