glasnost enabling end users to detect traffic
play

Glasnost: Enabling End Users to Detect Traffic Differentiation - PowerPoint PPT Presentation

May 06, 2023 •411 likes •736 views

Glasnost: Enabling End Users to Detect Traffic Differentiation Krishna P. Gummadi Networked Systems Research Group Networked Systems Research Group Max Planck Institute for Software Systems High-level goal: Network Transparency High level

  1. Glasnost: Enabling End Users to Detect Traffic Differentiation Krishna P. Gummadi Networked Systems Research Group Networked Systems Research Group Max Planck Institute for Software Systems

  2. High-level goal: Network Transparency High level goal: Network Transparency • Today, access ISPs are very opaque • ISPs deploy middle-boxes to monitor & manage customer traffic – blockers, rate-limiters, firewalls, censors • But, ISPs do not disclose their management policies • This lack of transparency prevents: This lack of transparency prevents: – end users from making an informed choice – application designers from adapting apps to ISP policies – regulators from monitoring ISPs and holding them accountable regulators from monitoring ISPs and holding them accountable • Can we use end-host based measurements to infer ISP policies?

  3. Quick aside: Transparency vs. Neutrality • Transparency: What management policies is an ISP employing? • • Neutrality: Is a particular management policy employed by an Neutrality: Is a particular management policy employed by an ISP acceptable? – is an ISP policy neutral? (according to some definition of neutrality) • Neutrality has strong proponents and opponents – some argue that neutrality would hurt new network innovation • But, it is hard to argue that transparency would be harmful – other than that some ISPs could benefit from a closed network

  4. The Glasnost project • Goal: Enable end users to verify whether their access ISPs are employing application-specific traffic differentiation differentiation

  5. Application-specific traffic differentiation • Are packets from flow A being treated differently than packets from flow B? • Primarily because they belong to different apps – because the flows carry different packet payloads because the flows carry different packet payloads • Examples: – interrupting flows carrying BitTorrent protocol messages – rate-limiting flows to email ports vis-à-vis http ports

  6. Key idea: Verifying traffic differentiation Key idea: Verifying traffic differentiation • R n controlled acti e meas rements bet een end hosts of a Run controlled active measurements between end hosts of a path to detect traffic differentiation by ISPs along the path • • Run back-to-back flows with same network-level characteristics, Run back to back flows with same network level characteristics but with different packet payloads – i.e. replay traces changing only their payload • Compare the behavior of flows Host 1 Host 1 Host 2 Host 2

  7. The Glasnost architecture Coordinator Measurement servers 2 1 Client

  8. The Glasnost architecture Coordinator Measurement servers 3 Client

  9. The Glasnost architecture Coordinator Measurement servers 5 4 Client

  10. Enabling lay users to check their links E bli l t h k th i li k

  11. Rest of the talk • Detecting BitTorrent traffic differentiation with Glasnost – BitTorrent blocking – BitTorrent ratelimiting BitTorrent ratelimiting • Measurement-lab

  12. Detecting BitTorrent blocking Detecting BitTorrent blocking Middlebox User A User A User B User B • A year ago EFF reported that Comcast was blocking BitTorrent • This report set off a debate whether this is an acceptable policy • EFF published their testing tool – requires networking expertise to run it • Other easy-to-use tools like Vuze gathered insufficient evidence y g

  13. BTTest: Easy-to-use BT blocking detector

  14. How BTTest works BitTorrent packet exchange Downloader Uploader User BTTest server • BTTest runs flows between a user and a server – emulates BitTorrent transfers to trigger blocking – non-BitTorrent flows as controlled flows • Transfers with different configurations – using BitTorrent and non-BitTorrent ports – testing uploads and downloads

  15. How BTTest identifies BitTorrent blocking • BTTest collects information from both end hosts – tcpdump on server side – information from applet on whether connection was reset information from applet on whether connection was reset • BTTest reports blocking with forged resets when – user-side socket was torn down by a RST packet – server dump shows that the server did not send the RST

  16. Results from BitTorrent blocking • How prevalent is blocking? • How are BitTorrent flows identified? H BitT t fl id tifi d? • At what times are BitTorrent flows blocked? At what times are BitTorrent flows blocked? • Does greater transparency impact ISP behavior?

