UnivMon: Software-defined Monitoring with Universal Sketch
|
|
- Kristopher Johnston
- 5 years ago
- Views:
Transcription
1 UnivMon: Software-defined Monitoring with Universal Sketch Zaoxing (Alan) Liu Joint work with Antonis Manousis (CMU), Greg Vorsanger(JHU), Vyas Sekar (CMU), and Vladimir Braverman(JHU)
2 Network Management: Many Monitoring Requirements Flow size distribution Entropy, Traffic Changes Traffic Engineering SuperSpreaders Worm Detection Anomaly Detection Heavy-hitters Accounting. SDN Controller (OpenDayLight etc.)
3 Network Management: Many Monitoring Requirements Flow size distribution Entropy, Traffic Changes Traffic Engineering SuperSpreaders Worm Detection Anomaly Detection Heavy-hitters Accounting. Typical Measurement Questions: Who s sending a lot more traffic than 0min ago? (Change) Who s sending a lot from /6? (Heavy Hitter) Are you being DDoS-ed?
4 Example: A Victim being DDoSed
5 Traditional: Packet Sampling Sample packets at random, aggregate into flows Flow = Packets with same pattern Source and Destination Address and Ports FlowId Counter 2 Flow reports Estimate: FSD, Entropy, Heavyhitters Not good for fine-grained analysis Extensive literature on limitations for many tasks!
6 Application-Specific Sketches Bloom-filter, Count-min Sketch, reversible sketch, etc. Heavy Hitter Entropy Superspreader Application-Level Metric Counter Data Structures Packet Processing Application-Level Metric Counter Data Structures Packet Processing.. Application-Level Metric Counter Data Structures Packet Processing Computation (off router) Monitoring (on router) Traffic Complexity: Need per-metric implementation Recent Example: OpenSketch [NSDI 3] Trend: Many more applications appear!
7 App A Generic Method... App n Control Plane Application-specific Computation Packet Processing Traffic Data Structure Data Plane. Generic 2. Not too expensive 3. Accurate for finegrained analysis
8 Outline Motivation UnivMon System Design UnivMon Algorithm Evaluation
9 Our Design: UnivMon UnivMon Control+ Plane 3.#Metric#Estimation Control plane Metric estimation Monitoring manifest distribution.#distribute# Manifests UnivMon Data Plane Data Plane Traffic data collection Sketch counter updates 2.#Collect#Sketch#counters Late-binding for applications: data plane is general-purpose. One Sketch: no need of memory allocation for multiple tasks
10 Outline Motivation UnivMon Design UnivMon Algorithm Evaluation
11 Theory of Universal Streaming [BO 0, BO 3] Estimated G-sum Universal Sketch As long as g(fi) does not grow monotonically faster than f i 2 G-sum = i= n g(fi) frequency vector is < f,f 2 f n > (A stream of length m with n unique items) When g(x) = x 0, G-sum is # of distinct items. [SuperSpreader] When g(x) = xlog(x), G-sum is the entropy norm. [Entropy]
12 Basics: Streaming Algorithms (A stream S of length m with n unique items) K-th Frequency Moments: F k (S) = i= n k f i F 0 is n: the number of distinct items in S. F is m: the length of S. F 2 is Gini's index of homogeneity. When k>2, the space lower bound is Ω(n 2/k ) [CKS 03] (For current applications, the case of k>2 is not that interesting) Heavy Hitters (Frequent Items): g-heavy item i : g(f i ) > α G-sum for some α Count-min sketch [CM 04] is a popular L-heavy hitter algorithm
13 0 Universal Sketch Data Structure Levels In Parallel H()=, H(5)=, H(2)= H2(5)=, H2(2)= Count Sketch Alg L2 Heavy Hitter Algorithms Heavy Hitter Alg Heavy -2 Hitter + Alg Heavy Hitters (,4), (3,2),(5,2) (,4), (5,2),(2,) log(n) 5 H3(2)= Generate log(n) substreams by zero-one hash funcs H.H log(n) Heavy Hitter Alg + Heavy Hitter Alg Count-Sketch etc. Similar to counting bloom filter (5,2), (2,) (2,)
14 Levels 0 Counters from Universal Sketch (,4), (3,2),(5,2) (,g(4)), (3,g(2)),(5,g(2)) (,4), (5,2), (2,)... Estimating G-sum (,g(4)), (5,g(2)), (2,g()) Estimated G-sum Y0=2g()+2g(2)+g(4) Apply arbitrary g() Y=g()+g(2)+g(4)... log(n) (5,2),(2,) (5,g(2)),(2,g()) (2,) Sum of the g()s (2,g()) Y2=g()+g(2) Y3=g() Recursive Steps: Yi- = 2Yi + new counters repeated counters 3
15 Intuitions of Universal Sketch. Group items into log(n) groups 2. Find (>=) one from each group 3. Recursively sum them all! Idea: Detect items that contribute most to G-sum
16 Putting it together: UnivMon Hash functions and sketch counters Offline Computation
17 Application-specific Packet Our Approach: Sampling UnivMon Solution Approach I OK, want I got to monitor: it. But I Heavy results will I want calculate Hitter, more are not a DDoS, Entropy, OK, I got etc. it large appications! good class enough! of funcs! Controller OK! Universal Flow reports Sketch OK! OK! I need I additional algorithm Count k-ary sketch Min OK! xxx bitmap Sketch for Changes xxx. for DDoS Oh HHno!
