benchmarking curvecp
play

Benchmarking CurveCP Thorben Kr uger benthor@os3.nl July 4, 2011 - PowerPoint PPT Presentation

Dec 20, 2022 •302 likes •620 views

Benchmarking CurveCP Thorben Kr uger benthor@os3.nl July 4, 2011 1/ 30 Outline Introduction Research Questions Methods and Results Problems Conclusion 2/ 30 CurveCP? Encrypted application-layer protocol for internet communication.

  1. Benchmarking CurveCP Thorben Kr¨ uger benthor@os3.nl July 4, 2011 1/ 30

  2. Outline Introduction Research Questions Methods and Results Problems Conclusion 2/ 30

  3. CurveCP? Encrypted application-layer protocol for internet communication. 3/ 30

  4. CurveCP in a Nutshell ◮ Brain child of Dan Bernstein (djb) ◮ To be used instead of TCP ◮ Packet-based encryption on top of UDP ◮ Treat crypto as instantaneous ◮ Advanced packet scheduler 4/ 30

  5. Claimed CurveCP Security Features ◮ mandatory server authentication ◮ optional client authentication ◮ no man-in-the-middle attacks possible ◮ active and passive forward secrecy 5/ 30

  6. Claimed CurveCP Availability Features ◮ no RST-type attacks possible ◮ protection against traffic prediction ◮ can not be used for amplification attacks ◮ no SYN-flooding-type attacks possible ◮ worst-case CPU loads kept small 6/ 30

  7. Claims about CurveCP Efficiency ◮ bigger overhead than plain TCP ◮ for short connections, less traffic than HTTPS ◮ for short connections, much less traffic than SSH 7/ 30

  8. Claimed CurveCP Decongestion Features ◮ minimizes packet-loss ◮ minimizes significant latency increases ◮ therefore mitigates buffer bloat 8/ 30

  9. Claimed CurveCP Addressing Features ◮ multiple CurveCP servers can share single IPv4 address and port ◮ CurveCP servers inherently anti-aliased from addresses ◮ rapid failover to redundant server if original is down ◮ session/connection not invalidated if IP address changes 9/ 30

  10. Major Topics for Investiagtion Create CurveCP-enabled SSH-like remote shell Create CurveCP-enablet SCP-like remote file copy tool Benchmark CurveCP vs SSH/SCP/HTTPS ◮ CPU usage ◮ available Bandwidth ◮ ideal ◮ competetive ◮ message latencies Verify CurveCP robustness claims 10/ 30

  11. Remote Shell/Copy via CurveCP Results: ◮ CurveCP-enabled remote ptty fully functional ◮ http://github.com/benthor/remotty Problems: ◮ Only Python implementation so far ◮ Useless for meaningful benchmarks ◮ No real session handling yet ◮ Doesn’t support file transfer yet 11/ 30

  12. CurveCP-enabled file transfer? For now based on cat / dd ◮ No support for arbitrary files yet 12/ 30

  13. Bonus: CurveCP enabled VPN Results: ◮ Can create tunnel devices connected via CurveCP ◮ ICMP can be successfully tunneled Problems: ◮ TCP only works for small packets so far ◮ Only Python implementation 13/ 30

  14. Benchmarking: Methods Tools: ◮ plain dd ◮ custom stream copy tool with statistics ( ddstat ) ◮ sysstat suite ◮ ethtool 14/ 30

  15. Saturating 10Mbit Link Results: ◮ CPU usage of SSH/SCP/HTTPS very similar Problems: ◮ CurveCP scheduler is too nice 15/ 30

  16. Best-case Payload Bandwidth on 10MBit Link Results: ◮ SSH/SCP/HTTPS: nearly the full 10MBit/s ◮ CurveCP: between 600KB/s and 800KB/s, average 650KB/s Problems: ◮ CurveCP scheduler is too nice 16/ 30

  17. CurveCP and TCP: Competitive Scheduling (10MBit Link) Problems: ◮ CurveCP bandwidth drops to 0 ◮ no matter who starts first ◮ no matter if LAN or Internet connection 17/ 30

  18. Trying to saturate 100Mbit Link Results: ◮ SSH/SCP/HTTPS can saturate ◮ CurveCP probably CPU bound Problems: ◮ Detailed measurements skew CPU usage 18/ 30

  19. Best-case Payload Bandwidth on 100MBit Link Results: ◮ SSH/SCP/HTTPS: nearly the full 12.5MB/s ◮ CurveCP: tops out at 4MB/s 19/ 30

