Full Abstract

BGP is vulnerable to both accidental failures and malicious attacks. We propose a new protocol that works in concert with BGP, which ASs will use to help detect and mitigate accidentally or maliciously introduced faulty routing information. The protocol differs from previous efforts at securing BGP in that it is receiver-driven, meaning that there is a mechanism for recipients of BGP UPDATE messages to corroborate the information they receive and to provide feedback. We argue that our new protocol can be adopted incrementally, and we show that there is incentive for network operators to do so. We also describe our prototype implementation.

Speakers
William Aiello, AT&T Research
Geoffrey Goodell, Harvard University
Timothy Griffin, AT&T Research
John Ioannidis, AT&T Research
Patrick McDaniel, AT&T Research
Aviel Rubin, AT&T Research

Full Abstract

Traffic engineering is aimed at distributing traffic so as to "optimize" a given performance criterion. The ability to carry out such an optimal distribution depends on the routing protocol and the forwarding mechanisms in use in the network. In IP networks running the OSPF or IS-IS protocols, routing is along shortest paths, and forwarding mechanisms are constrained to distributing traffic uniformly over equal cost shortest paths. These constraints often make achieving an optimal distribution of traffic impossible. In this talk, we seek operational feedback on an approach that is capable of realizing near optimal traffic distribution without any change to existing routing protocols and forwarding mechanisms. We also explore the trade-off that exists between performance and the overhead associated with the additional configuration steps that our solution requires. The presentations's contributions are in formulating and evaluating an approach to traffic engineering for existing IP networks that achieves performance levels comparable to that offered when deploying other forwarding technologies such as MPLS.

Speakers
Christophe Diot, Sprint
Christophe Diot received a Ph.D. degree in Computer Science from INP Grenoble in 1991. From 1993 to 1998, he was a research scientist at INRIA Sophia Antipolis, working on new Internet architectures and protocols. Diot moved to Sprint Advanced Technology Laboratory in October 1998 to lead the IP research group. His current interest is in the passive monitoring of the Sprint IP backbone in order to study IP traffic characteristics and to design new analytical models and traffic engineering solutions for pure packet networks. Diot is a member of IEEE and ACM, and serves as an editor for ACM/IEEE Transactions on Networking.

Roch Guerin, University of Pennsylvania
Roch Guerin holds an engineer degree from ENST, Paris, France, and M.S. and Ph.D. degrees in EE from Caltech. He joined the Electrical and System Engineering department of the University of Pennsylvania in 1998 as the Alfred Fitler Moore Professor of Telecommunications Networks. He is currently on part-time leave from Penn at Ipsum Networks, a startup company he co-founded in 2001, which is developing network management software for IP networks. Before joining the University of Pennsylvania, he spent over twelve years at the IBM T. J. Watson Research Center in a variety of technical and management positions. Roch's research has been in the area of data networking and quality of service in packet networks, with a recent focus on routing and traffic engineering. He is an IEEE Fellow, and sits on the Scientific Advisory Board of France Telecom and on the Technical Advisory Board of Samsung Electronics.

Ashwin Sridharan, University of Pennsylvania
Ashwin Sridharan obtained his Bachelor's in Electronics Engineering from Regional Engineering College, Nagpur, India, in June 1997, and his Masters in Telecommunication from the Indian Institute of Science Bangalore in December 1998. Currently, he is a graduate student in Electrical and Systems Engineering at the University of Pennsylvania, working in the area of IP networking under Dr. Roch Guerin. His main area of focus is the utilization of traffic engineering information to improve performance of existing routing protocols.

Full Abstract

Security incidents are a daily event for Internet Service Providers. Attacks on an ISP's customers, attacks from an ISP's customer, and attacks on the ISP's infrastructure are now one of many "security" NOC tickets through out the day. This increase in the volume and intensity of attacks has forced ISP's to spend constrained resources to mitigate the effects of these attacks on their operations and services. This investment has helped minimize the effects of the attacks, but it has not helped stop them at the source. Stopping attacks at their source requires rapid and effective inter-ISP cooperation. The spirit of inter-ISP cooperation exists in the ISP Security ranks, but the problem is that ISP Security Teams from one ISP cannot find their colleagues amongst their peers. This second ISP Security BOF models itself on the NANOG Peering BOFs, focusing on building the human Internet of ISP Security Engineers. We solicit ISP Security/NOC Teams (before the meeting), asking them to characterize their security tools and policies in general ways ("always help customers under attack" or "will trace the attack to the source" or "will work with law enforcement" or "black hole violators" or "implement common tools" etc.). From the answers, we will select a set of ISP Security Engineers to present a 5-to-10-minute description of their network, security tools, policies, how they would like to interact with other ISP Security Teams, and the identification/mitigation problems ISPs have had with existing technology/techniques. This presentation puts a face with the e-mail address at the ISP's Security/NOC Team. At the end of the BOF, representatives will have time to speak with ISP Security Engineers at ISPs with which they seek to deepen their interaction and cooperation. The expectation is that these interactions will lead to an effective, Internet-wide security incidence response --- plugging the attacks at their source and perhaps apprehending the perpetrators (using law enforcement to put a dent in the problem).