18 Outline Motivation UnivMon Design UnivMon Algorithm Evaluation
19 Key Evaluation Questions Feasibility of hardware deployment? Removed expensive data structures Implemented in P4 UnivMon s accuracy Compare to the up-to-date sketch algorithms UnivMon s stability Stabilities over different traces
20 Evaluation Comparison with custom sketches via OpenSketch
21 Evaluation Comparison with custom sketches via OpenSketch
22 Conclusions Traditional packet sampling based approaches have limitations for fine-grained analysis. Custom Sketches (e.g. OpenSketch) Need to know applications beforehand High Implementation cost More expensive on multi-tasks UnivMon: an efficient and general sketching based approach with late-binding on applications.
23 Future Directions Multi-dimensional data Performance optimization for hardware Dynamically change monitoring scope New Theories on Universal Sketch: Sliding Window Model [SODA 6] Functions of One Variable [PODS 6] Symmetric Norms [arxiv 5.0]
24 Thank you!
Scalable and Robust DDoS Detection via Universal Monitoring
Scalable and Robust DDoS Detection via Universal Monitoring Vyas Sekar Joint work with: Alan Liu, Vladimir Braverman JHU Hun Namkung, Antonis Manousis, CMU DDoS a&acks are ge-ng worse Increasing in number
More informationSCREAM: Sketch Resource Allocation for Software-defined Measurement
SCREAM: Sketch Resource Allocation for Software-defined Measurement (CoNEXT 15) Masoud Moshref, Minlan Yu, Ramesh Govindan, Amin Vahdat Measurement is Crucial for Network Management Network Management
More informationHeavy-Hitter Detection Entirely in the Data Plane
Heavy-Hitter Detection Entirely in the Data Plane VIBHAALAKSHMI SIVARAMAN SRINIVAS NARAYANA, ORI ROTTENSTREICH, MUTHU MUTHUKRSISHNAN, JENNIFER REXFORD 1 Heavy Hitter Flows Flows above a certain threshold
More informationSoftware Defined Traffic Measurement with OpenSketch
Software Defined Traffic Measurement with OpenSketch Minlan Yu Lavanya Jose Rui Miao University of Southern California Princeton University Abstract Most network management tasks in software-defined networks
More informationLecture 2: Streaming Algorithms for Counting Distinct Elements
Lecture 2: Streaming Algorithms for Counting Distinct Elements 20th August, 2008 Streaming Algorithms Streaming Algorithms Streaming algorithms have the following properties: 1 items in the stream are
More informationA Case for a RISC Architecture for Network Flow Monitoring
A Case for a RISC Architecture for Network Flow Monitoring Vyas Sekar, Michael K. Reiter, Hui Zhang Carnegie Mellon University, UNC Chapel-Hill ABSTRACT Several network management applications require
More informationA Case for a RISC Architecture for Network Flow Monitoring
A Case for a RISC Architecture for Network Flow Monitoring Vyas Sekar 1, Michael K. Reiter 2, Hui Zhang 1 CMU-CS-9-125 School of Computer Science Carnegie Mellon University Pittsburgh, PA 15213 1 Carnegie
More informationA Comparison of Performance and Accuracy of Measurement Algorithms in Software
A Comparison of Performance and Accuracy of Measurement Algorithms in Software Omid Alipourfard, Masoud Moshref 1, Yang Zhou 2, Tong Yang 2, Minlan Yu 3 Yale University, Barefoot Networks 1, Peking University
More informationEnabling a RISC Approach for Software-Defined Monitoring using Universal Streaming
Enabling a RISC Approach for Software-Defined Monitoring using Universal Streaming Zaoxing Liu, Greg Vorsanger, Vladimir Braverman, Vyas Sekar Johns Hopkins University Carnegie Mellon University ABSTRACT
More informationNetwork-Wide Heavy Hitter Detection with Commodity Switches
Network-Wide Heavy Hitter Detection with Commodity Switches ABSTRACT Rob Harrison Arpit Gupta Many network monitoring tasks identify subsets of traffic that stand out, e.g., top-k flows for a particular
More informationRevisiting the Case for a Minimalist Approach for Network Flow Monitoring
Revisiting the Case for a Minimalist Approach for Network Flow Monitoring Vyas Sekar Carnegie Mellon University Pittsburgh, PA vyass@cs.cmu.edu Michael K Reiter UNC Chapel Hill Chapel Hill, NC reiter@cs.unc.edu
More informationOptimal Tracking of Distributed Heavy Hitters and Quantiles
Optimal Tracking of Distributed Heavy Hitters and Quantiles Qin Zhang Hong Kong University of Science & Technology Joint work with Ke Yi PODS 2009 June 30, 2009 - 2- Models and Problems Distributed streaming
