SlideShare ist ein Scribd-Unternehmen logo

PIT Overload Analysis in Content Centric Networks - Slides ICN '13

Matteo Virgilio
Matteo Virgilio

Analysis of the Pending Interest Table behavior in the context of a distributed denial of service attack. Slides presented at: 3rd ACM SIGCOMM Workshop on Information-Centric Networking (ICN 2013) - Hong Kong, China The paper is available at: http://conferences.sigcomm.org/sigcomm/2013/papers/icn/p67.pdf

TechnologieBusiness
1 von 16
Downloaden Sie, um offline zu lesen
ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 1/16 PIT Overload Analysis in Content Centric Networks Matteo Virgilio, Guido Marchetto, Riccardo Sisto Department of Control and Computer Engineering Politecnico di Torino
ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 2/16 A stateful protocol: the Pending Interest Table • Used to store all seen Interests • One entry for each requested piece of content • Multiple Interests for a single name are merged in a single entry (Interest merging) Name Pending Interfaces /acm.org/papers/paperA.pdf/1 etho /acm.org/papers/paperB.pdf/1 eth1 /acm.org/papers/paperA.pdf/2 eth0 /acm.org/papers/paperB.pdf/2 eth1 CCN Router PIT
ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 3/16 Problem Description • Malicious users could craft Interests for non existing resources: Interest Flooding Attack (IFA) – Very long random names – possibly long lifetime values (even hundreads of seconds) • Why do we have to consider so “long” requests? The answer is long-polling! • Supporting publish/subscribe paradigm may require to store long (potentially unanswered) requests for a long period of time • No information about when the response will be generated (routers cannot make any assumption) • Simply dropping Interests with high lifetime is too simplistic
ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 4/16 What has been done in recent literature? • A wide part of the research activity focused on privacy and data integrity issues • What about the PIT? – Some architecture proposals • Bloom filter implementation of the PIT (DiPIT) • Hash based PIT implementation with some interesting variants (Name Prefix Tree encoding) – Reactive algorithms for IFA handling: • Statistics based reaction to attackers activity; • Poseidon Framework (very recent)
ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 5/16 Our contribution • Simulation based approach – we developed a full custom Java ccnSimulator • Different target: evaluating attack impact on a real topology • Evaluate different PIT architectures in various network load (and attack) scenarios
ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 6/16 Simulation scenario • Reference topology from Telecom Italia (the most prominent Italian ISP) • 9 milions of subscribers • ADSL with 7Mbps/1Mbps (downlink/uplink) • Zipf content distribution • Metrics gathered – Chunk retransmission rate at the endpoints • Fixed PIT size – 1 GB
ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 7/16 Attack model • Distributed bot net • Different simulation campaigns 1) Variable lifeTime 2) Variable bandwidth • Different URI size  ≈1000 bytes for the SimplePIT case  20 bytes for the HashedPIT case (SHA-1 as hashing algorithm)
ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 8/16 Attacker’s transmission efficiency SimplePIT Attack efficiency HashedPIT, DiPIT Attack efficiency Interest Header (20 bytes) Resource name (1000 bytes) Interest Header (20 bytes) Resource name (20 bytes) %98 )100020( 1000   bytes bytes %50 )2020( 20   bytes bytes
ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 9/16 Simulation Results (1) AttackSettings SimplePIT Retransmissions /RAMusage HashedPIT Retransmissions/RAMusage DiPIT Retransmissions /RAMusage Band = 100 Mbps LifeTime= 4 sec 0 49 MB 0 25 MB 0.01 % 1 GB Band = 500 Mbps LifeTime= 4 sec 0 245 MB 0 125 MB 2.42 % 1 GB Band = 2Gbps LifeTime= 4 sec 0 980 MB 0 500 MB 87.6 % 1 GB Band = 4Gbps LifeTime= 4 sec 15 % FULL 83 % FULL 90 % 1 GB Band = 100 Mbps LifeTime= 60 sec 0 735 MB 0 375 MB 21 % 1 GB Band = 100 Mbps LifeTime= 120 sec 37 % FULL 0 750 MB 86 % 1 GB Band = 100 Mbps LifeTime= 180 sec 52 % FULL ∞ FULL 88 % 1 GB
ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 10/16 Simulation Results (1) AttackSettings SimplePIT Retransmissions /RAMusage HashedPIT Retransmissions/RAMusage DiPIT Retransmissions /RAMusage Band = 100 Mbps LifeTime= 4 sec 0 49 MB 0 25 MB 0.01 % 1 GB Band = 500 Mbps LifeTime= 4 sec 0 245 MB 0 125 MB 2.42 % 1 GB Band = 2Gbps LifeTime= 4 sec 0 980 MB 0 500 MB 87.6 % 1 GB Band = 4Gbps LifeTime= 4 sec 15 % FULL 83 % FULL 90 % 1 GB Band = 100 Mbps LifeTime= 60 sec 0 735 MB 0 375 MB 21 % 1 GB Band = 100 Mbps LifeTime= 120 sec 37 % FULL 0 750 MB 86 % 1 GB Band = 100 Mbps LifeTime= 180 sec 52 % FULL ∞ FULL 88 % 1 GB
ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 11/16 Simulation Results (1) AttackSettings SimplePIT Retransmissions /RAMusage HashedPIT Retransmissions/RAMusage DiPIT Retransmissions /RAMusage Band = 100 Mbps LifeTime= 4 sec 0 49 MB 0 25 MB 0.01 % 1 GB Band = 500 Mbps LifeTime= 4 sec 0 245 MB 0 125 MB 2.42 % 1 GB Band = 2Gbps LifeTime= 4 sec 0 980 MB 0 500 MB 87.6 % 1 GB Band = 4Gbps LifeTime= 4 sec 15 % FULL 83 % FULL 90 % 1 GB Band = 100 Mbps LifeTime= 60 sec 0 735 MB 0 375 MB 21 % 1 GB Band = 100 Mbps LifeTime= 120 sec 37 % FULL 0 750 MB 86 % 1 GB Band = 100 Mbps LifeTime= 180 sec 52 % FULL ∞ FULL 88 % 1 GB
ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 12/16 Simulation Results (1) AttackSettings SimplePIT Retransmissions /RAMusage HashedPIT Retransmissions/RAMusage DiPIT Retransmissions /RAMusage Band = 100 Mbps LifeTime= 4 sec 0 49 MB 0 25 MB 0.01 % 1 GB Band = 500 Mbps LifeTime= 4 sec 0 245 MB 0 125 MB 2.42 % 1 GB Band = 2Gbps LifeTime= 4 sec 0 980 MB 0 500 MB 87.6 % 1 GB Band = 4Gbps LifeTime= 4 sec 15 % FULL 83 % FULL 90 % 1 GB Band = 100 Mbps LifeTime= 60 sec 0 735 MB 0 375 MB 21 % 1 GB Band = 100 Mbps LifeTime= 120 sec 37 % FULL 0 750 MB 86 % 1 GB Band = 100 Mbps LifeTime= 180 sec 52 % FULL ∞ FULL 88 % 1 GB
ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 13/16 Simulation Results (2) • Settings: Band = 100 Mbps, LifeTime = 180 sec • Settings: Band = 4 Gbps, LifeTime = 4 sec
ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 14/16 Conclusion • All the architectures work properly in normal network conditions and also in presence of low intensity attack • HashedPIT is the most affected PIT in our context • Other scenarios could be designed to worsen SimplePIT too – Distribute more zombies around the network; – Combine both high bandwidth and high lifetime to maximize the attack effectiveness; – … • Scalable and robust solutions are needed to ensure an adequate level of confidence to the CCN paradigm.
ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 15/16 Future contribution • Very recent solutions have been proposed to mitigate the impact of Interest Flooding Attacks • Our plan for the future is to evaluate them in our scenarios in terms of: – Resilience – CPU usage – Memory usage
ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 16/16 Thank you for the attention!

