ndn an orchestrated microservice architecture for named
play

NDN: an Orchestrated Microservice Architecture for Named Data - PowerPoint PPT Presentation

Jan 15, 2023 •563 likes •786 views

NDN: an Orchestrated Microservice Architecture for Named Data Networking Xavier MARCHAL, Thibault CHOLEZ, Olivier FESTOR LORIA, UMR 7503 (University of Lorraine, CNRS, INRIA) Vandoeuvre-les-Nancy, F-54506, France September 22, 2018

  1. µ NDN: an Orchestrated Microservice Architecture for Named Data Networking Xavier MARCHAL, Thibault CHOLEZ, Olivier FESTOR LORIA, UMR 7503 (University of Lorraine, CNRS, INRIA) Vandoeuvre-les-Nancy, F-54506, France September 22, 2018

  2. Introduction Microservices Manager Experiments Conclusion Outline 1 Introduction 2 Microservices 3 Manager 4 Experiments 5 Conclusion September 22, 2018 µ NDN: an Orchestrated Microservice Architecture for Named Data Networking 2 / 21

  3. Introduction Microservices Manager Experiments Conclusion Outline 1 Introduction 2 Microservices 3 Manager 4 Experiments 5 Conclusion September 22, 2018 µ NDN: an Orchestrated Microservice Architecture for Named Data Networking 3 / 21

  4. Introduction Microservices Manager Experiments Conclusion Context Network Function Virtualization (NFV): Common hardware, hosting various software components Reduce operational and capital expenditures Improve reliability and flexibility Microservices architecture: Split a monolithic software into multiple and simple services Easier development and improvement of each service Better horizontal scalability Tend to use more resources individually Need a proper management plane Additional deployment complexity September 22, 2018 µ NDN: an Orchestrated Microservice Architecture for Named Data Networking 4 / 21

  5. Introduction Microservices Manager Experiments Conclusion Motivation Expected benefits from NVF and microservices for ICN: Incremental deployment of NDN alongside existing protocols More efficient NDN topologies Better performance Deploy dynamically on-path functions Challenges: Decomposition of a monolithic NDN router Linkage and packet processing Management of the different services September 22, 2018 µ NDN: an Orchestrated Microservice Architecture for Named Data Networking 5 / 21

  6. Introduction Microservices Manager Experiments Conclusion Outline 1 Introduction 2 Microservices 3 Manager 4 Experiments 5 Conclusion September 22, 2018 µ NDN: an Orchestrated Microservice Architecture for Named Data Networking 6 / 21

  7. Introduction Microservices Manager Experiments Conclusion The microservices Five are extracted from NDN router plus two others for security purpose Can be split in two categories Core routing functions: Name Router (NR): ≃ FIB Backward Router (BR): ≃ PIT Packet Dispatcher (PD) Support functions (on-path services): Content Store (CS) Strategy Forwarder (SF) Signature Verifier (SV) Name Filter (NF) September 22, 2018 µ NDN: an Orchestrated Microservice Architecture for Named Data Networking 7 / 21

  8. Introduction Microservices Manager Experiments Conclusion The microservices Name Function Oriented I ngress/Egress cardinality Name Router Route Interest packets Yes 1/N Backward Router Route back Data packets Yes N/1 Packet Dispatcher Split Interest / Data traffic No N/N Content Store Cache Data packets No 1/1 Strategy Forwarder Forward Interest packets No 1/1 or N Signature Verifier Verify packets’ signature No 1/1 Name Filter Filter on packets’ name No 1/1 ”Oriented” refers as if a module has specialized Faces to handle consumer and producer traffics Effective cardinality: ”1” means a modules should be connected to a single other module but can still broadcast traffic if more than one ”N” means a modules can accept any number of other modules and is able to identify which send and/or to which forward the packets September 22, 2018 µ NDN: an Orchestrated Microservice Architecture for Named Data Networking 8 / 21

  9. Introduction Microservices Manager Experiments Conclusion Outline 1 Introduction 2 Microservices 3 Manager 4 Experiments 5 Conclusion September 22, 2018 µ NDN: an Orchestrated Microservice Architecture for Named Data Networking 9 / 21

