T-110.5110 Computer Networks T-110.5110 Computer Networks II II Introduction Introduction 22.9.2008 22.9.2008 Prof. Sasu Tarkoma
Dec 30, 2015
T-110.5110 Computer Networks IIT-110.5110 Computer Networks II
IntroductionIntroduction
22.9.200822.9.2008
Prof. Sasu Tarkoma
ContentsContents
•Course Outline
•Carrying out the course
•Lectures
•Material
Course OutlineCourse Outline
•4 credit course
•During Autumn 2008, we will look at protocols and architectures related to mobility management, session management, authentication, authorization and accounting (AAA) services and quality of service (QoS).
•The course consists of the lectures and a final exam.
•The purpose is that the participants actively read the material beforehand and discuss problem areas during the lectures.
•Networks II lectures start on Monday 22.9. 14.15 - 16 in T2. Registration happens on this first lecture. Course material will be in English. Lectures will be in English if required.
Course GoalsCourse Goals
•Understand advanced networking techniques
•Learn state of the art
•Get a glimpse to near-future technologies and long haul development
Time and PlaceTime and Place
•Time and place: Mondays at 14:15 – 15:45 in T2.
•Prof. Sasu Tarkoma gives the lecture unless otherwise indicated.
Carrying out the CourseCarrying out the Course
•The course grade consists of partication to lectures and a final exam.
•Final exams will be held as follows:– 18.12.2008 16-19 at T1.
•Required preliminary knowledge– T-110.300 Telecommunication Architectures– T-110.350 Computer Networks– T-110.402 Information Security Technology
T-110.5116 Computer Networks II - Advanced Features P (4 cr)
Noppa - Lectures - Noppa Page 1 of 1
Noppa-portaali > Kurssit > Informaatio- ja luonnontieteiden tiedekunta > T3050 Tietotekniikan laitos > T-110.5116 > Luennot
Lectures
During Autumn 2008, we will look at protocols and architectures related to mobility
management, session management, authentication, authorization and accounting
(AAA) services and quality of service (QoS). We will also consider how to develop
gigabit Internet routers.
The purpose is that the participants actively read the material beforehand and discuss
problem areas during the lectures. The course consists of the lectures and a final exam.
Networks II lectures start on Monday 22.9. 14.15-16 in T2. Registration happens on this
first lecture. Course material will be in English. Lectures will be in English if required.
https://noppa.tkk.fi/noppa/kurssi/t-110.5116/luennot 14.9.2008
Date Week Day Time Location Topic
22 Sep 08
39 Mon 14.15-16 T2 Introduction
29 Sep 08
40 Mon 14.15-16 T2 Transport issues
06 Oct 08
41 Mon 14.15-16 T2 Mobility protocols
13 Oct 08
42 Mon 14.15-16 T2 NAT (STUN, ICE, TURN)
20 Oct 08
43 Mon 14.15-16 T2 Quality of Service
03 Nov 08
45 Mon 14.15-16 T2 AAA
10 Nov 08
46 Mon 14.15-16 T2 HIP
17 Nov 08
47 Mon 14.15-16 T2 HIP II
24 Nov 08
48 Mon 14.15-16 T2 Internet Router Development using NetFPGA
01 Dec 08
49 Mon 14.15-16 T2 Services and Identity Management
08 Dec 08
50 Mon 14.15-16 T2 Summary
Updated 18 Aug 08 at 18:29
Final ExamFinal Exam
•18.12.2008 16 - 19 T1
•Exam will be based on course material
– Slides
– Articles and standards documents
Contact PointsContact Points
•Send email– [email protected]
•Follow course web-page– Results and updates will be posted to the Web
•Reception– After the lectures– Otherwise send email to arrange a meeting– Exam reception will be scheduled after results
Summary of CourseSummary of Course
•As discussed the course focuses on several important features of current networking systems
– Mobility, QoS, Security, Privacy
•We observe that these features were not important for the original Internet architecture
•They are important now– Mobility, QoS, Security are coming with IPv6 – IPv6 deployment does not look promising
•Hence, many proposals to solve issues in the current Internet
•Also many solutions to solve expected problems in the Future Internet
Layered ArchitectureLayered Architecture
•Internet has a layered architecture
•Four layers in TCP/IP– Application (L7)– Transport (L4)– Network (L3)– Link layer / physical (L2-L1)
•We will talk a lot about layering– Benefits, limitations, possibilities (cross-layer) – It is not always clear what is a good layering
•A lot of interesting networking developments are happening on application layer
The Internet has ChangedThe Internet has Changed
•A lot of the assumptions of the early Internet has changed
– Trusted end-points
– Stationary, publicly addressable addresses
– End-to-End
•We will have a look at these in the light of recent developments
•End-to-end broken by NATs and firewalls
Network has ValueNetwork has Value
•A network is about delivering data between endpoints
•Data delivery creates value
•Data is the basis for decision making
•We have requirements to the network– Timeliness– Scalability– Security– ...