  20. CurveCP and TCP: Competitive Scheduling (100MBit Link) Results: ◮ CurveCP bandwidth 1/100th of that of TCP: 120KB/s ◮ More than one connection: share up to 240KB/s 20/ 30

  21. CurveCP vs SSH: Latencies Results: ◮ (Extremeny) similar latencies to within fractions of ms Problems: ◮ Does not take SSH handshake into account 21/ 30

  22. Bonus: CurveCP and Buffer Bloat Queue delay on top of minimum path RTT - bufferbloat-curvecp1 1400 1200 Added Queue delay(ms) 1000 800 600 400 200 0 J J J J J J J J J J J J J J J J J J J u u u u u u u u u u u u u u u u u u u n n n n n n n n n n n n n n n n n n n 2 2 2 2 2 2 2 2 2 2 2 2 2 2 2 2 2 2 2 9 9 9 9 9 9 9 9 9 9 9 9 9 9 9 9 9 9 9 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 2 2 2 8 8 8 8 9 9 9 9 9 9 9 9 9 9 9 9 0 0 0 : : : : : : : : : : : : : : : : : : : 4 4 5 5 0 0 1 1 2 2 3 3 4 4 5 5 0 4 4 3 8 3 8 3 8 3 8 3 8 3 8 3 8 3 8 3 2 7 Time Min path Link 1 Link 2 Link 3 Link 4 Link 5 Link 6 22/ 30

  23. Questions not yet answered Will be addressed in paper: ◮ Compare SSH handshake to CurveCP ◮ CurveCP overhead in general ◮ CurveCP addressing and failure modes 23/ 30

  24. Encountered Problems 24/ 30

  25. Problem: (Reverse) HeisenBugs Packet scheduler gets confused: ◮ when UDP statistics are collected ◮ when in the presence of irregular TCP traffic Result: ◮ endless tracing/profiling/code-reviewing 25/ 30

  26. Problem: FreeBSD ◮ CurveCP pipes close prematurely ◮ file descriptor issues 26/ 30

  27. Problem: Confusing CPU statistics ◮ disagreement between tools ◮ reported percentages add up to over 100 27/ 30

  28. Conclusion ◮ Remote shell: works ◮ Remote copy: possible ◮ Performance: comparable to (but worse than) SSH/HTTPS ◮ Decongestion: works somewhat ◮ Verdict: CurveCP worthy of attention 28/ 30

  29. More Info http://curvecp.org 29/ 30

  30. Questions? 30/ 30

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Benchmarking Lunch-n-Learn March 18, 2019 Agenda 1. Why Benchmarking? 2. Introduction to

Benchmarking Lunch-n-Learn March 18, 2019 Agenda 1. Why Benchmarking? 2. Introduction to

Benchmarking Lunch-n-Learn March 18, 2019 Agenda 1. Why Benchmarking? 2. Introduction to SoCalREN 3. Benchmarking and Compliance Overview What is Energy Benchmarking What is ENERGY STAR Portfolio Manager California Building

368 views • 35 slides
Dockerization Impacts in Database Performance Benchmarking ..,

Dockerization Impacts in Database Performance Benchmarking ..,

Dockerization Impacts in Database Performance Benchmarking .., -05-18 The Problems of Benchmarking Confjguration process of a single node is complex and involves a lot of efgort Benchmarking client;

466 views • 7 slides
B3 Benchmarking B3 Building Benchmarking Program Overview www.CleanEnergyResourceTeams.org B3

B3 Benchmarking B3 Building Benchmarking Program Overview www.CleanEnergyResourceTeams.org B3

B3 Benchmarking B3 Building Benchmarking Program Overview www.CleanEnergyResourceTeams.org B3 Benchmarking: Background B3 stands for: Buildings Benchmarking and Beyond www.CleanEnergyResourceTeams.org B3 Benchmarking: Background The

297 views • 25 slides
Benchmarking benchmarking, and optimizing optimization Daniel J. Bernstein University of

Benchmarking benchmarking, and optimizing optimization Daniel J. Bernstein University of

1 Benchmarking benchmarking, and optimizing optimization Daniel J. Bernstein University of Illinois at Chicago & Technische Universiteit Eindhoven 2 Bit operations per bit of plaintext (assuming precomputed subkeys), as listed in recent

1.07k views • 46 slides
MSA Benchmarking Daniel Yuan and Stanley Liu Intro Benchmarking 6 MSA software 3