Empfohlen

High Definition On MPEG In Internet Protocol (Wbm Comments)
High Definition On MPEG In Internet Protocol (Wbm Comments)High Definition On MPEG In Internet Protocol (Wbm Comments)
High Definition On MPEG In Internet Protocol (Wbm Comments)Kelly Daniels
 
Precision Time Protocol
Precision Time ProtocolPrecision Time Protocol
Precision Time ProtocolSteven Kreuzer
 
IEEE1588-v2
IEEE1588-v2IEEE1588-v2
IEEE1588-v2Guider Lee
 
Ieee 1588 ptp
Ieee 1588 ptpIeee 1588 ptp
Ieee 1588 ptpTasuka Hsu
 
The new Janet access architecture
The new Janet access architecture The new Janet access architecture
The new Janet access architecture Jisc
 
Precision Time Synchronization
Precision Time SynchronizationPrecision Time Synchronization
Precision Time SynchronizationKrishna Sankar
 
6NEAT project and IP..
6NEAT project and IP..6NEAT project and IP..
6NEAT project and IP..Videoguy
 
Time Sensitive Networking in the Linux Kernel
Time Sensitive Networking in the Linux KernelTime Sensitive Networking in the Linux Kernel
Time Sensitive Networking in the Linux Kernelhenrikau
 

Empfohlen

High Definition On MPEG In Internet Protocol (Wbm Comments)
High Definition On MPEG In Internet Protocol (Wbm Comments)High Definition On MPEG In Internet Protocol (Wbm Comments)
High Definition On MPEG In Internet Protocol (Wbm Comments)Kelly Daniels
 
Precision Time Protocol
Precision Time ProtocolPrecision Time Protocol
Precision Time ProtocolSteven Kreuzer
 
IEEE1588-v2
IEEE1588-v2IEEE1588-v2
IEEE1588-v2Guider Lee
 
Ieee 1588 ptp
Ieee 1588 ptpIeee 1588 ptp
Ieee 1588 ptpTasuka Hsu
 
The new Janet access architecture
The new Janet access architecture The new Janet access architecture
The new Janet access architecture Jisc
 
Precision Time Synchronization
Precision Time SynchronizationPrecision Time Synchronization
Precision Time SynchronizationKrishna Sankar
 
6NEAT project and IP..
6NEAT project and IP..6NEAT project and IP..
6NEAT project and IP..Videoguy
 
Time Sensitive Networking in the Linux Kernel
Time Sensitive Networking in the Linux KernelTime Sensitive Networking in the Linux Kernel
Time Sensitive Networking in the Linux Kernelhenrikau
 
Improving NTP Installed Base Time Accuracy
Improving NTP Installed Base Time AccuracyImproving NTP Installed Base Time Accuracy
Improving NTP Installed Base Time AccuracyADVA
 
Labmeeting - 20150831 - Overhead and Performance of Low Latency Live Streamin...
Labmeeting - 20150831 - Overhead and Performance of Low Latency Live Streamin...Labmeeting - 20150831 - Overhead and Performance of Low Latency Live Streamin...
Labmeeting - 20150831 - Overhead and Performance of Low Latency Live Streamin...Syuan Wang
 
IEEE 1588 Timing for Mobile Backhaul_Webinar
IEEE 1588 Timing for Mobile Backhaul_WebinarIEEE 1588 Timing for Mobile Backhaul_Webinar
IEEE 1588 Timing for Mobile Backhaul_WebinarSymmetricomSYMM
 
