Presentation is loading. Please wait.

Presentation is loading. Please wait.

Reducing Latency in Tor Circuits with Unordered Delivery Michael F. Nowlan, David Wolinsky, and Bryan Ford Yale University Dedis Lab.

Published byAntonia Wicks Modified over 10 years ago

Similar presentations

Presentation on theme: "Reducing Latency in Tor Circuits with Unordered Delivery Michael F. Nowlan, David Wolinsky, and Bryan Ford Yale University Dedis Lab."— Presentation transcript:

1 Reducing Latency in Tor Circuits with Unordered Delivery Michael F. Nowlan, David Wolinsky, and Bryan Ford Yale University Dedis Lab

2 Tor – The Onion Router Bob Server 00 Server 10 Server 20 Server 01 Server 11 Server 21 Server 02 Server 12 Server 22 Anonymizing Relays

3 Tor – The Onion Router Bob Server 00 Server 10 Server 20 Server 01 Server 11 Server 21 Server 02 Server 12 Server 22 Anonymizing Relays Alice Carol

4 TCP TLS Bob Performance Problems Traffic between two relays streams across 1 TCP Conn CarolAlice Tor Data

5 Bob Performance Problems Traffic between two relays streams across 1 TCP Conn Cross circuit Head-of-line blocking CarolAlice Incoming queue head Missing Segment Inaccessible data

6 Performance Problems Traffic between two relays streams across 1 TCP Conn Cross circuit Head-of-line blocking TCP Buffers can create delays CarolAliceBobCarolAlice Bob Outgoing queue head x

7 Outline Introduction to Tor Tor / TCP Bottlenecks Design Space Tool #1: uTCP Tool #2: uTLS Eliminating Head-of-Line Blocking in Tor Conclusions

8 Our Goals Improve Tor QoS for low latency, low bandwidth Eliminate head-of-line blocking Improve latency for low latency, low bandwidth Apps Use existing transport (TCP/TLS) Minimal modifications to Tor Interoperability with existing Tor deployments

9 Design Space Different transports DTLS/TCP over UDP, PCTCP, UDP Tradeoff between user-space networking stack or add reliability layer IPSec not universally configurable One connection per-circuit OS limitations Potential performance hit No shared congestion state One connection per-priority Torchestra May leak information about the flows Doubles active sockets, no shared congestion state

10 Outline Introduction to Tor Tor / TCP Bottlenecks Design Space Tool #1: uTCP Tool #2: uTLS Eliminating Head-of-Line Blocking in Tor Conclusions

11 Unordered TCP (uTCP) Small kernel modification and module Less than 600 lines of code Supported on Linux Kernel 2.6 and 3 Recent IETF activity by Apple Out-of-order reads Priority sending Disable congestion control

12 uTCP Out-of-Order Reads

13 Carol uTCP Priority Sending Give low latency, low bandwidth circuits preference Initiate by a setsockopt User prepends priority to each packet Inserted into send buffer ahead of lower priority data Optional squash to erase data from the buffer CarolAliceBob Outgoing queue head 0001Alice Carol2 3 1 1

14 uTCP Disable Congestion Control Initiated with a setsockopt Null TCP congestion control kernel module Always sets congestion window to maximum size

15 uTCP Out-of-order reads Priority sending Disable congestion control Remaining issues: Tor uses TLS! Need a framing mechanism for out-of-order msgs! TLS provides framing…

16 Outline Introduction to Tor Tor / TCP Bottlenecks Design Space Tool #1: uTCP Tool #2: uTLS Eliminating Head-of-Line Blocking in Tor Conclusions

17 Record Processing TLS Header Application data – 0x17 TLSv1.2 – 0x0303 Length – Up to 16 KB Data length check MAC check Decryption Deliver TypeVersionLength Data MAC Record number

18 uTLS Identifying records Search for header: Verify sufficient bytes for size Perform a MAC check – Must guess record number Try a sequence Rollback state when processing out of order Fail otherwise Requires explicit IV an then decrypt and deliver CarolAliceBobCarolAliceBob 0x170x0303<= 2^16 TypeVersionSize

19 Outline Introduction to Tor Tor / TCP Bottlenecks Design Space Tool #1: uTCP Tool #2: uTLS Eliminating Head-of-Line Blocking in Tor Conclusions

20 From Tor to Unordered Tor Apply uTCP and uTLS to Tor to make it support unordered delivery – uTor Tor has multiple circuits sharing a single TCP stream Each circuit passes datagrams or cells Each circuit has independent state

21 Record Payload uTor – Cell Processing One cell per record Each cell specifies its circuit Can we process cells out of order? Assume no, for now Process cells in order Add sequence number to cells Header size goes from 5 to 7 bytes Payload remains the same ToruTorDelta LoC8141881513+95 (0.0001%) Payload VersionCircuitID

22 Deployment Challenges uTCP / uTLS adoption Not found in main stream kernels Currently only truly beneficial for ORs Virtualization? uTor adoption uTor must negotiate to use 2 byte cell ID Compatible with existing Tor deployments

23 Preliminary Evaluation of uTor Tor configuration 3 Relays 3 Directory Authorities A single proxy OP takes the same path through the 3 relays Version 0.2.5.0-alpha-dev (git-7c670895b02ba731) Normally distributed, 50 ms latency 0 and 5% loss Experiment Requests to 40 popular sites on the Internet Data sizes 10 KB to 400 KB Lossy-link

24 Preliminary Evaluation

25 Outline Introduction to Tor Tor / TCP Bottlenecks Design Space Tool #1: uTCP Tool #2: uTLS Eliminating Head-of-Line Blocking in Tor Conclusions