MSA Benchmarking Daniel Yuan and Stanley Liu Intro Benchmarking 6 MSA software 3

MSA Benchmarking Daniel Yuan and Stanley Liu Intro Benchmarking 6 MSA software 3 progressive methods Progressive T-Coffee 11.00.8cbe486 Heuristics Sequences -> Guide Tree MAFFT 7 -> MSA PSAlign

240 views • 5 slides
The Dysfunction of Hospital Benchmarking Why current benchmarking processes may be creating harm

The Dysfunction of Hospital Benchmarking Why current benchmarking processes may be creating harm

The Dysfunction of Hospital Benchmarking Why current benchmarking processes may be creating harm HIC2019 Dr David Rankin Clinical Informatics Director Cabrini Health Why Benchmark Foster improved clinical outcomes Competitive

472 views • 16 slides
Autonomous Driving on Benchmarks Xiaodi Hou TWO DECADES OF BENCHMARKING Two decades of

Autonomous Driving on Benchmarks Xiaodi Hou TWO DECADES OF BENCHMARKING Two decades of

Autonomous Driving on Benchmarks Xiaodi Hou TWO DECADES OF BENCHMARKING Two decades of benchmarking MNIST 1998 Character recognition 60,000 images Inspired Convolutional Neural Net Two decades of benchmarking PASCAL-VOC

522 views • 24 slides
Towards Benchmarking AIOT Device based on MCU Dong Li Seaway Technology Inc. ICT, CAS

Towards Benchmarking AIOT Device based on MCU Dong Li Seaway Technology Inc. ICT, CAS

Towards Benchmarking AIOT Device based on MCU Dong Li Seaway Technology Inc. ICT, CAS 2019-11-15 Outline MCU-based AIOT Device and Benchmarking SeawayRTOS Intro. & Auditing Kernel Contents Early Experiments for BenchMarking

524 views • 28 slides
The Dangers and Complexities of SQLite Benchmarking Dhathri Purohith, Jayashree Mohan and Vijay

The Dangers and Complexities of SQLite Benchmarking Dhathri Purohith, Jayashree Mohan and Vijay

The Dangers and Complexities of SQLite Benchmarking Dhathri Purohith, Jayashree Mohan and Vijay Chidambaram 2 3 Benchmarking SQLite is Non-trivial ! Benchmarking complex systems in a repeatable fashion is error prone The main issues

1.04k views • 72 slides
2015 Benchmarking & Data Management April 15, 2015 PSTA Runs on Data Highlights from 2015 1.

2015 Benchmarking & Data Management April 15, 2015 PSTA Runs on Data Highlights from 2015 1.

2015 Benchmarking & Data Management April 15, 2015 PSTA Runs on Data Highlights from 2015 1. American Benchmarking Report Financial Comparisons 2. to Florida Systems How ABBG Works Benchmarking is a Systematic process of Continuous measuring,

549 views • 16 slides
European Benchmarking Chinese Language European Benchmarking Chinese Language Opportunities

European Benchmarking Chinese Language European Benchmarking Chinese Language Opportunities

Language Futures: Languages in Higher Education Conference 2012 European Benchmarking Chinese Language European Benchmarking Chinese Language Opportunities and Challenges Opportunities and Challenges Lianyi Song, Lik Suen and Liang

680 views • 30 slides
Benchmarking Methodology for IPv6 Transition Technologies

Benchmarking Methodology for IPv6 Transition Technologies

iplab Benchmarking Methodology for IPv6 Transition Technologies draft-ietf-bmwg-ipv6-tran-tech-benchmarking-01 Marius Georgescu Nara Institute of Science and Technology Internet Engineering Laboratory 7 Apr. 2016 D RAFT M OTIVATION D RAFT

340 views • 13 slides
know more now Agenda The team behind ZOI Why Benchmarking How to join and what Case stories

know more now Agenda The team behind ZOI Why Benchmarking How to join and what Case stories

Welcome to: Benchmarking in Finland know more now Agenda The team behind ZOI Why Benchmarking How to join and what Case stories will it take Who is behind ZOI Physical report in 2017 & 2018 It all started with a Jump to online

397 views • 20 slides
AHP Slides March 2018 NHS Benchmarking Network Raising Standards through Sharing Excellence

AHP Slides March 2018 NHS Benchmarking Network Raising Standards through Sharing Excellence

Benchmarking Learning Disability services AHP Slides March 2018 NHS Benchmarking Network Raising Standards through Sharing Excellence Introduction The Learning Disabilities project was initiated by members of the NHS Benchmarking Network in

446 views • 6 slides
Toward Fair and Comprehensive Benchmarking of CAESAR Candidates in Hardware: Standard API,

