i-2 Internet problems
description
Transcript of i-2 Internet problems
![Page 2: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/2.jpg)
scalability• Network prefix keeps increasing
– Superlinearly• Forwarding info base (FIB) size in-
creases– routers in Default free zone (DFZ)
![Page 3: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/3.jpg)
Why increase?
3Source: bgp.potaroo.net
• Multi-homing• Traffic engineering• Non-aggregatable prefix allocation
![Page 4: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/4.jpg)
Multi-homing• reliability
company1
ISP1 ISP2
3.0.0.0/8 4.0.0.0/8
3.4.0.0/163.4.0.0/16
![Page 5: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/5.jpg)
Traffic engineering (1/2)• E.g. load balancing
ISP2
ISP1
4.0.0.0/8
3.4.0.0/163.4.0.0/16
![Page 6: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/6.jpg)
Traffic engineering (2/2)• E.g. load balancing
ISP2
ISP1
4.0.0.0/8
3.4.1.0/243.4.0.0/16
3.4.2.0/24
![Page 7: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/7.jpg)
Why routing scalability mat-ters?
• FIB is expensive
ViAggre, “Making routers last longer with ViAggre”, NSDI ‘09
![Page 8: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/8.jpg)
Virtual aggregation (ViAg-gre)
![Page 9: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/9.jpg)
ViAggre: Basic Idea
![Page 10: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/10.jpg)
ViAggre: Basic Idea
![Page 11: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/11.jpg)
Data plane operations
![Page 12: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/12.jpg)
Route stretch
![Page 13: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/13.jpg)
Ingress -> aggregation point
![Page 14: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/14.jpg)
Aggregation point -> egress
![Page 15: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/15.jpg)
scalability• LISP (locator identifier separation
protocol)
![Page 16: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/16.jpg)
mobility• Session continuity
– TCP/IP socket • IP address is fixed
– IP address is changed with mobility• Initial lookup
– DNS assumes static binding between domain name and IP address
– What if IP address of a host changes dy-namically?
![Page 17: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/17.jpg)
mobility• Destination mobility
– Client changes her point of attachment during session
• Source mobility– What if source moves?
• What if both endpoints change their points of attachment simultaneously?
![Page 18: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/18.jpg)
Taxonomy: mobility proposals
• L3– MIPv4, MIPv6, PMIP
• L4• Shim layer
![Page 19: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/19.jpg)
IP mobility problem• Internet hosts/interfaces are identified by IP address
– Host identifier– Locator
• Moving to another network requires different network address– But this would change the host’s identity– How can we still reach that host?
![Page 20: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/20.jpg)
Routing for mobile hosts
CH
MH
Home network
MH
CHMH = mobile host CH = correspondent host
Home network Foreign network
Foreign network
How to direct packets to moving hosts transparently?
![Page 21: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/21.jpg)
5 slides are from Scott Midkiff @VT hereafter
![Page 22: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/22.jpg)
![Page 23: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/23.jpg)
Host-specific routes• There are numerous routers• There will be even more mobile hosts• Whenever a host changes its address, it
may have to be propagated across the In-ternet
![Page 24: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/24.jpg)
?
