Network Architecture and Security Ten Years Out Internet2 Member Meeting; Fall 2005 Deke Kassabian – University of Pennsylvania Mark Poepping – Carnegie.

Slides:

Advertisements

Similar presentations

Brief-out: Isolation Working Group Topic discussion leader: Ken Birman.

Advertisements

INDIANAUNIVERSITYINDIANAUNIVERSITY GENI Global Environment for Network Innovation James Williams Director – International Networking Director – Operational.

Fundamental Issues of Future Internet Introduction, Design Goals and Principles Mingwei Xu Qingdao.

Network Resource Broker for IPTV in Cloud Computing Lei Liang, Dan He University of Surrey, UK OGF 27, G2C Workshop 15 Oct 2009 Banff,

INTRODUCTION TO NETWORK VIRTUALIZATION Mosharaf Chowdhury Member, eNVy Project Wednesday, May 14, 2008 University of Waterloo - eNVy 1.

SDN Controller Challenges

Network Science and Engineering (NetSE) Research Agenda: v1.0 5 th GENI Engineering Conference Seattle, WA 21 July 2009 Ellen Zegura, Georgia Tech.

Christina Steinbacher-Reed Collins Type 1 Describe a time when you experienced a significant change. How did you react to that change?

4/27/2015Slide 1 Rethinking the design of the Internet: The end to end arguments vs. the brave new world Marjory S. Blumenthal Computer Science and Telecomms.

Four myths about GENI (and one recommendation) Constantine Dovrolis College of Computing Georgia Tech.

GENI: Global Environment for Networking Innovations Larry Landweber Senior Advisor NSF:CISE Joint Techs Madison, WI July 17, 2006.

Knowledge Sciences Center Activity and Engagement Models July 31, 2013 Meeting Recap of Discussions 1 and 2.

1 Theory of Change Chesapeake Bay Funders Network Program Evaluation Training Workshop OMG Center for Collaborative Learning January 9-10, 2008.

VoipNow Core Solution capabilities and business value.

Kansei Connectivity Requirements: Campus Deployment Case Study Anish Arora/Wenjie Zeng, GENI Kansei Project Prasad Calyam, Ohio Supercomputer Center/OARnet.

Public Key Infrastructure at the University of Pittsburgh Robert F. Pack, Vice Provost Academic Planning and Resources Management March 27, 2000 CNI Spring.

1 GENI: Global Environment for Network Innovations Jennifer Rexford Princeton University

Kae Hsu Communication Network Dept. Redundant Internet service provision - customer viewpoint.

The Co-mingled Universe of R&E Networking: the reprise Ken Klingenstein Director, Internet2 Middleware and Security Ken Klingenstein Director, Internet2.

The Future of Internet Research Scott Shenker (on behalf of many networking collaborators)

NGNS Program Managers Richard Carlson Thomas Ndousse ASCAC meeting 11/21/2014 Next Generation Networking for Science Program Update.

The Future of the Internet Jennifer Rexford ’91 Computer Science Department Princeton University

Higher Education Cybersecurity Strategy, Programs, and Initiatives Rodney Petersen Policy Analyst & Security Task Force Coordinator EDUCAUSE.

EDUCAUSE/Internet2 Computer and Network Security Task Force Update Jack Suess February 3, 2004.

Information Assurance and Higher Education Clifton Poole National Defense University Carl Landwehr National Science Foundation Tiffany Olson Jones Symantec.

2011 SIGnetwork Regional Meetings Guidance in Structuring a Communities of Practice.

Addressing Diagnostic Complexity The EDDY Approach End-to-end Diagnostic DiscoveryY Chas DiFatta Mark Poepping

FIND experimental requirements David D. Clark. FIND Future Internet Design (FIND) is an NSF program (now folded in to NetSE) to envision the Internet.

© 2001 Carnegie Mellon University S8A-1 OCTAVE SM Process 8 Develop Protection Strategy Workshop A: Protection Strategy Development Software Engineering.

Sponsored by the National Science Foundation GENI-enabled Campuses Responsibilities, Requirements, & Coordination Bryan Lyles, NSF Mark Berman & Chip Elliott,

Happy Network Administrators  Happy Packets  Happy Users WIRED Position Statement Aman Shaikh AT&T Labs – Research October 16,

The Research and Education Network: Platform for Innovation Heather Boyles, Next Generation Network Symposium Malaysia 2007-March-15.

