Presentation is loading. Please wait.

Presentation is loading. Please wait.

9/29/99 1 Santa Clara University Open Programmable Architecture for Java-enabled Network Devices Tal Lavian Technology Center Nortel Networks

Published byAlaina Phillips Modified over 9 years ago

Similar presentations

Presentation on theme: "9/29/99 1 Santa Clara University Open Programmable Architecture for Java-enabled Network Devices Tal Lavian Technology Center Nortel Networks"— Presentation transcript:

1 9/29/99 1 Santa Clara University Open Programmable Architecture for Java-enabled Network Devices Tal Lavian Technology Center Nortel Networks tlavian@NortelNetworks.com

2 9/29/99 2 Santa Clara University Programmable Network Devices Openly Programmable devices enable new types of intelligence on the network

3 9/29/99 3 Santa Clara University Agenda Local Computation New types of applications Architecture API’s Summary

4 9/29/99 4 Santa Clara University Changing the Rules of the Game Move Turing Machine onto device —Add local intelligence to network devices while (true) { doLocalProcessingOnDevic e() }

5 9/29/99 5 Santa Clara University Technology Concept Reversed Applet non-bundled application Server Web Server Web Browser Applet The JVM is in the Browser Download applications for local processing Download applications for local processing

6 9/29/99 6 Santa Clara University The Web Changed Everything Browsers —Introducing JVM to browsers allowed dynamic loading of Java Applets to end stations Routers —Introducing JVM to routers allows dynamic loading of Java Oplets to routers This Capability WILL Change Everything

7 9/29/99 7 Santa Clara University —JVM on a silicon-based Routing Switch —ORE - Oplet Run-time Environment —Java-enabled Device Architecture —Java SNMP MIB API —Implementation of Network Forwarding API —All of this enables implementation of Dynamic Classification in Silicon-Based Forwarding Accomplishments

8 9/29/99 8 Santa Clara University Paradigm Shift Supports distributed computing applications in which network devices participate —router to router —server to router Supports Intelligent Agents Supports Mobile Agents Java-based Application Java-based Application Java-based Application

9 9/29/99 9 Santa Clara University Network Device Dynamic loading Example: Downloading Intelligence Example: Downloading Intelligence HW OS JVM React Monitor Authentication Security Intelligence application

10 9/29/99 10 Santa Clara University Security and Stability secure download of Java Applications safe execution environment —insulate core router applications from dynamically loaded applications

11 9/29/99 11 Santa Clara University Device-based Intelligence Static-vs-Dynamic Agents —Static –SNMP set/get mechanisms –Telnet, User Interfaces (cli, web, etc…) —Dynamic closed-loop interaction on nodes –capable of dealing with new and difficult situations – autonomous and rational properties. –dynamically system monitoring & modification –report status and trends

12 9/29/99 12 Santa Clara University Agenda Local Computation New types of applications Architecture API’s Summary

13 9/29/99 13 Santa Clara University New Types of Applications Mobile Agents Local Intelligence for NMS Collaboration among routers Router & Server Collaboration E-commerce

14 9/29/99 14 Santa Clara University Mobile Agents Intrusion Detection - Hacker Chaser Trace-route for Layer 2 Mobile Connectivity Mapper

15 9/29/99 15 Santa Clara University Local Intelligence for NMS: Diagnostic Agents Download Intelligent Agent monitor from NMS to the device. Wait for threshold. Might be complex conditions Trend analysis Send “condition exceeded” event to NMS. Automatic download appropriate application Application takes action. Monitor Appropriate Application Download Complex Condition Exceeded NMS No more polling router Extensive access to internal resources

16 9/29/99 16 Santa Clara University Application Layer Collaboration Among Routers and Servers Application aware routing Server farm load balancing —server state monitored —rerouting based on congestion/load Auctioning Applications

17 9/29/99 17 Santa Clara University Applications Aware Forwarding Business logic based operation changes Resize forwarding queues Modify congestion control algorithm Adjust Packet Scheduling Change routing table

18 9/29/99 18 Santa Clara University Agenda Local Computation New type of applications Architecture API’s Summary

19 9/29/99 19 Santa Clara University ORE - Oplet Run-time Environment Service A JVM ORE Service B Oplet 1 Service C Oplet 2 Why ORE?

20 9/29/99 20 Santa Clara University Node Architecture Device HW Operating System JVM Oplet C/C++ API Java API Device Code Oplet Runtime Env Device Drivers JNI JFWD API ORE Service Download

21 9/29/99 21 Santa Clara University Architecture Issues Green Threads -vs- Native Threads —Native threads: –provides non-interference between Java applications –difficult thread-to-thread communication and sharing of data between threads –creates a dependency on underlying RTOS –multiple JVM instances consume resources —Green Threads –single JVM must manage CPU & memory resources between concurrently running threads

22 9/29/99 22 Santa Clara University Evolution of Router Architecture Line card (forwardingbuffering) (forwardingbuffering) (forwardingbuffering) (forwardingbuffering) CPUBuffermemory Routing software w/ COTS OS Routing software w/ COTS OS NI as line card NI as line card NI as line card... RoutingCPUBuffermemory Routing software w/ router OS Routing software w/ router OS Centralized, CPU-based Model Distributed, line-card based Model Control + Forwarding Functions combined Control separated From forwarding Added scalability, Flexibility, extensibility

