About

Log in?

DTU users get better search results including licensed content and discounts on order fees.

Anyone can log in and get personalized features such as favorites, tags and feeds.

Log in as DTU user Log in as non-DTU user No thanks

DTU Findit
Boolean: (bicycle AND helmet) OR (head AND protection) (always group AND in parenthesis)
Title: title:(climate change)
Author: author:("bohr niels" OR "bohr n") (avoid only full first name)
Phrase: "water pump control" (does not work with wildcards)
Wildcards: wom?n pharm*

More help on how to search

Flexible matching

About search syntax

Search syntax Advanced
Close advanced
{{problem}}
By field Using AND/OR By author
This tool can help you build boolean queries suitable for doing a broad search for different synonyms or spellings of each word. Start via the drop-down below or just start typing in the search field.
{{ row.typeTitle }}: ( )

Since our index often lack the full first name of people it can be difficult to correctly search by author.

Fill in the fields and let us help you build a good query:

If you need to find everything possible, consider only searching by last name.

Use "Starting year" to ignore publications out of year range.

More...

Conference paper

P4Knocking: Offloading host-based firewall functionalities to the network

By Ollora Zaballa, Eder1,2; Franco, David3; Zhou, Zifan1,2; Berger, Michael Stübert1,2

From

Department of Photonics Engineering, Technical University of Denmark1

Networks Technology and Service Platforms, Department of Photonics Engineering, Technical University of Denmark2

University of the Basque Country3

The introduction of Software-Defined Networks (SDN) and the evolution towards programmable data planes bring the opportunity to offload several functions to the data plane. In this context, the P4 programming language opens the door to the customization of data planes. It can provide packet processing functionalities that can be applied to improve network security among other areas.

This paper presents P4Knocking, a P4-based port knocking implementation that can externally open ports that appear to be closed. The goal of bringing port knocking capabilities to the network is to seamlessly deploy firewall functions in the data plane, reliving hosts from dealing with unintended traffic.

Our work presents a total of four implementations that involve data and control planes in different degrees. In this case, P4Knocking can provide a more transparent and efficient way to deploy the port knocking service compared to a host-based port knocking implementation. In fact, it requires no specific purpose externs apart from registers, hence its higher portability and flexibility with local or remote control planes.

Language: English
Publisher: IEEE
Year: 2020
Pages: 7-12
Proceedings: 23rd Conference on Innovation in Clouds, Internet and Networks and Workshops
ISBN: 1728151279 , 1728151287 , 9781728151274 and 9781728151281
ISSN: 24728144
Types: Conference paper
DOI: 10.1109/icin48450.2020.9059298
ORCIDs: Ollora Zaballa, Eder and Berger, Michael Stübert
Keywords

P4 Port knocking Programmable SDN Security

Other keywords

Authentication IP networks Indexes Optical switches P4 programming language P4Knocking Registers Task analysis authorisation data plane firewall functions firewalls host-based port local control planes network security offloading host-based firewall functionalities packet processing functionalities port knocking port knocking service programmable programmable data planes remote control planes security software defined networking software-defined networks

DTU users get better search results including licensed content and discounts on order fees.

Log in as DTU user

Access

Analysis