In Service Monitoring and Assurance at ITSF 2014
In Service Monitoring and Assurance at ITSF 2014 In Service Monitoring and Assurance at ITSF 2014
In Service Monitoring and Assurance at ITSF 2014 ADVA
 
FAUST: Fast Per-Scene Encoding Using Entropy-Based Scene Detection and Machin...
FAUST: Fast Per-Scene Encoding Using Entropy-Based Scene Detection and Machin...FAUST: Fast Per-Scene Encoding Using Entropy-Based Scene Detection and Machin...
FAUST: Fast Per-Scene Encoding Using Entropy-Based Scene Detection and Machin...Alpen-Adria-Universität
 
Future services on Janet
Future services on JanetFuture services on Janet
Future services on JanetJisc
 
flowspec @ APF 2013
flowspec @ APF 2013flowspec @ APF 2013
flowspec @ APF 2013Tom Paseka
 
LAN, WAN, SAN upgrades: hyperconverged vs traditional vs cloud
LAN, WAN, SAN upgrades: hyperconverged vs traditional vs cloudLAN, WAN, SAN upgrades: hyperconverged vs traditional vs cloud
LAN, WAN, SAN upgrades: hyperconverged vs traditional vs cloudJisc
 
Blackholing from a_providers_perspektive_theo_voss
Blackholing from a_providers_perspektive_theo_vossBlackholing from a_providers_perspektive_theo_voss
Blackholing from a_providers_perspektive_theo_vossPavel Odintsov
 
INCEPT: Intra CU Depth Prediction for HEVC
INCEPT: Intra CU Depth Prediction for HEVCINCEPT: Intra CU Depth Prediction for HEVC
INCEPT: Intra CU Depth Prediction for HEVCAlpen-Adria-Universität
 
Labmeeting - 20151013 - Adaptive Video Streaming over HTTP with Dynamic Resou...
Labmeeting - 20151013 - Adaptive Video Streaming over HTTP with Dynamic Resou...Labmeeting - 20151013 - Adaptive Video Streaming over HTTP with Dynamic Resou...
Labmeeting - 20151013 - Adaptive Video Streaming over HTTP with Dynamic Resou...Syuan Wang
 
RDMA programming design and case studies – for better performance distributed...
RDMA programming design and case studies – for better performance distributed...RDMA programming design and case studies – for better performance distributed...
RDMA programming design and case studies – for better performance distributed...NTT Software Innovation Center
 
(Slides) P2P video broadcast based on per-peer transcoding and its evaluatio...
(Slides) P2P video broadcast based on per-peer transcoding and its evaluatio...(Slides) P2P video broadcast based on per-peer transcoding and its evaluatio...
(Slides) P2P video broadcast based on per-peer transcoding and its evaluatio...Naoki Shibata
 
2013 09-02 senzations-bimschas-part1-smart-santander-facility-luebeck
2013 09-02 senzations-bimschas-part1-smart-santander-facility-luebeck2013 09-02 senzations-bimschas-part1-smart-santander-facility-luebeck
2013 09-02 senzations-bimschas-part1-smart-santander-facility-luebeckDaniel Bimschas
 
Skydive, real-time network analyzer
Skydive, real-time network analyzer Skydive, real-time network analyzer
Skydive, real-time network analyzer Sylvain Afchain
 
Performance Analysis Of AOMDV In Terms Of Mobility Speed And Pause Time
Performance Analysis Of AOMDV In Terms Of Mobility Speed And Pause TimePerformance Analysis Of AOMDV In Terms Of Mobility Speed And Pause Time
Performance Analysis Of AOMDV In Terms Of Mobility Speed And Pause TimeAkmal
 
More Efficient Object Replication in OpenStack Summit Juno
More Efficient Object Replication in OpenStack Summit JunoMore Efficient Object Replication in OpenStack Summit Juno
More Efficient Object Replication in OpenStack Summit JunoKota Tsuyuzaki
 
Update on progress: SA#87 e meeting
Update on progress: SA#87 e meetingUpdate on progress: SA#87 e meeting
Update on progress: SA#87 e meeting3G4G
 
UDT
UDTUDT
UDTxlight
 
Low-Power Wide Area - Overview
Low-Power Wide Area - OverviewLow-Power Wide Area - Overview
Low-Power Wide Area - OverviewM2M Alliance e.V.
 
PLNOG 13: Alexis Dacquay: Handling high-bandwidth-consumption applications in...
PLNOG 13: Alexis Dacquay: Handling high-bandwidth-consumption applications in...PLNOG 13: Alexis Dacquay: Handling high-bandwidth-consumption applications in...
PLNOG 13: Alexis Dacquay: Handling high-bandwidth-consumption applications in...PROIDEA
 
Simplemux: a generic multiplexing protocol
Simplemux: a generic multiplexing protocolSimplemux: a generic multiplexing protocol
Simplemux: a generic multiplexing protocolJose Saldana
 

Weitere ähnliche Inhalte

Was ist angesagt?

