Presentation is loading. Please wait.

Presentation is loading. Please wait.

Kutscher / Ott / Bartsch 2007-05-23 1 Supporting Network Access and Service Location in Dynamic Environments Dirk Kutscher Jörg Ott Steffen Bartsch TNC.

Published bySylvia Simmons Modified over 8 years ago

Similar presentations

Presentation on theme: "Kutscher / Ott / Bartsch 2007-05-23 1 Supporting Network Access and Service Location in Dynamic Environments Dirk Kutscher Jörg Ott Steffen Bartsch TNC."— Presentation transcript:

1 Kutscher / Ott / Bartsch 2007-05-23 1 Supporting Network Access and Service Location in Dynamic Environments Dirk Kutscher Jörg Ott Steffen Bartsch TNC 2007 2007-05-23

2 Kutscher / Ott / Bartsch 2007-05-23 2 Trends  Service location and selection a major issue for WLAN service providers  Different use cases Information about general coverage, roaming possibilities and tariffs Facilitating automated access Providing information for diagnosis and maintenance  Existing ways for service location and selection insufficient for mobile users Fragmented information services (per provider) Inadequate solutions for automated access (Google Maps mesh-ups etc.)  no offline usage! Information often outdated

3 Kutscher / Ott / Bartsch 2007-05-23 3 Example: FON Community WLAN Approach  Web-based information service with Google Maps-based visualization  Informational only Information cannot be used for automated client device configuration  No relation to user’s current context Position, required services

4 Kutscher / Ott / Bartsch 2007-05-23 4 Selected Recent Developments  FON Connection Manager Locate and automatically connect to FON Hotspots (Symbian S60)  DeviceScape Centralized connectivity management approach Mobile clients access DeviceScape information database through DNS requests Providing WISP-specific information (how to log on) Mainly targeting automated log-on  iPass Hotspot Finder Offline hotspot finder for Windows XP, Vista Pre-downloadable maps Offline search based on different criteria

5 Kutscher / Ott / Bartsch 2007-05-23 5 Shortcomings  Many provider-specific solutions Not useful for general network service location  No structured update mechanisms Users have to manually update the application/database  Focusing on WLAN network access Other (related) services not covered VoIP access, multimedia resources etc.

6 Kutscher / Ott / Bartsch 2007-05-23 6 Service Maps: Main Concepts  Network Information Service for Heterogeneous networks Challenged environments Large scale deployment  Different take on network service location Receiver- and infrastructure-based filtering Accommodate different network architectures  Main concept Mobile nodes receive/request service information from different sources and construct network service map according to MN requirements Support offline usage Leverage locality of distribution networks (e.g., WLAN) and service scope

7 Kutscher / Ott / Bartsch 2007-05-23 7 Service Map Distribution Architecture

8 Kutscher / Ott / Bartsch 2007-05-23 8 Data Model

9 Kutscher / Ott / Bartsch 2007-05-23 9 Filtering and Aggregation  Aggregation E.g., provider-independent aggregators can combine Service Maps from multiple providers  Filtering Different types of filter operations Tag filter : specify service tags that have to be present in a service description Location filter : Filter services relevant to a specific region XPath filter : filter based on arbitrary XML content in service descriptions and refinements

10 Kutscher / Ott / Bartsch 2007-05-23 10 Service Map URNs  Motivation: Transport-independent distribution can generate multiple copies  Globally unique identification for service maps required  Uniform Resource Name (URN) as an identification mechanism for service maps, fragments and refinements  Comparison rules (subset predicate)  Resolution Mechanism based on Dynamic Delegation Discovery System (DDDS) Obtain specific URI through domain-specific translation rules urn:svcmap:example.org:20061028:campus-wlan#coord=53.10663,8.852487;range=100 urn:svcmap:example.org:20061028:campus-wlan?6453#refinement-2343 urn:svcmap:example.org:20061128:wlan#xpath=//tariff[@type='volume']

11 Kutscher / Ott / Bartsch 2007-05-23 11 Bootstrapping  Automating access to Service Map information in foreign networks Identify active Service Map service, i.e., in a foreign hotspot Obtain basic configuration information, e.g., Service Map URIs  Bootstrapping defined for different environments Broadcast/Multicast: FLUTE session on standardized multicast address; simpler variant (no FLUTE) as a fallback Unicast-only: IP-auto-configuration, resolving standardized bootstrapping URN through local DNS

12 Kutscher / Ott / Bartsch 2007-05-23 12 Security  Authenticity and integrity fundamental Service Map properties Have to preclude denial-of-service attacks by forged service information  Challenge: transceiver-model is based on changes to the information base by intermediaries Filtering and aggregation must still be possible Still, receivers cannot establish trust-relationship with every possible transceivers (scalability, operational issues)  Service Map approach: maintaining security properties of Service Maps fragments across the distribution chain Authenticated data structures based on Merkle hash trees Implemented with XML Digital Signatures

13 Kutscher / Ott / Bartsch 2007-05-23 13 Implementation  Infrastructure Service Map distribution servers  Client software Web-based client  Browser-based Service Map interface for online usage Mobile client  Offline client for smaller devices, mobile phones

14 Kutscher / Ott / Bartsch 2007-05-23 14

15 Kutscher / Ott / Bartsch 2007-05-23 15

16 Kutscher / Ott / Bartsch 2007-05-23 16 Experiences  Larger-scale campus WLAN application Setup, operations, measurements  Enhancing connectivity in mobile scenarios Employing service maps for scheduling network access Simulations

17 Kutscher / Ott / Bartsch 2007-05-23 17 Campus Scenario

18 Kutscher / Ott / Bartsch 2007-05-23 18  Bootstrapping in campus environment  Using FLUTE via IP-Multicast  Providing data on 400 APs  Reasonable bandwidths: 1kB – 64kB  Good performance: about 2 – 16s Campus Evaluation

