Presentation is loading. Please wait.

Presentation is loading. Please wait.

The Datapository Dave Andersen, CMU James Moss, CMU Nick Feamster, Georgia Tech

Published byIan Weeks Modified over 11 years ago

Similar presentations

Presentation on theme: "The Datapository Dave Andersen, CMU James Moss, CMU Nick Feamster, Georgia Tech"— Presentation transcript:

1 The Datapository Dave Andersen, CMU James Moss, CMU Nick Feamster, Georgia Tech http://www.datapository.net/

2 Overview Two aspects: –Network data repository –Supporting analysis tools and infrastructure Archive of network data –BGP: RouteViews, Abilene, RIPE –ISIS: Abilene –Spam data: Georgia Tech traps, etc. –NetFlow data: Abilene data –Wide-area probing data

3 Current Status Grabbing lots of data –Public: Abilene (BGP, IS-IS, Config, etc.), Routeviews (BGP updates and tables) –Semi-public: Georgia Tech campus monitoring probes (ping, traceroute, etc.), spam trap data, etc. –Brokered: Abilene NetFlow –Various other private data Mirroring at CMU and Georgia Tech –~ 12 TB at each site Mysql to postgres migration

4 Datapository Architecture Separate: collection, storage, analysis Collection: abstract type, format, and access method

5 Export: Formats and Applications Multiple ways to access data –Web Interface –XMLRPC Text-based output Programmatic interface Output to Matlab –Direct Postgres table access –Raw data Applications –Correlation across data streams –Longitudinal studies

6 Interaction: Web Interface

7 Example: Do Spammers Hijack BGP Routes? Theory: 1. announce BGP route for mail server 2. Send lots of spam 3. Withdraw route, becoming invisible Reality? Lets check...

8 Selecting Spammers SELECT * from spam WHERE spam.time >... AND spam.time spam.time - 20 AND bgp.time < spam.time + 3600 AND bgp.prefix = (spam.client_ip & ((~0) << (32 - bgp.mask)))

Download ppt "The Datapository Dave Andersen, CMU James Moss, CMU Nick Feamster, Georgia Tech"

Similar presentations

Henk Uijterwaal. APNIC, 6 February 2014, Amsterdam. 1 RIPE NCC Routing Information Service Status and plans Arife Coltekin, Luigi.

Henk Uijterwaal. APNIC, 6 February 2014, Amsterdam. 1 RIPE NCC Routing Information Service Status and plans Arife Coltekin, Luigi.
Nick Feamster Georgia Tech

Nick Feamster Georgia Tech
Wenke Lee and Nick Feamster Georgia Tech Botnet and Spam Detection in High-Speed Networks.

Wenke Lee and Nick Feamster Georgia Tech Botnet and Spam Detection in High-Speed Networks.
1 Diagnosing Network Disruptions with Network-wide Analysis Yiyi Huang, Nick Feamster, Anukool Lakhina*, Jim Xu College of Computing, Georgia Tech * Guavus,

1 Diagnosing Network Disruptions with Network-wide Analysis Yiyi Huang, Nick Feamster, Anukool Lakhina*, Jim Xu College of Computing, Georgia Tech * Guavus,
11/20/09 ONR MURI Project Kick-Off 1 Network-Level Monitoring for Tracking Botnets Nick Feamster School of Computer Science Georgia Institute of Technology.

11/20/09 ONR MURI Project Kick-Off 1 Network-Level Monitoring for Tracking Botnets Nick Feamster School of Computer Science Georgia Institute of Technology.
Wenke Lee and Nick Feamster Georgia Tech Botnet and Spam Detection in High-Speed Networks.

Wenke Lee and Nick Feamster Georgia Tech Botnet and Spam Detection in High-Speed Networks.
Data Mining Challenges for Network Management Nick Feamster, Georgia Tech Dave Andersen, CMU (joint with Jay Lepreau and Emulab)

Data Mining Challenges for Network Management Nick Feamster, Georgia Tech Dave Andersen, CMU (joint with Jay Lepreau and Emulab)
Diagnosing Network Disruptions with Network-wide Analysis Yiyi Huang, Nick Feamster, Anukool Lakhina, Jim Xu College of Computing, Georgia Tech Boston.

Diagnosing Network Disruptions with Network-wide Analysis Yiyi Huang, Nick Feamster, Anukool Lakhina, Jim Xu College of Computing, Georgia Tech Boston.
Understanding the Network- Level Behavior of Spammers Anirudh Ramachandran Nick Feamster Georgia Tech.

Understanding the Network- Level Behavior of Spammers Anirudh Ramachandran Nick Feamster Georgia Tech.
Research Summary Nick Feamster. The Big Picture Improving Internet availability by making networks easier to operate Three approaches –From the ground.

Research Summary Nick Feamster. The Big Picture Improving Internet availability by making networks easier to operate Three approaches –From the ground.
Spamming with BGP Spectrum Agility Anirudh Ramachandran Nick Feamster Georgia Tech.

Spamming with BGP Spectrum Agility Anirudh Ramachandran Nick Feamster Georgia Tech.
Spamming with BGP Spectrum Agility Anirudh Ramachandran Nick Feamster Georgia Tech.

Spamming with BGP Spectrum Agility Anirudh Ramachandran Nick Feamster Georgia Tech.
Accountable Internet Protocol David Andersen (CMU) Hari Balakrishnan (MIT) Nick Feamster (Georgia Tech) Scott Shenker (Berkeley)

Accountable Internet Protocol David Andersen (CMU) Hari Balakrishnan (MIT) Nick Feamster (Georgia Tech) Scott Shenker (Berkeley)
Campus Testbed for Network Management and Operations Nick Feamster Georgia Tech Joint with Ankur Nayak, Russ Clark, Ron Hutchins, Campus OIT Also input.

Campus Testbed for Network Management and Operations Nick Feamster Georgia Tech Joint with Ankur Nayak, Russ Clark, Ron Hutchins, Campus OIT Also input.
Understanding the Network- Level Behavior of Spammers Anirudh Ramachandran Nick Feamster Georgia Tech.

Understanding the Network- Level Behavior of Spammers Anirudh Ramachandran Nick Feamster Georgia Tech.
DTunnels Year 1 Summary Nick Feamster. Overview Two pieces –DTunnels: Mechanism for creating appearance of layer 2 links between virtual nodes –BGP Mux:

DTunnels Year 1 Summary Nick Feamster. Overview Two pieces –DTunnels: Mechanism for creating appearance of layer 2 links between virtual nodes –BGP Mux:
1 Dynamics of Online Scam Hosting Infrastructure Maria Konte, Nick Feamster Georgia Tech Jaeyeon Jung Intel Research.

1 Dynamics of Online Scam Hosting Infrastructure Maria Konte, Nick Feamster Georgia Tech Jaeyeon Jung Intel Research.
Spam Sinkholing Nick Feamster. Introduction Goal: Identify bots (and botnets) by observing second-order effects –Observe application behavior thats likely.

Spam Sinkholing Nick Feamster. Introduction Goal: Identify bots (and botnets) by observing second-order effects –Observe application behavior thats likely.
Spamming with BGP Spectrum Agility Anirudh Ramachandran Nick Feamster Georgia Tech.

Spamming with BGP Spectrum Agility Anirudh Ramachandran Nick Feamster Georgia Tech.
Theory Lunch. 2 Problem Areas Network Virtualization for Experimentation and Architecture –Embedding problems –Economics problems (markets, etc.) Network.

Theory Lunch. 2 Problem Areas Network Virtualization for Experimentation and Architecture –Embedding problems –Economics problems (markets, etc.) Network.

Similar presentations

Ads by Google