Transcript Active Network

Three Points to Remember

Active Networks Are Cool

Active Networks Can Be At Least As Secure
As Legacy Networks ;)

Data and Algorithm Are Mutable Active
Networks
Introduction
Copyright 2002 Stephen F. Bush
1
Motivation for Active Networking






Faster Hardware Not Fully Utilized
Enables More Flexible Network
De-couples Protocol From Transport
Minimizes Requirements for Global Agreement
Enables On-the-fly Experimentation
Enables Faster Deployment of New Services
•
•
http://www.darpa.mil/ato/programs/activenetworks/actnet.htm
Email List: [email protected]
Introduction
Copyright 2002 Stephen F. Bush
2
Active Networking: A Natural
Evolution
Traditional Packet
Network
Header Data
Adaptive
Monitoring,
And Predictive
Control
Devices Become
Network-Aware
Network-aware and
Devices
Smart
Active Network
Header Code Data
Custom Code Injected
By Applications/devices
Makes Network Intelligent
Introduction
Reduces Protocol Deployment
Time From Years to Months
Copyright 2002 Stephen F. Bush
3
Change Is Inevitable
Internet Protocol
•
•
•
•
•
Active and Programmable Networks
Fossilized: Resistant to Change
• Built for Change
Layers of Complexity O(4000) RFCs
• Reduced Complexity
Inability to Customize Quickly or Efficiently • Rapid, Efficient Customization
Lack of Security Paradigm
• Security Paradigm Built-in
Downward Side of the Innovation Curve
• Upward Innovation Path
Introduction
Copyright 2002 Stephen F. Bush
4
Integrated Versus Discrete
Approaches

Discrete Approach


Programs (P) Injected
Into Active Nodes
Separately From Passive
Data (D)
P
D
P
D
Integrated Approach

Programs Integrated Into
Every Packet Along With
Passive Data
Introduction
DP
DP
Active
Network
Node
Copyright 2002 Stephen F. Bush
5
Section 1
Active Network Framework
Legacy Co-Existence
Host
Active
Router
Legacy
Router
Active
Router
ip_active
ip_active
Cut-through
Sect. I: Framework
Host
Cut-through
Copyright 2002 Stephen F. Bush
7
Active Network Framework
AAAA AA AA

Active Application (AA)

EE 1 EE 2

Execution Environment (EE)

NodeOS

The active network application
Analogous to a Unix shell in which to
execute a packet
Node Operating System (NodeOS)

Hardware
Sect. I: Framework
Operating System support for Execution
Environments
Copyright 2002 Stephen F. Bush
8
Active Network Framework
Primary Focus Is Communication and Not
Computation
 Packet Is Unit of Multiplexing
 No Assumptions About Underlying
Forwarding Technologies

Sect. I: Framework
Copyright 2002 Stephen F. Bush
9
Active Network Framework
EE 1
...
EE 2
...
Execution
Environment
IPv6
Security
Enforcement
Engine
...
Channels
Management
EE
Store
NodeOS
Policy db
Active Network Working Group Version 1.0, Ken Calvert ed. Active Network Framework. http://www.cc.gatech.edu/projects/canes/arch/arch-0-9.ps, August
31 1998. Version 0.9.", citeseer.nj.nec.com/group98architectural.html.
Sect. I: Framework
Copyright 2002 Stephen F. Bush
10
Framework Considerations (I)

End Systems (ES) and Intermediate Systems (IS)


No Architectural Differences Between EEs and ISs.
Execution Environment (EE) and Active
Application (AA)

AA Implements an End-to-end Service Executed Within
an EE
Sect. I: Framework
Copyright 2002 Stephen F. Bush
11
Framework Considerations (III)

Node Operating System (NodeOS)
Primary Role Is Mediator of Node Resources to
the EEs
 Security

All Requests to the NodeOS Are Verified Based
Upon Credentials Sufficient to Verify Authorized
Access
 EEs Must Trust NodeOS and Can Add Stricter
Policies
 NodeOS May Trust Some EEs More Than Others

Sect. I: Framework
Copyright 2002 Stephen F. Bush
13
Active Network Framework
EE 1
IP|UDP|ANEP
UDP|IP
ANEP|IP
sched
IP|UDP|ANEP
IP|UDP
EE 2
UDP|IP
IP
IP
IP|ANEP
IPv4
(Cut-through)
Packet
Input Channel
Classification Processing
EE 3
EE
Processing
sched
ANEP|UDP|IP
IP
sched
classify
IP
IP
Output Channel Scheduling and
Processing
Transmission
Active Network Working Group Version 1.0, Ken Calvert ed. Active Network Framework. http://www.cc.gatech.edu/projects/canes/arch/arch-0-9.ps, August
31 1998. Version 0.9.", citeseer.nj.nec.com/group98architectural.html.
Sect. I: Framework
Copyright 2002 Stephen F. Bush
14
Hardware Reference Model
output ports
input ports
Switch
Fabric
Passive
input ports
Active
EE EE EE
output ports
Switch
Fabric
Active Network Working Group Version 1.0, Ken Calvert ed. Active Network Framework. http://www.cc.gatech.edu/projects/canes/arch/arch-0-9.ps, August
31 1998. Version 0.9.", citeseer.nj.nec.com/group98architectural.html.
Sect. I: Framework
Copyright 2002 Stephen F. Bush
15