Presentation is loading. Please wait.

Presentation is loading. Please wait.

Networking Named Content

Published byChad Goodwin Modified over 8 years ago

Similar presentations

Presentation on theme: "Networking Named Content"— Presentation transcript:

1 Networking Named Content
Van Jacobson, Diana K. Smetters, James D. Thornton, Michael F. Plass, Nicholas H. Briggs, Rebecca L. Braynard CoNEXT 2009 Presented by Ye Tian for Course CS05112

2 Overview Motivation and Introduction CCN Node Model Transport Routing
Content-based Security Evaluation Review

3 Motivation Network use has evolved since IP was designed
Usage of the Internet is in terms of what not where Issues: Availability: awkward, pre-planned, application-specific mechanisms are required. Example: P2P, CDN. Security: Trust in content is easily misplaced, relying on untrustworthy location and connection information. Location-dependence: Mapping content to host locations complicates configuration as well as implementation. Attack DNS.

4 Motivation Evolutionary approaches: IPv6 IPSec Mobile IP DiffServ DHT

5 Motivation: IPv6 IPv6 was born in 1995 after long work
There are over 30 IPv6-related RFCs The claimed improvements in IPv6 are: Large 128-bit address space Stateless address auto-configuration Multicast support Mandatory network layer security (IPSEC) Simplified header processing by routers Efficient mobility (no triangular routing) Extensibility (extension headers) Jumbo packets (up to 4 GB)

6 Motivation: IPv6 Major operating systems and many ISPs support IPv6
The use of IPv6 is slowly increasing in Europe and North America but more rapidly in Asia In China, CERNET 2 runs IPv6, interconnecting 25 points of presence in 20 cities with 2.5 and 10 Gbps links IPv6 really only solves the exhaustion of Internet address space

7 Motivation: IPSec IPSEC is the IP-layer security solution of the Internet to be used with IPv4 and IPv6 Authentication Header (AH) only protects the integrity of an IP packet Encapsulating Security Payload (ESP) also ensures confidentiality of the data IPSEC works within a Security Association (SA) set up between two IP addresses ISAKMP (Internet Security Association and Key Management Protocol) is a very complicated framework for SA mgmt

8 Motivation: Mobile IP Basic concepts: Problems: Mobile Node (MN)
Correspondent Node (CN) Home Agent (HA) Foreign Agent (FA) Care-of-Address (CoA) Problems: Firewalls and ingress filtering Triangular routing

9 Motivation: DiffServ Differentiated Services (DiffServ, RFC 2474) redefines the ToS octet of the IPv4 packet or Traffic Class octet of IPv6 as DS The first 6 bits of the DS field are used as Differentiated Services Code Point (DSCP) defining the Per-Hop Behavior of the packet DiffServ is stateless (like IP) and scales Service Profiles can be defined by ISP for customers and by transit providers for ISPs DiffServ is very easily deployable and could enable well working VoIP and real-time video Unfortunately, it is not used between operators

10 Motivation: Distributed Hash Table (DHT)
Distributed Hash Table (DHT) is a service for storing and retrieving key-value pairs There is a large number of peer machines Single machines leaving or joining the network have little effect on its operation DHTs can be used to build e.g. databases (new DNS), or content delivery systems BitTorrent is using a DHT The real scalability of DHT is still unproven All of the participating hosts need to be trusted (at least to some extent)

11 Introduction Host-Centric Networking
In 1960’s and 1970’s – resource sharing Computers, disk drives, tape drives, printers etc. needed to be shared This lead into a communication model with two machines – one using and one providing resources over the network IP packets with source and destination Most of the traffic is TCP connections

12 Introduction Content-Centric Networking (CCN)
In 2009 alone 500 exabytes (5 x 1020 B) of content created. Users are interested in what content – not where it is CCN – a communication architecture built on named data “Address” names content – not location Preserve the design decisions that make TCP/IP simple, robust and scalable

13 Introduction From IP to chunks of named content
Only layer 3 requires universal agreement

14 Overview Motivation CCN Node Model Transport Routing
Content-based Security Evaluation Review

15 CCN Node Model Two packet types: Interest and Data

16 CCN Node Model CCN node has 3 components: FIB, Content Store and PIT
FIB: Forwarding table, allows multiple output faces Content Store: Buffer, also caches Data packets PIT: Pending Interest Table Consumer broadcasts its Interest over all available connectivity Data is transmitted only in response to Interest and consumes that Interest Data satisfies an Interest if ContentName in the Interest is a prefix of that in the Data

17 CCN Node Model

18 CCN Node Model FIB allows a list of outgoing interfaces – multiple sources of data Content Store w/ LRU or LFU replacement PIT keeps track of Interest forwarded up-stream => Data can be sent downstream Interest packets are routed upstream – Data packets follow the same path down Each PIT entry is a “bread crumb” marking the path and is erased after it’s been used

