networking overview
play

Networking Overview CS 161 - Computer Security Profs. Vern Paxson - PowerPoint PPT Presentation

Oct 19, 2022 •154 likes •521 views

Networking Overview CS 161 - Computer Security Profs. Vern Paxson & David Wagner TAs: John Bethencourt, Erika Chin, Matthew Finifter, Cynthia Sturton, Joel Weinberger http://inst.eecs.berkeley.edu/~cs161/ Feb 8, 2010 1 Focus For Today

  1. Networking Overview CS 161 - Computer Security Profs. Vern Paxson & David Wagner TAs: John Bethencourt, Erika Chin, Matthew Finifter, Cynthia Sturton, Joel Weinberger http://inst.eecs.berkeley.edu/~cs161/ Feb 8, 2010 1

  2. Focus For Today ʼ s Lecture • Sufficient background in networking to then explore security issues in next 4 lectures – Networking = the Internet • Complex topic with many facets – We will omit concepts/details that aren’t very security- relevant – We’ll mainly look at IP, TCP, DNS and DHCP • Networking is full of abstractions – Goal is for you to develop apt mental models / analogies – ASK questions when things are unclear o (but we may skip if not ultimately relevant for security, or postpone if question itself is directly about security) 2

  3. Key Concept #1: Dumb Network • Internet design: interior nodes (“routers”) have no knowledge* of ongoing connections going through them • Not: how you picture the telephone system works – Which internally tracks all of the active voice calls • Instead: the postal system! – Each Internet message (“packet”) self-contained – Interior “routers” look at destination address to forward – If you want smarts, build it “end-to-end” – Buys simplicity & robustness at the cost of shifting complexity into end systems * Today’s Internet is full of hacks that violate this 3

  4. Key Concept #2: Layering • Internet design is strongly partitioned into layers – Each layer relies on services provided by next layer below … – … and provides services to layer above it • Analogy: – Consider structure of an Code You Write application you’ve written Run-Time Library and the “services” each System Calls layer relies on / provides Magnetic Domains } Device Drivers Fully isolated Voltage Levels / from user programs 4

  5. Internet Layering (“Protocol Stack”) 7 Application 4 Transport 3 (Inter)Network Link 2 1 Physical 5

  6. Layer 1: Physical Layer 7 Application 4 Transport Encoding bits to send them over a single physical link 3 (Inter)Network e.g. patterns of Link 2 voltage levels / photon intensities / 1 Physical RF modulation 6

  7. Layer 2: Link Layer Framing and transmission of a collection of bits into individual messages sent across a 7 Application single “subnetwork” (one physical technology) 4 Transport 3 (Inter)Network Might involve multiple physical Link 2 links (e.g., modern Ethernet) 1 Physical Often technology supports broadcast transmission ( every “node” connected to subnet receives) 7

  8. Layer 3: (Inter)Network Layer Bridges multiple subnets to provide end-to-end internet connectivity between nodes 7 Application • Provides global addressing 4 Transport Works across different link 3 (Inter)Network technologies } Link 2 Different for each Internet “hop” 1 Physical 8

  9. Layer 4: Transport Layer End-to-end communication between processes 7 Application Different services provided: TCP = reliable byte stream 4 Transport UDP = unreliable datagrams 3 (Inter)Network Link 2 1 Physical 9

  10. Layer 7: Application Layer Communication of whatever you wish 7 Application Can use whatever transport(s) is convenient 4 Transport 3 (Inter)Network Freely structured Link 2 E.g.: 1 Physical Skype, SMTP (email), HTTP (Web), Halo, BitTorrent 10

  11. Internet Layering (“Protocol Stack”) } Implemented only at hosts, 7 Application not at interior routers 4 Transport (“dumb network”) 3 (Inter)Network Link 2 1 Physical 11

  12. Internet Layering (“Protocol Stack”) 7 Application 4 Transport } 3 (Inter)Network Link 2 Implemented everywhere 1 Physical 12

