inrdb the internet number resource database
play

INRDB the Internet Number Resource Database Robert Kisteleki - PowerPoint PPT Presentation

Nov 16, 2022 •487 likes •721 views

RIPE Network Coordination Centre INRDB the Internet Number Resource Database Robert Kisteleki Science Group Manager, RIPE NCC robert@ripe.net INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 1 RIPE Network Coordination Centre What

  1. RIPE Network Coordination Centre INRDB the Internet Number Resource Database Robert Kisteleki Science Group Manager, RIPE NCC robert@ripe.net INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 1

  2. RIPE Network Coordination Centre What is INRDB? A system to store and retrieve long time series of Internet Number Resource related data, using reasonable computing resources. Enables efficient access to across heterogeneous historical data. Helps accomplishing RIPE NCC strategic goals: - Trusted source of data - Resource lifecycle management INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 2

  3. RIPE Network Coordination Centre Development goals Design goal: • Support the RIPE NCC’s research and analysis efforts: - Access historical data about Internet Number Resources - Preparation for serving the data can be slow, retrieval should be quick and easy - Support various applications that use large amounts of data • Store as much history as possible • Provide a single interface for different datasets INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 3

  4. RIPE Network Coordination Centre Development results Results: - Architecture is optimized for large databases • Think all of RIS table dumps and much more - It works for us! :-) - Recent evaluation: INRDB has high business value for the RIPE NCC, therefore steps are taken to turn INRDB into a production service. INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 4

  5. RIPE Network Coordination Centre INRDB overview INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 5

  6. RIPE Network Coordination Centre Concepts used by INRDB Data stored/indexed: • The “things” we observed = blobs • Times when we saw those things = intervals • Indexes exist for: - Resources (more/less specifics too, even if original DB does not have it) - Time intervals - Important non-numerical data INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 6

  7. RIPE Network Coordination Centre Concepts used by INRDB Example: BLOB: TABLE_DUMP2||B|200.219.130.11|28590|193.0.0.0/21| 28590 12956 286 3333|IGP|200.219.130.32|0|0||NAG|| � RES: 193.0.0.0/21 � META: RIS_RIB, 200.219.130.11@rrc15 � VALID: 2007-07-31T15:59:00Z - 2007-09-08T07:59:00Z � INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 7

  8. RIPE Network Coordination Centre Currently available/served data sets • RIPE NCC RIS table dumps (since 2000) - “normal” version: full RIB entries - “light” version: prefix + first transit AS + originating AS - “very light” version: prefix + originating AS • All RIR statistics files (“delegations”) • IANA assignment history • Blacklists / spamlists: DROP and uceprotect • GEOIP information from Maxmind INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 8

  9. RIPE Network Coordination Centre Currently available/served data sets • Some CAIDA data sets - Reverse DNS lookups from Ark traces - AS relationships • Various RIPE NCC internal databases Some interesting numbers: - ~160BN “input blobs” processed so far - ~1.2BN blobs with ~8.5BN intervals stored / served currently - We’re using 10 off the shelf servers INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 9

  10. RIPE Network Coordination Centre Background INRDB is not a regular database: • SQL was just too slow, too general for this • It’s really difficult to store and index this much data • 100M+ records take just forever to index • So we built a specialised storage and retrieval engine: • Geared towards storing blobs+intervals • Able to answer most frequent question types fast, while less common questions still in reasonable time INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 10

  11. RIPE Network Coordination Centre Background INRDB peculiarities: • It’s not transaction oriented: • There’s no such thing as “update” or “delete” • “Insert” is only effective for large number of items • We have a separate processes: • “Update process” that crunches input data and produces INRDB “packages” • “Query process” that allows users to query these packages INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 11

  12. RIPE Network Coordination Centre Background INRDB peculiarities: • INRDB is effective for storing data that has moderate entropy • Routing tables tend to have lots of repetitions, constructing validity intervals makes sense here • Data sets that contain “random” measurements are really difficult to index effectively • But, we can store and index “event based” data too • There’s nothing magical behind it • ~22K lines of C code INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 12

  13. RIPE Network Coordination Centre Architecture Architecture: • Back Ends and Front Ends • Use of multiple BEs and FEs enables load balancing • Near linear scalability, packages/BEs can be added/removed any time • Potential to include any time series about Internet number resources INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 13