Speakers
Moderator - Barry Raveendran Greene, Cisco Systems

Full Abstract

Speakers
Susan Harris, Merit Network
Rodney Joffe

Full Abstract

We have completed our preliminary analysis of the spread of the Sapphire/Slammer SQL worm. This worm required rougly 5 minutes to spread worldwide, making it by far the fastest worm to date. In the early stages the worm doubled in size every 8.5 seconds. At its peak, achieved approximately 3 minutes after it was released, Sapphire scanned the net at over 55 million IP addresses per second. It infected at least 75,000 victims and probably considerably more. This remarkable speed, nearly two orders of magnitude faster than Code Red, was the result of a bandwidth-limited scanner. Since Sapphire didn't need to wait for responses, each copy could scan at the maximum rate that the processor and network bandwidth could support. There were also two noteworthy bugs in the pseudo-random number generator which complicated our analysis and limited our ability to estimate the total infection but did not slow the spread of the worm.

Speakers
David Moore, CAIDA & UCSD CSE
Vern Paxson, ICIR & LBNL
Stefan Savage, UCSD CSE
Colleen Shannon, CAIDA
Stuart Staniford, Silicon Defense
Nicholas Weaver, Silicon Defense & UC Berkeley EECS

Full Abstract

At the beginning of 2002, Allegiance Telecom acquired the AS2548 backbone from WorldCom. AS2548, once Digex, then Intermedia Business Internet, was at that time a nationwide OC-48 backbone running Cisco hardware. Simultaniously, Allegiance had built a brand new OC-48 nationwide backbone of their own to replace their aging DS3 IP network (AS11466.) The new network, with a Juniper core, was built independently of the old backbone, which was running a mix of vendors, but, like AS2548, was predominantly Cisco. Historically, acquired networks have been left alone in large mergers such as this one, because merging networks is difficult. But maintaining two separate Autonomous Systems would double the maintenance workload and split the product set in two. Thus, Allegiance was faced with combining three networks, two with active traffic, into one. To make matters more complicated, it was decided that the existing policy on either network was not sufficient for the new, combined network. So a new routing policy, capable of supporting all the existing customers on the old networks, would need to be implemented as part of the merger. Careful planning was the main requirement for success. With over 500 routers to modify, there was very little space for error. Configurations were tested in the lab, a script was written to translate from old configurations to new ones, test runs were made, and plans were probed for holes. The network was divided between 8 techs over two nights, one for AS2548, one for AS11466. On each night, the new policy would be pushed out, and the logical connections to the Juniper core activated. While AS2548 had more routers, AS11466 was actually undergoing an ASN change, and the difference in policy was greater, so the work load was relatively even. Back-out points were defined, and staff assigned to clean up issues as they arose. Still, there were problems, mainly because of the scale of the new, combined network. A lot of tough lessons were learned, but in the end the merger was a success.

Speakers
William Charnock, Allegiance Telecom
William Charnock has been with Allegiance Telecom for 3 1/2 years. Originally hired as the senior backbone engineer and tasked with building Allegiance's nationwide IP network, he is currently the Director of Data Engineering and is responsible for IP network architecture. Prior to joining Allegiance Telecom, he was the CTO of FastLane Communications, a regional ISP in the Dallas/Fort Worth metroplex.

Dave Israel, Allegiance Telecom

Full Abstract

Now more than ever, Internet Service Providers are focusing on ways to increase the resiliency of their networks and, if at all possible, reduce their operating costs at the same time. Past research (Internet Service Providers and Peering, presented at NANOG 19, and A Business Case for Peering) demonstrates the economic tradeoffs of peering and highlight the simple but challenging first step: How to know who to talk with at an ISP to get peering set up This Peering BOF focuses on this first step using "Peering Personals." We solicit Peering Coordinators (before the meeting), asking them to characterize their networks and peering policies in general ways ("content heavy" or "access (eyeball) -heavy," "Multiple Points Required" or "Will Peer anywhere," "Peering with Content OK," etc.). From the answers we will select a set of ISP Peering Coordinators to present a 2-3 minute description of their network, what they look for in a peer, etc., allowing the audience to put a face with the name of the ISP. At the end of the Peering BOF, Peering Coordinators will have time to speak with Peering Coordinators of ISPs they seek to interconnect with. The expectation is that these interactions will lead to the Peering Negotiations stage, the first step towards a more fully meshed and therefore resilient Internet.