23 9/29/99 23 Santa Clara University Explicit Separation of Control Plane from Data Forwarding Forwarding Element Control Element Forwarding Element Forwarding Routing Shared Memory Packet Flow Packet Flow Forwarding Forwarding/ Flow/filter Table Download CPU Line Card Traditional device Line Card

24 9/29/99 24 Santa Clara University Separation of Control and Forwarding Planes Centralized, CPU-based Router Forwarding-Processors based Router based Router Control + Forwarding Functions combined Control separated From forwarding CPU Routing SW CPU Control Plane Forwarding Processor Forwarding Processor Forwarding Processor SlowWire Speed

25 9/29/99 25 Santa Clara University Open Networking Architecture Network Services Protocol Connect Transport Interface Real-time OS Network Si Network OS Network Services Objects Server Operating System Unified policy-based management Forwarding element Control element Application server Today Networking Box Level Hardware Proprietary NOS Proprietary Apps Custom Switch ASIC’s Vertical Proprietary Open IP Telephony VPN Policy Server Firewall

26 9/29/99 26 Santa Clara University Dynamic Configuration of Forwarding Rules CPU Forwarding Processor Forwarding Processor Forwarding Processor Forwarding Processor Forwarding Rules SW HW Forwarding Rules Forwarding Rules Forwarding Rules AN Apps

27 9/29/99 27 Santa Clara University Real-time forwarding Stats and Monitors CPU SW HW AN Apps Forwarding Processor Forwarding Rules Statistics &Monitors Forwarding Processor Forwarding Rules Statistics &Monitors Forwarding Processor Forwarding Rules Statistics &Monitors

28 9/29/99 28 Santa Clara University Dynamic - On the Fly Configuration Forwarding Processor Forwarding Processor Packet PolicyFilters AN Apps Packet Filte r

29 9/29/99 29 Santa Clara University Active Networks Packet Capture CPU Forwarding Processor Forwarding Processor Forwarding Processor Forwarding Processor AN Apps JFWD to Divert or Copy Wire Speed Packet

30 9/29/99 30 Santa Clara University Scaling up Active Networks Routing Protocol to commercial networks Overcome the need to predefine the next hop Overcome the need to predefine the next hop No need to know AN topology a head of time Divert/CarbonCopy specific packets to control plane (e.g. packets on ANEP port ) Wire speed of all other packets End to end forwarding Future: Active Networks Routing Protocols

31 9/29/99 31 Santa Clara University Mixed Topology of AN system - AN Node- Non AN Node NO need to know the AN topology ahead of time

32 9/29/99 32 Santa Clara University Virtual Topology of AN system - AN Node- Non AN Node NO need to know the AN topology ahead of time

33 9/29/99 33 Santa Clara University Java Environment Green Threads -- Present RTOS with single unified task that includes: —Java VM (JVM) —Java Resource Manager (JRM) –thread scheduling –manages CPU utilization – JVM time-slice is managed by the JRM preemptive thread scheduler –internal memory manager (intercepts “new”) –garbage collection with priority based on available memory

34 9/29/99 34 Santa Clara University Non-Interference w/ Single JVM Multiple threads compete for resources —memory —CPU —persistent storage Denial-of-service attacks possible —memory or CPU consumption attacks —trusted/untrusted service interactions

35 9/29/99 35 Santa Clara University Why Java Reuse security mechanisms —byte-code verifier —security manager —classloader System stability —constrains applications to the JVM —Prohibits native code applications Extensible, portable, & distributable services

36 9/29/99 36 Santa Clara University But Java is slooowwwww Not appropriate in the fast-path data forwarding plane —forwarding is done by ASICs —packet processing not affected Java applications run on the CPU —Packets destined for Java application are pushed into the control plane

37 9/29/99 37 Santa Clara University Strong Security in the new model The new concept is secure to add 3rd party code to network devices —Digital Signature —Administrative “Certified Optlet” —No access out of the JVM space —No pointers that can do harm —Access only to the published API —Verifier - only correct code can be loaded —Class loader access list —JVM has run time bounds, type, and execution checking

38 9/29/99 38 Santa Clara University Old model Security (C/C++) Old model: Not safe to add 3rd party code —Dangerous, C/C++ Pointers –Can touch sensitive memory location —Risk: Memory allocations and Free –Allocation without freeing (leaks) –Free without allocation (core dump !!!! ) Limited security in SNMP

39 9/29/99 39 Santa Clara University Agenda Openness Local Computation New types of applications Architecture API’s Summary

40 9/29/99 40 Santa Clara University An Open Service API Example —SNMP API for Network Management –generated automatically –allows device-based applications to query MIB –device-based application -- query local MIB –report trends or significant events –initiate downloading of problem specific diagnostic code –take corrective action