![Page 25: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/25.jpg)
![Page 26: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/26.jpg)
LD (location directory) • identifier: location• home address (HoA): care-of address (CoA)
Mobile IP
![Page 27: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/27.jpg)
Proxy Mobile IP
![Page 28: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/28.jpg)
L4 Proposals• MSOCKs
– “MSOCKS: An Architecture for Transport Layer Mobility,” infocom ‘98
• SCTP– RFC 4960, “Stream Control Transmission
Protocol”• Migrate
– “An End-to-End Approach to Host Mobil-ity,” MobiCom ‘00
![Page 29: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/29.jpg)
Migrate• Locate hosts through existing DNS
– Secure, dynamic DNS is currently deployed and widely available (RFC 2137)
– Maintains standard IP addressing model• IP address are topological addresses, not Ids• Fundamental to Internet scaling properties
• Ensure seamless connectivity through connection migration– Notify only the current set of correspondent
hosts– Follows from the end-to-end argument
![Page 30: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/30.jpg)
Migrate Architecture
DNS Server
Mobile Hostfoo.bar.edu
Location Query(DNS Lookup)
Connection Initiation
Location Update(Dynamic DNS Update)
Connection Migration
xxx.xxx.xxx.xxxyyy.yyy.yyy.yyy
CorrespondentHost
![Page 31: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/31.jpg)
Shim layer: Insert an ID-locator mapping layer
• Shim6– Level 3 Multihoming Shim Protocol for
IPv6 , RFC 5533• HIP
– Host Identity Protocol (HIP) Architecture, RFC 4423
![Page 32: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/32.jpg)
Content delivery efficiency• P2P: BitTorrent• CDN• IP multicasting• Wireless multicasting/broadcasting• CCN
![Page 33: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/33.jpg)
Content centric networking• FIB Scalability• Source mobility• Cache-BW tradeoff
![Page 34: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/34.jpg)
Security: DDOS• DDoS
– Filtering-based– Capability-based
![Page 35: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/35.jpg)
Security: PKI• PKI is vulnerable
– Certificate chain• certificate
Digital Certificate
“I officially approve the relation be-
tween the holder of this certificate (the user) and this par-ticular public key.
Source: Atul Kahate
![Page 36: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/36.jpg)
Digital Certificate Signed by CA
Digital Certifi-cate
Subject Name: …Public Key: ……
CA’s Digital Signature
To verify this cer-tificate, we need to de-sign it using the CA’s public key. If
we can de-sign the certificate, we can safely assume that
the certificate is valid.
“de-sign” means to verify the message digest of certificate by using CA’s public key
![Page 37: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/37.jpg)
CA Hierarchy
Root CA
Second Level CA
Second Level CA
Second Level CA
Third Level CA
Third Level CA
Third Level CA
Third Level CA
…
… …
![Page 38: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/38.jpg)
PKI threats • Everybody can be a CA• A naïve/reckless/malicious CA may
issue a certificate to a malicious en-tity.
• The malicious entity runs a bogus server– Say, citibank.com
• Somehow DNS response of citibank.-com has the IP address of the mali-cious entity
• Then what?
![Page 39: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/39.jpg)
Video adaptation• How to maximize users’ QoE in a cell
or a group of cells in adaptive multi-media framework
• QoS: throughput, delay, jitter, loss• QoE: PSNR, MOS, zapping time
![Page 40: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/40.jpg)
Rate Adaptation is a must• Different devices• Link/path bandwidth• Dynamics
40/24
2Mb/s
1Mb/s 0.2Mb/s
0.5Mb/s
![Page 41: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/41.jpg)
Online transrating/transcod-ing
• Original video is modified
41/24
Netmanias, 2012
![Page 42: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/42.jpg)
Dynamic Adaptive Streaming over HTTP (DASH)
• Segments for multiple quality levels
42/24
Thomas Stockhammer, Qualcomm
![Page 43: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/43.jpg)
Scalable video coding (SVC)• Multiple layers for progressive quality en-
hancement
Layered Encoder
Layer lLayer 3
Layer 1Layer 2
…
Layered Video
Base layer
Enhancement Layer
Spatio-Temporal-Quality Cube
* MDC: multiple description coding
![Page 44: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/44.jpg)
Location-based Mobile Networking
• offloading• handoff• P2P communications
![Page 45: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/45.jpg)
Data center networking• Monitoring• Re-routing• TCP
![Page 46: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/46.jpg)
TCP for Big Data• “Understanding TCP Incast and Its
Implications for Big Data Workloads”• “Cascaded TCP: Big Throughput for
Big Data Applications in Distributed HPC”
![Page 47: i-2 Internet problems](https://reader036.fdocuments.in/reader036/viewer/2022062501/56816385550346895dd46d76/html5/thumbnails/47.jpg)
Oracle Mapping System• Mobility• Routing scalability• Content delivery• Certificate Verification