an internet architecture for the 21st century
play

An Internet Architecture for the 21st Century Adrian Perrig - PDF document

Sep 06, 2022 •154 likes •555 views

An Internet Architecture for the 21st Century Adrian Perrig Network Security Group, ETH Zrich monumental structure stood the test of time & seems immutable 2 Just like todays Internet ? Can we fix its issues, though?

  1. An Internet Architecture for the 21st Century Adrian Perrig Network Security Group, ETH Zürich

  2. monumental structure stood the test of time & seems immutable 2

  3. Just like today’s Internet ? Can we fix its issues, though? Transparency Trust Control Availability 3

  4. Problem 1: Non-Scalability of Trust Transparency Trust Control Availability 4

  5. Pervasive Trust in Early Internet “ There were only two other Dannys on the Internet then. 
 I knew them both. We didn't all know each other, 
 but we all kind of trusted each other, and 
 that basic feeling of trust permeated the whole network . ” – Danny Hillis, about the Internet in the early 1980s, 
 TED talk, Feb 2013. 5

  6. Non-Scalability of Trust ▪ As the Internet has grown to encompass a large part of the global population, not everyone trusts everyone else on the Internet anymore ▪ The heterogeneity of global environment complicates entity authentication infrastructures • Relevant in this context: authentication of 
 routing updates, DNS replies, TLS certificates ▪ Two models for trust roots for authentication • Monopoly model • Oligarchy model 6

  7. Monopoly Model for Trust Root ▪ Single root of trust (i.e., root public key) 
 that is globally accepted to authenticate entities ▪ Examples: RPKI for BGPSEC or DNSSEC rely on 
 a public key that forms root of trust • All AS certificates or DNS records are 
 authenticated based on that root of trust ▪ Problems • Entire world needs to agree on 
 one entity to hold root of trust • Single point of failure • Inefficient revocation / update 7

  8. Oligarchy Model for Trust Root ▪ Numerous roots of trust 
 that are globally accepted to validate entities ▪ Example: TLS PKI relies on > 1000 roots of trust • TLS certificate accepted if signed by any root of trust ▪ Problems • Single point of failure: any single 
 compromised root of trust can 
 create any bogus TLS certificate • Revocation/updates are handled 
 through OS or browser update 8

  9. Global Trust leads to Kill Switch ▪ Current Internet has several “Kill Switches” ▪ BGP: BGP hijacking ▪ DNS: TLD redirection ▪ BGPSEC: AS key revocation ▪ DNSSEC: TLD key revocation ▪ Can we design networks without kill switch? 9

  10. Proposed Approach: Isolation Domains ▪ Observation: subset of the Internet can agree on roots of trust 
 � form Isolation Domain (ISD) with that particular root of trust ▪ Authenticate entities (only) within each Isolation Domain ▪ Users & domains can select ISD based on root of trust ▪ Also supports modern log-based PKI 
 approaches: CT, AKI, ARPKI, … ▪ Challenge: retain global 
 verifiability 10

  11. Problem 2: Control Transparency Control Availability 11

  12. Aspects of Control ▪ We discuss here two aspects of control ▪ Path control ▪ Bandwidth control (DDoS attack defense) 12

  13. Who controls Internet Paths? ▪ Current Internet offers limited control of paths ▪ Paths can be hijacked and redirected 13

  14. Who should control Paths? ▪ Clearly, ISPs need some amount of path control 
 to enact their policies. ▪ How much path control should end points (sender and receiver) have? • Control is a tricky issue … how to empower end points without providing too much control? No Limited Complete Endpoint Endpoint Endpoint Control Control Control

  15. Absence of Bandwidth Control ▪ Today: no way to turn off malicious sender who floods victim with traffic ▪ Attackers use large botnets to send unwanted traffic to victims ▪ Amplification attacks further increase traffic volume ▪ N 2 attacks will be used in the future to evade all current DDoS defenses 15

  16. Problem 3: Transparency Transparency Availability 16

  17. Transparency: Internet Paths ▪ Today, sender cannot obtain guarantee that packet will travel along intended path ▪ Impossible to gain assurance of packet path • Because router forwarding state can be inconsistent with routing messages sent 17