  13. Hop-By-Hop vs. End-to-End Layers Host A communicates with Host D Host C Host D Host A Router 1 Router 2 Router 3 Router 5 Host B Host E Router 7 Router 6 Router 4 13

  14. Hop-By-Hop vs. End-to-End Layers Host A communicates with Host D Host C Host D Host A E.g., Ethernet Router 1 Router 2 Router 3 E.g., Wi-Fi Router 5 Host B Host E Router 7 Router 6 Router 4 Different Physical & Link Layers (Layers 1 & 2) 14

  15. Hop-By-Hop vs. End-to-End Layers Host A communicates with Host D Host C Host D Host A Router 1 Router 2 Router 3 Router 5 E.g., HTTP over TCP over IP Host B Host E Router 7 Router 6 Router 4 Same Network / Transport / Application Layers (3/4/7) (Routers ignore Transport & Application layers) 15

  16. Key Concept #3: Protocols • A protocol is an agreement on how to communicate • Includes syntax and semantics – How a communication is specified & structured o Format, order messages are sent and received – What a communication means o Actions taken when transmitting, receiving, or timer expires • E.g.: asking a question in lecture? 1.Raise your hand. 2.Wait to be called on. 3.Or: wait for speaker to pause and vocalize 4.If unrecognized (after timeout): vocalize w/ “excuse me” 16

  17. Example: IP Packet Header (Network layer / layer 3) 4-bit 8-bit 4-bit 16-bit Total Length (Bytes) Header Type of Service Version Length (TOS) 3-bit 16-bit Identification 13-bit Fragment Offset Flags 20-byte 20-byte 8-bit Time to 8-bit Protocol 16-bit Header Checksum header header Live (TTL) 32-bit Source IP Address 32-bit Destination IP Address Payload IP = Internet Protocol

  18. IP: “ Best Effort ” Packet Delivery • Routers inspect destination address, locate “next hop” in forwarding table – Address = ~unique identifier/locator for the receiving host – (decrements TTL “Time To Live” field, drops packet if = 0) • Only provides a “I’ll give it a try” delivery service: – Packets may be lost – Packets may be corrupted – Packets may be delivered out of order source destination IP network 18

  19. “Best Effort” is Lame! What to do? • It’s the job of our Transport (layer 4) protocols to build services our apps need out of IP’s modest layer-3 service • #1 workhorse: TCP ( Transmission Control Protocol ) • TCP service: – Connection oriented (explicit set-up / tear-down) o End hosts (processes) can have multiple concurrent long-lived dialog – Reliable, in-order, byte-stream delivery o Robust detection & retransmission of lost data – Congestion control o Dynamic adaptation to network path’s capacity o (Also adaptation to receiver’s ability to absorb data) 19

  20. TCP “Stream of Bytes” Service Host A Byte 0 Byte 1 Byte 2 Byte 3 Byte 80 Hosts don’t ever see packet boundaries, lost or corrupted packets, retransmissions, etc. Host B Byte 0 Byte 1 Byte 2 Byte 3 Byte 80 20

  21. “Best Effort” is Lame! What to do? • It’s the job of our Transport (layer 4) protocols to build services our apps need out of IP’s modest layer-3 service • #1 workhorse: TCP ( Transmission Control Protocol ) • TCP service: – Connection oriented (explicit set-up / tear-down) o End hosts (processes) can have multiple concurrent long-lived dialog – Reliable, in-order, byte-stream delivery o Robust detection & retransmission of lost data – Congestion control o Dynamic adaptation to network path’s capacity o (Also adaptation to receiver’s ability to absorb data) 21

  22. TCP Header Source port Destination port Sequence number Acknowledgment HdrLen Advertised window Flags 0 Checksum Urgent pointer Options (variable) Data 22

  23. TCP Header Ports are Source port Destination port associated with OS Sequence number processes Acknowledgment IP source & destination HdrLen Advertised window Flags 0 addresses plus TCP source and destination Checksum Urgent pointer ports uniquely identifies a TCP connection Options (variable) Some port numbers are “well known” / reserved Data e.g. port 80 = HTTP 23