Improving NTP Installed Base Time Accuracy
Improving NTP Installed Base Time AccuracyImproving NTP Installed Base Time Accuracy
Improving NTP Installed Base Time AccuracyADVA
 
Labmeeting - 20150831 - Overhead and Performance of Low Latency Live Streamin...
Labmeeting - 20150831 - Overhead and Performance of Low Latency Live Streamin...Labmeeting - 20150831 - Overhead and Performance of Low Latency Live Streamin...
Labmeeting - 20150831 - Overhead and Performance of Low Latency Live Streamin...Syuan Wang
 
IEEE 1588 Timing for Mobile Backhaul_Webinar
IEEE 1588 Timing for Mobile Backhaul_WebinarIEEE 1588 Timing for Mobile Backhaul_Webinar
IEEE 1588 Timing for Mobile Backhaul_WebinarSymmetricomSYMM
 
In Service Monitoring and Assurance at ITSF 2014
In Service Monitoring and Assurance at ITSF 2014 In Service Monitoring and Assurance at ITSF 2014
In Service Monitoring and Assurance at ITSF 2014 ADVA
 
FAUST: Fast Per-Scene Encoding Using Entropy-Based Scene Detection and Machin...
FAUST: Fast Per-Scene Encoding Using Entropy-Based Scene Detection and Machin...FAUST: Fast Per-Scene Encoding Using Entropy-Based Scene Detection and Machin...
FAUST: Fast Per-Scene Encoding Using Entropy-Based Scene Detection and Machin...Alpen-Adria-Universität
 
Future services on Janet
Future services on JanetFuture services on Janet
Future services on JanetJisc
 
flowspec @ APF 2013
flowspec @ APF 2013flowspec @ APF 2013
flowspec @ APF 2013Tom Paseka
 
LAN, WAN, SAN upgrades: hyperconverged vs traditional vs cloud
LAN, WAN, SAN upgrades: hyperconverged vs traditional vs cloudLAN, WAN, SAN upgrades: hyperconverged vs traditional vs cloud
LAN, WAN, SAN upgrades: hyperconverged vs traditional vs cloudJisc
 
Blackholing from a_providers_perspektive_theo_voss
Blackholing from a_providers_perspektive_theo_vossBlackholing from a_providers_perspektive_theo_voss
Blackholing from a_providers_perspektive_theo_vossPavel Odintsov
 
INCEPT: Intra CU Depth Prediction for HEVC
INCEPT: Intra CU Depth Prediction for HEVCINCEPT: Intra CU Depth Prediction for HEVC
INCEPT: Intra CU Depth Prediction for HEVCAlpen-Adria-Universität
 
Labmeeting - 20151013 - Adaptive Video Streaming over HTTP with Dynamic Resou...
Labmeeting - 20151013 - Adaptive Video Streaming over HTTP with Dynamic Resou...Labmeeting - 20151013 - Adaptive Video Streaming over HTTP with Dynamic Resou...
Labmeeting - 20151013 - Adaptive Video Streaming over HTTP with Dynamic Resou...Syuan Wang
 
RDMA programming design and case studies – for better performance distributed...
RDMA programming design and case studies – for better performance distributed...RDMA programming design and case studies – for better performance distributed...
RDMA programming design and case studies – for better performance distributed...NTT Software Innovation Center
 
(Slides) P2P video broadcast based on per-peer transcoding and its evaluatio...
(Slides) P2P video broadcast based on per-peer transcoding and its evaluatio...(Slides) P2P video broadcast based on per-peer transcoding and its evaluatio...
(Slides) P2P video broadcast based on per-peer transcoding and its evaluatio...Naoki Shibata
 
2013 09-02 senzations-bimschas-part1-smart-santander-facility-luebeck
2013 09-02 senzations-bimschas-part1-smart-santander-facility-luebeck2013 09-02 senzations-bimschas-part1-smart-santander-facility-luebeck
2013 09-02 senzations-bimschas-part1-smart-santander-facility-luebeckDaniel Bimschas
 
Skydive, real-time network analyzer
Skydive, real-time network analyzer Skydive, real-time network analyzer
Skydive, real-time network analyzer Sylvain Afchain
 
Performance Analysis Of AOMDV In Terms Of Mobility Speed And Pause Time
Performance Analysis Of AOMDV In Terms Of Mobility Speed And Pause TimePerformance Analysis Of AOMDV In Terms Of Mobility Speed And Pause Time
Performance Analysis Of AOMDV In Terms Of Mobility Speed And Pause TimeAkmal
 
More Efficient Object Replication in OpenStack Summit Juno
More Efficient Object Replication in OpenStack Summit JunoMore Efficient Object Replication in OpenStack Summit Juno
More Efficient Object Replication in OpenStack Summit JunoKota Tsuyuzaki
 
Update on progress: SA#87 e meeting
Update on progress: SA#87 e meetingUpdate on progress: SA#87 e meeting
Update on progress: SA#87 e meeting3G4G
 
Low-Power Wide Area - Overview
Low-Power Wide Area - OverviewLow-Power Wide Area - Overview
Low-Power Wide Area - OverviewM2M Alliance e.V.
 

Was ist angesagt? (20)

Improving NTP Installed Base Time Accuracy
Improving NTP Installed Base Time AccuracyImproving NTP Installed Base Time Accuracy
Improving NTP Installed Base Time Accuracy
 
Labmeeting - 20150831 - Overhead and Performance of Low Latency Live Streamin...
Labmeeting - 20150831 - Overhead and Performance of Low Latency Live Streamin...Labmeeting - 20150831 - Overhead and Performance of Low Latency Live Streamin...
Labmeeting - 20150831 - Overhead and Performance of Low Latency Live Streamin...
 
IEEE 1588 Timing for Mobile Backhaul_Webinar
IEEE 1588 Timing for Mobile Backhaul_WebinarIEEE 1588 Timing for Mobile Backhaul_Webinar
IEEE 1588 Timing for Mobile Backhaul_Webinar
 
In Service Monitoring and Assurance at ITSF 2014
In Service Monitoring and Assurance at ITSF 2014 In Service Monitoring and Assurance at ITSF 2014
In Service Monitoring and Assurance at ITSF 2014
 
FAUST: Fast Per-Scene Encoding Using Entropy-Based Scene Detection and Machin...
FAUST: Fast Per-Scene Encoding Using Entropy-Based Scene Detection and Machin...FAUST: Fast Per-Scene Encoding Using Entropy-Based Scene Detection and Machin...
FAUST: Fast Per-Scene Encoding Using Entropy-Based Scene Detection and Machin...
 