19 Kutscher / Ott / Bartsch 2007-05-23 19 Mobile Scenario Evaluation  Mobile user connectivity  WLAN emulation  Either with acquiring data on APs in proximity or with sensing and probing  Relatively simple connectivity algorithm Still 10% increase in Internet connectivity

20 Kutscher / Ott / Bartsch 2007-05-23 20 Upload server UUUU HTTPS Access control + anonymization Incoming database Aggregator Data set matching + freshness handling Dynamic database Integrator Provider database Mapping reports to known hotspots Service Maps Service Map Sender Distribution UUUU Service Map Transport Contribution

21 Kutscher / Ott / Bartsch 2007-05-23 21 http://service-maps.net/spot-3faed Hotspot Displays Revisited

22 Kutscher / Ott / Bartsch 2007-05-23 22 Conclusions  Automating access to WLAN hotspots is a major challenge for making evolving WLAN-based applications usable  First developments are becoming eminent  But: no provider-independent approach available today  Network Service Maps as a general approach: Application- and provider-independent, supporting different transport services and organizational configurations  Recent results: Large-scale operation  Leveraging community contributions through contribution interface for user-observed hotspots

23 Kutscher / Ott / Bartsch 2007-05-23 23 Dirk Kutscher http://service-maps.net/

Download ppt "Kutscher / Ott / Bartsch 2007-05-23 1 Supporting Network Access and Service Location in Dynamic Environments Dirk Kutscher Jörg Ott Steffen Bartsch TNC."

Similar presentations

Dynamic Replica Placement for Scalable Content Delivery Yan Chen, Randy H. Katz, John D. Kubiatowicz {yanchen, randy, EECS Department.

Dynamic Replica Placement for Scalable Content Delivery Yan Chen, Randy H. Katz, John D. Kubiatowicz {yanchen, randy, EECS Department.
TU/e Service Discovery Mechanisms: two case studies / IC2002 Service Discovery Mechanisms: Two case studies Control point Device UPnP Terminal Domain Host.

TU/e Service Discovery Mechanisms: two case studies / IC2002 Service Discovery Mechanisms: Two case studies Control point Device UPnP Terminal Domain Host.
Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.

Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.
© 2012 IBM Corporation 1 IBM Cognos 10 family Analytics in the hands of everyone Address all your analytic needs Report, Analyze, Model, Plan and Collaborate.

© 2012 IBM Corporation 1 IBM Cognos 10 family Analytics in the hands of everyone Address all your analytic needs Report, Analyze, Model, Plan and Collaborate.
SCENARIO Suppose the presenter wants the students to access a file Supply Credenti -als Grant Access Is it efficient? How can we make this negotiation.

SCENARIO Suppose the presenter wants the students to access a file Supply Credenti -als Grant Access Is it efficient? How can we make this negotiation.
1 Towards Pervasive Connectivity in Mobile Computing Frank Siegemund European Microsoft Innovation Center November 2006.

1 Towards Pervasive Connectivity in Mobile Computing Frank Siegemund European Microsoft Innovation Center November 2006.
T-FLEX DOCs PLM, Document and Workflow Management.

T-FLEX DOCs PLM, Document and Workflow Management.
MobiShare: Sharing Context-Dependent Data & Services from Mobile Sources Efstratios Valavanis, Christopher Ververidis, Michalis Vazirgianis, George C.

MobiShare: Sharing Context-Dependent Data & Services from Mobile Sources Efstratios Valavanis, Christopher Ververidis, Michalis Vazirgianis, George C.
Rev A8/8/021 ABC Networks

Rev A8/8/021 ABC Networks
Windows Vista And Longhorn Server PKI Enhancements Avi Ben-Menahem Lead Program Manager Windows Security Microsoft Corporation.

Windows Vista And Longhorn Server PKI Enhancements Avi Ben-Menahem Lead Program Manager Windows Security Microsoft Corporation.
TNC 2003 Wireless Campus project Coletta Elisa Marchioro -

TNC 2003 Wireless Campus project Coletta Elisa Marchioro -
Rheeve: A Plug-n-Play Peer- to-Peer Computing Platform Wang-kee Poon and Jiannong Cao Department of Computing, The Hong Kong Polytechnic University ICDCSW.

Rheeve: A Plug-n-Play Peer- to-Peer Computing Platform Wang-kee Poon and Jiannong Cao Department of Computing, The Hong Kong Polytechnic University ICDCSW.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 1: Introduction to Windows Server 2003.
IPassConnect for Symbian 1.0 August 2006. 2 Agenda Overview of iPassConnect for Symbian 1.0 Features and Benefits Screenshots Supported Devices Connecting.

IPassConnect for Symbian 1.0 August Agenda Overview of iPassConnect for Symbian 1.0 Features and Benefits Screenshots Supported Devices Connecting.
CS 268: Project Suggestions Ion Stoica January 23, 2006.

CS 268: Project Suggestions Ion Stoica January 23, 2006.
 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.

 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.
CORDRA Philip V.W. Dodds March 2004. The “Problem Space” The SCORM framework specifies how to develop and deploy content objects that can be shared and.

CORDRA Philip V.W. Dodds March The “Problem Space” The SCORM framework specifies how to develop and deploy content objects that can be shared and.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 1: Introduction to Windows Server 2003.
A centralized system.  Active Directory is Microsoft's trademarked directory service, an integral part of the Windows architecture. Like other directory.

A centralized system.  Active Directory is Microsoft's trademarked directory service, an integral part of the Windows architecture. Like other directory.
1 Enabling Secure Internet Access with ISA Server.

1 Enabling Secure Internet Access with ISA Server.

Similar presentations

Ads by Google