Protego: Cloud-Scale Multitenant IPsec Gateway
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Son, Jeongseok | ko |
| dc.contributor.author | Moon, Sue-Bok | ko |
| dc.contributor.author | Yongqiang Xiong | ko |
| dc.contributor.author | Paul Wang | ko |
| dc.contributor.author | Ze Gan | ko |
| dc.contributor.author | Kun Tan | ko |
| dc.date.accessioned | 2017-07-04T02:30:30Z | - |
| dc.date.available | 2017-07-04T02:30:30Z | - |
| dc.date.created | 2017-06-28 | - |
| dc.date.created | 2017-06-28 | - |
| dc.date.created | 2017-06-28 | - |
| dc.date.issued | 2017-07-13 | - |
| dc.identifier.citation | USENIX Annual Technical Conference (USENIX ATC), pp.473 - 485 | - |
| dc.identifier.uri | http://hdl.handle.net/10203/224591 | - |
| dc.description.abstract | Virtual cloud network services let users have their own private networks in the public cloud. IPsec gateways are growing in importance accordingly as they provide VPN connections for customers to remotely access these private networks. Major cloud providers offer IPsec gateway functions to tenants using virtual machines (VMs) running a software IPsec gateway inside. However, dedicating individual IPsec gateway VMs to each tenant results in significant resource waste due to the strong isolation mechanism of VMs. In this paper, we design Protego, a distributed IPsec gateway service designed for multitenancy. By separating the control plane and the data plane of an IPsec gateway, Protego achieves high availability with active redundancy. Furthermore, Protego elastically scales in and out by seamlessly migrating IPsec tunnels between the data nodes without compromising their throughput. Our evaluation and simulation based on production data show that Protego together with a simple resource provisioning algorithm saves more than 80% of the resources compared with allocating independent VMs. | - |
| dc.language | English | - |
| dc.publisher | USENIX Association | - |
| dc.title | Protego: Cloud-Scale Multitenant IPsec Gateway | - |
| dc.type | Conference | - |
| dc.identifier.wosid | 000428763500036 | - |
| dc.identifier.scopusid | 2-s2.0-85059009788 | - |
| dc.type.rims | CONF | - |
| dc.citation.beginningpage | 473 | - |
| dc.citation.endingpage | 485 | - |
| dc.citation.publicationname | USENIX Annual Technical Conference (USENIX ATC) | - |
| dc.identifier.conferencecountry | US | - |
| dc.identifier.conferencelocation | Hyatt Regency Santa Clara | - |
| dc.contributor.localauthor | Moon, Sue-Bok | - |
| dc.contributor.nonIdAuthor | Son, Jeongseok | - |
| dc.contributor.nonIdAuthor | Yongqiang Xiong | - |
| dc.contributor.nonIdAuthor | Paul Wang | - |
| dc.contributor.nonIdAuthor | Ze Gan | - |
| dc.contributor.nonIdAuthor | Kun Tan | - |
- Appears in Collection
- CS-Conference Papers(학술회의논문)
- Files in This Item
- There are no files associated with this item.
This item is cited by other documents in WoS
| ⊙ Detail Information in WoSⓡ | Click to see |  |
| ⊙ Cited 13 items in WoS | Click to see citing articles in |  |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.