Presentation is loading. Please wait.

Presentation is loading. Please wait.

Janos Project: FY 2001 Jay Lepreau Flux Research Group University of Utah June 5, 2001.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Janos Project: FY 2001 Jay Lepreau Flux Research Group University of Utah June 5, 2001."— Presentation transcript:

1 Janos Project: FY 2001 Jay Lepreau Flux Research Group University of Utah June 5, 2001

2 janos University of Utah June 5, 20012 The Main Players Pat Tullmann Godmar Back Mike Hibler Wilson Hsieh Rob Ricci Tim Stack

3 janos University of Utah June 5, 20013 Outline Java OS Work Moab / NodeOS API work Team 3 Demo ANTS EE A Killer Application?! Failures, Achievements

4 janos University of Utah June 5, 20014 Janos Project Goals Resource Control & security of a local node in an Active Network First-class, OS-style control over Java “applications” Separately useful components –NodeOS, JVM, EE, etc. Open Source

5 janos University of Utah June 5, 20015 Research Goals I Combine OS + Language –Merge OS principles and Java typesafety to create a real Java OS –Explore which features of Java apply in an OS context –Explore which OS features map appropriately into a Java OS

6 janos University of Utah June 5, 20016 Research Goals II Apply Java OS to the AN domain –Leverage AN domain’s constraints Can we safely expose low-level network aspects? Can safe code go fast?

7 janos University of Utah June 5, 20017 A “Java operating system” is... An enhanced JVM that provides OS functions to multiple Java “programs” within it Features: –Separation –Resource management –Sometimes: direct sharing Architectural abstractions taken from OS –User/kernel boundary, processes, etc. Mechanisms taken from garbage collection

8 janos University of Utah June 5, 20018 - Multiple apps in one JVM - One app per JVM in different OS processes Previous Options App 1 App 2 App 3 Base OS JVM App 1 App 2 App 3 JVM Base OS

9 janos University of Utah June 5, 20019 “Java Operating System” App 1 App 2 App 3 App 4 Java OS Base OS + Good separation + Good resource management + Allows some direct sharing Java OS

10 janos University of Utah June 5, 200110 Janos Architecture Hardware (Or Unix) JanosVM JanosVM: A JVM with resource management Moab Moab: An OSKit-based NodeOS ANTS2 EE AA

11 janos University of Utah June 5, 200111 Software Specifics Build NodeOS in C that exposes low-level network features : Moab –Optimized for a single, trusted EE Provide the NodeOS API in Java: Janos Java NodeOS –Works with JDK1.x or JanosVM Provide a JVM for building a Java OS: JanosVM Make ANTS multi-domain and resource-aware: ANTS2.0

12 janos University of Utah June 5, 200112 FY 2001 Progress Java OS Work Moab / NodeOS API work Team 3 Demo ANTS EE An Application! Failures, Achievements

13 janos University of Utah June 5, 200113 Java OS Work Ph.D. on Java Operating Systems –Godmar Back - June 12, 2001 Designed, built and released JanosVM –Evolution of KaffeOS to provide key building block for a Java OS Sun JSR-121 Expert Group –“Isolate” : first step in multiprocess support in Sun’s JDK –Utah representation

14 janos University of Utah June 5, 200114 JanosVM Virtual Machine for Java bytecodes –Usual JVM features: JIT, GC, etc. –Multiprocess support Designed as foundation for Java OS –Exports primitives to build efficient Java OS –Customized by trusted runtime JanosVM Custom JavaOS Runtime Java OS {

15 janos University of Utah June 5, 200115 JanosVM Virtual Machine for Java bytecodes –Usual JVM features: JIT, GC, etc. Designed as foundation for Java OS Exports primitives to build efficient, targeted Java OS JanosVM Java Nodeos + ANTS2.0 Janos {

16 janos University of Utah June 5, 200116 JanosVM Virtual Machine for Java bytecodes –Usual JVM features: JIT, GC, etc. Designed as foundation for Java OS Exports primitives to build efficient, targeted Java OS JanosVM “Isolate” support JSR-121 {

17 janos University of Utah June 5, 200117 FY 2001 Progress Java OS Work Moab / NodeOS API work Team 3 Demo ANTS EE An Application! Failures, Achievements

18 janos University of Utah June 5, 200118 Moab / NodeOS API Joint NodeOS paper Pluggable CPU & network schedulers Click in Moab: fine-grained control over cut-through channels More: –NodeOS API refinement, polling vs. interrupts, SNMP support, filesys support,...