More informationNetwork-Wide Heavy Hitter Detection with Commodity Switches
Network-Wide Heavy Hitter Detection with Commodity Switches ABSTRACT Rob Harrison Arpit Gupta Many network monitoring tasks identify subsets of traffic that stand out, e.g., top-k flows for a particular
More informationOptimal Sampling from Distributed Streams
Optimal Sampling from Distributed Streams Graham Cormode AT&T Labs-Research Joint work with S. Muthukrishnan (Rutgers) Ke Yi (HKUST) Qin Zhang (HKUST) 1-1 Reservoir sampling [Waterman??; Vitter 85] Maintain
More informationSCREAM: Sketch Resource Allocation for Software-defined Measurement
: Sketch Resource Allocation for Software-defined Measurement Masoud Moshref Minlan Yu Ramesh Govindan Amin Vahdat University of Southern California Google ABSTRACT Software-defined networks can enable
More informationSimply Top Talkers Jeroen Massar, Andreas Kind and Marc Ph. Stoecklin
IBM Research - Zurich Simply Top Talkers Jeroen Massar, Andreas Kind and Marc Ph. Stoecklin 2009 IBM Corporation Motivation and Outline Need to understand and correctly handle dominant aspects within the
More informationEmpowering Sketches with Machine Learning for Network Measurements
Empowering Sketches with Machine Learning for Network Measurements Tong Yang, Lun Wang, Yulong Shen #, Muhammad Shahzad $, Qun Huang Xiaohong Jiang @, Kun Tan, Xiaoming Li. Peking University. $ North Carolina
More informationCMPSCI 711: More Advanced Algorithms
CMPSCI 711: More Advanced Algorithms Section 0: Overview Andrew McGregor Last Compiled: April 29, 2012 1/11 Goal and Focus of Class Goal: Learn general techniques and gain experience designing and analyzing
More informationAn Empirical Evaluation of Entropybased Traffic Anomaly Detection
An Empirical Evaluation of Entropybased Traffic Anomaly Detection George Nychis, Vyas Sekar, David Andersen, Hyong Kim, Hui Zhang Carnegie Mellon University Entropy-based Anomaly Detection Goal: detect
More informationImproving Sketch Reconstruction Accuracy Using Linear Least Squares Method
Improving Sketch Reconstruction Accuracy Using Linear Least Squares Method Gene Moo Lee, Huiya Liu, Young Yoon and Yin Zhang Department of Computer Sciences University of Texas at Austin Austin, TX 7872,
More informationRevisiting router architectures with Zipf
Revisiting router architectures with Zipf Steve Uhlig Deutsche Telekom Laboratories/TU Berlin Nadi Sarrar, Anja Feldmann Deutsche Telekom Laboratories/TU Berlin Rob Sherwood, Xin Huang Deutsche Telekom
More informationCourse : Data mining
Course : Data mining Lecture : Mining data streams Aristides Gionis Department of Computer Science Aalto University visiting in Sapienza University of Rome fall 2016 reading assignment LRU book: chapter
More informationSIGCOMM 17 Preview Session: Network Monitoring
SIGCOMM 17 Preview Session: Network Monitoring Ying Zhang Software Engineer, Facebook Network monitoring is important! Performance Diagnose long delay/loss problems Utilization Traffic engineering Availability
More informationSketching Asynchronous Streams Over a Sliding Window
Sketching Asynchronous Streams Over a Sliding Window Srikanta Tirthapura (Iowa State University) Bojian Xu (Iowa State University) Costas Busch (Rensselaer Polytechnic Institute) 1/32 Data Stream Processing
More informationTraffic Engineering with Forward Fault Correction
Traffic Engineering with Forward Fault Correction Harry Liu Microsoft Research 06/02/2016 Joint work with Ratul Mahajan, Srikanth Kandula, Ming Zhang and David Gelernter 1 Cloud services require large
More informationSublinear Algorithms for Big Data Analysis
Sublinear Algorithms for Big Data Analysis Michael Kapralov Theory of Computation Lab 4 EPFL 7 September 2017 The age of big data: massive amounts of data collected in various areas of science and technology
More informationBig Data Analytics CSCI 4030
High dim. data Graph data Infinite data Machine learning Apps Locality sensitive hashing PageRank, SimRank Filtering data streams SVM Recommen der systems Clustering Community Detection Queries on streams
More informationDesign and Performance Analysis of a DRAM-based Statistics Counter Array Architecture