  10. Introduction Microservices Manager Experiments Conclusion The manager Needed for efficient microservice architecture Operations to implement for a proper network management: Deploy on demand or automatically the microservices Dynamically adapt the topology Update the microservices’ running configuration Scale up the bottleneck services accordingly Microservices must implement a management interface Get command from manager Send request to the manager Periodically report statistics September 22, 2018 µ NDN: an Orchestrated Microservice Architecture for Named Data Networking 10 / 21

  11. Introduction Microservices Manager Experiments Conclusion The manager Basic metrics from microservices used to dynamically improve QoS Identify attacks like content poisoning attack Identify bottleneck and useless components Name Values Name Router Route statistics Unsolicited Data packets Backward Router Retransmitted Interest packets Packet Dispatcher User traffic statistics Content Store Hit/Miss count Signature Verifier Name of failed packets Name Filter Drop count Manager can also get resource usages from the orchestrator September 22, 2018 µ NDN: an Orchestrated Microservice Architecture for Named Data Networking 11 / 21

  12. Introduction Microservices Manager Experiments Conclusion The manager NLSR is not mandatory inside the managed network The manager knows about all the topology Can trigger routine(s) and push new configurations like a SDN controller External routing protocols can be implemented as microservice Placed at the edge of the managed network Offer protocol agnostic communication September 22, 2018 µ NDN: an Orchestrated Microservice Architecture for Named Data Networking 12 / 21

  13. Introduction Microservices Manager Experiments Conclusion Scaling procedure Support functions scaling Possible Backward Router scaling NR NR NR NR BR BR BR Scaling SV SV Scaling BR SV SV BR SF SF SF CS CS CS CS CS CS Like a box with same properties Adding an upper BR will only move the bottleneck (in most cases) BR may be replaced by a simpler function like another SF for Force the next hop to broadcast stateless functions traffic September 22, 2018 µ NDN: an Orchestrated Microservice Architecture for Named Data Networking 13 / 21

  14. Introduction Microservices Manager Experiments Conclusion Outline 1 Introduction 2 Microservices 3 Manager 4 Experiments 5 Conclusion September 22, 2018 µ NDN: an Orchestrated Microservice Architecture for Named Data Networking 14 / 21

  15. Introduction Microservices Manager Experiments Conclusion Environment Plateform: 2 Intel Xeons 8 cores 2.4 GHz (E5 2630v3) Docker CE 18.03 ndn-cxx v0.6.1 Microservices are written in C++ and are single-threaded 1 NDN packets are carried over TCP/IP in the experiments NDN Data packets always carry 8192 octets Usage of a Docker bridge network when the microservices are in Containers Producer(s) and consumer(s) are always executed from host 1 Source code: https://github.com/Kanemochi/NDN-microservices September 22, 2018 µ NDN: an Orchestrated Microservice Architecture for Named Data Networking 15 / 21

  16. Introduction Microservices Manager Experiments Conclusion Performance Throughput (Mbps) Module Bare-Metal Container Name Router 1,820 1,595 Backward Router 1,304 1,090 Packet Dispatcher 1,761 1,635 Content Store (freshness = 0) 1,760 1,538 Content Store (freshness > 0) 1,031 979 Content Store (from cache) 2,447 2,061 Strategy Forwarder 1,756 1,540 Signature Verifier (RSA2048) 515 401 Signature Verifier (ECDSA256) 122 101 Name Filter 1,804 1,593 Signature verification is a heavy task, throughput can be ”improved” with per registered prefix statistical verification CS can be slower than BR in some scenarios Around 13% throughput penalty from Docker virtualization September 22, 2018 µ NDN: an Orchestrated Microservice Architecture for Named Data Networking 16 / 21

  17. Introduction Microservices Manager Experiments Conclusion µ NDN coupling ”equivalent” to NFD Interests’ path Datas’ path Both BR PD CS NR External routes Microservices NFD PD CS BR NR %CPU core usage 100 59 89 64 100 Throughput (in Mbps) 776 527 Latency (in ms) 2,63 3,88 If Packet Dispatcher is not a bottleneck → 969 Mbps September 22, 2018 µ NDN: an Orchestrated Microservice Architecture for Named Data Networking 17 / 21

