{"title":"路由不对称深度包检测系统中以策略代理为中心的流量分类器体系结构","authors":"Mehmet Akif Yazici, Kasim Oztoprak","doi":"10.1109/BlackSeaCom.2017.8277681","DOIUrl":null,"url":null,"abstract":"If the packets of a flow are carried on separate physical paths for forward and reverse directions, the flow is said to be asymmetrically routed. Routing asymmetry causes problems regarding flow identification, traffic shaping, policy enforcement, quota management etc. in DPI systems. Clustering and state sharing are the two existing methods to overcome routing asymmetry. State sharing works only for stateful traffic flows whereas clustering leads to large traffic overhead. A hybrid scheme, the “Hybrid Asymmetric Traffic Classifier” (HATC) has recently been proposed to merge the better aspects of clustering and state sharing. HATC can handle both stateful and stateless flows with reduced overhead compared to clustering. In this study, we propose a novel flow identification method, the “Policy Broker-centric Traffic Classifier” (PBTC), which employs policy broker devices that undertake policy and charging rules functions in the provider's network. The performance of the proposed method is compared against that of HATC under two real traffic traces and several simulated scenarios to demonstrate that PBTC outperforms HATC.","PeriodicalId":126747,"journal":{"name":"2017 IEEE International Black Sea Conference on Communications and Networking (BlackSeaCom)","volume":"9 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-06-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Policy broker-centric traffic classifier architecture for deep packet inspection systems with route asymmetry\",\"authors\":\"Mehmet Akif Yazici, Kasim Oztoprak\",\"doi\":\"10.1109/BlackSeaCom.2017.8277681\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"If the packets of a flow are carried on separate physical paths for forward and reverse directions, the flow is said to be asymmetrically routed. Routing asymmetry causes problems regarding flow identification, traffic shaping, policy enforcement, quota management etc. in DPI systems. Clustering and state sharing are the two existing methods to overcome routing asymmetry. State sharing works only for stateful traffic flows whereas clustering leads to large traffic overhead. A hybrid scheme, the “Hybrid Asymmetric Traffic Classifier” (HATC) has recently been proposed to merge the better aspects of clustering and state sharing. HATC can handle both stateful and stateless flows with reduced overhead compared to clustering. In this study, we propose a novel flow identification method, the “Policy Broker-centric Traffic Classifier” (PBTC), which employs policy broker devices that undertake policy and charging rules functions in the provider's network. The performance of the proposed method is compared against that of HATC under two real traffic traces and several simulated scenarios to demonstrate that PBTC outperforms HATC.\",\"PeriodicalId\":126747,\"journal\":{\"name\":\"2017 IEEE International Black Sea Conference on Communications and Networking (BlackSeaCom)\",\"volume\":\"9 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2017-06-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2017 IEEE International Black Sea Conference on Communications and Networking (BlackSeaCom)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/BlackSeaCom.2017.8277681\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 IEEE International Black Sea Conference on Communications and Networking (BlackSeaCom)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/BlackSeaCom.2017.8277681","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Policy broker-centric traffic classifier architecture for deep packet inspection systems with route asymmetry
If the packets of a flow are carried on separate physical paths for forward and reverse directions, the flow is said to be asymmetrically routed. Routing asymmetry causes problems regarding flow identification, traffic shaping, policy enforcement, quota management etc. in DPI systems. Clustering and state sharing are the two existing methods to overcome routing asymmetry. State sharing works only for stateful traffic flows whereas clustering leads to large traffic overhead. A hybrid scheme, the “Hybrid Asymmetric Traffic Classifier” (HATC) has recently been proposed to merge the better aspects of clustering and state sharing. HATC can handle both stateful and stateless flows with reduced overhead compared to clustering. In this study, we propose a novel flow identification method, the “Policy Broker-centric Traffic Classifier” (PBTC), which employs policy broker devices that undertake policy and charging rules functions in the provider's network. The performance of the proposed method is compared against that of HATC under two real traffic traces and several simulated scenarios to demonstrate that PBTC outperforms HATC.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