  14. RIPE Network Coordination Centre Architecture Current setup: INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 14

  15. RIPE Network Coordination Centre Architecture Building an independent setup: INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 15

  16. RIPE Network Coordination Centre Architecture Extending the current setup: INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 16

  17. RIPE Network Coordination Centre Interfaces We have developed a number of interfaces: • “Raw” CLI access for quick checks and power users • Perl and Java APIs • Object oriented access, most communication details are hidden • JavaScript / JSON, XML, other interfaces are possible but we haven’t built them INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 17

  18. RIPE Network Coordination Centre Query potential Options (too many to list here, only examples): • Restrict to time stamp / interval • More/less specific searches on addresses (a’la RIPE DB but for all data) • Non-numerical indexing • Interval powers for RIS data (light / very light) • Enable/disable report on: • Blobs, intervals, meta information, resources, powers, … INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 18

  19. RIPE Network Coordination Centre Use of INRDB so far • Structured analysis: - Membership demographics • Ad-hoc analysis examples: - Mediterranean Cable Cuts - YouTube hijacking • Prototype applications: - Registration Data Quality measurements (RDQ) - Resource EXplainer (REX) • Numerous ad-hoc queries, quick checks, etc. INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 19

  20. RIPE Network Coordination Centre Summary We managed to build a database that serves our needs: • Stores data from a number of different, large data sets • Provides a uniform interface for all this data • Provides indexing on a number of properties • Makes our research and analysis efforts possible , or at least much easier than before INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 20

  21. RIPE Network Coordination Centre Summary It works for us, it may work for you! • Other data sets can be plugged into the running system, provided they are run through the update process first • It doesn’t matter who actually serves the data, the architecture can hide that • We can also share the code with you, so you can play with it on your own. • There are no strings attached. INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 21

  22. RIPE Network Coordination Centre Demo INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 22

  23. RIPE Network Coordination Centre Questions? INRDB Robert Kisteleki / AIMS 2010 http://www.ripe.net 23

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Detecting inconsistencies in INRDB data to identify MOAS cases and possible illegitimate Internet

Detecting inconsistencies in INRDB data to identify MOAS cases and possible illegitimate Internet

Problem: Prefix/ASN Hijacking Research RIPE NCC Data Sources The algorithm: constructing unique trees Results Comments Detecting inconsistencies in INRDB data to identify MOAS cases and possible illegitimate Internet resource usage Peter

702 views • 16 slides
NRO update To be the flagship and global leader for collaborative Internet number resource

NRO update To be the flagship and global leader for collaborative Internet number resource

NRO update To be the flagship and global leader for collaborative Internet number resource management as a central element of an open, stable and secure Internet LACNIC 27, Foz do Iguau, Brasil What is the NRO? Number Resource

283 views • 11 slides
NRO update To be the flagship and global leader for collaborative Internet number resource

NRO update To be the flagship and global leader for collaborative Internet number resource

NRO update To be the flagship and global leader for collaborative Internet number resource management as a central element of an open, stable and secure Internet LACNIC 26, September 30th 2016 San Jose, Costa Rica Presentation Summary

474 views • 13 slides
Internet Resource Certification (RPKI) Building a More Secure Internet Sint-Maarten Internet Week

Internet Resource Certification (RPKI) Building a More Secure Internet Sint-Maarten Internet Week

Internet Resource Certification (RPKI) Building a More Secure Internet Sint-Maarten Internet Week Carlos Mar2nez Cagnazzo carlos @ lacnic.net A9acks on rou;ng: IP hijacks How Internet number resources are managed IANA ARIN LACNIC APNIC

788 views • 31 slides
Communication security over the Internet The big picture Me Internet Resource Internet

Communication security over the Internet The big picture Me Internet Resource Internet

Communication security over the Internet The big picture Me Internet Resource Internet Server Client Attack vectors MAN DNS LAN Client Internet Back Bone Router Networking WWW overview MITM (Man In The Middle) 3 2 4 5 LAN

244 views • 23 slides
Internet Atlas: A Geographical Database of the Physical Internet Active Internet Measurement