  18. Introduction Microservices Manager Experiments Conclusion Scaling experiment BR is artificially limited to 67% Throughput increases from 625 up to 980 Mbps The scaling rule is not optimal Only get performance of one BR with no limit, huge load increase when broadcasting traffic to BR instances September 22, 2018 µ NDN: an Orchestrated Microservice Architecture for Named Data Networking 18 / 21

  19. Introduction Microservices Manager Experiments Conclusion Security experiment 100 100 90 90 Good Consumer Good Provider 80 80 NR Interest 70 70 CPU usage (in percent) Cache hit (in percent) Interest t Data s e 60 60 r Data Interest e t n Data I 50 50 CS 40 40 Interest 30 30 Data Interest CS 20 20 Data 10 10 Bad Consumer Bad Provider 0 0 Cache hit CS1 NR1 CS1.SV1 (x10) Content Poisoning Attack If cache hit decreases too much in a short period of time, the manager will insert a signature verifier between left CS and NR The manager can incrementally move SV toward the source(s) of bad Data packets September 22, 2018 µ NDN: an Orchestrated Microservice Architecture for Named Data Networking 19 / 21

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

PRACTICAL MTLS Ying Li @cyli PROBLEM TYPICAL MICROSERVICE ARCHITECTURE VPC S1 DB S2 S1 S3

PRACTICAL MTLS Ying Li @cyli PROBLEM TYPICAL MICROSERVICE ARCHITECTURE VPC S1 DB S2 S1 S3

MINIMIZING THE WINDOW OF COMPROMISE PRACTICAL MTLS Ying Li @cyli PROBLEM TYPICAL MICROSERVICE ARCHITECTURE VPC S1 DB S2 S1 S3 PROBLEM VLAN-TASTIC MICROSERVICE ARCHITECTURE S1 DB S2 S1 S3 PROBLEM CORRECT MICROSERVICE ARCHITECTURE

736 views • 61 slides
Enterprise Microservice Platform and Operation

Enterprise Microservice Platform and Operation

Enterprise Microservice Platform and Operation Experience Sharing Ivan Hsieh P .1 Agenda Microservice Architecture How to break a Monolith into Microservices

519 views • 36 slides
Microservice The Evolutionary Architecture Software Engineering II Sharif University of

Microservice The Evolutionary Architecture Software Engineering II Sharif University of

Microservice The Evolutionary Architecture Software Engineering II Sharif University of Technology MohammadAmin Fazli Topics An Evolutionary Vision for the Architecture Zoning A Principal Approach Governance Through Code

442 views • 29 slides
API security in a microservice architecture Matt McLarty VP, API Academy, CA Technologies Feb.

API security in a microservice architecture Matt McLarty VP, API Academy, CA Technologies Feb.

API security in a microservice architecture Matt McLarty VP, API Academy, CA Technologies Feb. 28, 2018 Agenda Purpose and Goals Background Current Approaches - Network-level Controls - Application-level Controls - Emerging

785 views • 43 slides
MICRO-FRONTENDS Luca Mezzalira Architecture evolution DB Application Server Single-Page

MICRO-FRONTENDS Luca Mezzalira Architecture evolution DB Application Server Single-Page

Scaling Your Project with MICRO-FRONTENDS Luca Mezzalira Architecture evolution DB Application Server Single-Page Application Architecture evolution DB DB DB Microservice Microservice Microservice API Gateway Single-Page Application

349 views • 32 slides
Incorporating Post-Quantum Cryptography in a microservice architecture Research Project 2 Why

Incorporating Post-Quantum Cryptography in a microservice architecture Research Project 2 Why

R. van der Gaag, D. Weller Incorporating Post-Quantum Cryptography in a microservice architecture Research Project 2 Why think about post-quantum cryptography W. Buchanan et. al concluded Gate-based quantum computers pose a significant

349 views • 18 slides
A World on NDN Affordances and Implications of the Named Data Networking Future Internet

A World on NDN Affordances and Implications of the Named Data Networking Future Internet

A World on NDN Affordances and Implications of the Named Data Networking Future Internet Architecture Shilton, Burke, claffy, Duan, Zhang Examines the social impacts of NDN generated by key aspects of the architecture and critical