19 CCN Node Model Processing an Interest:
Matching Data is found in the Content Store => send it and consume Interest Pending Interest in PIT => add this face to RequestingFaces list Use FIB to forward Interest on outgoing faces, add to PIT Processing Data: Data follows a chain if PIT entries back to the source Duplicate and unsolicited Data is discarded

20 Overview Motivation CCN Node Model Transport Routing
Content-based Security Evaluation Review

21 Transport CCN transport is designed to operate on unreliable packet delivery services Senders are stateless Receivers keep track of unsatisfied Interests and ask again after a time-out The receiver’s strategy layer is responsible for retransmission, selecting faces, limiting the number of unsatisfied Interests, priority One Interest retrieves at most one Data packet => flow balance

22 Transport: Flow Flow balance allows for efficient communication between machines with highly different speeds It is possible to overlap data and requests In CCN, all communication is local and flow balance is maintained over each hop This leads into end-to-end flow control without any end-to-end mechanisms

23 Transport: Naming CCN is based on hierarchical, aggregatable names at least partly meaningful to humans The name notation used is like URI

24 Transport: Naming An Interest can specify the content exactly
Content names can contain automatically generated endings used like sequence numbers The last part of the name is incremented for the next chunk (e.g. a video frame) The names form a tree which is traversed in preorder In this way, the receiver can ask for the next Data packet in his Interest packet

25 Overview Motivation CCN Node Model Transport Routing
Content-based Security Evaluation Review

26 Routing: Intra-Domain Routing
Like IPv4 and IPv6 addresses, CCN ContentNames are aggregateable and routed based on longest match However, ContentNames are of varying length and longer than IP addresses The TLV (Type Label Value) of OSPF or IS-IS can distribute CCN content prefixes Therefore, CCN Interest/Data forwarding can be built on existing infrastructure without any modification to the routers

27 Routing: Intra-Domain Routing
An example of intra-domain routing

28 Routing: Inter-Domain Routing
The current BGP version has the equivalent of the IGP TLV mechanism Through this mechanism, it is possible to learn which domains serve Interests in some prefix and what is the closest CCN-capable domain on the paths towards those domains Therefore, it is possible to deploy CCN in the existing BGP infrastructure

29 Overview Motivation CCN Node Model Transport Routing
Content-based Security Evaluation Review

30 Content-based Security
In CCN, the content itself (rather than its path) is protected One can retrieve the content from the closest source and validate it All content is digitally signed Signed info includes hash of the public key used for signing We still need some kind of a Public Key Infrastructure (PKI)

31 Content-based Security
Associating name spaces with public keys Key for parc.com authorizing that of user george, who then authorizes the key for his desktop computer.

32 Overview Motivation CCN Node Model Transport Routing
Content-based Security Evaluation Review

33 Evaluation The CCN architecture described has been implemented and evaluated Voice over CCN and Content Distribution were tested with small networks The results are interesting but don’t really tell us anything about the scalability of the design

34 Evaluation: Data Transfer
Download a HTML file Content transfer via CCN is always secure, yet the results show that it matches the performance of unsecured HTTP and substantially outperforms secure HTTPS.

35 Evaluation: Data Transfer
Transfer a 6MB file as a function of the window size (TCP) and number of outstanding Interests (CCN). Bulk data transfer efficiency of CCN is comparable to TCP but lower due to its larger header overhead.

36 Evaluation: Content Distribution
A source node connected over a 10 Mbps shared link to a cluster of 6 sink nodes all interconnected via 1 Gbps links. The machines were of various architectures (Intel, AMD, PowerPC G5) and operating systems (Mac OS X , FreeBSD 7.2, NetBSD 5.0.1, Linux ). The sinks simultaneously pulled a 6MB data file from the source. For the TCP tests this file was made available via an http server on the source and retrieved by the sinks using curl.

37 Evaluation: Content Distribution

38 Evaluation: Voice-over-CCN
Secure Voice over CCN was implemented using Linphone 3.0 and its performance evaluated Caller encodes SIP INVITE as CCN name and sends it as an interest On receipt of the INVITE, the callee generates a signed Data packet with the INVITE name as its name and the SIP response as its payload From the SIP messages, the parties derive paired name prefixes under which they write RTP packets

39 Evaluation: Voice-over-CCN

40 Discussion Merits of CCN Very understandable scheme
Shown to work also with streamed media Clever reuse of existing mechanisms Easy to implement based on current routing software Easy to deploy on existing routing protocols and IP networks Easy, human-readable naming scheme

41 Discussion Concerns: The simple hierarchical (URI-like) naming scheme is also a limitation Will CCN scale to billions of nodes? Flooding (send out through all available faces) Flow balance – an Interest for every Data How large can the FIB grow (soft state)? Data takes the same (possibly non-optimal) path as Interest Are the performance measurements made with only a couple of hosts convincing? Security architecture looks very conventional

