Lightweight Multi-Tenant Virtualization Architecture for Programmable Switches
Abstract
Virtualization is gaining traction in Programmable Data Planes (PDP), with several solutions in the literature for emulating or instantiating virtual programmable switches on the same host device. In this context, virtualization has numerous advantages, enabling multi-tenancy in programmable data center networks and greater device resource utilization. Nevertheless, enabling a complete multi-tenant solution requires security considerations not yet approached in previous investigations. In this paper, we present a PDP virtualization architecture based on program composition and access control for securely managing virtual switches from different tenants. Our experiments highlight the ability to transparently manage virtual switches hosted in the same physical device, in networking scenarios with multiple tenants.References
Authors (2024). Artigo SBRC secvirtpfour: Código-fonte do Projeto e Scripts. Url: [link].
Bosshart, P. et al. (2014). P4: Programming protocol-independent packet processors. SIGCOMM Comput. Commun. Rev., 44(3):87–95.
Bueno, G., Saquetti, M., Rodrigues, P., Lamb, I., Gaspary, L., Luizelli, M. C., Zhani, M. F., Azambuja, J. R., and Cordeiro, W. (2022). Managing virtual programmable switches: Principles, requirements, and design directions. IEEE Communications Magazine, 60(2):53–59.
Dang, H. T. (2019). P4dns: In-network dns. ACM/IEEE Symposium on Architectures for Networking and Communications Systems (ANCS).
Hancock, D. and Van Der Merwe, J. (2016). Hyper4: Using p4 to virtualize the programmable data plane. In CoNEXT’16, pages 35–49. ACM.
Kim, C., Bhide, P., Doe, E., Holbrook, H., Ghanwani, A., Daly, D., Hira, M., and Davie, B. (2016). In-band network telemetry (int). technical specification P, 4:2015.
Lantz, B., Heller, B., and McKeown, N. (2010). A network in a laptop: Rapid prototyping for software-defined networks. In Proceedings of the 9th ACM SIGCOMM Workshop on Hot Topics in Networks, Hotnets-IX, New York, NY, USA. Association for Computing Machinery.
McKeown, Nick e Anderson, T. e. o. (2008). Openflow: Enabling innovation in campus networks. ACM SIGCOMM Computer Communication Review, 38:67–79.
Michel, O., Bifulco, R., Rétvári, G., and Schmid, S. (2021). The programmable data plane: Abstractions, architectures, algorithms, and applications. ACM Comput. Surv., 54(4).
P4Org (2008). P4runtime specification. ver. 1.3.0.
Tanaembaum, Andrew S. e Bos, H. (2014). Modern Operating Systems. Prentice Hall, 4th edition.
Tokusashi, Y., Matsutani, H., and Zilberman, N. (2018). Lake: The power of in-network computing. International Conference on ReConFigurable Computing and FPGAs (Re-ConFig).
Woodruff, J. (2020). P4xos: Consensus as a network service. IEEE/ACM Transactions on Networking, 28.
Zhang, C., Bi, J., Zhou, Y., Dogar, A. B., and Wu, J. (2017). Hyperv: A high performance hypervisor for virtualization of the programmable data plane. In Computer Communication and Networks (ICCCN), 2017 26th Int’l Conference on, pages 1–9. IEEE.
Zheng, P., Benson, T. A., and Hu, C. (2020). Building and testing modular programs for programmable data planes. IEEE Journal on Selected Areas in Communications, 38(7):1432–1447.
Bosshart, P. et al. (2014). P4: Programming protocol-independent packet processors. SIGCOMM Comput. Commun. Rev., 44(3):87–95.
Bueno, G., Saquetti, M., Rodrigues, P., Lamb, I., Gaspary, L., Luizelli, M. C., Zhani, M. F., Azambuja, J. R., and Cordeiro, W. (2022). Managing virtual programmable switches: Principles, requirements, and design directions. IEEE Communications Magazine, 60(2):53–59.
Dang, H. T. (2019). P4dns: In-network dns. ACM/IEEE Symposium on Architectures for Networking and Communications Systems (ANCS).
Hancock, D. and Van Der Merwe, J. (2016). Hyper4: Using p4 to virtualize the programmable data plane. In CoNEXT’16, pages 35–49. ACM.
Kim, C., Bhide, P., Doe, E., Holbrook, H., Ghanwani, A., Daly, D., Hira, M., and Davie, B. (2016). In-band network telemetry (int). technical specification P, 4:2015.
Lantz, B., Heller, B., and McKeown, N. (2010). A network in a laptop: Rapid prototyping for software-defined networks. In Proceedings of the 9th ACM SIGCOMM Workshop on Hot Topics in Networks, Hotnets-IX, New York, NY, USA. Association for Computing Machinery.
McKeown, Nick e Anderson, T. e. o. (2008). Openflow: Enabling innovation in campus networks. ACM SIGCOMM Computer Communication Review, 38:67–79.
Michel, O., Bifulco, R., Rétvári, G., and Schmid, S. (2021). The programmable data plane: Abstractions, architectures, algorithms, and applications. ACM Comput. Surv., 54(4).
P4Org (2008). P4runtime specification. ver. 1.3.0.
Tanaembaum, Andrew S. e Bos, H. (2014). Modern Operating Systems. Prentice Hall, 4th edition.
Tokusashi, Y., Matsutani, H., and Zilberman, N. (2018). Lake: The power of in-network computing. International Conference on ReConFigurable Computing and FPGAs (Re-ConFig).
Woodruff, J. (2020). P4xos: Consensus as a network service. IEEE/ACM Transactions on Networking, 28.
Zhang, C., Bi, J., Zhou, Y., Dogar, A. B., and Wu, J. (2017). Hyperv: A high performance hypervisor for virtualization of the programmable data plane. In Computer Communication and Networks (ICCCN), 2017 26th Int’l Conference on, pages 1–9. IEEE.
Zheng, P., Benson, T. A., and Hu, C. (2020). Building and testing modular programs for programmable data planes. IEEE Journal on Selected Areas in Communications, 38(7):1432–1447.
Published
2024-05-20
How to Cite
LAMB, Ivan Peter; DUARTE, Pedro Arthur P. R.; LUIZELLI, Marcelo C.; AZAMBUJA, José Rodrigo; CORDEIRO, Weverton.
Lightweight Multi-Tenant Virtualization Architecture for Programmable Switches. In: BRAZILIAN SYMPOSIUM ON COMPUTER NETWORKS AND DISTRIBUTED SYSTEMS (SBRC), 42. , 2024, Niterói/RJ.
Anais [...].
Porto Alegre: Sociedade Brasileira de Computação,
2024
.
p. 29-42.
ISSN 2177-9384.
DOI: https://doi.org/10.5753/sbrc.2024.1235.