26 Future Work uTor shows promise Removes head-of-line blocking No userspace networking libraries (DTLS/TCP Tor) No need to change Tor to use UDP We can do more Investigate improved congestion control algorithms Priority sending – Similar to Torchestra Impact of head-of-line blocking on congestion control Out of order circuits interesting but dangerous Processing a destroy before receiving all packets Assumed in order nature

27 Thank you for your attention http://dedis.cs.yale.edu/2009/tng/

28 The Challenges with TCP Overlays multiplex a single TCP link for multiple streams A missed packet in one stream causes delays in all streams Logically the streams are not blocked TCP blocks until all packets are received in order Unable to perform priority sending Cannot insert into TCP buffer Layered congestion control TOR runs TCP between end points as well as hop by hop Receiving a dropped packet in the hop by hop could result in a burst between the end points causing undesirable ramping up

Download ppt "Reducing Latency in Tor Circuits with Unordered Delivery Michael F. Nowlan, David Wolinsky, and Bryan Ford Yale University Dedis Lab."

Similar presentations

MCT620 – Distributed Systems

MCT620 – Distributed Systems
Computer Networks TCP/IP Protocol Suite.

Computer Networks TCP/IP Protocol Suite.
Martin Suchara, Ryan Witt, Bartek Wydrowski California Institute of Technology Pasadena, U.S.A. TCP MaxNet Implementation and Experiments on the WAN in.

Martin Suchara, Ryan Witt, Bartek Wydrowski California Institute of Technology Pasadena, U.S.A. TCP MaxNet Implementation and Experiments on the WAN in.
Reconsidering Reliable Transport Protocol in Heterogeneous Wireless Networks Wang Yang Tsinghua University 1.

Reconsidering Reliable Transport Protocol in Heterogeneous Wireless Networks Wang Yang Tsinghua University 1.
Improvement of TCP Packet Reassembly in Libnids

Improvement of TCP Packet Reassembly in Libnids
TCP Sliding Windows, Flow Control, and Congestion Control Lecture material taken from Computer Networks A Systems Approach, Fourth Ed.,Peterson and Davie,

TCP Sliding Windows, Flow Control, and Congestion Control Lecture material taken from Computer Networks A Systems Approach, Fourth Ed.,Peterson and Davie,
Floating Cloud Tiered Internet Architecture Current: Rochester Institute of Technology, Rensselaer Polytechnic Institute, University of Nevada, Reno Level.

Floating Cloud Tiered Internet Architecture Current: Rochester Institute of Technology, Rensselaer Polytechnic Institute, University of Nevada, Reno Level.
Streaming Video over the Internet

Streaming Video over the Internet
TCP-FCW – transport protocol for real-time transmissions on high-loss networks Sergei Kozlov, 23-02-2004.

TCP-FCW – transport protocol for real-time transmissions on high-loss networks Sergei Kozlov,
Top-Down Network Design Chapter Thirteen Optimizing Your Network Design Copyright 2010 Cisco Press & Priscilla Oppenheimer.

Top-Down Network Design Chapter Thirteen Optimizing Your Network Design Copyright 2010 Cisco Press & Priscilla Oppenheimer.
SCTP Tutorial Randall Stewart

SCTP Tutorial Randall Stewart
UDP & TCP Where would we be without them!. UDP User Datagram Protocol.

UDP & TCP Where would we be without them!. UDP User Datagram Protocol.
CS 471/571 Transport Layer 5 Slides from Kurose and Ross.

CS 471/571 Transport Layer 5 Slides from Kurose and Ross.
Winter 2008CS244a Handout #61 CS244a: An Introduction to Computer Networks Handout 6: The Transport Layer, Transmission Control Protocol (TCP), and User.

Winter 2008CS244a Handout #61 CS244a: An Introduction to Computer Networks Handout 6: The Transport Layer, Transmission Control Protocol (TCP), and User.
1 Chapter 3 TCP and IP. Chapter 3 TCP and IP 2 Introduction Transmission Control Protocol (TCP) Transmission Control Protocol (TCP) User Datagram Protocol.

1 Chapter 3 TCP and IP. Chapter 3 TCP and IP 2 Introduction Transmission Control Protocol (TCP) Transmission Control Protocol (TCP) User Datagram Protocol.
BZUPAGES.COM 1 User Datagram Protocol - UDP RFC 768, Protocol 17 Provides unreliable, connectionless on top of IP Minimal overhead, high performance –No.

BZUPAGES.COM 1 User Datagram Protocol - UDP RFC 768, Protocol 17 Provides unreliable, connectionless on top of IP Minimal overhead, high performance –No.
Copyright 1999, S.D. Personick. All Rights Reserved. Telecommunications Networking II Lecture 32 Transmission Control Protocol (TCP) Ref: Tanenbaum pp:521-545.

Copyright 1999, S.D. Personick. All Rights Reserved. Telecommunications Networking II Lecture 32 Transmission Control Protocol (TCP) Ref: Tanenbaum pp:
Options or payload? Costin Raiciu UCL IETF 78, Maastricht.

Options or payload? Costin Raiciu UCL IETF 78, Maastricht.
Transport Layer Services –Reliable Delivery –or Not! Protocols –Internet: TCP, UDP –ISO: TP0 thru TP4.

Transport Layer Services –Reliable Delivery –or Not! Protocols –Internet: TCP, UDP –ISO: TP0 thru TP4.
Introduction to Transport Layer. Transport Layer: Motivation A B R1 R2 r Recall that NL is responsible for forwarding a packet from one HOST to another.

Introduction to Transport Layer. Transport Layer: Motivation A B R1 R2 r Recall that NL is responsible for forwarding a packet from one HOST to another.

Similar presentations

Ads by Google