  18. Proposed Approach: Packet-Carried State ▪ Packets carrying forwarding information provides path transparency • Note: orthogonal issue to path control, as network can still define permitted paths

  19. Problem 4: Availability Availability 19

  20. Poor Availability ▪ Well-connected entity: 99.9% availability 
 (86 s/day unavailability) 
 [Katz-Bassett et al., Sigcomm 2012] ▪ Numerous short-lived outages due to BGP route changes • Route convergence delays ▪ Outages due to misconfigurations ▪ Outages due to attacks • E.g., prefix hijacking, DDoS 20

  21. Is a 10s Outage per Day Harmful? ▪ 99.99% reliability � average 8.6 s/day outage • Level of availability achieved by Amazon datacenter ▪ Insufficient for many applications • Critical infrastructure command and control ▪ E.g., air traffic control, smart grid control • Internet-based business • Financial trading / transactions • Telemedicine 21

  22. SCION Project ▪ S calability, C ontrol, and I solation O n N ext-Generation Networks [IEEE S&P 2011, CCS 2015, NDSS 2016] ▪ Current main team: Daniele Asoni, David Barrera, 
 Chen Chen, Laurent Chuat, Sam Hitz, Jason Lee, Tae-Ho Lee, 
 Steve Matsumoto, Chris Pappas, Adrian Perrig, Raphael Reischuk, Stephen Shirley, Pawel Szalachowski, Brian Trammell, Ercan Ucan 22

  23. SCION Architectural Design Goals ▪ High availability , even for networks with malicious parties • Adversary: access to management plane of router • Communication should be available if adversary-free path exists ▪ Secure entity authentication 
 that scales to global heterogeneous (dis)trusted environment ▪ Flexible trust : operate in heterogeneous trust environment ▪ Transparent operation : Clear what is happening to packets and whom needs to be relied upon for operation ▪ Balanced control 
 among ISPs, Senders, and Receiver ▪ Scalability, efficiency, flexibility 23

  24. SCION Isolation Domain (ISD) ▪ SCION Isolation Domain requirements • Region that can agree on a common root of trust • groups a number of ASes • Set of ISPs to operate Isolation Domain Core to manage ISD ▪ Certificates for roots of trust ▪ Manage core path and beacon servers • Other ISDs need to agree to connect as peer or as provider ▪ Open research issue how to best structure ISDs: ▪ political and legal issues arise ▪ Possible partition is along geographical regions 24

  25. SCION Isolation Domain (ISD) ▪ SCION Isolation Domain composition • ISD Core with ISD Core ASes • Other ISP ASes or end-domain ASes ISD Core TD1 Core ISD Core

  26. Beaconing for Route Discovery ▪ Periodic Path Construction Beacon (PCBs) • Scalable and secure dissemination of 
 path/topological information from core to edge • Policy-constrained multi-path flood 
 to provide multiple paths TD1 Core

  27. SCION Forwarding (Data Plane) ▪ Domains register paths at DNS-like server in ISD Core ▪ End-to-end communication Source fetches destination paths • Source path + destination path � end-to-end path • Packet contains forwarding information • path server TD1 Core ▪ Advantages Isolates forwarding from routing • No forwarding table at routers • Path transparency • • Balanced route control

  28. Path Construction and Usage ▪ Path Construction Beacon (PCB) construction: 
 PCB 1 = < T exp Int 1 OF 1 S 1 > 
 Opaque field OF 1 = Int 1 MAC K ( T exp Int 1 ) 
 TD1 Signature S 1 = { PCB 1 } K’ Int 1 ▪ PCB 2 = < T exp Int 1 OF 1 S 1 Int 2 Int 3 OF 2 S 2 > 
 Opaque field OF 2 = Int 2 Int 3 MAC K ( T exp Int 2 Int 3 OF 1 ) 
 Int 2 Signature S 2 = { PCB 2 } K’ Int 3 ▪ AS receiving PCB 2 : • Verify signatures • Use opaque fields O 1 O 2 to send packet to ISD Core 28

  29. Inter-ISD Communication ISD Core Interconnect ISD2 ISD 4 Core Core ISD1 Core ISD1 Core PS1 ISD 3 PS3 Core G H I D A E B F C