Looking at the LayersLooking at the Layers
•Link Layer / Physical
•Network– We will look at mobility, security, and QoS on L3– Mobile IP, network mobility, HIP, NAT Traversal
•Transport– Basic properties of transport layer protocols
• TCP variants, DCCP, TLS, dTLS– Mobility and security on L4
•Application– Security, identity management
•Goal: have an understanding of the solutions and tradeoffs on each layer and discussion on the role of layering
Physical
Link
Network
Transport
Application
Physical
Link
Network
Transport
Application
PAP, CHAP, EAP, WEP, ...
IPsec
HIP
HTTPS, S/MIME, PGP,WS-Security, Radius, Diameter, SAML 2.0 ...
TLS, SSH, ...
Role of StandardsRole of Standards
•On this course, we will talk a lot about standards
– IETF is the main standards body for Internet technologies
– Instruments: RFCs, Internet drafts
– Working groups
– IRTF
•Other relevant standards bodies
– W3C, OMA, 3GPP, OMG
Transport IssuesTransport Issues
•Network layer (IP) provides basic unreliable packet delivery between end-points
•Transport layer needs to provide reliability, congestion control, flow control, etc. for applications
•TCP variants
•SCTP
•DCCP
•TLS
•dTLS
MobilityMobility
•What happens when network endpoints start to move?
•What happens when networks move?
•Problem for on-going conversations– X no longer associated with address– Solution: X informs new address
•Problem for future conversations– Where is X? what is the address?– Solution: X makes contact address available
•In practice not so easy. Security is needed!
Mobility
Micro Macro Global
Intra-subnet
Intra-domain Inter-domain
Cellular IP (1998)
TMIP (2001)
Hierarchical MIP (1996)
Hawaii (1999)
Dynamic Mobility Agent (2000)
HMIPv6 (2001)
MIP (1996)
MIPv6 (2001)
Time (evolutionary path)
Classifying Mobility ProtocolsClassifying Mobility Protocols
NAT TraversalNAT Traversal
•As mentioned, end-to-end is broken
•Firewalls block and drop traffic
•NATs do address and port translation– Hide subnetwork and private IPs
•How to work with NATs– Tricky: two NATs between communications– NAT and NAPT– One part is to detect NATs– Another is to get ports open
•IETF efforts– STUN– ICE– TURN– NSIS
QoSQoS
•By default, there is no QoS support on the Internet
•IP is unreliable, packet types are handled differently (TCP/UDP/ICMP)
•No guarantees on TCP flow priority (OS and NW stack issue)
•IETF work– DiffServ, IntServ, NSIS
Security FeaturesSecurity Features
•IPSec provides basic security (tunnel,transport) with IKE
•Solution for autentication, authorization, accounting is needed (AAA)
– Radius, Diameter
•Case: WLAN access network
HIPHIP
•HIP is a proposal to unify mobility, multi-homing, and security features that are needed by applications
•Identity-based addressing realizing locator-identity split
•Change in the networking stack that is not very visible to applications (no IP addresses though!)
•HIP architecture, HIP implementation for Linux
NetFPGANetFPGA
•The NetFPGA is a low-cost platform for teaching networking hardware and router design, and a tool for networking researchers.
•The NetFPGA offloads processing from a host processor.
•The host's CPU has access to main memory and can DMA to read and write registers and memories on the NetFPGA.
•A hardware-accelerated datapath.
•Four Gigabit ports and multiple banks of local memory installed on the card.
•Uses Verilog and a cross compilation environment.
http://netfpga.org/static/guide_beta_1_1.html
Basic Architectural ComponentsBasic Architectural Componentsof an IP Routerof an IP Router
Control Plane
Datapathper-packet processing
SwitchingForwarding
Table
Routing Table
Routing Protocols
Management& CLI
Softw
areH
ardware
Reference: http://yuba.stanford.edu/cs344_public/
http://netfpga.org/static/guide_beta_1_1.html
Privacy and Identity ManagementPrivacy and Identity Management
•Privacy and trust matters a lot
•Services on the Web
•Single sign-on
– Liberty, OpenID, GAA, ..
•Recent developments
Questions and DiscussionQuestions and Discussion