Speakers
Bill Norton, Equinix
As Co-Founder and Director of Business Development at Equinix, Bill Norton focuses his attention on building strategic relationships among companies participating at the Internet Business Exchanges. Previously, he was the Chair of NANOG and Manager of the Internet Engineering Group at Merit, leading a variety of national and international network research and operations projects.

Full Abstract

Many network operators and researchers have been concerned about the alarming rates of BGP updates and their potential to destabilize the Internet routing infrastructure. Within a single AS, BGP updates may trigger routing reconvergence resulting in packet delay variations or losses. In addition, a high volume of BGP updates may cause shifts in traffic patterns across a network backbone when the next-hop BGP attribute changes. Such shifts are undesirable for two reasons. First, a flow that shifts back and forth between different paths may experience delay fluctuations, and multimedia applications such as Voice-over-IP may be adversely affected. Secondly, if such shifts occur frequently for flows that carry large volumes of traffic, the traffic patterns within the network may become volatile and unpredictable, making it difficult to perform capacity planning or traffic engineering. In this talk, we will present a quantitative evaluation of how BGP dynamics affect intra-domain traffic patterns within the Sprint IP backbone. We have captured packet header traces from several ingress links within the Sprint network. We then obtained the traffic fan-out from each ingress link by determining the egress PoP out of the Sprint network for the destinations of these packet flows. Finally, we correlated the packet flows with BGP updates collected at several routers within Sprint and analyzed the impact of BGP dynamics on intra-domain traffic. Our results show that that there is continuous BGP "noise" (100-20 updates/minute) interspersed with periods of high activity (5000 updates/minute). Despite this continuous activity, BGP routing updates mostly cause less than 1% of traffic to shift between egress PoPs. In a few cases, we observed that the shift was several percent, but it affected a very small number of multihomed destination prefixes. This limited impact of BGP updates on data traffic is mainly due to the relative stability of BGP prefixes that carry the majority of traffic -- we found that as little as 6% of the updates affect BGP prefixes that carry 80% of this ingress traffic. Recent results from other tier-1 ISPs have also shown that BGP prefixes that carry the majority of traffic are stable. This implies that traffic engineering and capacity planning within the Sprint network can be performed without serious concerns about the impact of BGP updates received from the rest of the Internet.

Speakers
Sharad Agarwal, Sprint
Sharad Agarwal received his B.S. and M.S. degrees in 1998 and 2000, respectively, from the Electrical Engineering and Computer Science department of the University of California, Berkeley. He is also pursuing a Ph.D. degree from the same department. Sharad is currently with the IP Research Group at the Sprint Advanced Technology Laboratories. His research interests include network routing, peering, and wide area traffic measurements and engineering.

Supratik Bhattacharyya, Sprint
Supratik Bhattacharyya holds an engineering degree from Jadavpur University India, and M.S. and Ph.D. degrees in Computer Science from the University of Massachusetts, Amherst. Since completing his Ph.D. in 1999, he has been a member of the IP Research Group at the Sprint Advanced Technology Laboratory. His research interests include Internet measurement and monitoring, routing, traffic engineering and multicast.

Chen-Nee Chuah, Sprint
Chen-Nee Chuah received a B. S. in Electrical Engineering from Rutgers University, and M.S. and Ph.D. degrees in Electrical Engineering & Computer Science from the University of California at Berkeley in 1998 and 2001. From 2001-2002, she was a postdoctoral researcher at Sprint Advanced Technology Laboratories. She is currently an Assistant Professor in the Department of Electrical & Computer Engineering at the University of California-Davis. Her research has focused on network control plane issues with an emphasis on resource allocation, routing, BGP policy management, and traffic engineering for the next-generation Internet to provide QoS while maintaining scalability and fault tolerance. She is also interested in statistical approaches for detecting routing anomalies and malicious activity in the global network.

