ΕΘΝΙΚΟ ΜΕΤΣΟΒΙΟ ΠΟΛΥΤΕΧΝΕΙΟ - Ε. Μ. Π

Slides:

Advertisements

Similar presentations

Connect communicate collaborate OpenFlow in GN3s Network Factory GN3 OpenFlow Facility Joan A. García-Espín on behalf of JRA2-T5 Partners i2CAT, Barcelona.

Advertisements

May 2 nd, 2001, page n° 1 The Invisible Network. May 2 nd, 2001, page n° 2 List of contents Introduction The invisible network: an example Some trends.

Connect communicate collaborate GN3plus What the network should do for clouds? Christos Argyropoulos National Technical University of Athens (NTUA) Institute.

Jennifer Rexford Princeton University MW 11:00am-12:20pm Network Virtualization COS 597E: Software Defined Networking.

GRS: The Green, Reliability, and Security of Emerging Machine to Machine Communications Rongxing Lu, Xu Li, Xiaohui Liang, Xuemin (Sherman) Shen, and Xiaodong.

Reconfigurable weblabs based on the IEEE1451 Std. Ricardo Costa - Gustavo Alves - Mário Zenha.

EWDSN 2012 PaFloMon A Slice Aware Passive Flow Monitoring Framework for OpenFlow Enabled Experimental Facilities Christos Argyropoulos Network Management.

NOVI: Networking innovations Over Virtualized Infrastructures STREP Project No , Call 5 – FIRE NOVI OVERVIEW Prof. Vasilis Maglaris.

Internet2 Network: Convergence of Innovation, SDN, and Cloud Computing Eric Boyd Senior Director of Strategic Projects.

The Future of GÉANT: The Future Internet is Present in Europe Vasilis Maglaris Professor of Electrical & Computer Engineering, NTUA Chairman, NREN Policy.

NetFlow Analyzer Drilldown to the root-QoS Product Overview.

Network Infrastructure Security. LAN Security Local area networks facilitate the storage and retrieval of programs and data used by a group of people.

SIMULTECH’15, Colmar, France July 21, 2015 Plenary Panel (organized by Prof. Mohammad Obaidat): “Advances in Modeling and Simulation of Computer Networks.

Enabling Innovation Inside the Network Jennifer Rexford Princeton University

CONVERGENCE KO Meeting EXPRESS: Implementing an SDN infrastructure over a federation of testbeds (experiment within the OpenLab project) Stefano Salsano.

Kostas Giotis, Yiannos Kryftis, Vasilis Maglaris

Software-Defined Networks Jennifer Rexford Princeton University.

NTUA-NATIONAL TECHNICAL UNIVERSITY OF ATHENS School of Electrical and Computer Engineering The FEDERICA Concept: Federated E-Infrastructure Dedicated to.

ITU Workshop on "Future Trust and Knowledge Infrastructure", Phase 1 Geneva, Switzerland, 24 April 2015 The Open and Trustworthy ICT Platform Prof. Dr.

Control-Plane Slicing Methods in Multi-Tenant Software Defined Networks IFIP/IEEE International Symposium on Integrated Network Management May 11, 2015.

INTERNATIONAL NETWORKS At Indiana University Hans Addleman TransPAC Engineer, International Networks University Information Technology Services Indiana.

COMMI T/ ONTOLOGY SESSION THURSDAY SEP. 17 Dr. Paola Grosso Assistant Professor SNE group - UvA Dr. Ilya Baldin Director, Networking Research.

Software-Defined Networking - Attributes, candidate approaches, and use cases - MK. Shin, ETRI M. Hoffmann, NSN.

Connect. Communicate. Collaborate Experiences with tools for network anomaly detection in the GÉANT2 core Maurizio Molina, DANTE COST TMA tech. Seminar.

1 - GEC8, San Diego, July 20-22, 2010 Measurement Tools in PlanetLab Europe Tanja Zseby (Fraunhofer FOKUS, Berlin, Germany) (some slides from other OneLab.

CINBAD CERN/HP ProCurve Joint Project on Networking 26 May 2009 Ryszard Erazm Jurga - CERN Milosz Marian Hulboj - CERN.

SDN AND OPENFLOW SPECIFICATION SPEAKER: HSUAN-LING WENG DATE: 2014/11/18.

NATIONAL TECHNICAL UNIVERSITY OF ATHENS School of Electrical & Computer Engineering Service Oriented Architecture - SOA for Intelligent Management of Power.

SDN Management Layer DESIGN REQUIREMENTS AND FUTURE DIRECTION NO OF SLIDES : 26 1.

Extending OVN Forwarding Pipeline Topology-based Service Injection

Measuring reputation in Testbeds Chrysa Papagianni, Symeon Papavassiliou National Technical University of Athens.