NSF Middleware Initiative Renee Woodten Frost Assistant Director, Middleware Initiatives Internet2 NSF Middleware Initiative.

Collaboration with IEEE P2413 Source: Omar Elloumi, TP Chair WG: TP Meeting: TP17.

The roots of innovation Future and Emerging Technologies (FET) Future and Emerging Technologies (FET) The roots of innovation Proactive initiative on:

EDUCAUSE LIVE EDUCAUSE/Internet2 Computer and Network Security Task Force Update Jack Suess January 21, 2004.

Internet2 Security Efforts - A brief overview of activities Ken Klingenstein 2004 July 21 Joint Techs- Columbus, Ohio.

New challenges for CIOs Pekka Kähkipuro.

Advanced Networks: The Past and the Future – The Internet2 Perspective APAN 7 July 2004, Cairns, Australia Douglas Van Houweling, President & CEO Internet2.

Marv Adams Chief Information Officer November 29, 2001.

Security at Line Speed: Integrating Academic Research and Enterprise Security.

Virtualization as Architecture - GENI CSC/ECE 573, Sections 001, 002 Fall, 2012 Some slides from Harry Mussman, GPO.

GEC3 – October 28-30, 2008www.geni.net1 Opt-in Working Group System Engineering Report October 29, 2008 Harry Mussman Opt-in WG System Engineer

Network Reliability and Interoperability Council VII NRIC Council Meeting Focus Group 1B Network Architectures for Emergency Communications in 2010 September.

New Supervisors’ Guide To Effective Supervision

6 February 2004 Internet2 Priorities 2004 Internet2 Industry Strategy Council Douglas Van Houweling.

Salsa Update Pittsburgh CSG Fall ’05

Zurich Research Laboratory IBM Zurich Research Laboratory Adaptive End-to-End QoS Guarantees in IP Networks using an Active Network Approach Roman Pletka.

What’s Happening at Internet2 Renee Woodten Frost Associate Director Middleware and Security 8 March 2005.

MM Clements Introduction. Course details Advanced Switching & Network Troubleshooting ELEE1065 Advanced Network Design ELEE1121 Taught together but assessed.

Advanced research and education networking in the United States: the Internet2 experience Heather Boyles Director, Member and Partner Relations Internet2.

Complex Systems Workshop, September 20-21, 2012 Evaluation of Complex Systems J. Bryan Lyles Program Director CISE/CNS.

Internet2 Strategic Directions October Fundamental Questions  What does higher education (and the rest of the world) require from the Internet.

Can we save the OPEN Internet? with focus on The Two-Port Internet Problem and what to do about it Terry Gray Designated Prophet of Doom University of.

KYUNG-HWA KIM HENNING SCHULZRINNE 12/09/2008 INTERNET REAL-TIME LAB, COLUMBIA UNIVERSITY DYSWIS.

SEND Cluster ‘Host’ Training Introduction Judith Carter – Senior Adviser Complex Needs/Vulnerable Learners Education Achievement Improvement and Governance.

Internet2 Members Meeting Washington, DC 1 Advanced Networking Infrastructure and Research (ANIR) Aubrey Bush Division Director, ANIR National Science.

MPLS Introduction How MPLS Works ?? MPLS - The Motivation MPLS Application MPLS Advantages Conclusion.

Enterprise Network Security Threats that are Overlooked.

HCNA-Security Huawei Certified Network Associate Security (HCNA-Security) validates the basics of network security knowledge and skills to support the.

CINO PROGRAM ADVISORY GROUP MEETING Ed Aractingi, Assistant Vice President for IT/Deputy Chief Information Officer, Marshall University Mark Cather, Chief.

Office 365 FastTrack Planning Engagement Kickoff

Four myths about GENI (and one recommendation)

Mark Poepping, SALSA Chair

Fall 2004 Internet2 Member Meeting

Smart Learning concepts to enhance SMART Universities in Africa

GENI Global Environment for Network Innovation

CS 410 Professional Workforce Development I

Simulation-driven Enterprise Modelling: WHY ?

