Paper Info
Title
Mos: A Reusable Networking Stack For Flow Monitoring Middleboxes
Abstract
Stateful middleboxes, such as intrusion detection systems and application-level firewalls, have provided key functionalities in operating modern IP networks. However, designing an efficient middlebox is challenging due to the lack of networking stack abstraction for TCP flow processing. Thus, middlebox developers often write the complex flow management logic from scratch, which is not only prone to errors, but also wastes efforts for similar functionalities across applications.This paper presents the design and implementation of mOS, a reusable networking stack for stateful flow processing in middlebox applications. Our API allows developers to focus on the core application logic instead of dealing with low-level packet/flow processing themselves. Under the hood, it implements an efficient event system that scales to monitoring millions of concurrent flow events. Our evaluation demonstrates that mOS enables modular development of stateful middleboxes, often significantly reducing development efforts represented by the source lines of code, while introducing little performance overhead in multi-10Gbps network environments.
Year
Venue
Field
2017
PROCEEDINGS OF NSDI '17: 14TH USENIX SYMPOSIUM ON NETWORKED SYSTEMS DESIGN AND IMPLEMENTATION
Computer science,Flow (psychology),Real-time computing,Embedded system
DocType
Citations 
PageRank 
Conference
5
0.47
References 
Authors
23
5
Name
Order
Citations
PageRank
Muhammad Asim Jamshed11356.57
YoungGyoun Moon2363.60
Donghwi Kim3122.30
Dongsu Han499448.46
KyoungSoo Park5119873.47