Early Detection of DDoS Attacks against SDN Controllers

Monitoring and Securing New Functions Deployed in a Virtualized Networking Environment Bertrand Mathieu, Guillaume Doyen, Wissam Mallouli, Thomas Silverston,

Brocade Flow Optimizer

TERENA Conference, Maastricht, 6 th June 2013 Fabio Farina Fabio Farina (GARR), Simon Vocella (GARR), Álvaro Monje (UPC), Celia Velayos (i2Cat), Chrysa.

Kick-off Meeting – Feb Stênio Fernandes SLA4CLOUD: Measurement and SLA Management of Heterogeneous Cloud Infrastructures.

Brocade Software Networking Openness. Agility. Economics. © 2015 BROCADE COMMUNICATIONS SYSTEMS, INC. COMPANY PROPRIETARY INFORMATION Curt Beckmann EMEA.

CAMPUS LAN DESIGN GUIDE Design Considerations for the High-Performance Campus LAN.

Network Data Collection Infrastructure to Detect Security Anomalies

Denial of Service Mitigation with OpenFlow using SciPass

ABSTRACT Problem Statement: The main aim of this thesis work is to investigate the performance of real-time voice traffic in IP networks and MPLS networks.

SDN and Security Security as a service in the cloud

SDN challenges Deployment challenges

Mircea Iordache, Simon Jouet, Angelos K. Marnerides, Dimitrios P

About Me Name: Yaokai Feng, from Kyushu University

University of Maryland College Park

GENUS Virtualisation Service for GÉANT and European NRENs

Atsushi Iwata, Takashi Egawa System Platforms Research Laboratories

Computer Network Course objective: To understand Network architecture

Distributed Network Traffic Feature Extraction for a Real-time IDS

OpenLabs Security Laboratory

Network-based Intrusion Detection, Prevention and Forensics System

Presenter: Ciaran Roche

An Overview of the ITTC Networking & Distributed Systems Laboratory

AKAMAI INTELLIGENT PLATFORM™

Mobile ad hoc networking: imperatives and challenges

A 5G experimental environment focused on vertical applications

Networking Specialization Overview

Extending MPLS/BGP VPNs to End-Systems

Firewalls Routers, Switches, Hubs VPNs

Networking Specialization Overview

Abeer Ali, Dimitrios Pezaros, Christos Anagnostopoulos

2018/12/10 Energy Efficient SDN Commodity Switch based Practical Flow Forwarding Method Author: Amer AlGhadhban and Basem Shihada Publisher: 2016 IEEE/IFIP.

V. Arun College of Information and Computer Sciences

SDNFV: Towards a Flexible and Dynamic Smart Data Plane Motivation

ORBIT Radio Grid Testbed – Project Highlights Nov 3, 2010

Chakadkit THAENCHAIKUN, Ph.D

2019/7/26 OpenFlow-Enabled User Traffic Profiling in Campus Software Defined Networks Presenter: Wei-Li,Wang Date: 2016/1/4 Author: Taimur Bakhshi and.

Technical Packages on IMT-2020 by WP1/13

Presentation transcript:

ΕΘΝΙΚΟ ΜΕΤΣΟΒΙΟ ΠΟΛΥΤΕΧΝΕΙΟ - Ε. Μ. Π ΕΘΝΙΚΟ ΜΕΤΣΟΒΙΟ ΠΟΛΥΤΕΧΝΕΙΟ - Ε.Μ.Π. NATIONAL TECHNICAL UNIVERSITY OF ATHENS - NTUA School of Electrical & Computer Engineering Division of Communications, Electronics & Information Engineering Network Management & Optimal Design (NETMODE) Laboratory http://www.netmode.ntua.gr Director: Prof. Vasilis Maglaris maglaris@netmode.ntua.gr Recent NETMODE Activities on Internet Research & Experimentation: Tetsbeds, Federated e-Infrastructures, Network Security & SDN/NFV March 2017

Lab Facilities Overview OpenFlow-enabled Devices NEC IP8800 Juniper MX80-48T HP 2920 2 x Open vSwitch on Xeon Processor 5160 – 3GHz, 8GB RAM, 8xGbE ports 6 x ESXi Hypervisors (v4.1 & 5.0), hosting ~50VMs Wireless – Fed4FIRE & OpenFlow Testbeds Hosting FEDERICA & PlanetLab Facilities

Wireless Testbed Part of EU Fed4FIRE Distributed Testbed

SDN Testbed OpenFlow Switches & Controllers

Federated e-Infrastructures NOVI Concept of Data, Control & Management Plane Stitching (Networking innovations Over Virtualized Infrastructures)