Presentation transcript:

Network Architecture and Security Ten Years Out Internet2 Member Meeting; Fall 2005 Deke Kassabian – University of Pennsylvania Mark Poepping – Carnegie Mellon

Of Possible Interest To- Researchers, CIOs, network & security professional who: –find that today's networks and tools cannot both meet the needs of general information security requirements and advanced applications. –find that today's network problems and security incidents are increasingly difficult to troubleshoot, due to the complexity of networks with many disjoint, non-coordinated security control points. –are interested in next-gen networks with new capabilities, and that might support advanced high bandwidth and realtime application requirements without sacrificing security.

Outline A Brief Introduction to Salsa Introduction to RTP Related Efforts The “Why” and “Who” of RTP Reconnections Workshop

Salsa recap… Internet2 campus leaders in networking and security who advise on network security initiatives Focus on technology issues and operational imperatives Collaboration, cross-membership with EduCause/Internet2 Security Task Force

Salsa Activities Next Week – Immediate issues (TFN) –Incident Security WG –REN-ISAC focus groups Next Year – Medium-term improvement (TFT) –netAuth architecture –FWNA – visiting scientist Next Decade – Long-term issues (RTP) –Reconnections workshop

Salsa RTP: “Rethinking the Problem” Salsa Working Group exploring some of the problems with today’s model for networking and security Collaborating with those considering 'clean slate’ design for Internets First step is a small workshop to explore the possibility of new design principles for future networks

Which Problem are we “Re-Thinking?” Internet Design Principles User and Application Expectations Available Security Solutions You!

Salsa RTP Exploring problems in today’s model for networking and security –Applications can (partially or fully) fail without feedback to the application or user, because of security policy implemented in firewalls, traffic shapers, etc. –Personal lambdas provide new capabilities, and create new challenges –Problem diagnosis has become much more difficult

New Requirements; New Principles Collaborating with those considering 'clean slate’ design for Internets –Basic Internet design principles which have served us well for more than 30 years need to be reviewed –New principles that better meet emerging needs for research and advanced applications may emerge –Example: Take a fresh look at the implications of trust fabrics on future network designs

Interact with Other Efforts Issues, Motivations, Concerns; e.g. IRTF End-to-End Research Group report SIGCOMM July, 2005 DARPA Report Research, Design, Experimentation; e.g. NSF GENI PlanetLab Manageability doesn’t appear as a requirement elsewhere

Re-thinking Example (1 of 2) Revisiting basic design principles such as the data plane / control plane model A general data plane - network core just forwards packets knowledge of the application is at the edges, in the attached hosts A parallel control plane used for managing the network infrastructure, without knowledge of the applications being run. This division facilitates innovation and deployment of new applications But it has a drawback: the core doesn’t know what the user is trying to accomplish, so it can’t detect when the user is experiencing a failure.

Re-thinking Example (2 of 2) In 10 years, the Internet should be augmented to provide a linkage between application intentions and network behavior. (above paraphrased from the IRTF e2e report mentioned above)

RTP: Why is Salsa involved? Campus network and security professionals manage networks today, and feel the pain of being pulled in many directions As interesting new designs for Internets come to light as research, we’ll be working with researchers to instantiate them When the time comes to put real people and real applications and real load on new networks to do real work, we’ll be asked to help make that happen We know something about “Manageability”

Our role from the perspective of… Researchers: we host and help to provision many of your experiments; we broker the real traffic to the experiment Funders: we're generally the first to transition the experiment into less friendly environs, and so share in the risk Vendors: we buy or install and/or manage your products for our enterprises and the researchers with their testbeds

First Effort: “Reconnections” workshop Fall 2005: explore RTP issues in a small group Participation Small, Invitation-only workshop Principals from other long-term efforts Network Researchers Campus Network and Security Architecture and Engineering

First Effort: “Reconnections” workshop Process & Focus Working through identification of problems, and long term design approaches to deal with them Focus on “Manageability” in Enterprise Networks Consider policy and experience with trust fabric in future designs

First Effort: “Reconnections” workshop Outcomes and Output Workshop notes Whitepaper on early conclusions Suggestions for follow-up and connections to other efforts

Network Architecture and Security Ten Years Out Internet2 Member Meeting; Fall 2005 Deke Kassabian – University of Pennsylvania Mark Poepping – Carnegie Mellon