Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network Research An Operator’s Perspective Terry Gray University of Washington Associate Vice President, Technology Engineering, C&C Affiliate Professor,

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Network Research An Operator’s Perspective Terry Gray University of Washington Associate Vice President, Technology Engineering, C&C Affiliate Professor,"— Presentation transcript:

1 Network Research An Operator’s Perspective Terry Gray University of Washington Associate Vice President, Technology Engineering, C&C Affiliate Professor, CS&E

2 Theme  "Every day's a winding road" -S. Crow  "Every day's a research experiment" -T. Gray

3 Questions  Seen any 404s go away by themselves lately?  Is the trend getting better or worse?  What is the max retry count in MS Windows?  TcpMaxDataRetransmissions = ?  Could there be a connection?

4 Thesis  The (open) Internet died in 2003 at the hands of slammer and blaster  It's no longer about pervasive connectivity… now it’s all about (selective) isolation  Tolerance for, and frequency of, glitches.. is increasing  Current Internet model is busted… e.g. silent failures, poor diagnostics

5 Buzz Words  trust-mediated  convergence/virtualization

6 Miscellany  Perimeter Protection Paradox  Good ol' days of the network utility model  Defense-in-Depth vs MTTD, etc Claim:  M-T-to-penetration, innovation, diagnosis ~ d**2  How many arbitrary PEPs before the overall system becomes non-deterministic?

7 Trends  Software-defined networks  Personal lambdas  Port 80/443 tunneling to get thru firewalls  Encryption  End-point firewalls (changes diagnostic picture)  More policy boundaries; less effective  Regulation/compliance

8 Imagine  Being in a NOC with an irate customer on the phone:  Customer: "Is the network broken?"  NOC: "I give up, is it?“

9 Hard problems  DDOS  Worsening MTTG  Diagnosis complexity (MTTD)  Provisioning complexity (vs. network utility)  Mismatch between best and common deployment e.g. tcp retry count, duplex mismatch, stack-tuning  S/N ratio of behavioral IDS monitors  Path policy discovery  Trust management  Policy enforcement is silent; looks like net failure

10 Hard problems (cont’d)  Managing heterogenity: bugs, conventions (jumbos)  Organizational vs. geographic topologies  Scaling personal lambdas  Managing/diagnosing with e2e encryption  Exception management  Seduction of more protocols (e.g. MTR)  Attribution vs. anonymity  Multicast fault containment  Optimal fault-zone sizing

11 Conclusions  Plenty of work to do  Help needed now!  Current problems must inform future/clean-slate proposals

Download ppt "Network Research An Operator’s Perspective Terry Gray University of Washington Associate Vice President, Technology Engineering, C&C Affiliate Professor,"

Similar presentations

Designing for Pervasive Network Security. Designing for Security Our aim in this section will be to concentrate on how campus Networks can be designed.

Designing for Pervasive Network Security. Designing for Security Our aim in this section will be to concentrate on how campus Networks can be designed.
ABSTRACT Due to the Internets sheer size, complexity, and various routing policies, it is difficult if not impossible to locate the causes of large volumes.

ABSTRACT Due to the Internets sheer size, complexity, and various routing policies, it is difficult if not impossible to locate the causes of large volumes.
Photonic TeraStream and ODIN By Jeremy Weinberger The iCAIR iGRID2002 Demonstration Shows How Global Applications Can Use Intelligent Signaling to Provision.

Photonic TeraStream and ODIN By Jeremy Weinberger The iCAIR iGRID2002 Demonstration Shows How Global Applications Can Use Intelligent Signaling to Provision.
Securing, Connecting, and Scaling in Windows Azure Name Title Microsoft Corporation.

Securing, Connecting, and Scaling in Windows Azure Name Title Microsoft Corporation.
Firewalls Steven M. Bellovin https://www.cs.columbia.edu/~smb Matsuzaki ‘maz’ Yoshinobu 1.

Firewalls Steven M. Bellovin Matsuzaki ‘maz’ Yoshinobu 1.
Automated Network Management

Automated Network Management
Dynamic Topology Optimization for Supercomputer Interconnection Networks Layer-1 (L1) switch –Dumb switch, Electronic “patch panel” –Establishes hard links.

Dynamic Topology Optimization for Supercomputer Interconnection Networks Layer-1 (L1) switch –Dumb switch, Electronic “patch panel” –Establishes hard links.
Guide to Network Defense and Countermeasures Second Edition

Guide to Network Defense and Countermeasures Second Edition
PortLand: A Scalable Fault-Tolerant Layer 2 Data Center Network Fabric. Presented by: Vinuthna Nalluri Shiva Srivastava.

PortLand: A Scalable Fault-Tolerant Layer 2 Data Center Network Fabric. Presented by: Vinuthna Nalluri Shiva Srivastava.
Copyright © sFlow.org. 2004 All Rights Reserved sFlow & Benefits Complete Network Visibility and Control You cannot control what you cannot see.

Copyright © sFlow.org All Rights Reserved sFlow & Benefits Complete Network Visibility and Control You cannot control what you cannot see.
Strand 1 Social and ethical significance. Reliability and Integrity Reliability ◦Refers the operation of hardware, the design of software, the accuracy.

Strand 1 Social and ethical significance. Reliability and Integrity Reliability ◦Refers the operation of hardware, the design of software, the accuracy.
16254_08_2002 © 2002, Cisco Systems, Inc. All rights reserved. Cisco’s Security Vision Mario Mazzola Chief Development Officer August 29, 2002.

16254_08_2002 © 2002, Cisco Systems, Inc. All rights reserved. Cisco’s Security Vision Mario Mazzola Chief Development Officer August 29, 2002.
Firewalls & VPNs Terry Gray UW Computing & Communications 13 September 2000.

Firewalls & VPNs Terry Gray UW Computing & Communications 13 September 2000.
1 University of WashingtonComputing & Communications security in the post-Internet era Terry Gray C&C all-hands meeting 09 March 2004.

1 University of WashingtonComputing & Communications security in the post-Internet era Terry Gray C&C all-hands meeting 09 March 2004.
Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia

Defense-in-Depth Against Malicious Software Jeff Alexander IT Pro Evangelist Microsoft Australia
University of WashingtonComputing & Communications Ten Minutes on Five Nines Terry Gray Associate VP, IT Infrastructure University of Washington Common.

University of WashingtonComputing & Communications Ten Minutes on Five Nines Terry Gray Associate VP, IT Infrastructure University of Washington Common.
Network Insecurity: challenging conventional wisdom Terry Gray UW Computing & Communications 10 October 2000.

Network Insecurity: challenging conventional wisdom Terry Gray UW Computing & Communications 10 October 2000.
University of WashingtonComputing & Communications Networking Update Terry Gray Director, Networks & Distributed Computing University of Washington UW.

University of WashingtonComputing & Communications Networking Update Terry Gray Director, Networks & Distributed Computing University of Washington UW.
Traffic Engineering With Traditional IP Routing Protocols

Traffic Engineering With Traditional IP Routing Protocols
CS599 Software Engineering for Embedded Systems1 Software Engineering for Real-Time: A Roadmap Presentation by: Mandar Samant Raghbir Singh Banwait.

CS599 Software Engineering for Embedded Systems1 Software Engineering for Real-Time: A Roadmap Presentation by: Mandar Samant Raghbir Singh Banwait.

Similar presentations

Ads by Google