Policy Based Resource Management NFV Model of Policy Orchestration NFV Approach of Policy Based Architecture Graphical Overview of Policy Ontology

Anomaly Detection & Mitigation (I) Extending Remotely Triggered Black Hole (RTBH) Adding OF Functionality to Legacy LANs DDoS Attack Mitigation

Anomaly Detection & Mitigation (II) Classification of Malicious Source IP Prefixes Based on CAIDA Anonymized Data (DDoS Attack, August 2007) & Recent NTUA LAN Data

Anomaly Detection & Mitigation (III) A Cooperative Schema for Multi-domain SDN Environments

Anomaly Detection & Mitigation (IV) Collaborative Schema for Exchanging Attack Data

Anomaly Detection & Mitigation (V) Applying Emerging Tools for Network Security Packet Capturing Network Traffic Monitoring Advanced Statistical Methods for Anomaly Detection (Baysian, Theory of Evidence…) Machine Learning Techniques for Anomaly Detection & Mitigation (Neural Networks, Deep Learning, Bloom Filters) Attack Classification Filtering DNS DDoS Attacks SNMP MIB Counters NetFlow

Multi-Tenant Monitoring as VNF (I) A Monitoring Architecture for Research in Internet Experimentation (MARIE)

Multi-Tenant Monitoring as VNF (II) Monitoring in SDN Multi-tenant Environments

Multi-Tenant Monitoring as VNF (III) Scalable Monitoring-as-a-Service (MaaS)

Multi-Tenant Monitoring as VNF (IV) Application in a Federated Environment: GÉANT Testbed Service - GTS (GÉANT – NRENs – Campuses)

Scalable Network Monitoring Data Mining via the OmniDisco Collector

Selected Publications V. Maglaris, C. Papagianni, G. Androulidakis, M. Grammatikou, P. Grosso, J. van der Ham, C. de Laat, B. Pietrzak, B. Belter, J. Steger, S. Laki, M. Campanella and S. Sallent, "Toward a Holistic Federated Future Internet Experimentation Environment: The Experience of NOVI Research and Experimentation", IEEE Communications Magazine, Vol. 53, No. 7, pp. 136-147, July 2015 (Overview of the NOVI FIRE FP7 project) A. Douitsis and V. Maglaris, "Towards A Scalable management Collector", in Proc. of GIIS'16, Porto, Portugal, October 2016 (Network Monitoring Architecture featuring SNMP and ElasticSearch) Y. Kryftis, M. Grammatikou, D. Kalogeras and V. Maglaris, "Policy-Based Management for Federation of Virtualized Infrastructures", Journal of Network & Systems Management, Springer, June 2016 (Policy-based Network Management, Virtualized Infrastructures, Federated SLA) K. Giotis, M. Apostolaki and V. Maglaris, "A Reputation-based Collaborative Schema for the Mitigation of Distributed Attacks in SDN Domains", in Proc. of IEEE/IFIP Network Operations and Management Symposium, Istanbul, Turkey, April 2016 (Cooperative schemes to mitigate DDoS attacks) K. Giotis, G. Androulidakis and V. Maglaris, "A Scalable Anomaly Detection and Mitigation Architecture for Legacy Networks via an OpenFlow Middlebox", Security and Communication Networks, Wiley, October 2015 (Anomaly Detection & Mitigation Architecture for DDoS attacks using an approach on Legacy Networks) K. Giotis, C. Argyropoulos, G. Androulidakis, D. Kalogeras and V. Maglaris, "Combining OpenFlow and sFlow for an effective and scalable anomaly detection and mitigation mechanism on SDN environments", Computer Networks, Vol. 62, No. 7 , pp. 122-136, April 2014 (Scalable Anomaly Detection using Entropy Algorithms and sFlow sampling) C. Argyropoulos, S. Mastorakis, K. Giotis, G. Androulidakis, D. Kalogeras and V. Maglaris, "Control-Plane Slicing Methods in Multi-Tenant Software Defined Networks", in Proc. IFIP/IEEE Integrated Network Management Symposium (IM 2015), Ottawa, Canada, May 2015 (Assessing Virtual Network Slicing in terms of Resource Consumption) C. Siaterlis and V. Maglaris, "Detecting incoming and Outgoing DDoS Attacks at the Edge Using a Single Set of Network Characteristics“, in Proc. IEEE 10th Symposium on Computer and Communications (ISCC), Cartagena, Spain, June 2005 (Theoretical Statistical Analysis of Attack Patterns as experienced within the NTUA campus LAN) C. Siaterlis and B. Maglaris, "Towards Multisensor Data Fusion for DoS detection", in Proc. ACM Symposium on Applied Computing, 2004 (Data-fusion algorithms combining Attack Metrics for DDoS Anomaly Detection)