  30. Shortcuts through Peering Links ISD Core Interconnect ISD2 ISD 4 Core Core ISD1 Core ISD1 Core ISD 3 Core G H I D A Peer E r e e P B F C

  31. Handling Link Failures ▪ SCION clients use multi-path communication by default, other paths are likely to still function ▪ Path construction beacons are constantly sent, disseminating new functioning paths ▪ Link withdrawal message sent … • … upstream to cause path servers to remove paths with broken link • … downstream to cause beacon servers to remove paths with broken link 31

  32. SCION Extensions OPT DRKey SIBRA Multi-path Communication DENA Faultprints RainCheck HORNET FAIR ARPKI APNA SAINT 32

  33. SCION Summary ▪ Complete re-design of network architecture 
 resolves numerous fundamental problems • BGP protocol convergence issues • Separation of control and data planes • Isolation of mutually untrusted control planes • Path control by senders and receivers • Simpler routers (no forwarding tables) • Root of trust selectable by each ISD ▪ An isolation architecture for the control plane , 
 but a transparency architecture for the data plane . 33

  34. Outline: Remainder of Talk ▪ Current implementation status ▪ Demos ▪ Efficient forwarding ▪ Multi-path communication ▪ Browser-level path control ▪ Use cases 34

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

21st Century Computer Architecture A CCC community white paper

21st Century Computer Architecture A CCC community white paper

21 st Century Computer Architecture Mark D. Hill, Univ. of Wisconsin-Madison 6/2016 @ Architecture 2030 @ ISCA 1. Whitepaper Content (tell a story) 2. Process, Impact &amp; Computing Community Consortium (CCC) 21st Century Computer

558 views • 27 slides
Who Will Control the Internet in the 21st- Century? Wally Bowen Executive Director

Who Will Control the Internet in the 21st- Century? Wally Bowen Executive Director

Who Will Control the Internet in the 21st- Century? Wally Bowen Executive Director Mountain Area Information Network (MAIN) July 1, 2010 Asheville, N.C. A Watershed Moment The challenge to FCC authority The National Broadband

444 views • 31 slides
LANGUAGE &amp; TOOLS WHY GOVERNMENT CANNOT MANAGE THE 21ST CENTURY 21st Century Problems

LANGUAGE &amp; TOOLS WHY GOVERNMENT CANNOT MANAGE THE 21ST CENTURY 21st Century Problems

LANGUAGE &amp; TOOLS WHY GOVERNMENT CANNOT MANAGE THE 21ST CENTURY 21st Century Problems Climate, for example, is hard The Big Threats Nukes, Biotech, Nanotech, Asteroids, Weird Physics, Environment Mostly government funded

300 views • 28 slides
The 21st Century Gig Economy Quality Professional Presented by: Rosemarie E. Christopher The 21st

The 21st Century Gig Economy Quality Professional Presented by: Rosemarie E. Christopher The 21st

The 21st Century Gig Economy Quality Professional Presented by: Rosemarie E. Christopher The 21st Century Gig Economy With almost 0% unemployment in the Science, Technology, Engineering and Mathematics (STEM) workforce, what are YOU doing

461 views • 28 slides
The 21 st Century Conservation Vision To meet the challenges of the 21st Century, we must:

The 21 st Century Conservation Vision To meet the challenges of the 21st Century, we must:

The 21 st Century Conservation Vision To meet the challenges of the 21st Century, we must: Make strategic, cost-effective conservation investments; Increase efficiency, transparency, accountability; and Design/manage for landscapes

710 views • 30 slides
Wonders of Modern Architecture Oh, the wonders of modern architecture! The geniuses of

Wonders of Modern Architecture Oh, the wonders of modern architecture! The geniuses of

Wonders of Modern Architecture Oh, the wonders of modern architecture! The geniuses of architecture today continue to create design masterpieces that could make one proud of being a citizen of the 21st Century! Enjoy the beauty of these modern

832 views • 52 slides
How do you Improve on the Internet? The eXpressive Internet Architecture: The Internet has been

How do you Improve on the Internet? The eXpressive Internet Architecture: The Internet has been