Design and Performance Analysis of a DRAM-based Statistics Counter Array Architecture Chuck Zhao 1 Hao Wang 2 Bill Lin 2 Jim Xu 1 1 Georgia Institute of Technology 2 University of California, San Diego
More informationTVA: A DoS-limiting Network Architecture L
DoS is not even close to be solved : A DoS-limiting Network Architecture L Xiaowei Yang (UC Irvine) David Wetherall (Univ. of Washington) Thomas Anderson (Univ. of Washington) 1 n Address validation is
More informationTracking Frequent Items Dynamically: What s Hot and What s Not To appear in PODS 2003
Tracking Frequent Items Dynamically: What s Hot and What s Not To appear in PODS 2003 Graham Cormode graham@dimacs.rutgers.edu dimacs.rutgers.edu/~graham S. Muthukrishnan muthu@cs.rutgers.edu Everyday
More informationWorm Detection, Early Warning and Response Based on Local Victim Information
Worm Detection, Early Warning and Response Based on Local Victim Information Guofei Gu, Monirul Sharif, Xinzhou Qin, David Dagon, Wenke Lee, and George Riley Georgia Institute of Technology ACSAC'04 1
More informationMAD 12 Monitoring the Dynamics of Network Traffic by Recursive Multi-dimensional Aggregation. Midori Kato, Kenjiro Cho, Michio Honda, Hideyuki Tokuda
MAD 12 Monitoring the Dynamics of Network Traffic by Recursive Multi-dimensional Aggregation Midori Kato, Kenjiro Cho, Michio Honda, Hideyuki Tokuda 1 Background Traffic monitoring is important to detect
More informationCompact Data Representations and their Applications. Moses Charikar Princeton University
Compact Data Representations and their Applications Moses Charikar Princeton University Lots and lots of data AT&T Information about who calls whom What information can be got from this data? Network router
More informationNetwork Data Streaming A Computer Scientist s Journey in Signal Processing
Network Data Streaming A Computer Scientist s Journey in Signal Processing Jun (Jim) Xu Networking and Telecommunications Group College of Computing Georgia Institute of Technology Joint work with: Abhishek
More informationEstimating Persistent Spread in High-speed Networks Qingjun Xiao, Yan Qiao, Zhen Mo, Shigang Chen
Estimating Persistent Spread in High-speed Networks Qingjun Xiao, Yan Qiao, Zhen Mo, Shigang Chen Southeast University of China University of Florida Motivation for Persistent Stealthy Spreaders Imagine
More informationFast Approximations for Analyzing Ten Trillion Cells. Filip Buruiana Reimar Hofmann
Fast Approximations for Analyzing Ten Trillion Cells Filip Buruiana (filipb@google.com) Reimar Hofmann (reimar.hofmann@hs-karlsruhe.de) Outline of the Talk Interactive analysis at AdSpam @ Google Trade
More informationDistributed Data Streaming Algorithms for Network Anomaly Detection
Graduate Theses and Dissertations Iowa State University Capstones, Theses and Dissertations 2017 Distributed Data Streaming Algorithms for Network Anomaly Detection Wenji Chen Iowa State University Follow
More informationInformation, Gravity, and Traffic Matrices
Information, Gravity, and Traffic Matrices Yin Zhang, Matthew Roughan, Albert Greenberg, Nick Duffield, David Donoho 1 Problem Have link traffic measurements Want to know demands from source to destination
More informationA Scalable DDoS Detection Framework with Victim Pinpoint Capability
660 JOURNAL OF COMMUNICATIONS, VOL. 6, NO. 9, DECEMBER 2011 A Scalable DDoS Detection Framework with Victim Pinpoint Capability Haiqin Liu, Yan Sun and Min Sik Kim School of Electrical Engineering and
More informationScalable Enterprise Networks with Inexpensive Switches
Scalable Enterprise Networks with Inexpensive Switches Minlan Yu minlanyu@cs.princeton.edu Princeton University Joint work with Alex Fabrikant, Mike Freedman, Jennifer Rexford and Jia Wang 1 Enterprises
More informationMisra-Gries Summaries
Title: Misra-Gries Summaries Name: Graham Cormode 1 Affil./Addr. Department of Computer Science, University of Warwick, Coventry, UK Keywords: streaming algorithms; frequent items; approximate counting
More informationRectangle-Efficient Aggregation in Spatial Data Streams
Rectangle-Efficient Aggregation in Spatial Data Streams Srikanta Tirthapura Iowa State David Woodruff IBM Almaden The Data Stream Model Stream S of additive updates (i, Δ) to an underlying vector v: v
More informationSummarizing and mining inverse distributions on data streams via dynamic inverse sampling