19 janos University of Utah June 5, 200119 FY 2001 Progress Java OS Work Moab / NodeOS API work Team 3 Demo ANTS EE An Application! Failures, Achievements

20 janos University of Utah June 5, 200120 Team 3 Demo Built an IP router – in Java –on the Janos Java NodeOS bindings –on JanosVM –on Moab –on the bare hardware Demonstrated –CPU controls, network bandwidth controls, and memory controls over Java apps Inter-operated with 3 other projects

21 janos University of Utah June 5, 200121 FY 2001 Progress Java OS Work Moab / NodeOS API work Team 3 Demo ANTS EE An Application! Failures, Achievements

22 janos University of Utah June 5, 200122 ANTS EE Completed per-domain separation in ANTSR With UW, evolved and released ANTS2.0 from ANTSR and ANTS1.3, plus: –New security infrastructure –Improved ABONE / ANETD support

23 janos University of Utah June 5, 200123 FY 2001 Progress Java OS Work Moab / NodeOS API work Team 3 Demo ANTS EE Branching Out Tangible Goods Failures, Acheivements

24 janos University of Utah June 5, 200124 Branching Out emulab.net - Utah Network Testbed –200 machines, lots of tools –Real users: 70% dist sys, 30% networking –Developed / tested our Team 3 demo setup, all our AN experiments –Paper under review A killer application?!

25 janos University of Utah June 5, 200125 Quote “We had a little bit of a problem with applications.” - Sandy Murphy, 4 June 2001

26 janos University of Utah June 5, 200126 Active Protocols for Agile Censor-Resistant Networks

27 janos University of Utah June 5, 200127 Key Ideas Censor-resistant (p2p) publishing is a compelling and feasible application of active networking …through on-demand, rapid, decentralized, diversification of the hop- by-hop protocol (manually, by people) We prototyped this in Freenet

28 janos University of Utah June 5, 200128 Active Networking’s Biggest Problem Demand: no killer app Inherent problem, by definition! The space of AN protocols is interesting, not any given protocol But… a good match for censor- resistant networks

29 janos University of Utah June 5, 200129 Censor-Resistant Networks Goals –Make intentional deletion or denial of access infeasible or difficult –Often: Anonymity Usually: overlay network An example: Freenet

30 janos University of Utah June 5, 200130 Some Problems Facing CRNs CRN traffic may be identifiable –Static set of protocols a weakness Mere membership may be incriminating –Only identification may be necessary, not eavesdropping –Last link vulnerable: mercy of ISP Users on restricted networks cannot participate –But special techniques can get traffic through firewalls, proxies, etc.

31 janos University of Utah June 5, 200131 Agile Protocols Use active networking techniques for replacement of single-hop protocols Completely decentralized –Any node (person) can create a new protocol & pass to its peer –Rapid response time to censorship –Nodes can customize for their environment Unbounded set of protocols –Attacker cannot even know what percentage of set they have discovered

32 janos University of Utah June 5, 200132 Protocol Examples Disguise and tunnel, eg through SMTP, HTTP Port-hopping… randomly Port-smearing (~spread spectrum) Bounce thru 3rd host Steganography …even better in wireless domain: physical & link level

33 janos University of Utah June 5, 200133 What About Malicious Protocol Objects?

34 janos University of Utah June 5, 200134 Protecting Local Node’s Integrity, Privacy, and Availability Threat model like Java applet, but worse for privacy –node state: cache contents, neighbor list, IP addr, username, … –message itself Integrity and privacy: std type-safety and namespace isolation Resource attacks: resource-managing JVM [OSDI’00,...]

35 janos University of Utah June 5, 200135 Publishing-specific DoS Attacks Same general issues as malicious nodes Failure (total or intermittent) –Either malicious or unintentional –Heuristic approach: rate Protocol Objects Ratings based on success rates for requests Evaluate via loopback test harness –Ratings are node-local More attacks/responses in paper

36 janos University of Utah June 5, 200136 What About Bootstrapping? Shared by base Freenet system: must acquire initial {IP addr, port} out-of-band Now need {IP addr, byte code} Quantitative difference ==> qualitative change? Memory, piece of paper ==> floppy disk, email attachment, applet Conclusion: acceptable

37 janos University of Utah June 5, 200137 Our Implementation Prototype based on Freenet system Peers can exchange Java bytecode for new protocols Protocol usage can be asymmetric, can change on any message boundary Restricted namespace

38 janos University of Utah June 5, 200138 Four sample Protocol Objects ‘Classic’ Freenet protocol HTTPProtocol: Looks (vaguely) like HTTP TrickyProtocol: Negotiates port change after every message SpreadProtocol: Splits message on arbitrary byte boundaries, sends each chunk on a different port

