Presentation is loading. Please wait.

Presentation is loading. Please wait.

OASIS V2+ Next Generation Open Access Server CSD 2006 / Team 12.

Published byDonna Boone Modified over 8 years ago

Similar presentations

Presentation on theme: "OASIS V2+ Next Generation Open Access Server CSD 2006 / Team 12."— Presentation transcript:

1 OASIS V2+ Next Generation Open Access Server CSD 2006 / Team 12

2 Agenda Project background and context Goals and objectives Architecture Project status Future work Questions and answers

3 Background and context OASIS V.1 -KTH university – IT campus -Stockholm open Problems of V.1: -No encryption of data -Attacks on IP level

4 Goals and objectives To create a solution for multiple ISPs to share an access network, letting the end- users choose the ISP. To support wired and wireless connections of user-end. To create easy to implement solution for ISP administrators To provide a free and complete software package (open source package).

5 Architecture User interface - ISP UI - Operator UI Monitoring subsystem Authentication subsystem Management subsystem

6 User of ISP a VLAN 802.1x Free Radius Proxy server

7 Authentication Daemon Purpose: authenticate users´ login requests. Program continuously in listening state. A process is tied to every request; reused a number of times. Connection to database – able to read table with username/passwords in order to authenticate users. − Only component allowed to access that table.

8 Method of Authentication CRAM (challenge response authentication mode). Authentication Type used is a variation of ‘CRAM-MD5’ − It is in fact a modified CRAM-SHA256. Entire transfer of data is tunneled using SSL. Purpose: this method protects against passive attacks. − Dictionary and Replay attacks.

9 Mechanism Hello Challenge DigestC(Challenge)=DigestS(Challenge) Username+DigestC(challenge )

10 Policy Daemon This Daemon is related to the authentication daemon. Authentication leads to privileges(sharing resources). − Policy mandates authorization. Responsible for controlling clients´ access to resources according to their privileges. Like in our monitoring system the ISP’s have access to less information than the Network operator.

11 Monitoring protocol daemon (Monpd)  It acts as a middle man between client and functional daemons.  Unprivileged, listens to external requests.  Performs privileged operations by communicating with other daemons.  It receives XMLRPC queries from client and responds back after servicing the request. PHP (User Interface) Oasis2 Monpd Functional Daemons XMLRPC HTTPS ProcReq( ) Result( )

12 An Application Layer Protocol. Monitoring Management SNMP (Simple Network Management Protocol)

13 SNMP Based on Manager/Agent Model Consists of A manager An Agent A Database of Management Information Managed Objects Network Protocol

14 RRD Master RRDB Config DB OASIS Server SWITCHES GETBULK () SNMP Overview of OASIS v2+

15 Physical Layout/Grouping Root Node SubArea(1-2) AP (2B) Switch (1C) Area(2) Area(1) SubArea(1-1) Switch (1A) Switch (1B) AP (1A) AP 1(B) Switch (2A) AP (2A) AP (2C) AP (2D) Core Layer Distribution Layer Access Layer

16 SNMP features in OASIS v2+ Monitoring Interface Traffic Monitoring SNMP Enabled Devices Network Path Definition and link failure Off network Alert Notification Network Performance Reporting

17 RRDtool SNMP poller Graphical interface RRDb

18 RRDb – Round Robin Database SNMP poller Graphs on demand Time interval

19 Graph http://people.ee.ethz.ch/~oetiker/webtools/rrdtool/gallery/index.en.html

20 How we will implement RRDtool C API Cmd line RRDtool Perl scripts Redesigned C API C++ wrapper Today GoalFaster Scalable Perl scripts Cmd Line Compatibility layer

21 Project status Subsystem’s analysis finished Use cases − Sequence Diagrams are ready Framework (AFX) − Component Diagrams are ready Designing C++ wrapper for RRDtool − brand-new RRDtool C API

22 Project status Blueprint of user interface Authentication daemon − Basic functionality XMLRPC server design & implementation − Prototype available. XMLRPC client Initialization

23 Future work SNMP Poller – basic functionalities Complete Implementing of XMLRPC Server Complete Implementing of XMLRPC client Design of web page for Operator and ISP Policyd completion RRDtool++: implementing more functionality

24 Thanks for your attention! Questions? Email: csd2006-team12@csd.ssvl.kth.se Web Site: http://csd.ssvl.kth.se/~csd2006-team12/

Download ppt "OASIS V2+ Next Generation Open Access Server CSD 2006 / Team 12."