Internet Atlas: A Geographical Database of the Physical Internet Active Internet Measurement

Internet Atlas: A Geographical Database of the Physical Internet Active Internet Measurement Systems Workshop (AIMS) February 6-8, 2013 Ram Durairajan Computer Sciences University of Wisconsin Motivation rkrish@cs.wisc.edu 2

505 views • 33 slides
Internet Atlas: A Geographical Database of the Internet Ramakrishnan Durairajan, Subhadip Ghosh,

Internet Atlas: A Geographical Database of the Internet Ramakrishnan Durairajan, Subhadip Ghosh,

Internet Atlas: A Geographical Database of the Internet Ramakrishnan Durairajan, Subhadip Ghosh, Xin Tang Paul Barford, and Brian Eriksson Motivation rkrish@cs.wisc.edu 2 Objectives of our work Create and maintain a comprehensive catalog

537 views • 28 slides
Internet Applications Chapter 7 Database Management Systems 3ed, R. Ramakrishnan and J. Gehrke

Internet Applications Chapter 7 Database Management Systems 3ed, R. Ramakrishnan and J. Gehrke

Internet Applications Chapter 7 Database Management Systems 3ed, R. Ramakrishnan and J. Gehrke 1 Lecture Overview Internet Concepts Web data formats HTML, XML, DTDs Introduction to three-tier architectures The presentation

702 views • 27 slides
Literature and Internet Database Mining in a Study About the Word CHEMOMETRICS Rudolf Kiralj and

Literature and Internet Database Mining in a Study About the Word CHEMOMETRICS Rudolf Kiralj and

10th International Conference on Chemometrics in Analytical Chemistry CAC-2006 CHEMOMETRICS IN THE TROPICS Nature, Medicine and Industry September 10-15 guas de Lindia, SP, BRAZIL Data Mining Session, OP27 Literature and Internet Database

261 views • 14 slides
PDF Business Database Technology: An Integrative Approach to Data Resource Management with

PDF Business Database Technology: An Integrative Approach to Data Resource Management with

PDF Business Database Technology: An Integrative Approach to Data Resource Management with Practical Project Guides, Presentation Slides, Answer Keys to by Wang, Shouhong, Wang, Hai (2013) Paperback ePub PDF Business Database Technology: An

65 views • 3 slides
Internet of things: Next evolution of the Internet Cisco blog quotes: The number of devices

Internet of things: Next evolution of the Internet Cisco blog quotes: The number of devices

6PANview : A Network Monitoring System for the Internet of Things 23-August-2011 Lohith Y S, Brinda M C, Anand SVR, Malati Hegde Department of ECE Indian Institute of Science Bangalore Funded by DIT, Government of India Internet of

520 views • 20 slides
Dynamic Resource Allocation for Database Servers Running on Virtual Storage Gokul Soundararajan,

Dynamic Resource Allocation for Database Servers Running on Virtual Storage Gokul Soundararajan,

Dynamic Resource Allocation for Database Servers Running on Virtual Storage Gokul Soundararajan, Daniel Lupei, Saeed Ghanbari, Adrian Daniel Popescu, Jin Chen, Cristiana Amza University of Toronto 1 Multi-tier Resource Allocation

922 views • 44 slides
Integrated Database System for Water Resource M anagement and Warning Royol CHITRADON Hydro and

Integrated Database System for Water Resource M anagement and Warning Royol CHITRADON Hydro and

Integrated Database System for Water Resource M anagement and Warning Royol CHITRADON Hydro and Agro Informatics Institute (HAII) M inistry of Science and Technology (M OST) 1 Supporting System for Water Resource Management and Warning

597 views • 21 slides
The fight against SPAM An Internet Number Resources

The fight against SPAM An Internet Number Resources

The fight against SPAM An Internet Number Resources Management Perspec5ve By Amreesh D. Phokeer 04/12/2015 Overview 1. Background 2. Sta2s2cs 3.