Toward Fair and Comprehensive Benchmarking of CAESAR Candidates in Hardware: Standard API,

Toward Fair and Comprehensive Benchmarking of CAESAR Candidates in Hardware: Standard API, High-Speed ImplementaCons in VHDL/Verilog, and Benchmarking Using FPGAs Ekawat Homsirikamol, William Diehl, Ahmed Ferozpuri, Farnoud Farahmand, Michael

908 views • 53 slides
Towards a Benchmarking Raster: A selection of indicators to measure policies for culture

Towards a Benchmarking Raster: A selection of indicators to measure policies for culture

Towards a Benchmarking Raster: A selection of indicators to measure policies for culture and creative industries CREA.RE Mid-term conference Gteborg, 20-21 March 2011 Aims of the assignment Create and test a benchmarking

609 views • 22 slides
CYFAR Year-End Reporting System for SCP Grantees Purpose Provides year-end report to USDA on

CYFAR Year-End Reporting System for SCP Grantees Purpose Provides year-end report to USDA on

CYFAR Year-End Reporting System for SCP Grantees Purpose Provides year-end report to USDA on your project status and progress towards outcomes All projects are required to complete an annual narrative report Due mid-November

547 views • 33 slides
S EA L INK C APITAL P ARTNERS Presentation to Entrepreneurs: Is Private Equity right for your

S EA L INK C APITAL P ARTNERS Presentation to Entrepreneurs: Is Private Equity right for your

S EA L INK C APITAL P ARTNERS Presentation to Entrepreneurs: Is Private Equity right for your Business? - Private & Confidential - Understand why you are raising capital - To grow the business

400 views • 8 slides
EPCRS Case Studies August 3, 2017 Presented by S usan M. Wright, CPA Editor, TAG Correction

EPCRS Case Studies August 3, 2017 Presented by S usan M. Wright, CPA Editor, TAG Correction

tagdata.com EPCRS Case Studies August 3, 2017 Presented by S usan M. Wright, CPA Editor, TAG Correction Programs IRS Rev. Proc. 2016-51 - Employee Plans Compliance Resolution S ystem ( EPCRS ) Rev. Proc. 2015-32

1.02k views • 69 slides
Reliability Requirements Customer Partnership Group April 2018 Gautham Katta Operations Lead

Reliability Requirements Customer Partnership Group April 2018 Gautham Katta Operations Lead

Reliability Requirements Customer Partnership Group April 2018 Gautham Katta Operations Lead Sandhya Balasubramanian Business Solutions Manager ISO PUBLIC ISO PUBLIC Customer Partnership Group Scope and Objective Created in response

253 views • 9 slides
Californias SCP Californias SCP Implementation Update Implementation Update Bob Boughton

Californias SCP Californias SCP Implementation Update Implementation Update Bob Boughton

Californias SCP Californias SCP Implementation Update Implementation Update Bob Boughton Safer Consumer Products Branch Safer Consumer Products and Work Places Program California Department of Toxic Substances Control Safer Consumer

424 views • 29 slides
CANADIAN SOLAR DGC FLOW-THROUGH PROPOSAL May 2020 Introduction Canadian Solar retained:

CANADIAN SOLAR DGC FLOW-THROUGH PROPOSAL May 2020 Introduction Canadian Solar retained:

CANADIAN SOLAR DGC FLOW-THROUGH PROPOSAL May 2020 Introduction Canadian Solar retained: Pablo Argenal (Nican International Consulting) Lewis Manning (Lawson Lundell) Dean Short (former ADOE advisor and co-author of Transmission

621 views • 20 slides
Partnership Group March 2018 Sandhya Balasubramanian Business Solutions Manager Customer

Partnership Group March 2018 Sandhya Balasubramanian Business Solutions Manager Customer

Reliability Requirements Customer Partnership Group March 2018 Sandhya Balasubramanian Business Solutions Manager Customer Partnership Group Scope and Objective Created in response to customers request to have more involvement in the

497 views • 12 slides
COMP MPANY NY PR PRES ESEN ENTAT TATIO ION About out us us SCP was incorporated in 2008.

COMP MPANY NY PR PRES ESEN ENTAT TATIO ION About out us us SCP was incorporated in 2008.

COMP MPANY NY PR PRES ESEN ENTAT TATIO ION About out us us SCP was incorporated in 2008. We are a supplier of hydraulic seals, SBR, NBR, EPDM, FKM and silicone sheets, as well as rubber and polyurethane snow plows, synthetic polymers

259 views • 13 slides

More recommend