  24. TCP Header Source port Destination port Starting sequence Sequence number number (byte offset) of data Acknowledgment carried in this HdrLen Advertised window Flags 0 packet Checksum Urgent pointer Options (variable) Data 24

  25. TCP Header Source port Destination port Sequence number Acknowledgment gives seq # just Acknowledgment beyond highest seq. received in HdrLen Advertised window Flags 0 order . Checksum Urgent pointer If sender sends Options (variable) N in-order bytes starting at seq S Data then ack for it will be S+N . 25

  26. TCP Header Source port Destination port Sequence number Uses include: Acknowledgment acknowledging data (“ ACK ”) HdrLen Advertised window Flags 0 Checksum Urgent pointer setting up (“ SYN ”) and closing Options (variable) connections (“ FIN ” and “ RST ”) Data 26

  27. Establishing a TCP Connection B A SYN Each host tells its Initial Sequence Number SYN+ACK (ISN) to the other host. ACK Spec says to pick D a t a based on local clock D a t a • Three-way handshake to establish connection – Host A sends a SYN (open; “synchronize sequence numbers”) to host B – Host B returns a SYN acknowledgment ( SYN + ACK ) – Host A sends an ACK to acknowledge the SYN + ACK 27

  28. Timing Diagram: 3-Way Handshaking Passive Open Active Server Open listen() Client (initiator) connect() S Y N , S e q N u m = x SYN + ACK, SeqNum = y, Ack = x + 1 A C K , A c k = y + 1 accept() 28

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Networking By Destiney Plaza Overview What is networking Architecture Hardware

Networking By Destiney Plaza Overview What is networking Architecture Hardware

Networking By Destiney Plaza Overview What is networking Architecture Hardware Networking Details Topologies Build your own network Networking Connection between two or more devices How do humans

1.31k views • 79 slides
Networking By Destiney Plaza Overview What is networking Architecture Hardware

Networking By Destiney Plaza Overview What is networking Architecture Hardware

Networking By Destiney Plaza Overview What is networking Architecture Hardware Networking Details Topologies Build your own network Networking Connection between two or more devices How do humans

1.06k views • 74 slides
Docker Networking Workshop Agenda 1. Detailed Overview 2. Docker Networking Evolution 3. Use

Docker Networking Workshop Agenda 1. Detailed Overview 2. Docker Networking Evolution 3. Use

Docker Networking Workshop Agenda 1. Detailed Overview 2. Docker Networking Evolution 3. Use Cases Single-host networking with the Bridge driver Multi-host networking with the Overlay driver Connecting to existing VLANs with the

1.32k views • 93 slides
CS683- Security and Privacy: Overview of Computer Networking (1/2) Karim Eldefrawy

CS683- Security and Privacy: Overview of Computer Networking (1/2) Karim Eldefrawy

CS683- Security and Privacy: Overview of Computer Networking (1/2) Karim Eldefrawy keldefrawy@usfca.edu University of San Francisco A Good Text Book (if you need one) 1/24/18 Introduction 1-2 Networking Overview: Roadmap overview : our

1.34k views • 76 slides
Using Your Network 10-07-16 Networking & You What is networking? Benefits of

Using Your Network 10-07-16 Networking & You What is networking? Benefits of

Jordan Borrell Networking & Bioengineering Program Using Your Network 10-07-16 Networking & You What is networking? Benefits of networking. Who do I network with? Family/Friends/Neighbors School Connections

395 views • 14 slides
Networking Don Porter CSE 506 Networking (2 parts) Goals: Review networking basics

Networking Don Porter CSE 506 Networking (2 parts) Goals: Review networking basics

Networking Don Porter CSE 506 Networking (2 parts) Goals: Review networking basics Discuss APIs Trace how a packet gets from the network device to the application (and back) Understand Receive livelock and NAPI 4

761 views • 48 slides
An Overview of the Bio-Networking Architecture Jun Suzuki, Ph.D. jsuzuki@ics.uci.edu

An Overview of the Bio-Networking Architecture Jun Suzuki, Ph.D. jsuzuki@ics.uci.edu