Summarizing and mining inverse distributions on data streams via dynamic inverse sampling Presented by Graham Cormode cormode@bell-labs.com S. Muthukrishnan muthu@cs.rutgers.edu Irina Rozenbaum rozenbau@paul.rutgers.edu
More informationCounter Braids: A novel counter architecture
Counter Braids: A novel counter architecture Balaji Prabhakar Balaji Prabhakar Stanford University Joint work with: Yi Lu, Andrea Montanari, Sarang Dharmapurikar and Abdul Kabbani Overview Counter Braids
More informationMeasuring Intrusion Detection Capability: An Information- Theoretic Approach
Measuring Intrusion Detection Capability: An Information- Theoretic Approach Guofei Gu, Prahlad Fogla, David Dagon, Wenke Lee Georgia Tech Boris Skoric Philips Research Lab Outline Motivation Problem Why
More informationPerformance and Security Evaluation of SDN Networks in OMNeT++/INET. Marco Tiloca, Alexandra Stagkopoulou, Gianluca Dini
Performance and Security Evaluation of SDN Networks in OMNeT++/INET Marco Tiloca, Alexandra Stagkopoulou, Gianluca Dini Software Defined Networking - Overview Key concepts Separation of Control plane and
More informationIQ for DNA. Interactive Query for Dynamic Network Analytics. Haoyu Song. HUAWEI TECHNOLOGIES Co., Ltd.
IQ for DNA Interactive Query for Dynamic Network Analytics Haoyu Song www.huawei.com Motivation Service Provider s pain point Lack of real-time and full visibility of networks, so the network monitoring
More informationFPGA based Network Traffic Analysis using Traffic Dispersion Graphs
FPGA based Network Traffic Analysis using Traffic Dispersion Graphs 2 nd September, 2010 Faisal N. Khan, P. O. Box 808, Livermore, CA 94551 This work performed under the auspices of the U.S. Department
More informationEfficient Strategies for Continuous Distributed Tracking Tasks
Efficient Strategies for Continuous Distributed Tracking Tasks Graham Cormode Bell Labs, Lucent Technologies cormode@bell-labs.com Minos Garofalakis Bell Labs, Lucent Technologies minos@bell-labs.com Abstract
More informationA Hybrid Hierarchical Control Plane for Software-Defined Network
A Hybrid Hierarchical Control Plane for Software-Defined Network Arpitha T 1, Usha K Patil 2 1* MTech Student, Computer Science & Engineering, GSSSIETW, Mysuru, India 2* Assistant Professor, Dept of CSE,
More informationSketchVisor: Robust Network Measurement for Software Packet Processing
SketchVisor: Robust Network Measurement for Software Packet Processing Qun Huang 1, Xin Jin 2, Patrick P. C. Lee 3, Runhui Li 1, Lu Tang 3, Yi-Chao Chen 1, Gong Zhang 1 1 Huawei Future Network Theory Lab
More informationB561 Advanced Database Concepts Streaming Model. Qin Zhang 1-1
B561 Advanced Database Concepts 2.2. Streaming Model Qin Zhang 1-1 Data Streams Continuous streams of data elements (massive possibly unbounded, rapid, time-varying) Some examples: 1. network monitoring
More informationOne-Pass Streaming Algorithms
One-Pass Streaming Algorithms Theory and Practice Complaints and Grievances about theory in practice Disclaimer Experiences with Gigascope. A practitioner s perspective. Will be using my own implementations,
More informationPricing Intra-Datacenter Networks with
Pricing Intra-Datacenter Networks with Over-Committed Bandwidth Guarantee Jian Guo 1, Fangming Liu 1, Tao Wang 1, and John C.S. Lui 2 1 Cloud Datacenter & Green Computing/Communications Research Group
More informationPacket Sampling for Flow Accounting: Challenges and Limitations
Packet Sampling for Flow Accounting: Challenges and Limitations Tanja Zseby (Fraunhofer FOKUS) Thomas Hirsch (Fraunhofer FOKUS) Benoit Claise (Cisco Systems) April 29, 2008 This work was funded by Cisco
More informationAlgorithms and Applications for the Estimation of Stream Statistics in Networks
Algorithms and Applications for the Estimation of Stream Statistics in Networks Aviv Yehezkel Ph.D. Research Proposal Supervisor: Prof. Reuven Cohen Motivation Introduction Cardinality Estimation Problem
More informationB561 Advanced Database Concepts. 6. Streaming Algorithms. Qin Zhang 1-1
B561 Advanced Database Concepts 6. Streaming Algorithms Qin Zhang 1-1 The model and challenge The data stream model (Alon, Matias and Szegedy 1996) a n a 2 a 1 RAM CPU Why hard? Cannot store everything.