474 views • 32 slides
Internet Resource Cer)fica)on and Origin Valida)on An approach

Internet Resource Cer)fica)on and Origin Valida)on An approach

Internet Resource Cer)fica)on and Origin Valida)on An approach to more secure rou/ng on the Internet Carlos Mar)nez Cagnazzo carlos @ lacnic.net

261 views • 25 slides
Resource found on the internet This Federal study has more tables in in than the cafeteria at the

Resource found on the internet This Federal study has more tables in in than the cafeteria at the

Resource found on the internet This Federal study has more tables in in than the cafeteria at the Pentagon Freelance You can mix customers You can put a Coal mine next to a Manufacturing plant, next to a Meat Packer, next to a Grain

706 views • 22 slides
Break-out session topic Articulate a grand-challenge/big-idea for the architecture community

Break-out session topic Articulate a grand-challenge/big-idea for the architecture community

Break-out session topic Articulate a grand-challenge/big-idea for the architecture community Short description accessible to broader CS What is the expected benefit if successful? How will it push the field forward? Which related

363 views • 21 slides
Outline The Sixth International Conference on Parallel Processing and Applied Mathematics

Outline The Sixth International Conference on Parallel Processing and Applied Mathematics

Outline The Sixth International Conference on Parallel Processing and Applied Mathematics Background (PPAM 2005) Matrix computation libraries Traditional programming style based on function calls SILC: a Flexible and Environment

357 views • 3 slides
Numerical Integration Sanzheng Qiao Department of Computing and Software McMaster University

Numerical Integration Sanzheng Qiao Department of Computing and Software McMaster University

Intro Rectangle Trapezoid Error Simpsons Extrapolation Adaptive 2D Software Summary Numerical Integration Sanzheng Qiao Department of Computing and Software McMaster University August, 2012 Intro Rectangle Trapezoid Error

573 views • 35 slides
Contextual Media Retrieval Using Natural Language Queries IMPRS-CS PhD Application Talk Sreyasi

Contextual Media Retrieval Using Natural Language Queries IMPRS-CS PhD Application Talk Sreyasi

Contextual Media Retrieval Using Natural Language Queries IMPRS-CS PhD Application Talk Sreyasi Nag Chowdhury Masters Thesis Supervisors Dr. Mario Fritz Dr. Andreas Bulling Adviser M.Sc. Mateusz Malinowski 1 Outline Motivation and

1.22k views • 103 slides
Mflop 300 200 100 0 6 8 10 12 14 16 18 20 22 Vector length 2^n 600

Mflop 300 200 100 0 6 8 10 12 14 16 18 20 22 Vector length 2^n 600

Performance of scalar product benchmark 600 R10000/195MHz R8000/75MHz Alpha/500Mhz IBM Power 2/66Mhz 500 IBM PPC604e/166Mhz IBM PPC604e/233Mhz PPro 200/Mhz, NAG F90 PPro 200/Mhz, PG F77 400 Mflop 300 200 100 0 6 8 10 12 14 16

658 views • 37 slides
Distributed Systems How does the OS ensure security? 13C. Distributed Systems: Security all

Distributed Systems How does the OS ensure security? 13C. Distributed Systems: Security all

5/20/2018 Distributed Systems How does the OS ensure security? 13C. Distributed Systems: Security all key resources are kept inside of the OS protected by hardware (mode, memory management) 13I. Secure sessions processes cannot

129 views • 9 slides
CPSC 213 Introduction to Computer Systems Unit 1e Procedures and the Stack Readings for Next 3

CPSC 213 Introduction to Computer Systems Unit 1e Procedures and the Stack Readings for Next 3

CPSC 213 Introduction to Computer Systems Unit 1e Procedures and the Stack Readings for Next 3 Lectures Textbook Procedures - 3.7 Out-of-Bounds Memory References and Buffer Overflow - 3.12 Local Variables of a Procedure public

331 views • 16 slides
New Constructions of MACs from (Tweakable) Block Ciphers Benot Cogliati 1 Jooyoung Lee 2 Yannick

New Constructions of MACs from (Tweakable) Block Ciphers Benot Cogliati 1 Jooyoung Lee 2 Yannick

Generalities Stateless Deterministic MACs Nonce-Based MACs Conclusion New Constructions of MACs from (Tweakable) Block Ciphers Benot Cogliati 1 Jooyoung Lee 2 Yannick Seurin 3 1 UL, Luxembourg 2 KAIST, Korea 3 ANSSI, France March 6, 2018

837 views • 55 slides

More recommend