An Overview of the Bio-Networking Architecture Jun Suzuki, Ph.D. jsuzuki@ics.uci.edu www.ics.uci.edu/~jsuzuki/ netresearch.ics.uci.edu/bionet/ Dept. of Information and Computer Science University of California, Irvine Overview

658 views • 39 slides
Social Networking (A Summary) Presented by Gerald Bauer JB Systems, LLC Networking In The

Social Networking (A Summary) Presented by Gerald Bauer JB Systems, LLC Networking In The

Social Networking (A Summary) Presented by Gerald Bauer JB Systems, LLC Networking In The Digital Age Welcome Overview: History of Networking 7 Minutes of Facebook 7 Minutes of Linked In 7 Minutes of Blogging 7 Minutes of Q&A

310 views • 30 slides
NAMED DATA NETWORKING (NDN) Named Data Networking NDN BRIEF HISTORY When the Networking was

NAMED DATA NETWORKING (NDN) Named Data Networking NDN BRIEF HISTORY When the Networking was

NAMED DATA NETWORKING (NDN) Named Data Networking NDN BRIEF HISTORY When the Networking was developed in the 60s and 70s Networking was mainly used for resource sharing. IP was the effective communication protocol in place.

484 views • 29 slides
NETWORKING ATTACKS NETWORKING ATTACKS NOTICES Lab #2 extended to Feb. 17 @ 23:59 HW #3

NETWORKING ATTACKS NETWORKING ATTACKS NOTICES Lab #2 extended to Feb. 17 @ 23:59 HW #3

CMPS122: COMPUTER SECURITY NETWORKING ATTACKS NETWORKING ATTACKS NOTICES Lab #2 extended to Feb. 17 @ 23:59 HW #3 due tonight NETWORKING ATTACKS LAST TIME TCP/IP networking stack Physical layer Data link layer Network

1.1k views • 61 slides
Networking 192.168.1. 101 By: Vince Disclaimer I am NOT a Networking expert you might ask

Networking 192.168.1. 101 By: Vince Disclaimer I am NOT a Networking expert you might ask

Networking 192.168.1. 101 By: Vince Disclaimer I am NOT a Networking expert you might ask questions that I dont know the answer to Networking is hard to teach but I know how to do your homeworks so that counts for something,

780 views • 52 slides
CS683 - Security and Privacy: Reviewing Computer Networking (2/2) Karim Eldefrawy

CS683 - Security and Privacy: Reviewing Computer Networking (2/2) Karim Eldefrawy

CS683 - Security and Privacy: Reviewing Computer Networking (2/2) Karim Eldefrawy keldefrawy@usfca.edu Universit of San Francisco Overview of Networking, TCP/IP Stack, ARP, IP 1 Networking Concepts Protocol Architecture (Stack or Suite)

1.59k views • 57 slides
Computer Networking NETWORKING Computer Networking Computer network is like a phone system

Computer Networking NETWORKING Computer Networking Computer network is like a phone system

Computer Networking NETWORKING Computer Networking Computer network is like a phone system for computers, data call Basic outline is surprisingly simple, complex details Worth knowing .. using all the time The details of

424 views • 6 slides
Multimedia Communications @CS.NCTU Lecture 1: Networking Overview Instructor: Kate Ching-Ju Lin (

Multimedia Communications @CS.NCTU Lecture 1: Networking Overview Instructor: Kate Ching-Ju Lin (

Multimedia Communications @CS.NCTU Lecture 1: Networking Overview Instructor: Kate Ching-Ju Lin ( ) Slides modified from Computer Networking: A Top-Down Approach 6th Edition Outline Whats the Internet? Whats a

1.19k views • 71 slides
Networking Tapping the Hidden Job Market n How are jobs

Networking Tapping the Hidden Job Market n How are jobs

Networking Tapping the Hidden Job Market n How are jobs found? n Networking Tools n Networking Guidelines n Networking Process n Networking Mee?ngs 1