More informationMining for Patterns and Anomalies in Data Streams. Sampath Kannan University of Pennsylvania
Mining for Patterns and Anomalies in Data Streams Sampath Kannan University of Pennsylvania The Problem Data sizes too large to fit in primary memory Devices with small memory Access times to secondary
More informationFirewalls and NAT. Firewalls. firewall isolates organization s internal net from larger Internet, allowing some packets to pass, blocking others.
Firews and NAT 1 Firews By conventional definition, a firew is a partition made of fireproof material designed to prevent the spread of fire from one part of a building to another. firew isolates organization
More informationCellSDN: Software-Defined Cellular Core networks
CellSDN: Software-Defined Cellular Core networks Xin Jin Princeton University Joint work with Li Erran Li, Laurent Vanbever, and Jennifer Rexford Cellular Core Network Architecture Base Station User Equipment
More informationSecuring the Internet at the Exchange Point Fernando M. V. Ramos
Securing the Internet at the Exchange Point Fernando M. V. Ramos 18.09.2017 Securing the Internet at the Exchange Point Fernando M. V. Ramos 18.09.2017 There are vulnerabilities in the Internet architecture
More informationA Robust System for Accurate Real-time Summaries of Internet Traffic
A Robust System for Accurate Real-time Summaries of Internet Traffic Ken Keys CAIDA San Diego Supercomputer Center University of California, San Diego kkeys@caida.org David Moore CAIDA San Diego Supercomputer
More informationIdentifying Anomalous Traffic Using Delta Traffic. Tsuyoshi KONDOH and Keisuke ISHIBASHI Information Sharing Platform Labs. NTT
Identifying Anomalous Traffic Using Delta Traffic Tsuyoshi KONDOH and Keisuke ISHIBASHI Information Sharing Platform Labs. NTT Flocon2008, January 7 10, 2008, Savannah GA Outline Background and Motivation
More informationForwarding and Routers : Computer Networking. Original IP Route Lookup. Outline
Forwarding and Routers 15-744: Computer Networking L-9 Router Algorithms IP lookup Longest prefix matching Classification Flow monitoring Readings [EVF3] Bitmap Algorithms for Active Flows on High Speed
More informationCounter Braids: A novel counter architecture
Counter Braids: A novel counter architecture Balaji Prabhakar Balaji Prabhakar Stanford University Joint work with: Yi Lu, Andrea Montanari, Sarang Dharmapurikar and Abdul Kabbani Overview Counter Braids
More informationMasters Exam. Fall 2004 Department of Computer Science University of Arizona
Masters Exam Fall 2004 Department of Computer Science University of Arizona This exam consists of ten problems, from which you will do six questions. The questions are in three areas: Theory (CSc 520,
More informationDesign and Performance Analysis of a DRAM-based Statistics Counter Array Architecture
Design and Performance Analysis of a DRAM-based Statistics Counter Array Architecture Chuck Zhao 1 Hao Wang 2 Bill Lin 2 1 1 Georgia Tech 2 UCSD October 2nd, 2008 Broader High-Level Question What are the
More informationStreaming algorithms for embedding and computing edit distance
Streaming algorithms for embedding and computing edit distance in the low distance regime Diptarka Chakraborty joint work with Elazar Goldenberg and Michal Koucký 7 November, 2015 Outline 1 Introduction
More informationCSE Computer Security (Fall 2006)
CSE 543 - Computer Security (Fall 2006) Lecture 18 - Network Security November 7, 2006 URL: http://www.cse.psu.edu/~tjaeger/cse543-f06/ 1 Denial of Service Intentional prevention of access to valued resource
More informationCS 561, Lecture 2 : Hash Tables, Skip Lists, Bloom Filters, Count-Min sketch. Jared Saia University of New Mexico
CS 561, Lecture 2 : Hash Tables, Skip Lists, Bloom Filters, Count-Min sketch Jared Saia University of New Mexico Outline Hash Tables Skip Lists Count-Min Sketch 1 Dictionary ADT A dictionary ADT implements
More informationSketchLearn: Relieving User Burdens in Approximate Measurement with Automated Statistical Inference
SketchLearn: Relieving User Burdens in Approximate Measurement with Automated Statistical Inference Qun Huang, Patrick P. C. Lee, and Yungang Bao State Key Lab of Computer Architecture, Institute of Computing