42 The NDN Project One of four Future Internet Architecture projects funded by NSF PI: Prof. Lixia Zhang (UCLA) A summer school talk by Jacbson can be found at

43 Review Name some of evolutionary approaches for Internet development.
What is the major issue on evolutionary approach? What is the other way for developing the Internet? Three components of the CCN node, two types of packets in CCN. How users request contents? How CCN node handles CCN packets? How CCN name the content? URI-like, hierarchical names Names can be form a tree

Download ppt "Networking Named Content"

Similar presentations

Secure Mobile IP Communication

Secure Mobile IP Communication
Information-Centric Networks09c-1 Week 9 / Paper 3 VoCCN: Voice Over Content-Centric Networks –V. Jacobson, D. K. Smetters, N. H. Briggs, M. F. Plass,

Information-Centric Networks09c-1 Week 9 / Paper 3 VoCCN: Voice Over Content-Centric Networks –V. Jacobson, D. K. Smetters, N. H. Briggs, M. F. Plass,
2011-09-13 AK T-110.6120: Publish/Subscribe Internetworking 1 Evolution vs. Revolution Arto Karila Aalto-HIIT T-110.6120 – Special.

AK T : Publish/Subscribe Internetworking 1 Evolution vs. Revolution Arto Karila Aalto-HIIT T – Special.
CPSC 441 - Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-

CPSC Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-
Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.

Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.
Computer Networks20-1 Chapter 20. Network Layer: Internet Protocol 20.1 Internetworking 20.2 IPv4 20.3 IPv6.

Computer Networks20-1 Chapter 20. Network Layer: Internet Protocol 20.1 Internetworking 20.2 IPv IPv6.
IPv6 Victor T. Norman.

IPv6 Victor T. Norman.
1 Internet Protocol Version 6 (IPv6) What the caterpillar calls the end of the world, nature calls a butterfly. - Anonymous.

1 Internet Protocol Version 6 (IPv6) What the caterpillar calls the end of the world, nature calls a butterfly. - Anonymous.
Network Layer IPv6 Slides were original prepared by Dr. Tatsuya Suda.

Network Layer IPv6 Slides were original prepared by Dr. Tatsuya Suda.
IP Version 6 Next generation IP Prof. P Venkataram ECE Dept. IISc.

IP Version 6 Next generation IP Prof. P Venkataram ECE Dept. IISc.
IPv6 Network Security.

IPv6 Network Security.
1 Chapter 3 TCP and IP. Chapter 3 TCP and IP 2 Introduction Transmission Control Protocol (TCP) Transmission Control Protocol (TCP) User Datagram Protocol.

1 Chapter 3 TCP and IP. Chapter 3 TCP and IP 2 Introduction Transmission Control Protocol (TCP) Transmission Control Protocol (TCP) User Datagram Protocol.
IPv4 and IPv6 Mobility Support Using MPLS and MP-BGP draft-berzin-malis-mpls-mobility-00 Oleg Berzin, Andy Malis {oleg.berzin,

IPv4 and IPv6 Mobility Support Using MPLS and MP-BGP draft-berzin-malis-mpls-mobility-00 Oleg Berzin, Andy Malis {oleg.berzin,
Securing TCP/IP Chapter 6. Introduction to Transmission Control Protocol/Internet Protocol (TCP/IP) TCP/IP comprises a suite of four protocols The protocols.

Securing TCP/IP Chapter 6. Introduction to Transmission Control Protocol/Internet Protocol (TCP/IP) TCP/IP comprises a suite of four protocols The protocols.
1 A Course-End Conclusions and Future Studies Dr. Rocky K. C. Chang 28 November 2005.

1 A Course-End Conclusions and Future Studies Dr. Rocky K. C. Chang 28 November 2005.
CS335 Networking & Network Administration Tuesday, April 20, 2010.

CS335 Networking & Network Administration Tuesday, April 20, 2010.
K. Salah1 Security Protocols in the Internet IPSec.

K. Salah1 Security Protocols in the Internet IPSec.
Lecture slides prepared for “Business Data Communications”, 7/e, by William Stallings and Tom Case, Chapter 8 “TCP/IP”.

Lecture slides prepared for “Business Data Communications”, 7/e, by William Stallings and Tom Case, Chapter 8 “TCP/IP”.
CN2668 Routers and Switches Kemtis Kunanuraksapong MSIS with Distinction MCTS, MCDST, MCP, A+

CN2668 Routers and Switches Kemtis Kunanuraksapong MSIS with Distinction MCTS, MCDST, MCP, A+
1Group 07 IPv6 2 1.ET/06/6472 2.ET/06/6487 3.ET/06/6491 4.EE/06/6393 5.EE/06/6455 6.EE/06/6473 Group 07 IPv6.

1Group 07 IPv6 2 1.ET/06/ ET/06/ ET/06/ EE/06/ EE/06/ EE/06/6473 Group 07 IPv6.

Similar presentations

Ads by Google