  17. How prevalent is blocking? p g QuickTime™ and a TIFF (Uncompressed) decompressor are needed to see this picture. March 18 th – July 25 th , 2008 2008 • 98,530 hosts measured from 157 countries and 3,024 ISPs • 4,575 hosts from 110 ISPs observed BitTorrent blocking , g • Widespread blocking in the USA and Singapore • Almost all blocking (99.5%) happens for uploads

  18. How are BitTorrent flows identified? • Based on TCP port – 15.8% of hosts experience blocking for all flows on the BitTorrent port BitTorrent port • Based on Protocol messages – For 98.2% of hosts blocking is based on BitTorrent messages • Most ISPs seem to perform deep packet inspection – confirmed this with more controlled experiments for Comcast

  19. At what times are BitTorrent flows bl blocked? k d? QuickTime™ and a TIFF (Uncompressed) decompressor are needed to see this picture. • ISPs claim to manage user traffic during times of peak utilization • However, % of blocked tests stays rather high over time , y g • Similar results for other ISPs

  20. At what times are BitTorrent flows bl blocked? k d? QuickTime™ and a TIFF (Uncompressed) decompressor are needed to see this picture. • ISPs claim to manage user traffic during times of peak utilization • However % of blocked tests stays rather high over time However, % of blocked tests stays rather high over time • Similar results for other ISPs

  21. Does transparency affect ISP policies? QuickTime™ and a QuickTime™ and a QuickTime and a TIFF (Uncompressed) decompressor TIFF (Uncompressed) decompressor are needed to see this picture. are needed to see this picture. QuickTime™ and a TIFF (Uncompressed) decompressor are needed to see this picture.

  22. Future challenges for Glasnost • How to design tests for the myriad traffic differentiation policies ISPs deploy? • Which differentiation tests should an end user run? • How to deal with noise in individual user measurements?

  23. measurementlab.net Measurement Lab

  24. What is M-Lab? • M-Lab is: An open, distributed server platform on which researchers can � deploy active, client-server network measurement tools that measure aspects of broadband Internet connections measure aspects of broadband Internet connections. M-Lab's goal: To advance research and empower the public with useful To advance research and empower the public with useful � information about their broadband connections. By enhancing Internet transparency, we aim to help sustain a healthy, innovative Internet. Founded by: PlanetLab, New America Foundation, Google Inc., and a group of researchers (including me)

  25. M-Lab and PlanetLab � M-Lab = a "private" PlanetLab � M-Lab's servers are separate and distinct from Pl PlanetLab tL b Narrower scope: active, client-server measurements of � broadband connections Servers: all enterprise grade with 8 cores and 1 Gbps � connectivity; three servers per site Allocation: # tools on a server must be < 1.5 * # of cores � � M-Lab builds on PlanetLab Depends on PlanetLab Consortium's OS/VM system (each � tool gets a "slice") and OA&M tool gets a slice ) and OA&M

  26. What does "open" mean? All collected data to be made publicly available either � immediately or after an optional 1 year embargo. All researchers required to publish client and server software q p � source code to allow for 3rd party review All researchers' tools will be operated and licensed in such a way � as to allow third-parties to develop client-side software for p p measurements. A collaborative effort: welcomes support from all researchers, � institutions, companies that want to make this succeed , p M-Lab will not be used to collect and store data from other, passive monitoring of users' Internet activity.