277 views • 6 slides
Managing Failure Modes in Microservice Architectures Adrian Cockcroft @adrianco AWS VP Cloud

Managing Failure Modes in Microservice Architectures Adrian Cockcroft @adrianco AWS VP Cloud

Managing Failure Modes in Microservice Architectures Adrian Cockcroft @adrianco AWS VP Cloud Architecture Strategy Datacenter to cloud migrations are under-way for the most business and safety critical workloads AWS and our partners are

745 views • 55 slides
Practical Microservice Security Laura Bell Practical Microservice security Laura Bell Founder

Practical Microservice Security Laura Bell Practical Microservice security Laura Bell Founder

Practical Microservice Security Laura Bell Practical Microservice security Laura Bell Founder and Lead Consultant - SafeStack @lady_nerd laura@safestack.io http:/ /safestack.io caution: fast paced field ahead watch for out of date

1.06k views • 66 slides
Data Distribution and Exploitation in a Global Microservice Arteract Observatory Panagiotis

Data Distribution and Exploitation in a Global Microservice Arteract Observatory Panagiotis

Data Distribution and Exploitation in a Global Microservice Arteract Observatory Panagiotis Gkikopoulos, PhD student and research assistant, ZHAW and UNINE, Switzerland The Microservice Pattern An increasingly prevalent approach to

300 views • 15 slides
Approximately Orchestrated Routing and Transportation Analyzer (AORTA) Large-scale Traffic

Approximately Orchestrated Routing and Transportation Analyzer (AORTA) Large-scale Traffic

Approximately Orchestrated Routing and Transportation Analyzer (AORTA) Large-scale Traffic Simulation for Autonomous Vehicles Dustin Carlino, Mike Depinet, Piyush Khandelwal, and Peter Stone Department of Computer Science The University of

495 views • 17 slides
Stateless Microservice Security via QCON SP JWT, TomEE and MicroProfile Jean-Louis Monteiro

Stateless Microservice Security via QCON SP JWT, TomEE and MicroProfile Jean-Louis Monteiro

Stateless Microservice Security via QCON SP JWT, TomEE and MicroProfile Jean-Louis Monteiro Tomitribe #RESTSecurityWithMP-JWT @JLouisMonteiro @tomitribe Why am I here today? QCON SP Microservices architecture case Security opEons OAuth2

820 views • 80 slides
Stateless Microservice Security via JWT, TomEE and MicroProfile Jean-Louis Monteiro Tomitribe

Stateless Microservice Security via JWT, TomEE and MicroProfile Jean-Louis Monteiro Tomitribe

EclipseCon France Stateless Microservice Security via JWT, TomEE and MicroProfile Jean-Louis Monteiro Tomitribe #RESTSecurityWithMP-JWT @JLouisMonteiro @tomitribe EclipseCon France Why am I here today? Microservices architecture case

1.26k views • 69 slides
Armeria Armeria A Microservice Framework A Microservice Framework Well-suited Everywhere

Armeria Armeria A Microservice Framework A Microservice Framework Well-suited Everywhere

Armeria Armeria A Microservice Framework A Microservice Framework Well-suited Everywhere Well-suited Everywhere Trustin Lee, LINE Oct 2019 @armeria_project line/armeria A microservice framework, again? @armeria_project line/armeria

643 views • 50 slides
Kafka in Jail Running Kafka in container orchestrated clusters Sean Glover, Lightbend @seg1o

Kafka in Jail Running Kafka in container orchestrated clusters Sean Glover, Lightbend @seg1o

Kafka in Jail Running Kafka in container orchestrated clusters Sean Glover, Lightbend @seg1o Who am I? Im Sean Glover Senior Software Engineer at Lightbend Member of the Fast Data Platform team Contributor to various projects in

788 views • 60 slides
Orchestrated Android-Style System Upgrades for Embedded Linux Diego Rondini Embedded Linux

Orchestrated Android-Style System Upgrades for Embedded Linux Diego Rondini Embedded Linux

Orchestrated Android-Style System Upgrades for Embedded Linux Diego Rondini Embedded Linux Conference Europe 2017, Prague Diego Rondini, www.kynetics.com What this session is about Manage and rollout software updates on Embedded Linux devices