Future services on Janet
Future services on JanetFuture services on Janet
Future services on Janet
 
flowspec @ APF 2013
flowspec @ APF 2013flowspec @ APF 2013
flowspec @ APF 2013
 
LAN, WAN, SAN upgrades: hyperconverged vs traditional vs cloud
LAN, WAN, SAN upgrades: hyperconverged vs traditional vs cloudLAN, WAN, SAN upgrades: hyperconverged vs traditional vs cloud
LAN, WAN, SAN upgrades: hyperconverged vs traditional vs cloud
 
Blackholing from a_providers_perspektive_theo_voss
Blackholing from a_providers_perspektive_theo_vossBlackholing from a_providers_perspektive_theo_voss
Blackholing from a_providers_perspektive_theo_voss
 
INCEPT: Intra CU Depth Prediction for HEVC
INCEPT: Intra CU Depth Prediction for HEVCINCEPT: Intra CU Depth Prediction for HEVC
INCEPT: Intra CU Depth Prediction for HEVC
 
Labmeeting - 20151013 - Adaptive Video Streaming over HTTP with Dynamic Resou...
Labmeeting - 20151013 - Adaptive Video Streaming over HTTP with Dynamic Resou...Labmeeting - 20151013 - Adaptive Video Streaming over HTTP with Dynamic Resou...
Labmeeting - 20151013 - Adaptive Video Streaming over HTTP with Dynamic Resou...
 
RDMA programming design and case studies – for better performance distributed...
RDMA programming design and case studies – for better performance distributed...RDMA programming design and case studies – for better performance distributed...
RDMA programming design and case studies – for better performance distributed...
 
(Slides) P2P video broadcast based on per-peer transcoding and its evaluatio...
(Slides) P2P video broadcast based on per-peer transcoding and its evaluatio...(Slides) P2P video broadcast based on per-peer transcoding and its evaluatio...
(Slides) P2P video broadcast based on per-peer transcoding and its evaluatio...
 
2013 09-02 senzations-bimschas-part1-smart-santander-facility-luebeck
2013 09-02 senzations-bimschas-part1-smart-santander-facility-luebeck2013 09-02 senzations-bimschas-part1-smart-santander-facility-luebeck
2013 09-02 senzations-bimschas-part1-smart-santander-facility-luebeck
 
Skydive, real-time network analyzer
Skydive, real-time network analyzer Skydive, real-time network analyzer
Skydive, real-time network analyzer
 
Performance Analysis Of AOMDV In Terms Of Mobility Speed And Pause Time
Performance Analysis Of AOMDV In Terms Of Mobility Speed And Pause TimePerformance Analysis Of AOMDV In Terms Of Mobility Speed And Pause Time
Performance Analysis Of AOMDV In Terms Of Mobility Speed And Pause Time
 
More Efficient Object Replication in OpenStack Summit Juno
More Efficient Object Replication in OpenStack Summit JunoMore Efficient Object Replication in OpenStack Summit Juno
More Efficient Object Replication in OpenStack Summit Juno
 
Update on progress: SA#87 e meeting
Update on progress: SA#87 e meetingUpdate on progress: SA#87 e meeting
Update on progress: SA#87 e meeting
 
UDT
UDTUDT
UDT
 
Low-Power Wide Area - Overview
Low-Power Wide Area - OverviewLow-Power Wide Area - Overview
Low-Power Wide Area - Overview
 

Ähnlich wie PIT Overload Analysis in Content Centric Networks - Slides ICN '13

PLNOG 13: Alexis Dacquay: Handling high-bandwidth-consumption applications in...
PLNOG 13: Alexis Dacquay: Handling high-bandwidth-consumption applications in...PLNOG 13: Alexis Dacquay: Handling high-bandwidth-consumption applications in...
PLNOG 13: Alexis Dacquay: Handling high-bandwidth-consumption applications in...PROIDEA
 
Simplemux: a generic multiplexing protocol
Simplemux: a generic multiplexing protocolSimplemux: a generic multiplexing protocol
Simplemux: a generic multiplexing protocolJose Saldana
 
Introducing the Future of Data Center Interconnect Networks
Introducing the Future of Data Center Interconnect NetworksIntroducing the Future of Data Center Interconnect Networks
Introducing the Future of Data Center Interconnect NetworksADVA
 
High-performance 32G Fibre Channel Module on MDS 9700 Directors:
High-performance 32G Fibre Channel Module on MDS 9700 Directors:High-performance 32G Fibre Channel Module on MDS 9700 Directors:
High-performance 32G Fibre Channel Module on MDS 9700 Directors:Tony Antony
 
On the feasibility of 40 Gbps network data capture and retention with general...
On the feasibility of 40 Gbps network data capture and retention with general...On the feasibility of 40 Gbps network data capture and retention with general...
On the feasibility of 40 Gbps network data capture and retention with general...Jorge E. López de Vergara Méndez
 
Dataplane networking acceleration with OpenDataplane / Максим Уваров (Linaro)
Dataplane networking acceleration with OpenDataplane / Максим Уваров (Linaro)Dataplane networking acceleration with OpenDataplane / Максим Уваров (Linaro)
Dataplane networking acceleration with OpenDataplane / Максим Уваров (Linaro)Ontico
 