  27. M-Lab: present and future Currently "Proof of concept" � Limited number of tools for speed, diagnostic, and testing for � BitTorrent throttling − NDT NPAD Gl NDT, NPAD, Glasnost t − DiffProbe, NANO (coming soon) Currently 6 servers in 2 location. Google will be rolling out 36 � servers in 12 locations over first half of 2009 servers in 12 locations over first half of 2009 Future: � Involve all researchers who want to participate Involve all researchers who want to participate � Host as large a variety of tools as possible � Expand server sites globally � Open data & open tools; data repository �

  28. Get Involved � Want to deploy a tool? 1. Look at instructions on our site: http://measurementlab org/getinvolved http://measurementlab.org/getinvolved 2. Read our discussion document 3. Email the M-Lab steering committee http://measurementlab org/contact http://measurementlab.org/contact

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Glasnost: Enabling End Users to Detect Traffic Differentiation Marcel Dischinger , Massimiliano

Glasnost: Enabling End Users to Detect Traffic Differentiation Marcel Dischinger , Massimiliano

Glasnost: Enabling End Users to Detect Traffic Differentiation Marcel Dischinger , Massimiliano Marcon, Saikat Guha, Krishna P. Gummadi, Ratul Mahajan, Stefan Saroiu Networks are not transparent today Traffic shaper Router User A User B

331 views • 31 slides
Ge#ng Traffic to your Cluster Where to Tap WAN or

Ge#ng Traffic to your Cluster Where to Tap WAN or

Ge#ng Traffic to your Cluster Where to Tap WAN or Internal WAN Detect intrusion a5empts and out-bound misbehavior Internal Detect

396 views • 11 slides
Computer Vision algorithms for R users useR.2017, Brussels, July 2017 Jan Wijffels BNOSAC -

Computer Vision algorithms for R users useR.2017, Brussels, July 2017 Jan Wijffels BNOSAC -

Computer Vision algorithms for R users useR.2017, Brussels, July 2017 Jan Wijffels BNOSAC - jwijffels@bnosac.be www.bnosac.be Overzicht BNOSAC 1 Computer Vision - R toolset 2 Detect Corners 3 Detect Edges 4 Detect Lines &amp; Contours

548 views • 31 slides
AcouDigits: Enabling Users to Input Digits in the Air Yongpan Zou , Qiang Yang , Yetong Han

AcouDigits: Enabling Users to Input Digits in the Air Yongpan Zou , Qiang Yang , Yetong Han

AcouDigits: Enabling Users to Input Digits in the Air Yongpan Zou , Qiang Yang , Yetong Han , Dan Wang , Jiannong Cao , Kaishun Wu College of Computer Science and Software engineering, Shenzhen University Department

346 views • 20 slides
WEBSITE Traffic for one year: Nov v 10 2014 Nov v 10 2015 10 000 users 28 500

WEBSITE Traffic for one year: Nov v 10 2014 Nov v 10 2015 10 000 users 28 500

Sanjay Prabhu, MD, Webmaster Regional Societies Founding Societies WEBSITE Traffic for one year: Nov v 10 2014 Nov v 10 2015 10 000 users 28 500 page views 13 000 sessions Viewed from 159 countries Desktop 78%,

1.16k views • 74 slides
Glasnost India Corporate presentation Profile Established by Alpesh Desai in 2006 Located

Glasnost India Corporate presentation Profile Established by Alpesh Desai in 2006 Located

Glasnost India Corporate presentation Profile Established by Alpesh Desai in 2006 Located at GIDC Valsad, Gujarat Starting with 2 people and today 80 people working Specialist in Industrial packaging Customized solutions

396 views • 18 slides
Smart Energy Road and Traffic System SERTS - Enabling Paradigm Shifting Environmental Technology

Smart Energy Road and Traffic System SERTS - Enabling Paradigm Shifting Environmental Technology

Smart Energy Road and Traffic System SERTS - Enabling Paradigm Shifting Environmental Technology - Saturday, August 31, 13 GGBC Smart Energy Road and Traffic System - SERTS - An energy harvesting, self healing micro smart grid with wireless,

