Presentation is loading. Please wait.

Presentation is loading. Please wait.

Canaries in the Network

Published byMillicent Evans Modified over 6 years ago

Similar presentations

Presentation on theme: "Canaries in the Network"— Presentation transcript:

1 Canaries in the Network
Vincent Liu Danyang Zhuo, Qiao Zhang, Xin Yang

2 Jim Gray. “Why Do Computers Stop and What Can Be Done about It?” 1985.
 Change is dangerous

3 Today’s Large Networks Are Just as Vulnerable
How can we keep the control plane available in the face of change? Govindan et al. 2016

4 Possible Solution: Canaries
99% Users 1%

5 Possible Solution: Network Canaries
Announce: /248 Naïve canarying does not protect against many errors Networks are connected! Errors can propagate

6 Goal: Isolated Network Canaries
Known Correct Split network into known correct and canary control plane instances Safely roll out changes, reason about their potential effects

7 Approach: Taint Tracking in the Network
Direct communication between controllers Indirect communication via mutually controlled hardware ip route /24 Ethernet1/ Announce /8

8 First Step: Notice That This Is Impossible
Partitioned control planes The control planes must not talk to one another Physical isolation The same device cannot be managed by two control planes Global properties (e.g., connectivity) If there is a correct path between two servers, they should be able communicate

9 Second Step: Relax The Requirements
Physical Partitioning prioritizes: (1) Partitioned control plane (2) Physical isolation Logical Partitioning prioritizes: (3) Global properties like connectivity

10 Design 1: Physical Partitioning
Known correct Canary Known correct Known correct Connected components are each managed by a single control plane Control planes do not talk to one another or share hardware Upgrades are rolled one component at a time

11 Design 1: Physical Partitioning
Known correct Canary Known correct Known correct Pros: Cons: Strong isolation Some routing policies are impossible Simple filtering at boundaries Failures can cause inefficiency

12 Design 2: Logical Partitioning
Known correct Canary Known correct Known correct How do we approximate isolation with many control planes on each switch? Isolate state using techniques like VLANs Isolate performance using weighted fair queuing Updates are installed and traffic is incrementally rolled onto a canary slice

13 Design 2: Logical Partitioning
Known correct Canary Known correct Known correct Pros: Cons: Routing is the exact same as today Not physically isolated Flexible rollout Non-protected upgrades are sometimes necessary Defends against “DDoS” attacks

14 Open Questions How does this fit with the rest of the workflow?
For physical partitioning, how do we divide topologies? How do we design topologies that operate well under failure? Can we build failure-isolated VMs for switch OSes? What hardware abstractions would we need? Are there other useful ways to partition?

15 Our goal: Add true fault isolation to network canaries
Summary Our goal: Add true fault isolation to network canaries Physical partitioning: Prioritize control plane isolation and physical isolation Split the network into connected subgraphs, each managed independently Logical partitioning: Prioritize control plane isolation and global properties like connectivity Split each switch into multiple virtual switches isolated by VLANs, WFQing

Download ppt "Canaries in the Network"

Similar presentations

Software-defined networking: Change is hard Ratul Mahajan with Chi-Yao Hong, Rohan Gandhi, Xin Jin, Harry Liu, Vijay Gill, Srikanth Kandula, Mohan Nanduri,

Software-defined networking: Change is hard Ratul Mahajan with Chi-Yao Hong, Rohan Gandhi, Xin Jin, Harry Liu, Vijay Gill, Srikanth Kandula, Mohan Nanduri,
Logically Centralized Control Class 2. Types of Networks ISP Networks – Entity only owns the switches – Throughput: 100GB-10TB – Heterogeneous devices:

Logically Centralized Control Class 2. Types of Networks ISP Networks – Entity only owns the switches – Throughput: 100GB-10TB – Heterogeneous devices:
PlanetLab Operating System support* *a work in progress.

PlanetLab Operating System support* *a work in progress.
LAN DESIGN. Functionality - the network must work with reasonable speed and reliability.

LAN DESIGN. Functionality - the network must work with reasonable speed and reliability.
Ethernet and switches selected topics 1. Agenda Scaling ethernet infrastructure VLANs 2.

Ethernet and switches selected topics 1. Agenda Scaling ethernet infrastructure VLANs 2.
Course Name- CSc 8320 Advanced Operating Systems Instructor- Dr. Yanqing Zhang Presented By- Sunny Shakya Latest AOS techniques, applications and future.

Course Name- CSc 8320 Advanced Operating Systems Instructor- Dr. Yanqing Zhang Presented By- Sunny Shakya Latest AOS techniques, applications and future.
Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.

Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.
MSIT 458: Information Security & Assurance By Curtis Pethley.

MSIT 458: Information Security & Assurance By Curtis Pethley.
UNCLASSIFIED Secure Indirect Routing and An Autonomous Enterprise Intrusion Defense System Applied to Mobile ad hoc Networks J. Leland Langston, Raytheon.

UNCLASSIFIED Secure Indirect Routing and An Autonomous Enterprise Intrusion Defense System Applied to Mobile ad hoc Networks J. Leland Langston, Raytheon.
Lesson 9: Creating and Configuring Virtual Networks

Lesson 9: Creating and Configuring Virtual Networks
Installing software on personal computer

Installing software on personal computer
CECS 474 Computer Network Interoperability Tracy Bradley Maples, Ph.D. Computer Engineering & Computer Science Cal ifornia State University, Long Beach.

CECS 474 Computer Network Interoperability Tracy Bradley Maples, Ph.D. Computer Engineering & Computer Science Cal ifornia State University, Long Beach.
Network Topologies.

Network Topologies.
VLAN Trunking Protocol (VTP) W.lilakiatsakun. VLAN Management Challenge (1) It is not difficult to add new VLAN for a small network.

VLAN Trunking Protocol (VTP) W.lilakiatsakun. VLAN Management Challenge (1) It is not difficult to add new VLAN for a small network.
Virtualization Week 20. This week Virtualization – What is it? – Software on different operating systems? Group Presentations – 10-15 minutes per group.

Virtualization Week 20. This week Virtualization – What is it? – Software on different operating systems? Group Presentations – minutes per group.
Virtual LAN Design Switches also have enabled the creation of Virtual LANs (VLANs). VLANs provide greater opportunities to manage the flow of traffic on.

Virtual LAN Design Switches also have enabled the creation of Virtual LANs (VLANs). VLANs provide greater opportunities to manage the flow of traffic on.
Software Defined-Networking. Network Policies Access control: reachability – Alice can not send packets to Bob Application classification – Place video.

Software Defined-Networking. Network Policies Access control: reachability – Alice can not send packets to Bob Application classification – Place video.
Basic LAN techniques IN common with all other computer based systems networks require both HARDWARE and SOFTWARE to function. Networks are often explained.

Basic LAN techniques IN common with all other computer based systems networks require both HARDWARE and SOFTWARE to function. Networks are often explained.
Software Defined Networking Kathryn Abbett. Definition □Origins from Berkley and Stanford, around 2008 □Software-Defined Networking (SDNs) allows applications.

Software Defined Networking Kathryn Abbett. Definition □Origins from Berkley and Stanford, around 2008 □Software-Defined Networking (SDNs) allows applications.
LAN Switching and Wireless – Chapter 1

LAN Switching and Wireless – Chapter 1

Similar presentations

Ads by Google