An overview of 100GbE technology, now and the future
An overview of 100GbE technology, now and the futureAn overview of 100GbE technology, now and the future
An overview of 100GbE technology, now and the futureJisc
 
Opinion: What is “Real 5G”? (and “Real 4G”?)
Opinion: What is “Real 5G”? (and “Real 4G”?)Opinion: What is “Real 5G”? (and “Real 4G”?)
Opinion: What is “Real 5G”? (and “Real 4G”?)3G4G
 
The Impact of Software-based Virtual Network in the Public Cloud
The Impact of Software-based Virtual Network in the Public CloudThe Impact of Software-based Virtual Network in the Public Cloud
The Impact of Software-based Virtual Network in the Public CloudChunghan Lee
 
PCIe Gen 3.0 Presentation @ 4th FPGA Camp
PCIe Gen 3.0 Presentation @ 4th FPGA CampPCIe Gen 3.0 Presentation @ 4th FPGA Camp
PCIe Gen 3.0 Presentation @ 4th FPGA CampFPGA Central
 
Cellular LPWA for the IoT
Cellular LPWA for the IoTCellular LPWA for the IoT
Cellular LPWA for the IoTNicolas Damour
 
PLNOG 7: Emil Gągała, Sławomir Janukowicz - carrier grade NAT
PLNOG 7: Emil Gągała, Sławomir Janukowicz - carrier grade NAT PLNOG 7: Emil Gągała, Sławomir Janukowicz - carrier grade NAT
PLNOG 7: Emil Gągała, Sławomir Janukowicz - carrier grade NAT PROIDEA
 
Cisco EuroMPI'13 vendor session presentation
Cisco EuroMPI'13 vendor session presentationCisco EuroMPI'13 vendor session presentation
Cisco EuroMPI'13 vendor session presentationJeff Squyres
 
Extending the life of your device (firmware updates over LoRa) - LoRa AMM
Extending the life of your device (firmware updates over LoRa) - LoRa AMMExtending the life of your device (firmware updates over LoRa) - LoRa AMM
Extending the life of your device (firmware updates over LoRa) - LoRa AMMJan Jongboom
 
David Soldani, Huawei
David Soldani, HuaweiDavid Soldani, Huawei
David Soldani, HuaweiHilary Ip
 
Lagopus presentation on 14th Annual ON*VECTOR International Photonics Workshop
Lagopus presentation on 14th Annual ON*VECTOR International Photonics WorkshopLagopus presentation on 14th Annual ON*VECTOR International Photonics Workshop
Lagopus presentation on 14th Annual ON*VECTOR International Photonics WorkshopLagopus SDN/OpenFlow switch
 

Ähnlich wie PIT Overload Analysis in Content Centric Networks - Slides ICN '13 (20)

PLNOG 13: Alexis Dacquay: Handling high-bandwidth-consumption applications in...
PLNOG 13: Alexis Dacquay: Handling high-bandwidth-consumption applications in...PLNOG 13: Alexis Dacquay: Handling high-bandwidth-consumption applications in...
PLNOG 13: Alexis Dacquay: Handling high-bandwidth-consumption applications in...
 
Simplemux: a generic multiplexing protocol
Simplemux: a generic multiplexing protocolSimplemux: a generic multiplexing protocol
Simplemux: a generic multiplexing protocol
 
Introducing the Future of Data Center Interconnect Networks
Introducing the Future of Data Center Interconnect NetworksIntroducing the Future of Data Center Interconnect Networks
Introducing the Future of Data Center Interconnect Networks
 
High-performance 32G Fibre Channel Module on MDS 9700 Directors:
High-performance 32G Fibre Channel Module on MDS 9700 Directors:High-performance 32G Fibre Channel Module on MDS 9700 Directors:
High-performance 32G Fibre Channel Module on MDS 9700 Directors:
 
100 M pps on PC.
100 M pps on PC.100 M pps on PC.
100 M pps on PC.
 
On the feasibility of 40 Gbps network data capture and retention with general...
On the feasibility of 40 Gbps network data capture and retention with general...On the feasibility of 40 Gbps network data capture and retention with general...
On the feasibility of 40 Gbps network data capture and retention with general...
 
Dataplane networking acceleration with OpenDataplane / Максим Уваров (Linaro)
Dataplane networking acceleration with OpenDataplane / Максим Уваров (Linaro)Dataplane networking acceleration with OpenDataplane / Максим Уваров (Linaro)
Dataplane networking acceleration with OpenDataplane / Максим Уваров (Linaro)
 
Rust at Ather
Rust at AtherRust at Ather
Rust at Ather
 
An overview of 100GbE technology, now and the future
An overview of 100GbE technology, now and the futureAn overview of 100GbE technology, now and the future
An overview of 100GbE technology, now and the future
 
Opinion: What is “Real 5G”? (and “Real 4G”?)
Opinion: What is “Real 5G”? (and “Real 4G”?)Opinion: What is “Real 5G”? (and “Real 4G”?)
Opinion: What is “Real 5G”? (and “Real 4G”?)
 