576 views • 22 slides
Networking Patrick Cardwell James Lowrey Blaine Morbitzer Overview Transmission protocol

Networking Patrick Cardwell James Lowrey Blaine Morbitzer Overview Transmission protocol

Networking Patrick Cardwell James Lowrey Blaine Morbitzer Overview Transmission protocol UDP, TCP Game Networking Architecture Server/Client Interactions Client-side prediction, Interpolation, Lag Compensation

606 views • 39 slides
Networking Fundamentals 2 Lab Schedule Activities Assignments Due This Week Lab 7

Networking Fundamentals 2 Lab Schedule Activities Assignments Due This Week Lab 7

Computer Systems and Networks ECPE 170 Jeff Shafer University of the Pacific Networking Fundamentals 2 Lab Schedule Activities Assignments Due This Week Lab 7 Due by Mar 19 th 5:00am Python introduction

748 views • 31 slides
Integrating Existing IoT systems: LA smart parking use case By Georgios Bouloukakis

Integrating Existing IoT systems: LA smart parking use case By Georgios Bouloukakis

Integrating Existing IoT systems: LA smart parking use case By Georgios Bouloukakis boulouk@gmail.com Joint work with: Pierre-Guillaume Raverdy, Patient Ntumba, Nikolaos Georgantas & Valerie Issarny Feb 2020, Los Angeles City Hall

457 views • 22 slides
The Application Layer: email & SMTP Smith College, CSC 249 Feb 1, 2018 4-1 Chapter 2:

The Application Layer: email & SMTP Smith College, CSC 249 Feb 1, 2018 4-1 Chapter 2:

The Application Layer: email & SMTP Smith College, CSC 249 Feb 1, 2018 4-1 Chapter 2: Application layer q 2.1 Principles of q 2.6 P2P file sharing network applications q 2.7 Socket programming q 2.2 Web and HTTP with TCP q 2.3 FTP q 2.8

500 views • 12 slides
1 Creating a network app application transport network data link write programs that

1 Creating a network app application transport network data link write programs that

Last time Mobile network Internet overview Global ISP whats a protocol? network edge, core, access network Home network Regional ISP Regional ISP packet-switching versus k t it hi circuit-switching Internet/ISP

524 views • 20 slides
Application Layer Hailiang Zhao @ ZJU.CS.CCNT http://hliangzhao.me This slide is a reminder for

Application Layer Hailiang Zhao @ ZJU.CS.CCNT http://hliangzhao.me This slide is a reminder for

Application Layer Hailiang Zhao @ ZJU.CS.CCNT http://hliangzhao.me This slide is a reminder for chapter 2 of the book Computer Networking: A Top-Down Approach . Principles of Network Applications Network application development is writing

779 views • 38 slides
CS101 Lecture 7: Internetworking: Internet Protocol, IP Addresses, Routing, DNS Aaron Stevens 4

CS101 Lecture 7: Internetworking: Internet Protocol, IP Addresses, Routing, DNS Aaron Stevens 4

CS101 Lecture 7: Internetworking: Internet Protocol, IP Addresses, Routing, DNS Aaron Stevens 4 February 2010 Some images courtesy Wikimedia Commons 1 What Youll Learn Today What does Internet Protocol actually do? What is an IP

764 views • 25 slides
Transport Protocols End-to-End Protocols Convert host-to-host packet delivery service into a

Transport Protocols End-to-End Protocols Convert host-to-host packet delivery service into a

Transport Protocols End-to-End Protocols Convert host-to-host packet delivery service into a process-to-process communication channel Demultiplexing: Multiple applications can share the Kameswari Chebrolu network Dept. of Electrical

211 views • 7 slides
Transport Protocols in the Internet Overview & Essential of UDP Transport Layer Function

Transport Protocols in the Internet Overview & Essential of UDP Transport Layer Function

IN2140: Introduction to Operating Systems and Data Communication Transport Protocols in the Internet Overview & Essential of UDP Transport Layer Function Transport layer tasks 5 5 Application Application 1. Addressing Transport

304 views • 13 slides

More recommend