5/15/2012 How do you Improve on the Internet? The eXpressive Internet Architecture: The Internet has been tremendously successful From Architecture to Network Has sustained tremendous growth g Supports very diverse set of applications

484 views • 10 slides
Task 1: If 20th century-type droughts (i.e., 1950s) under 21st century temperatures are the new

Task 1: If 20th century-type droughts (i.e., 1950s) under 21st century temperatures are the new

Task 1: If 20th century-type droughts (i.e., 1950s) under 21st century temperatures are the new normal for drought, how might such droughts impact upper Colorado River flow (UCRB)? Approach : Assess 20th century-type droughts in the

904 views • 34 slides
Confucian Ethics and the 21st Century Global Business Reg Little A Lost Half Century

Confucian Ethics and the 21st Century Global Business Reg Little A Lost Half Century

Confucian Ethics and the 21st Century Global Business Reg Little A Lost Half Century Superiority of Confucian business culture was evident 50 years ago in Japan Australias Beijing Embassy foreshadowed Chinas rise in 1976 Asia

414 views • 7 slides
Schoogle 21st Century Learning Spaces How Google Chrome is becoming a platform for instruction

Schoogle 21st Century Learning Spaces How Google Chrome is becoming a platform for instruction

Schoogle 21st Century Learning Spaces How Google Chrome is becoming a platform for instruction Chrome &amp; Chromebooks Montgomery County Public Schools 2014-2016 Strategic Technology Plan The 21st Century Learning Spaces initiative focuses

246 views • 9 slides
A New Vision for 21st Century 21 st Century Education [Insert Presenter Name] [Insert Presenter

A New Vision for 21st Century 21 st Century Education [Insert Presenter Name] [Insert Presenter

Preparing Students for the A New Vision for 21st Century 21 st Century Education [Insert Presenter Name] [Insert Presenter Title &amp; Company] [Insert Event Name] KTEC Enrollment Meeting [Insert Date] January 09 PLEASE NOTE: This is only a

606 views • 39 slides
Library Instruction in the 21st Century BoE presentation--Oct. 17, 2016 Ellen Lawrence &amp;

Library Instruction in the 21st Century BoE presentation--Oct. 17, 2016 Ellen Lawrence &amp;

Library Instruction in the 21st Century BoE presentation--Oct. 17, 2016 Ellen Lawrence &amp; Kerrin Riley D86 Library Department Chairs Research ReadingTechnologyEnvironment The 21st Century Then Now Library - NOT your typical library!

342 views • 9 slides
From Frege to Gosling: 19th Century Logic and 21st Century Programming Languages Philip

From Frege to Gosling: 19th Century Logic and 21st Century Programming Languages Philip

From Frege to Gosling: 19th Century Logic and 21st Century Programming Languages Philip Wadler Avaya Labs Gottlob Frege, Begriffsschrift , 1879 Part I The Curry-Howard Isomorphism Modus ponens Frege, 1879 Gentzen, 1934 B A

735 views • 60 slides
ENERGY PROCUREMENT FOR THE 21ST CENTURY E N E R G Y A U C T I O N E X C H A N G E Table of

ENERGY PROCUREMENT FOR THE 21ST CENTURY E N E R G Y A U C T I O N E X C H A N G E Table of

ENERGY PROCUREMENT FOR THE 21ST CENTURY E N E R G Y A U C T I O N E X C H A N G E Table of Contents (a) Deregulation: The Basics (b) Electricity 101 (c) Index vs. Fixed Rates (d) Mission (e) Problems With Selling And Procuring Energy

584 views • 27 slides
Projected sea surface temperatures over the 21st century: changes in the mean, variability and

Projected sea surface temperatures over the 21st century: changes in the mean, variability and

Projected sea surface temperatures over the 21st century: changes in the mean, variability and extremes for large marine ecosystem regions of Northern Oceans. Michael Alexander NOAA/Earth System Research Laboratory Boulder, Colorado, USA

366 views • 14 slides
Project Based Learning: 21st Century Programs to Reinvent Learning and Achievement John McCarthy,

Project Based Learning: 21st Century Programs to Reinvent Learning and Achievement John McCarthy,