The Impact of Software-based Virtual Network in the Public Cloud
The Impact of Software-based Virtual Network in the Public CloudThe Impact of Software-based Virtual Network in the Public Cloud
The Impact of Software-based Virtual Network in the Public Cloud
 
PCIe Gen 3.0 Presentation @ 4th FPGA Camp
PCIe Gen 3.0 Presentation @ 4th FPGA CampPCIe Gen 3.0 Presentation @ 4th FPGA Camp
PCIe Gen 3.0 Presentation @ 4th FPGA Camp
 
Cellular LPWA for the IoT
Cellular LPWA for the IoTCellular LPWA for the IoT
Cellular LPWA for the IoT
 
CTIA 2010 Corporate Overview
CTIA 2010 Corporate OverviewCTIA 2010 Corporate Overview
CTIA 2010 Corporate Overview
 
PLNOG 7: Emil Gągała, Sławomir Janukowicz - carrier grade NAT
PLNOG 7: Emil Gągała, Sławomir Janukowicz - carrier grade NAT PLNOG 7: Emil Gągała, Sławomir Janukowicz - carrier grade NAT
PLNOG 7: Emil Gągała, Sławomir Janukowicz - carrier grade NAT
 
MWC 2010 LTE
MWC 2010 LTEMWC 2010 LTE
MWC 2010 LTE
 
Cisco EuroMPI'13 vendor session presentation
Cisco EuroMPI'13 vendor session presentationCisco EuroMPI'13 vendor session presentation
Cisco EuroMPI'13 vendor session presentation
 
Extending the life of your device (firmware updates over LoRa) - LoRa AMM
Extending the life of your device (firmware updates over LoRa) - LoRa AMMExtending the life of your device (firmware updates over LoRa) - LoRa AMM
Extending the life of your device (firmware updates over LoRa) - LoRa AMM
 
David Soldani, Huawei
David Soldani, HuaweiDavid Soldani, Huawei
David Soldani, Huawei
 
Lagopus presentation on 14th Annual ON*VECTOR International Photonics Workshop
Lagopus presentation on 14th Annual ON*VECTOR International Photonics WorkshopLagopus presentation on 14th Annual ON*VECTOR International Photonics Workshop
Lagopus presentation on 14th Annual ON*VECTOR International Photonics Workshop
 

Kürzlich hochgeladen

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDropbox
 
A Beginners Guide to Building a RAG App Using Open Source Milvus
A Beginners Guide to Building a RAG App Using Open Source MilvusA Beginners Guide to Building a RAG App Using Open Source Milvus
A Beginners Guide to Building a RAG App Using Open Source MilvusZilliz
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MIND CTI
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...Zilliz
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?Igalia
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyKhushali Kathiriya
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Jeffrey Haguewood
 
AXA XL - Insurer Innovation Award Americas 2024
AXA XL - Insurer Innovation Award Americas 2024AXA XL - Insurer Innovation Award Americas 2024
AXA XL - Insurer Innovation Award Americas 2024The Digital Insurer
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...DianaGray10
 
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...apidays
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024The Digital Insurer
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businesspanagenda
 
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWEREMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWERMadyBayot
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodJuan lago vázquez
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobeapidays
 
Ransomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfRansomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfOverkill Security
 

Kürzlich hochgeladen (20)

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
DBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor PresentationDBX First Quarter 2024 Investor Presentation
DBX First Quarter 2024 Investor Presentation
 
A Beginners Guide to Building a RAG App Using Open Source Milvus
A Beginners Guide to Building a RAG App Using Open Source MilvusA Beginners Guide to Building a RAG App Using Open Source Milvus
A Beginners Guide to Building a RAG App Using Open Source Milvus
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
 
Artificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : UncertaintyArtificial Intelligence Chap.5 : Uncertainty
Artificial Intelligence Chap.5 : Uncertainty
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
 
AXA XL - Insurer Innovation Award Americas 2024
AXA XL - Insurer Innovation Award Americas 2024AXA XL - Insurer Innovation Award Americas 2024
AXA XL - Insurer Innovation Award Americas 2024
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
 
FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024FWD Group - Insurer Innovation Award 2024
FWD Group - Insurer Innovation Award 2024
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
 
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWEREMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 
Ransomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfRansomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdf
 