Similar presentations

Inter WISP WLAN roaming

Inter WISP WLAN roaming
Authentication.

Authentication.
Licia Florio EUNIS05, Manchester 1 Eduroam EUNIS Conference, June 22 2005 Licia Florio.

Licia Florio EUNIS05, Manchester 1 Eduroam EUNIS Conference, June Licia Florio.
Chapter 19: Network Management Business Data Communications, 5e.

Chapter 19: Network Management Business Data Communications, 5e.
June 2010 At A Glance The Room Alert Adapter software in conjunction with AVTECH Room Alert™ devices assists in monitoring computer room environments as.

June 2010 At A Glance The Room Alert Adapter software in conjunction with AVTECH Room Alert™ devices assists in monitoring computer room environments as.
CSD-Team 13 Oasis v.2. Introduction Oasis v.1 ISPs share access network Security Choice for end-users Compatible with legacy systems Problems with the.

CSD-Team 13 Oasis v.2. Introduction Oasis v.1 ISPs share access network Security Choice for end-users Compatible with legacy systems Problems with the.
Raphael Frank 20 October 2007 Authentication & Intrusion Prevention for Multi-Link Wireless Networks.

Raphael Frank 20 October 2007 Authentication & Intrusion Prevention for Multi-Link Wireless Networks.
Chapter 14 Wireless Attacks, Intrusion Monitoring and Policy

Chapter 14 Wireless Attacks, Intrusion Monitoring and Policy
Red Hat Linux Network. Red Hat Network Red Hat Network is the environment for system- level support and management of Red Hat Linux networks. Red Hat.

Red Hat Linux Network. Red Hat Network Red Hat Network is the environment for system- level support and management of Red Hat Linux networks. Red Hat.
Network Management Overview IACT 918 July 2004 Gene Awyzio SITACS University of Wollongong.

Network Management Overview IACT 918 July 2004 Gene Awyzio SITACS University of Wollongong.
Team: Maya Zalcberg Diana Attar Levona Hershtik Academic advisor: Prof. Ehud Gudes ADD Presentation.

Team: Maya Zalcberg Diana Attar Levona Hershtik Academic advisor: Prof. Ehud Gudes ADD Presentation.
© 2003, Cisco Systems, Inc. All rights reserved. FWL 1.0—5-1 111 © 2003, Cisco Systems, Inc. All rights reserved.

© 2003, Cisco Systems, Inc. All rights reserved. FWL 1.0— © 2003, Cisco Systems, Inc. All rights reserved.
WIRELESS SECURITY DEFENSE T-BONE & TONIC: ALY BOGHANI JOAN OLIVER MIKE PATRICK AMOL POTDAR May 30, 2009 05/30/2009.

WIRELESS SECURITY DEFENSE T-BONE & TONIC: ALY BOGHANI JOAN OLIVER MIKE PATRICK AMOL POTDAR May 30, /30/2009.
Multiple Tiers in Action

Multiple Tiers in Action
Chapter 16 AAA. AAA Components  AAA server –Authenticates users accessing a device or network –Authorizes user to perform specific activities –Performs.

Chapter 16 AAA. AAA Components  AAA server –Authenticates users accessing a device or network –Authorizes user to perform specific activities –Performs.
Data Networking Fundamentals Unit 7 7/2/2015 1 Modified by: Brierley.

Data Networking Fundamentals Unit 7 7/2/ Modified by: Brierley.
CCNA Exploration Semester 3 Modified by Profs. Ward and Cappellino

CCNA Exploration Semester 3 Modified by Profs. Ward and Cappellino
1 Network Management and SNMP  What is Network Management?  ISO Network Management Model (FCAPS)  Network Management Architecture  SNMPv1 and SNMPv2.

1 Network Management and SNMP  What is Network Management?  ISO Network Management Model (FCAPS)  Network Management Architecture  SNMPv1 and SNMPv2.
Technical solution presentation AVL System for Fire Brigades.

Technical solution presentation AVL System for Fire Brigades.
Remote Networking Architectures

Remote Networking Architectures

Similar presentations

Ads by Google