617 views • 25 slides
Tennessee Traffic Signal Users Group (TTSUG) 2018 Face-to-Face Meetings Steve Bryan, TTSUG

Tennessee Traffic Signal Users Group (TTSUG) 2018 Face-to-Face Meetings Steve Bryan, TTSUG

Tennessee Traffic Signal Users Group (TTSUG) 2018 Face-to-Face Meetings Steve Bryan, TTSUG Steering Committee Chair Tennessee Traffic Signal Users Group (TTSUG) 2016 Formation TTSUG Formation TDOT, FHWA, and ACEC Partnership Originally

678 views • 35 slides
They attract more traffic, users spending more time on pages with video content and people

They attract more traffic, users spending more time on pages with video content and people

They attract more traffic, users spending more time on pages with video content and people are more likely to click on an email link containing a video. The percentage of internet users consuming video content online is at an all time

80 views • 7 slides
Fahime Alizade &amp; Rawi Ramdhan } Introduction Why scan the Internet? How to detect

Fahime Alizade &amp; Rawi Ramdhan } Introduction Why scan the Internet? How to detect

Fahime Alizade &amp; Rawi Ramdhan } Introduction Why scan the Internet? How to detect and prevent Research question } Methods Architecture Traffic generation Intrusion Detection Load balancing Access List

341 views • 21 slides
Detect ctor Charact cterization fo for the underground gr gravitational-wave detect ctor,

Detect ctor Charact cterization fo for the underground gr gravitational-wave detect ctor,

Detect ctor Charact cterization fo for the underground gr gravitational-wave detect ctor, KAGRA Keiko Kokeyama, Takahiro Yamamoto, Taka-aki Yokozawa, Chihiro Kozakai, Yuta Fujikawa, Shoichi Oshino, Tatsuki Washimi, Alex Urban, Siddharth

400 views • 14 slides
Clemson OpenFlow Trials Enabling Network Traffic Measurement and Control over C Campus Ethernet,

Clemson OpenFlow Trials Enabling Network Traffic Measurement and Control over C Campus Ethernet,

Clemson OpenFlow Trials Enabling Network Traffic Measurement and Control over C Campus Ethernet, Wireless Mesh, and Vehicular Networks Eth t Wi l M h d V hi l N t k Campus Ethernet + Wireless Mesh for Vehicle Access + C f Campus

370 views • 7 slides
Game Theoretical Approaches to the Handling Road Traffic Ayantha Randika Overview What is

Game Theoretical Approaches to the Handling Road Traffic Ayantha Randika Overview What is

Game Theoretical Approaches to the Handling Road Traffic Ayantha Randika Overview What is Traffic? Motivation Traffic engineering Game theoretical approaches Infrastructure Users Cooperative environments

421 views • 27 slides
Pedestrian safety in Belgium Do pedestrians comply with traffic lights in Belgian All road users

Pedestrian safety in Belgium Do pedestrians comply with traffic lights in Belgian All road users

Pedestrian safety in Belgium Do pedestrians comply with traffic lights in Belgian All road users cities? Pedestrians Kevin Diependaele # Fatalities 30 days Fatalaties 30 days % Pedestrians 1 Prototype of pedestrian accident in Belgium

291 views • 6 slides
Transcultural Identity in European Popular Crime Narratives Slides: Federico Pagello

Transcultural Identity in European Popular Crime Narratives Slides: Federico Pagello

Detecting Transcultural Identity in European Popular Crime Narratives Slides: Federico Pagello (University of Bologna) Mediating Italy in a Global 1 Project overview 1. What is DETECt ? 2. Who is DETECt ? 3. Why DETECt ? 4. DETECt

521 views • 18 slides
Traffic signal optimization and traffic assignment Traffic signals Traffic signal optimization

Traffic signal optimization and traffic assignment Traffic signals Traffic signal optimization