39 janos University of Utah June 5, 200139 Reprise:AN’s Major Technical Challenges Performance: no problem –In Java already! –Overlay network: IP not my problem Security –Key: change local, keep global protocol –Global network: domain-specific, therefore tractable. –Local to node: tractable, based on recent research

40 janos University of Utah June 5, 200140 Agile Experiment: Conclusions AN techniques seem likely to improve the censor-resistance of such networks Feasible to implement in existing systems Lots still to do –Implement ratings, etc, etc –JanosVM + runtime, re-engineer base –Evaluate in the lab –Evaluate “in the wild” Lot of fun, lot of military relevance

41 janos University of Utah June 5, 200141 FY 2001 Progress Java OS Work Moab / NodeOS API work Team 3 Demo ANTS EE Tangible Goods Failures, Achievements

42 janos University of Utah June 5, 200142 Papers: FY 2001 Back et. al. Processes in KaffeOS: Isolation, Resource Management and Sharing in Java (OSDI 2000) Tullmann et. al. Janos: A Java-oriented OS for Active Network Nodes (IEEE JSAC Mar 2001) Peterson et. al. An OS Interface for Active Routers (IEEE JSAC Mar 2001) Ricci et. al. Active Protocols for Agile Censor-Resistant Networks (HotOS 2001)

43 janos University of Utah June 5, 200143 Software Releases: FY 2001 11 separate releases –2 OSKit versions –2 Moab versions –2 JanosVM versions –1 ANTS2.0 –2 Java NodeOS versions –1 ANTS CVS –1 Java NodeOS CVS

44 janos University of Utah June 5, 200144 Mistakes I Over-emphasis on strict hierarchy –Original nested process model –NodeOS mempools NodeOS/EE split –Makes a nearly impossible research challenge even harder Under-emphasis on applications

45 janos University of Utah June 5, 200145 Mistakes II Too much energy on software artifacts –==> Missed research opportunities ANTS? –Most aggressive AN model –Dated

46 janos University of Utah June 5, 200146 Mistakes III A-Flow -> Flow -> Domain Failure to keep dm in ITO!

47 janos University of Utah June 5, 200147 Achievements Four generations of Java OS’s –Culminated in generic JavaOS infrastructure –Java spec impact: JSR-121 “Isolate”,... Low-level networking that leverages type- safety –Safe zero-copy – Unoptimized Java IP forwarding is 40% speed of C (JNodeOS v. Moab)

48 janos University of Utah June 5, 200148 Questions? Where do I get Janos papers, software? –www.cs.utah.edu/flux/janoswww.cs.utah.edu/flux/janos How do I use the network testbed? –www.emulab.netwww.emulab.net

49 janos University of Utah June 5, 200149 END OF PRESENTATION

50 janos University of Utah June 5, 200150 Architecture Hardware (Or Unix) Moab JanosVM ANTSR JanosVM: A JVM with resource management Moab An OSKit-based NodeOS ANTSR EE AA

51 janos University of Utah June 5, 200151 Approach Re-fit existing AN infrastructure to multiprocess, resource-aware JVM Apply OS principles to Java language run- time –User/kernel boundary, processes, etc. –Construct a “multiprocess” JVM Build a NodeOS that exposes low-level network features

52 janos University of Utah June 5, 200152 Team 3 Demo First full Janos prototype to run Java on the bare hardware Illuminated many performance issues in our prototype

Download ppt "Janos Project: FY 2001 Jay Lepreau Flux Research Group University of Utah June 5, 2001."

Similar presentations

Operating Systems Components of OS

Operating Systems Components of OS
NetServ Dynamic in-network service deployment Henning Schulzrinne (Columbia University) Srinivasan Seetharaman (Georgia Tech) Volker Hilt (Bell Labs)

NetServ Dynamic in-network service deployment Henning Schulzrinne (Columbia University) Srinivasan Seetharaman (Georgia Tech) Volker Hilt (Bell Labs)
Generalized Multiprotocol Label Switching: An Overview of Signaling Enhancements and Recovery Techniques IEEE Communications Magazine July 2001.

