Skip to main content

Analysis of Source Address Validation Data Plane Performance
draft-li-savnet-dataplane-performance-00

Document Type Expired Internet-Draft (individual)
Expired & archived
Authors Hao Li , Mengxiao Chen , Dan Li , Fang Gao , Mingqing(Michael) Huang
Last updated 2023-04-27 (Latest revision 2022-10-24)
RFC stream (None)
Intended RFC status (None)
Formats
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:

Abstract

Source address validation (SAV) is one important way to mitigate source address spoofing attacks. However, there may be concern about whether the source address check action of the data plane would cause a great performance loss and even affect SAV deployment. This document provides an analysis of data plane implementation of SAV mechanisms, including the existing mechanisms and a new mechanism using independent SAV table. The data plane performances of different mechanisms are tested respectively.

Authors

Hao Li
Mengxiao Chen
Dan Li
Fang Gao
Mingqing(Michael) Huang

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)