Dagstuhl, October 2015 Traffic Signals and User Equilibria Martin Strehler , Ekkehard K ohler BTU Cottbus-Senftenberg { martin.strehler,ekkehard.koehler } @b-tu.de Traffic signal optimization and traffic assignment Traffic signals Traffic

577 views • 55 slides
for food . transparency . by Menno van Ginkel @menno_vg Society is created by overlapping

for food . transparency . by Menno van Ginkel @menno_vg Society is created by overlapping

An introduction to . 27 April 2019 for food . transparency . by Menno van Ginkel @menno_vg Society is created by overlapping networks &quot;Generally, blockchain can help in situations where multiple parties need to maintain shared

202 views • 5 slides
Networking for Operating Systems CS 111 Operating Systems Peter Reiher Lecture 15 CS 111

Networking for Operating Systems CS 111 Operating Systems Peter Reiher Lecture 15 CS 111

Networking for Operating Systems CS 111 Operating Systems Peter Reiher Lecture 15 CS 111 Page 1 Fall 2015 Outline Networking implications for operating systems Networking and distributed systems Lecture 15 CS 111 Page 2 Fall

801 views • 52 slides
Comparison of Cloud Middleware Protocols and Subscrip7on Network

Comparison of Cloud Middleware Protocols and Subscrip7on Network

Comparison of Cloud Middleware Protocols and Subscrip7on Network Topologies using CReST, the Cloud Research Simula7on Toolkit John Cartlidge &amp; Dave Cliff

681 views • 36 slides
Neural Network Meets DCN: Traffic-driven Topology Adaptation with Deep Learning Moewi Wang, Yong

Neural Network Meets DCN: Traffic-driven Topology Adaptation with Deep Learning Moewi Wang, Yong

Neural Network Meets DCN: Traffic-driven Topology Adaptation with Deep Learning Moewi Wang, Yong Cui, Shihan Xiao, Xin wang, Dan Yang, Kai Chen, Jun Zhu Introduction Conventional wired data centers generally adopt a static network topology

338 views • 14 slides
Interpretability and functional transparency Tommi Jaakkola in collaboration with David Alvarez

Interpretability and functional transparency Tommi Jaakkola in collaboration with David Alvarez

Interpretability and functional transparency Tommi Jaakkola in collaboration with David Alvarez Melis, Guang-He Lee, et al. Many facets of interpretability Many facets of interpretability uncover causal mechanisms [Garg et al.

809 views • 31 slides
Active Networking ECE/CS598HPN Instructor: Radhika Mittal Active Network Definition Network

Active Networking ECE/CS598HPN Instructor: Radhika Mittal Active Network Definition Network

Active Networking ECE/CS598HPN Instructor: Radhika Mittal Active Network Definition Network nodes (routers) can perform computation on, and modify, packet contents. This processing can be customized on a per-user per-customer basis.

214 views • 20 slides
libcppa Now: High-Level Distributed Programming Without Sacrificing Performance Matthias

libcppa Now: High-Level Distributed Programming Without Sacrificing Performance Matthias

libcppa Now: High-Level Distributed Programming Without Sacrificing Performance Matthias Vallentin matthias@bro.org University of California, Berkeley C ++ Now May 14, 2013 Outline 1. Example Application: VAST 2. Designing Distributed

513 views • 36 slides
MONEY CHANGES EVERYTHING II: CREATING PRICE TRANSPARENCY IN NEW YORK STATE New York State Health

MONEY CHANGES EVERYTHING II: CREATING PRICE TRANSPARENCY IN NEW YORK STATE New York State Health

MONEY CHANGES EVERYTHING II: CREATING PRICE TRANSPARENCY IN NEW YORK STATE New York State Health Foundation November 12, 2013 Origins of FAIR Health Concerns led to an investigation by the New York State Attorney General Black box of

308 views • 14 slides

More recommend