PBL: 21st Century Programs to Reinvent 12/12/2011 Learning and Achievement Project Based Learning: 21st Century Programs to Reinvent Learning and Achievement John McCarthy, Ed.S., Wayne RESA Susan Hardin, Macomb ISD &amp; MACUL Chris Wigent,

482 views • 18 slides
L A O G 1 You had one job L A O G 1 7 tool categories... Lets begin... 1/7

L A O G 1 You had one job L A O G 1 7 tool categories... Lets begin... 1/7

L A O G 1 You had one job L A O G 1 7 tool categories... Lets begin... 1/7 1. MozBar - plugin Demo 2. Ayima redirect checker - plugin Demo 3. Broken link checker - plugin Demo 4. Keywords Everywhere - Plugin Demo 2/7

639 views • 51 slides
Secure in 2010? Broken in 2011! Matias Madou, PhD Principal Security Researcher Matias Madou

Secure in 2010? Broken in 2011! Matias Madou, PhD Principal Security Researcher Matias Madou

Secure in 2010? Broken in 2011! Matias Madou, PhD Principal Security Researcher Matias Madou Principal Security Researcher, Fortify an HP Company Static Analysis Rules Insider Threat Research Runtime products: RTA and

1.02k views • 56 slides
Using Twitter Strategically Amanda Carnes, MPH, CHES Social Media Lead Education, Training, and

Using Twitter Strategically Amanda Carnes, MPH, CHES Social Media Lead Education, Training, and

Using Twitter Strategically Amanda Carnes, MPH, CHES Social Media Lead Education, Training, and Communication Team Division of Viral Hepatitis National Center for HIV/AIDS, Viral Hepatitis, STD &amp; TB Prevention Division of Viral Hepatitis

454 views • 23 slides
Semantic Markup Languages: A Gentle Introduction Yolanda Gil USC/Information Sciences Institute

Semantic Markup Languages: A Gentle Introduction Yolanda Gil USC/Information Sciences Institute

Semantic Markup Languages: A Gentle Introduction Yolanda Gil USC/Information Sciences Institute gil@isi.edu Yolanda Gil 1 Outline I: The Big Picture The Semantic Web

862 views • 41 slides
1 Web APIs that Developers Love Kai Spichale @kspichale 2 Communication Decoupling from

1 Web APIs that Developers Love Kai Spichale @kspichale 2 Communication Decoupling from

1 Web APIs that Developers Love Kai Spichale @kspichale 2 Communication Decoupling from among developers implementation Client API Implementation Integration &amp; reuse Operations with input and output 3 Developer Perspective ?

726 views • 54 slides
Routing In Ad Hoc Networks 1. Introduction to Ad-hoc networks 2. Routing in Ad-hoc networks 3.

Routing In Ad Hoc Networks 1. Introduction to Ad-hoc networks 2. Routing in Ad-hoc networks 3.

Routing In Ad Hoc Networks 1. Introduction to Ad-hoc networks 2. Routing in Ad-hoc networks 3. Proactive routing protocols DSDV 4. Reactive routing protocols DSR, AODV 5. Non-uniform routing protocols ZRP, CEDAR 6. Other

392 views • 22 slides
Take the Q Train: Value Capture of Public Infrastructure Projects Arpit Gupta (NYU Stern) Stijn

Take the Q Train: Value Capture of Public Infrastructure Projects Arpit Gupta (NYU Stern) Stijn

Take the Q Train: Value Capture of Public Infrastructure Projects Arpit Gupta (NYU Stern) Stijn Van Nieuwerburgh (Columbia GSB, NBER, CEPR) Constantine Kontokosta (NYU CUSP, Marron) Baruch, April 7, 2020 1 / 35 Motivation As major urban

958 views • 46 slides
Monitoring Drupal with Sensu John VanDyk Iowa State University DrupalCorn Iowa City August

Monitoring Drupal with Sensu John VanDyk Iowa State University DrupalCorn Iowa City August

Monitoring Drupal with Sensu John VanDyk Iowa State University DrupalCorn Iowa City August 10, 2013 What is Sensu? Sensu architecture Sensu server Sensu client Drupal and Sensu Q: What is Sensu? A: A monitoring

572 views • 41 slides

More recommend