Christophe Diot, Sprint
Christophe Diot received a Ph.D. degree in Computer Science from INP Grenoble in 1991. From 1993 to 1998, he was a research scientist at INRIA Sophia Antipolis, working on new Internet architectures and protocols. Diot moved to Sprint Advanced Technology Laboratory in October 1998 to lead the IP research group. His current interest is in the passive monitoring of the Sprint IP backbone in order to study IP traffic characteristics and to design new analytical models and traffic engineering solutions for pure packet networks. Diot is a member of IEEE and ACM, and serves as an editor for ACM/IEEE Transactions on Networking

Full Abstract

Configuration, operation, reliability, scalability and security problems with BGP have all grown as the Internet has grown. Based on detailed analysis of EBGP data from RIPE RIS and IBGP data from collaborations with several tier one ISPs, we believe that many of the most serious problems with BGP are not in the BGP protocol but are instead due to BGP's use of point-to-point TCP connections for its transport. Transport problems are much easier to fix than protocol problems since a new, parallel transport stack can be added to existing BGP implementations in an incrementally deployable, evolutionary fashion without having any impact on configuration or route selection behavior. Using the insights gained from our IGP and BGP measurement studies (reported at NANOG and elsewhere) and our experience developing different styles of transport protocols (such as SRM and ALF) we set about designing and implementing a new BGP transport. We call the result BST (BGP Scalable Transport). We will describe the implementation and discuss the issues underlying the most significant aspects of the design. We will show how it solves many of the existing problems with BGP and how, with a few small additions, it can form the basis of new BGP implementations that are extremely easy to configure yet highly reliable, scalable and secure.

Speakers
Cengiz Alaettinoglu, Packet Design
Van Jacobson, Packet Design
Kedar Poduri, Packet Design

Full Abstract

Recent years have seen large-scale (though generally single-network) outages caused by misconfiguration, such as route redistribution, and/or software bugs. There is also concern that "properly" architected worm/virus attacks could create networks of hundreds of thousands or millions of devices that could be turned against the router infrastructure. We will review some vulnerabilties that have been exposed in recent years, primarily relating to router CPU protection; route redistribution; router control/logging systems; the DNS infrastrucutre; and the robustness of interconnection between networks. The presentation will review some common-knowledge fixes, and will discuss some interesting applications of network architecture and design that can help to mitigate serious vulnerabilities.

Speakers
Avi Freedman, Akamai Technologies
Avi Freedman is Chief Network Scientist with Akamai, where he works on architecture, research, product development, Internet visualization, and vulnerability analysis. He is also on the board of FastNet, a network provider that recently acquired Netaxs. Prior to joining Akamai, Avi was VP of Engineering for AboveNet. He is also on the ARIN advisory council, and is actively involved in the network community.

Full Abstract

Just as fine grained peering helps keep local traffic local, so it is that massive scale anycast can help keep local attacks local. F-root is going worldwide, which means you'll be able to peer with ISC (the Internet Software Consortium) in a lot of new and even exotic places, but in most such places you'll only hear one route from us. In this presentation, Suzanne Woolf of ISC will explain what we're doing, why we're doing it, and what you can do about it.

Speakers
Mark Schleifer, Cogent
Suzanne Woolf, ISC

Full Abstract

Speakers
Bill Manning

Full Abstract

Based on experience at iptel.org, we review current issues related to operation of SIP services on the public Internet. The issues include operational challenges such as NAT traversal, service reliability, scalability, and deployability. We show current practices and identify gaps that still need to be addressed by manafacturers.

Topics to be covered include:

• Status update: existing deployments, available services, interoperability
• Problem summary: NAT traversal, reliability, scalability, miscellaneous
Operational practices
• NAT: ALGs, manual configuration, UPnP, STUN, relay
• reliability: use of DNS/SRV versus other solutions, replication mechanisms
• deployability: scaling concerns, request routing in distributed networks, routing troubleshooting
• Conclusions: summary of current issues that still need to be addressed

Speakers
Jiri Kuthan, iptel.org
Jiri Kuthan is founder of iptel.org, a know-how organisation based in Berlin, Germany. Iptel runs a public SIP site and produces a free implementation of a high-performance SIP server. Jiri is responsible for planning the architecture of iptel.org's site and server.

Full Abstract

There's been quite a bit of change in the 802.17 RPR standard proposal over the past couple of years. This discussion will provide a status update on where the 802.17 standard is, as well as an update on some of the differences between the 802.17 standard and SRP/DPT. A possible timeline for RPR product rollout based on a current view of the 802.17 standards progress will also be discussed.

Speakers
Andrew Brown, Cisco Systems
Andrew Brown has been with Cisco Systems for over three years. He oversees the testing of Cisco's Resilient Packet Ring (RPR) products that use the pre-standard RPR protocol, called Spatial Reuse Protocol (SRP). Andrew is responsible for defining Cisco's overall test strategy and methodology for 802.17 RPR interoperability testing.

Full Abstract

Speakers
Susan Harris, Merit Network