41 9/29/99 41 Santa Clara University MIB API Example API uses a MIB Map to dispatch requests to variable access routines Different parts of the MIB tree can be serviced by different mechanisms Two main schemes: An ad hoc interface to the SNMP instrumentation layer A generic SNMP loopback

42 9/29/99 42 Santa Clara University Agenda Openness Local Computation New type of applications Architecture API’s Summary

43 9/29/99 43 Santa Clara University Summary Programmable —Turing Machine on network devices —dynamic agents vs. static agents —dynamic loading —strong security Openness - successfully proven paradigm —Facilitates innovation —Domain experts - virtual development community Enabling Technology for the Revolution

44 9/29/99 44 Santa Clara University This is only the first step Compare to this first flight and look where aviation is today 1903 the Wright brothers

Download ppt "9/29/99 1 Santa Clara University Open Programmable Architecture for Java-enabled Network Devices Tal Lavian Technology Center Nortel Networks"

Similar presentations

Resonance: Dynamic Access Control in Enterprise Networks Ankur Nayak, Alex Reimers, Nick Feamster, Russ Clark School of Computer Science Georgia Institute.

Resonance: Dynamic Access Control in Enterprise Networks Ankur Nayak, Alex Reimers, Nick Feamster, Russ Clark School of Computer Science Georgia Institute.
Multi-Layer Switching Layers 1, 2, and 3. Cisco Hierarchical Model Access Layer –Workgroup –Access layer aggregation and L3/L4 services Distribution Layer.

Multi-Layer Switching Layers 1, 2, and 3. Cisco Hierarchical Model Access Layer –Workgroup –Access layer aggregation and L3/L4 services Distribution Layer.
SDN and Openflow.

SDN and Openflow.
August 2000 1 Extensible Router Workshop – Princeton University Open Networking Better Networking Through Programmability Extensible Router Workshop Princeton.

August Extensible Router Workshop – Princeton University Open Networking Better Networking Through Programmability Extensible Router Workshop Princeton.
1 Improving the Performance of Distributed Applications Using Active Networks Mohamed M. Hefeeda 4/28/1999.

1 Improving the Performance of Distributed Applications Using Active Networks Mohamed M. Hefeeda 4/28/1999.
Enabling Active Networks Services on A Gigabit Routing Switch Tal Lavian and the Openetlab Team.

Enabling Active Networks Services on A Gigabit Routing Switch Tal Lavian and the Openetlab Team.
Open Innovation via Java-enabled Network Devices Tal Lavian

Open Innovation via Java-enabled Network Devices Tal Lavian
Managing Agent Platforms with the Simple Network Management Protocol Brian Remick Thesis Defense June 26, 2015.

Managing Agent Platforms with the Simple Network Management Protocol Brian Remick Thesis Defense June 26, 2015.
Rob Jaeger, University of Maryland, Department of Computer Science 1 Active Networking “ The active network provides a platform on which network services.

Rob Jaeger, University of Maryland, Department of Computer Science 1 Active Networking “ The active network provides a platform on which network services.
The Architecture of Transaction Processing Systems

The Architecture of Transaction Processing Systems
Unified Device Management via Java-enabled Network Devices Tal Lavian Rob Duncan Bay Architecture Lab, Santa.

Unified Device Management via Java-enabled Network Devices Tal Lavian Rob Duncan Bay Architecture Lab, Santa.
Operating Systems Concepts 1. A Computer Model An operating system has to deal with the fact that a computer is made up of a CPU, random access memory.

Operating Systems Concepts 1. A Computer Model An operating system has to deal with the fact that a computer is made up of a CPU, random access memory.
Hands-On Microsoft Windows Server 2008 Chapter 11 Server and Network Monitoring.

Hands-On Microsoft Windows Server 2008 Chapter 11 Server and Network Monitoring.
Windows Server 2008 Chapter 11 Last Update 2012.06.07 1.0.0.

Windows Server 2008 Chapter 11 Last Update
Rob Jaeger, University of Maryland, Department of Computer Science 1 Programmable Network Devices: A Revolution! Robert F. Jaeger University of Maryland.

Rob Jaeger, University of Maryland, Department of Computer Science 1 Programmable Network Devices: A Revolution! Robert F. Jaeger University of Maryland.
Emanuele Pasqualucci Extending AppManager Monitoring with the SNMP Toolkit.

Emanuele Pasqualucci Extending AppManager Monitoring with the SNMP Toolkit.
Java Security. Topics Intro to the Java Sandbox Language Level Security Run Time Security Evolution of Security Sandbox Models The Security Manager.

Java Security. Topics Intro to the Java Sandbox Language Level Security Run Time Security Evolution of Security Sandbox Models The Security Manager.
Computer System Architectures Computer System Software

Computer System Architectures Computer System Software
9/14/2015B.Ramamurthy1 Operating Systems : Overview Bina Ramamurthy CSE421/521.

9/14/2015B.Ramamurthy1 Operating Systems : Overview Bina Ramamurthy CSE421/521.
Open Distributed Networking Intelligence: A New Java Paradigm Tal Lavian.

Open Distributed Networking Intelligence: A New Java Paradigm Tal Lavian.

Similar presentations

Ads by Google