PIT Overload Analysis in Content Centric Networks - Slides ICN '13

  • 1. ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 1/16 PIT Overload Analysis in Content Centric Networks Matteo Virgilio, Guido Marchetto, Riccardo Sisto Department of Control and Computer Engineering Politecnico di Torino
  • 2. ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 2/16 A stateful protocol: the Pending Interest Table • Used to store all seen Interests • One entry for each requested piece of content • Multiple Interests for a single name are merged in a single entry (Interest merging) Name Pending Interfaces /acm.org/papers/paperA.pdf/1 etho /acm.org/papers/paperB.pdf/1 eth1 /acm.org/papers/paperA.pdf/2 eth0 /acm.org/papers/paperB.pdf/2 eth1 CCN Router PIT
  • 3. ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 3/16 Problem Description • Malicious users could craft Interests for non existing resources: Interest Flooding Attack (IFA) – Very long random names – possibly long lifetime values (even hundreads of seconds) • Why do we have to consider so “long” requests? The answer is long-polling! • Supporting publish/subscribe paradigm may require to store long (potentially unanswered) requests for a long period of time • No information about when the response will be generated (routers cannot make any assumption) • Simply dropping Interests with high lifetime is too simplistic
  • 4. ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 4/16 What has been done in recent literature? • A wide part of the research activity focused on privacy and data integrity issues • What about the PIT? – Some architecture proposals • Bloom filter implementation of the PIT (DiPIT) • Hash based PIT implementation with some interesting variants (Name Prefix Tree encoding) – Reactive algorithms for IFA handling: • Statistics based reaction to attackers activity; • Poseidon Framework (very recent)
  • 5. ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 5/16 Our contribution • Simulation based approach – we developed a full custom Java ccnSimulator • Different target: evaluating attack impact on a real topology • Evaluate different PIT architectures in various network load (and attack) scenarios
  • 6. ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 6/16 Simulation scenario • Reference topology from Telecom Italia (the most prominent Italian ISP) • 9 milions of subscribers • ADSL with 7Mbps/1Mbps (downlink/uplink) • Zipf content distribution • Metrics gathered – Chunk retransmission rate at the endpoints • Fixed PIT size – 1 GB
  • 7. ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 7/16 Attack model • Distributed bot net • Different simulation campaigns 1) Variable lifeTime 2) Variable bandwidth • Different URI size  ≈1000 bytes for the SimplePIT case  20 bytes for the HashedPIT case (SHA-1 as hashing algorithm)
  • 8. ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 8/16 Attacker’s transmission efficiency SimplePIT Attack efficiency HashedPIT, DiPIT Attack efficiency Interest Header (20 bytes) Resource name (1000 bytes) Interest Header (20 bytes) Resource name (20 bytes) %98 )100020( 1000   bytes bytes %50 )2020( 20   bytes bytes
  • 9. ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 9/16 Simulation Results (1) AttackSettings SimplePIT Retransmissions /RAMusage HashedPIT Retransmissions/RAMusage DiPIT Retransmissions /RAMusage Band = 100 Mbps LifeTime= 4 sec 0 49 MB 0 25 MB 0.01 % 1 GB Band = 500 Mbps LifeTime= 4 sec 0 245 MB 0 125 MB 2.42 % 1 GB Band = 2Gbps LifeTime= 4 sec 0 980 MB 0 500 MB 87.6 % 1 GB Band = 4Gbps LifeTime= 4 sec 15 % FULL 83 % FULL 90 % 1 GB Band = 100 Mbps LifeTime= 60 sec 0 735 MB 0 375 MB 21 % 1 GB Band = 100 Mbps LifeTime= 120 sec 37 % FULL 0 750 MB 86 % 1 GB Band = 100 Mbps LifeTime= 180 sec 52 % FULL ∞ FULL 88 % 1 GB
  • 10. ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 10/16 Simulation Results (1) AttackSettings SimplePIT Retransmissions /RAMusage HashedPIT Retransmissions/RAMusage DiPIT Retransmissions /RAMusage Band = 100 Mbps LifeTime= 4 sec 0 49 MB 0 25 MB 0.01 % 1 GB Band = 500 Mbps LifeTime= 4 sec 0 245 MB 0 125 MB 2.42 % 1 GB Band = 2Gbps LifeTime= 4 sec 0 980 MB 0 500 MB 87.6 % 1 GB Band = 4Gbps LifeTime= 4 sec 15 % FULL 83 % FULL 90 % 1 GB Band = 100 Mbps LifeTime= 60 sec 0 735 MB 0 375 MB 21 % 1 GB Band = 100 Mbps LifeTime= 120 sec 37 % FULL 0 750 MB 86 % 1 GB Band = 100 Mbps LifeTime= 180 sec 52 % FULL ∞ FULL 88 % 1 GB
  • 11. ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 11/16 Simulation Results (1) AttackSettings SimplePIT Retransmissions /RAMusage HashedPIT Retransmissions/RAMusage DiPIT Retransmissions /RAMusage Band = 100 Mbps LifeTime= 4 sec 0 49 MB 0 25 MB 0.01 % 1 GB Band = 500 Mbps LifeTime= 4 sec 0 245 MB 0 125 MB 2.42 % 1 GB Band = 2Gbps LifeTime= 4 sec 0 980 MB 0 500 MB 87.6 % 1 GB Band = 4Gbps LifeTime= 4 sec 15 % FULL 83 % FULL 90 % 1 GB Band = 100 Mbps LifeTime= 60 sec 0 735 MB 0 375 MB 21 % 1 GB Band = 100 Mbps LifeTime= 120 sec 37 % FULL 0 750 MB 86 % 1 GB Band = 100 Mbps LifeTime= 180 sec 52 % FULL ∞ FULL 88 % 1 GB
  • 12. ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 12/16 Simulation Results (1) AttackSettings SimplePIT Retransmissions /RAMusage HashedPIT Retransmissions/RAMusage DiPIT Retransmissions /RAMusage Band = 100 Mbps LifeTime= 4 sec 0 49 MB 0 25 MB 0.01 % 1 GB Band = 500 Mbps LifeTime= 4 sec 0 245 MB 0 125 MB 2.42 % 1 GB Band = 2Gbps LifeTime= 4 sec 0 980 MB 0 500 MB 87.6 % 1 GB Band = 4Gbps LifeTime= 4 sec 15 % FULL 83 % FULL 90 % 1 GB Band = 100 Mbps LifeTime= 60 sec 0 735 MB 0 375 MB 21 % 1 GB Band = 100 Mbps LifeTime= 120 sec 37 % FULL 0 750 MB 86 % 1 GB Band = 100 Mbps LifeTime= 180 sec 52 % FULL ∞ FULL 88 % 1 GB
  • 13. ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 13/16 Simulation Results (2) • Settings: Band = 100 Mbps, LifeTime = 180 sec • Settings: Band = 4 Gbps, LifeTime = 4 sec
  • 14. ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 14/16 Conclusion • All the architectures work properly in normal network conditions and also in presence of low intensity attack • HashedPIT is the most affected PIT in our context • Other scenarios could be designed to worsen SimplePIT too – Distribute more zombies around the network; – Combine both high bandwidth and high lifetime to maximize the attack effectiveness; – … • Scalable and robust solutions are needed to ensure an adequate level of confidence to the CCN paradigm.
  • 15. ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 15/16 Future contribution • Very recent solutions have been proposed to mitigate the impact of Interest Flooding Attacks • Our plan for the future is to evaluate them in our scenarios in terms of: – Resilience – CPU usage – Memory usage
  • 16. ACM SIGCOMM Workshop on Information-Centric Networking – 12/08/2013 16/16 Thank you for the attention!