More informationRouter Design: Table Lookups and Packet Scheduling EECS 122: Lecture 13
Router Design: Table Lookups and Packet Scheduling EECS 122: Lecture 13 Department of Electrical Engineering and Computer Sciences University of California Berkeley Review: Switch Architectures Input Queued
More informationProgrammable Software Switches. Lecture 11, Computer Networks (198:552)
Programmable Software Switches Lecture 11, Computer Networks (198:552) Software-Defined Network (SDN) Centralized control plane Data plane Data plane Data plane Data plane Why software switching? Early
More informationWireless Internet Routing. Learning from Deployments Link Metrics
Wireless Internet Routing Learning from Deployments Link Metrics 1 Learning From Deployments Early worked focused traditional routing issues o Control plane: topology management, neighbor discovery o Data
More informationIntroduction to Data Mining
Introduction to Data Mining Lecture #1: Course Introduction U Kang Seoul National University U Kang 1 In This Lecture Motivation to study data mining Administrative information for this course U Kang 2
More informationApplication of SDN: Load Balancing & Traffic Engineering
Application of SDN: Load Balancing & Traffic Engineering Outline 1 OpenFlow-Based Server Load Balancing Gone Wild Introduction OpenFlow Solution Partitioning the Client Traffic Transitioning With Connection
More informationLoad Shedding in Network Monitoring Applications
Load Shedding in Network Monitoring Applications P. Barlet-Ros 1 G. Iannaccone 2 J. Sanjuàs-Cuxart 1 D. Amores-López 1 J. Solé-Pareta 1 1 Technical University of Catalonia (UPC) Barcelona, Spain {pbarlet,
More informationDruid Power Interactive Applications at Scale. Jonathan Wei Software Engineer
Druid Power Interactive Applications at Scale Jonathan Wei Software Engineer History & Motivation Demo Overview Storage Internals Druid Architecture Motivation Motivation Visibility and analysis for complex
More informationNetwork Security: Network Flooding. Seungwon Shin GSIS, KAIST
Network Security: Network Flooding Seungwon Shin GSIS, KAIST Detecting Network Flooding Attacks SYN-cookies Proxy based CAPCHA Ingress/Egress filtering Some examples SYN-cookies Background In a TCP 3-way
More informationLoad Shedding in Network Monitoring Applications
Load Shedding in Network Monitoring Applications Pere Barlet-Ros 1 Gianluca Iannaccone 2 Josep Sanjuàs 1 Diego Amores 1 Josep Solé-Pareta 1 1 Technical University of Catalonia (UPC) Barcelona, Spain 2
More informationOutline. Motivation. Our System. Conclusion
Outline Motivation Our System Evaluation Conclusion 1 Botnet A botnet is a collection of bots controlled by a botmaster via a command and control (C&C) channel Centralized C&C, P2P-based C&C Botnets serve
More informationHighly Compact Virtual Counters for Per-Flow Traffic Measurement through Register Sharing
Highly Compact Virtual Counters for Per-Flow Traffic Measurement through Register Sharing You Zhou Yian Zhou Min Chen Qingjun Xiao Shigang Chen Department of Computer & Information Science & Engineering,
More informationOpenCache. A Platform for Efficient Video Delivery. Matthew Broadbent. 1 st Year PhD Student
OpenCache A Platform for Efficient Video Delivery Matthew Broadbent 1 st Year PhD Student Motivation Consumption of video content on the Internet is constantly expanding Video-on-demand is an ever greater
More informationInterdomain Routing Design for MobilityFirst
Interdomain Routing Design for MobilityFirst October 6, 2011 Z. Morley Mao, University of Michigan In collaboration with Mike Reiter s group 1 Interdomain routing design requirements Mobility support Network
More informationAn Empirical Evaluation of Entropy-based Traffic Anomaly Detection
An Empirical Evaluation of Entropy-based Traffic Anomaly Detection George Nychis, Vyas Sekar, David G. Andersen, Hyong Kim, Hui Zhang {gnychis,kim}@ece.cmu.edu, {vyass,dga,hzhang}@cs.cmu.edu Carnegie Mellon
More informationGenetic-Algorithm-Based Construction of Load-Balanced CDSs in Wireless Sensor Networks
