Mobile Communications and Learning Technologies, Conference on Networking, Conference on Systems, International Conference on (2006)
Apr. 23, 2006 to Apr. 29, 2006
Mohammadreza Yazdani , Carleton University, Ottawa, Canada
Wojciech Fraczak , IDT Canada
Feliks Welfeld , IDT Canada
Ioannis Lambadaris , Carleton University, Ottawa, Canada
The growing needs of network security and contentaware networking increasingly introduce content processing into the network devices as opposed to the network endpoints. The component of a network device responsible for content inspection is called Content Inspection Engine (CIE). As other components of a network device, the CIE needs to operate at wire-speed, posing a need to look for an appropriate speed-evaluation criterion for CIEs. For processes with constant or at most well-bounded per-packet analyzes (e.g., routing, multi-field packet classification), and processes with flat per-byte processing time (e.g., checksum calculation, encryption/decryption), operation speed is traditionally evaluated in terms of the number of packets or bits processed per second. Such metrics cannot be used for processes in which the processing time of a packet varies widely, depending on its content. We propose to define worst-case throughput as a criterion for evaluating the wire-speed processing capabilities of CIEs. We argue that one may build simple model of a CIE, whether hardware or software based, in the form of a directed graph with edges annotated by the length and processing time of the segments of input data. It is then possible to transform the problem of finding the worst-case throughput of a CIE to the minimum cost to time ratio problem, for which many efficient algorithms exist.
M. Yazdani, W. Fraczak, I. Lambadaris and F. Welfeld, "A Criterion for Speed Evaluation of Content Inspection Engines," Mobile Communications and Learning Technologies, Conference on Networking, Conference on Systems, International Conference on(ICNICONSMCL), Morne, Mauritius, 2006, pp. 19.