Generalized Multiprotocol Label Switching: An Overview of Signaling Enhancements and Recovery Techniques IEEE Communications Magazine July 2001.
CS 443 Advanced OS Fabián E. Bustamante, Spring 2005 Resource Containers: A new Facility for Resource Management in Server Systems G. Banga, P. Druschel,

CS 443 Advanced OS Fabián E. Bustamante, Spring 2005 Resource Containers: A new Facility for Resource Management in Server Systems G. Banga, P. Druschel,
Department of Computer Science and Engineering University of Washington Brian N. Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, Marc E. Fiuczynski,

Department of Computer Science and Engineering University of Washington Brian N. Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, Marc E. Fiuczynski,
EXTENSIBILITY, SAFETY AND PERFORMANCE IN THE SPIN OPERATING SYSTEM B. Bershad, S. Savage, P. Pardyak, E. G. Sirer, D. Becker, M. Fiuczynski, C. Chambers,

EXTENSIBILITY, SAFETY AND PERFORMANCE IN THE SPIN OPERATING SYSTEM B. Bershad, S. Savage, P. Pardyak, E. G. Sirer, D. Becker, M. Fiuczynski, C. Chambers,
Extensibility, Safety and Performance in the SPIN Operating System Presented by Allen Kerr.

Extensibility, Safety and Performance in the SPIN Operating System Presented by Allen Kerr.
Janos A Java-oriented Active Network Operating System Jay Lepreau, Patrick Tullmann, Kristin Wright Wilson Hsieh, Godmar Back, many more... University.

Janos A Java-oriented Active Network Operating System Jay Lepreau, Patrick Tullmann, Kristin Wright Wilson Hsieh, Godmar Back, many more... University.
Extensible Networking Platform 1 1 - IWAN 2005 Extensible Network Configuration and Communication Framework Todd Sproull and John Lockwood

Extensible Networking Platform IWAN 2005 Extensible Network Configuration and Communication Framework Todd Sproull and John Lockwood
1 Intrusion Tolerance for NEST Bruno Dutertre, Steven Cheung SRI International NEST 2 Kickoff Meeting November 4, 2002.

1 Intrusion Tolerance for NEST Bruno Dutertre, Steven Cheung SRI International NEST 2 Kickoff Meeting November 4, 2002.
Building a Peer-to-Peer Anonymizing Network Layer Michael J. Freedman NYU Dept of Computer Science Public Design Workshop September 13,

Building a Peer-to-Peer Anonymizing Network Layer Michael J. Freedman NYU Dept of Computer Science Public Design Workshop September 13,
1 In VINI Veritas: Realistic and Controlled Network Experimentation Jennifer Rexford with Andy Bavier, Nick Feamster, Mark Huang, and Larry Peterson

1 In VINI Veritas: Realistic and Controlled Network Experimentation Jennifer Rexford with Andy Bavier, Nick Feamster, Mark Huang, and Larry Peterson
CS 268: Active Networks Ion Stoica May 6, 2002 (* Based on David Wheterall presentation from SOSP ’99)

CS 268: Active Networks Ion Stoica May 6, 2002 (* Based on David Wheterall presentation from SOSP ’99)
Extensibility, Safety and Performance in the SPIN Operating System Brian Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, Marc E. Fiuczynski,

Extensibility, Safety and Performance in the SPIN Operating System Brian Bershad, Stefan Savage, Przemyslaw Pardyak, Emin Gun Sirer, Marc E. Fiuczynski,
Department of Computer ScienceJanos Project Janos A Java-oriented Active Network Operating System Jay Lepreau, Patrick Tullmann, Kristin Wright Wilson.

Department of Computer ScienceJanos Project Janos A Java-oriented Active Network Operating System Jay Lepreau, Patrick Tullmann, Kristin Wright Wilson.
Internet Indirection Infrastructure Ion Stoica UC Berkeley.

Internet Indirection Infrastructure Ion Stoica UC Berkeley.
Active Messages: a Mechanism for Integrated Communication and Computation von Eicken et. al. Brian Kazian CS258 Spring 2008.

Active Messages: a Mechanism for Integrated Communication and Computation von Eicken et. al. Brian Kazian CS258 Spring 2008.
1 Bees: A Secure, Resource-Controlled, Java-Based Execution Environment Tim Stack Eric Eide Jay Lepreau University of Utah April 5, 2003.

1 Bees: A Secure, Resource-Controlled, Java-Based Execution Environment Tim Stack Eric Eide Jay Lepreau University of Utah April 5, 2003.
Rob Jaeger, University of Maryland, Department of Computer Science 1 Active Networking “ The active network provides a platform on which network services.

Rob Jaeger, University of Maryland, Department of Computer Science 1 Active Networking “ The active network provides a platform on which network services.
New Results in Fluke/Flask Jay Lepreau Flux Group University of Utah July 13, 1998.

New Results in Fluke/Flask Jay Lepreau Flux Group University of Utah July 13, 1998.

Similar presentations

Ads by Google