Genetic-Algorithm-Based Construction of Load-Balanced CDSs in Wireless Sensor Networks Jing He, Shouling Ji, Mingyuan Yan, Yi Pan, and Yingshu Li Department of Computer Science Georgia State University,
More informationCHAPTER 3 EFFECTIVE ADMISSION CONTROL MECHANISM IN WIRELESS MESH NETWORKS
28 CHAPTER 3 EFFECTIVE ADMISSION CONTROL MECHANISM IN WIRELESS MESH NETWORKS Introduction Measurement-based scheme, that constantly monitors the network, will incorporate the current network state in the
More informationCache and Forward Architecture
Cache and Forward Architecture Shweta Jain Research Associate Motivation Conversation between computers connected by wires Wired Network Large content retrieval using wireless and mobile devices Wireless
More informationNo Pane, No Gain: Efficient Evaluation of Sliding-Window Aggregates over Data Streams
No Pane, No Gain: Efficient Evaluation of Sliding-Window Aggregates over Data Streams Jin ~i', David ~aier', Kristin Tuftel, Vassilis papadimosl, Peter A. Tucke? 1 Portland State University 2~hitworth
More informationBuffered Count-Min Sketch on SSD: Theory and Experiments
Buffered Count-Min Sketch on SSD: Theory and Experiments Mayank Goswami, Dzejla Medjedovic, Emina Mekic, and Prashant Pandey ESA 2018, Helsinki, Finland The heavy hitters problem (HH(k)) Given stream of
More informationChapter 6: Distributed Systems: The Web. Fall 2012 Sini Ruohomaa Slides joint work with Jussi Kangasharju et al.
Chapter 6: Distributed Systems: The Web Fall 2012 Sini Ruohomaa Slides joint work with Jussi Kangasharju et al. Chapter Outline Web as a distributed system Basic web architecture Content delivery networks
More informationSoftware-Defined Networking (Continued)
Software-Defined Networking (Continued) CS640, 2015-04-23 Announcements Assign #5 released due Thursday, May 7 at 11pm Outline Recap SDN Stack Layer 2 Learning Switch Control Application Design Considerations
More informationSketching Probabilistic Data Streams
Sketching Probabilistic Data Streams Graham Cormode AT&T Labs - Research graham@research.att.com Minos Garofalakis Yahoo! Research minos@acm.org Challenge of Uncertain Data Many applications generate data
More informationBasic Memory Management. Basic Memory Management. Address Binding. Running a user program. Operating Systems 10/14/2018 CSC 256/456 1
Basic Memory Management Program must be brought into memory and placed within a process for it to be run Basic Memory Management CS 256/456 Dept. of Computer Science, University of Rochester Mono-programming
More informationEpisode 5. Scheduling and Traffic Management
Episode 5. Scheduling and Traffic Management Part 3 Baochun Li Department of Electrical and Computer Engineering University of Toronto Outline What is scheduling? Why do we need it? Requirements of a scheduling
More informationFast Approximation of Matrix Coherence and Statistical Leverage
Fast Approximation of Matrix Coherence and Statistical Leverage Michael W. Mahoney Stanford University ( For more info, see: http:// cs.stanford.edu/people/mmahoney/ or Google on Michael Mahoney ) Statistical
More informationNaaS Network-as-a-Service in the Cloud
NaaS Network-as-a-Service in the Cloud joint work with Matteo Migliavacca, Peter Pietzuch, and Alexander L. Wolf costa@imperial.ac.uk Motivation Mismatch between app. abstractions & network How the programmers
More informationThere s something about MRAI
There s something about MRAI Timing diversity can exponentially worsen BGP convergence Alex Fabrikant Google Research (Work done while at Princeton University) Joint work with Umar Syed (Penn) and Jennifer
More informationUniversity of Cambridge Engineering Part IIB Module 4F12 - Computer Vision and Robotics Mobile Computer Vision
report University of Cambridge Engineering Part IIB Module 4F12 - Computer Vision and Robotics Mobile Computer Vision Web Server master database User Interface Images + labels image feature algorithm Extract
More informationFrom Routing to Traffic Engineering
1 From Routing to Traffic Engineering Robert Soulé Advanced Networking Fall 2016 2 In the beginning B Goal: pair-wise connectivity (get packets from A to B) Approach: configure static rules in routers
More information