664 views • 45 slides
Design CPAD 2019 Dec. 8-10, 2019 Cesar Gonzalez Renteria (LBNL) on behalf of the RD53

Design CPAD 2019 Dec. 8-10, 2019 Cesar Gonzalez Renteria (LBNL) on behalf of the RD53

RD53 Status and the Role of Verification in Digital Design CPAD 2019 Dec. 8-10, 2019 Cesar Gonzalez Renteria (LBNL) on behalf of the RD53 Collaboration 1 Outline Introduction RD53 Collaboration What is the mission of the

644 views • 46 slides
Removing Useless Variables in Cost Analysis of Java Bytecode Elvira Albert DSIC, Universidad

Removing Useless Variables in Cost Analysis of Java Bytecode Elvira Albert DSIC, Universidad

Removing Useless Variables in Cost Analysis of Java Bytecode Elvira Albert DSIC, Universidad Complutense de Madrid CLIP, Universidad Polit ecnica de Madrid Joint work with P. Arenas, S. Genaim, G. Puebla, and D. Zanardini ACM SAC - Software

684 views • 40 slides
The Long Wavelength Array: Status and Updates Jayce Dowell SLF III December 7, 2016 Instrument

The Long Wavelength Array: Status and Updates Jayce Dowell SLF III December 7, 2016 Instrument

The Long Wavelength Array: Status and Updates Jayce Dowell SLF III December 7, 2016 Instrument Status LWA1 Electronics Shelter 256 Dipoles 5 m 100 m LWA1 Outriggers 500 m LWA-SV LWA1 vs. LWA-SV Similar layout, Different

566 views • 22 slides
How To Keep Your Head Above Water While Detecting Errors Ignacio Laguna, Fahad A. Arshad, David

How To Keep Your Head Above Water While Detecting Errors Ignacio Laguna, Fahad A. Arshad, David

USENIX / ACM / IFIP 10th International Middleware Conference How To Keep Your Head Above Water While Detecting Errors Ignacio Laguna, Fahad A. Arshad, David M. Grothe, Saurabh Bagchi Dependable Computing System Lab School of Electrical and

307 views • 27 slides
Cleantech San Diego: 2018 Legislative Review AB 2127 & SB 1000 AB 2127 (Ting) Electric

Cleantech San Diego: 2018 Legislative Review AB 2127 & SB 1000 AB 2127 (Ting) Electric

Cleantech San Diego: 2018 Legislative Review AB 2127 & SB 1000 AB 2127 (Ting) Electric Vehicle Charging Infrastructure Assessment Codifies as a biennial requirement the Energy Commission statewide assessment of u the EV charging

359 views • 5 slides
Telescopic slides 701 Technical information for telescopic slides Construction: Telescopic

Telescopic slides 701 Technical information for telescopic slides Construction: Telescopic

Telescopic slides 701 Technical information for telescopic slides Construction: Telescopic slides consist of two or more ball-bearing supported guide rails mounted one inside another that can be pulled out like a telescope. The load rating of

530 views • 13 slides
Towards Secure Distance Bounding Ioana Boureanu, Katerina Mitrokotsa, Serge Vaudenay COLE

Towards Secure Distance Bounding Ioana Boureanu, Katerina Mitrokotsa, Serge Vaudenay COLE

Towards Secure Distance Bounding Ioana Boureanu, Katerina Mitrokotsa, Serge Vaudenay COLE POLYTECHNIQUE FDRALE DE LAUSANNE http://lasec.epfl.ch/ SV 2013 distance bounding FSE 2013 1 / 48 1 Why Distance-Bounding? Towards a Secure

663 views • 48 slides
ECON2915 Economic Growth Lecture 4 : Human capital. Productivity measurement. Andreas Moxnes

ECON2915 Economic Growth Lecture 4 : Human capital. Productivity measurement. Andreas Moxnes

ECON2915 Economic Growth Lecture 4 : Human capital. Productivity measurement. Andreas Moxnes University of Oslo Fall 2016 1 / 40 Human capital and income So far: Workers assumed to be identical over time and across countries. How can

531 views • 41 slides

More recommend