Amir Chaudhry, profile picture
Uploaded byAmir Chaudhry
1,986 views

Signpost at FOCI 2013

The document discusses the challenges posed by centralized cloud-hosted services, such as data loss and service shutdowns, and proposes a solution using DNS to establish personal clouds for secure and efficient app deployment. It outlines architectural components, constraints around compatibility and connectivity, and emphasizes the importance of end-to-end connectivity which has been impacted by network address translation (NAT). The proposed system aims to enhance individual user representation on the internet while ensuring robust security and efficient inter-device communication.

Embed presentation

Download to read offline
Lost in the Edge: Finding Your Way with Signposts Charalampos Rotsos, Heidi Howard, David Sheets, Richard Mortier,† Anil Madhavapeddy, Amir Chaudhry, Jon Crowcroft http://anil.recoil.org/papers/2013-foci-slides.pdf University of Cambridge, UK † University of Nottingham, UK anil@recoil.org 13th August, 2013
Introduction Signposts Conclusions Challenge & Constraints Contents 1 Introduction Challenge & Constraints Building on DNS 2 Signposts Architecture Components 3 Conclusions Implications Questions
Introduction Signposts Conclusions Challenge & Constraints The Challenge Centralised cloud-hosted services are convenient but create risks: Loss of data and services due to service shutdown (whether for commercial or political reasons)
Introduction Signposts Conclusions Challenge & Constraints The Challenge Centralised cloud-hosted services are convenient but create risks: Loss of data and services due to service shutdown (whether for commercial or political reasons) Global passive observers recording all 1.6% traffic
Introduction Signposts Conclusions Challenge & Constraints The Challenge Centralised cloud-hosted services are convenient but create risks: Loss of data and services due to service shutdown (whether for commercial or political reasons) Global passive observers recording all 1.6% traffic Inefficient and inconvenient synchronisation in mobile and offline environments
Introduction Signposts Conclusions Challenge & Constraints The Challenge Centralised cloud-hosted services are convenient but create risks: Loss of data and services due to service shutdown (whether for commercial or political reasons) Global passive observers recording all 1.6% traffic Inefficient and inconvenient synchronisation in mobile and offline environments Our Approach Use DNS to enable personal clouds, making it easy to deploy apps that function securely and efficiently across our own device network, across the Internet edge.
Introduction Signposts Conclusions Challenge & Constraints Constraints Compatibility. Can’t require users to change all their apps. Security. Need to control access to our personal devices: requires authentication and confidentiality. Connectivity. Need to be able to interconnect devices whatever network is available.
Introduction Signposts Conclusions Challenge & Constraints Constraints Compatibility. Can’t require users to change all their apps. Security. Need to control access to our personal devices: requires authentication and confidentiality. Connectivity. Need to be able to interconnect devices whatever network is available. Data vs Orchestration What’s the minimal network infrastructure that we can deploy to represent individual users on the core Internet?
Introduction Signposts Conclusions Challenge & Constraints Regaining Connectivity Network Address Translation (NAT) killed end-to-end IP addressing 192.168.1.2 192.168.1.1 / 89.16.177.154 192.168.1.2 86.30.244.239 / 192.168.1.1 Packet filtering makes tunnel setup dynamic (Full-cone NAT? Is UDP blocked? IPSec?)
Introduction Signposts Conclusions Challenge & Constraints Regaining Connectivity Network Address Translation (NAT) killed end-to-end IP addressing 192.168.1.2 192.168.1.1 / 89.16.177.154 192.168.1.2 86.30.244.239 / 192.168.1.1 Packet filtering makes tunnel setup dynamic (Full-cone NAT? Is UDP blocked? IPSec?) Redirection and proxies (e.g., Wifi hotspots) require traversal
Introduction Signposts Conclusions Challenge & Constraints Regaining Connectivity Network Address Translation (NAT) killed end-to-end IP addressing 192.168.1.2 192.168.1.1 / 89.16.177.154 192.168.1.2 86.30.244.239 / 192.168.1.1 Packet filtering makes tunnel setup dynamic (Full-cone NAT? Is UDP blocked? IPSec?) Redirection and proxies (e.g., Wifi hotspots) require traversal Multipath is increasingly available (e.g., 3G + Wifi)
Introduction Signposts Conclusions Building on DNS Contents 1 Introduction Challenge & Constraints Building on DNS 2 Signposts Architecture Components 3 Conclusions Implications Questions
Introduction Signposts Conclusions Building on DNS DNS DNS is THE Internet naming standard: Supported in almost every embedded device. Naturally hierarchical and cacheable. Flexible and ”extensible”. Resolver infrastructure exists almost everywhere (including censorship).
Introduction Signposts Conclusions Building on DNS DNS Today # host recoil.org recoil.org has address 89.16.177.154 recoil.org mail is handled by 10 dark.recoil.org. recoil.org mail is handled by 20 mx-caprica.easydns.com.
Introduction Signposts Conclusions Building on DNS DNS Today # host recoil.org recoil.org has address 89.16.177.154 recoil.org mail is handled by 10 dark.recoil.org. recoil.org mail is handled by 20 mx-caprica.easydns.com. Why can’t we have stronger DNS bindings between edge devices? # host ipad.home.anil.recoil.org ipad.home.anil.recoil.org has address 192.168.1.19
Introduction Signposts Conclusions Building on DNS DNS Manipulation DNS is already manipulated: content networks differentiate results by the query source so the nearest CDN node can serve data Indeed, “DNS servers can play games. As long as they appear to deliver a syntactically correct response to every query, they can fiddle the semantics.” — RFC3234
Introduction Signposts Conclusions Building on DNS DNS Manipulation DNS is already manipulated: content networks differentiate results by the query source so the nearest CDN node can serve data Indeed, “DNS servers can play games. As long as they appear to deliver a syntactically correct response to every query, they can fiddle the semantics.” — RFC3234 Names for The Average Joe But there’s nowhere for individuals to easily host their own little name services online. Change this, and everything improves.
Introduction Signposts Conclusions Building on DNS DNS Security Authentication. DNSSEC provides a standard, deployed security model where identity chains are established by trusting the registrars or other trust anchors Confidentiality. DNSCurve adds confidentiality, repudiability, integrity, and authentication to name resolution through an Elliptic Curve Cryptographic tunnel; can trade compatibility against overhead, with 255-bit Curve25519 keys offering complexity equivalent to 3072-bit RSA
Introduction Signposts Conclusions Architecture Contents 1 Introduction Challenge & Constraints Building on DNS 2 Signposts Architecture Components 3 Conclusions Implications Questions
Introduction Signposts Conclusions Architecture Architecture DNSCurve IP,TCP, UDP, ... Signpost Device DNS Resolver Applications Signpost (home) gethostbyname() DynamicTunnels At the edge, devices interconnect using tunnels created in response to authenticated, confidential DNSCurve queries. Connections access-controlled via authenticated query source.
Introduction Signposts Conclusions Architecture Architecture DNSCurve IP,TCP, UDP, ... Signpost Device Edge DNS Resolver Applications Signpost (home) Signpost (laptop) Signpost (cloud) gethostbyname() DynamicTunnels At the edge, devices interconnect using tunnels created in response to authenticated, confidential DNSCurve queries. Connections access-controlled via authenticated query source.
Introduction Signposts Conclusions Architecture Architecture DNSSEC DNSCurve IP,TCP, UDP, ... Signpost Device Edge Internet Bob's Device Cloud DNS Resolver Applications Signpost (home) Signpost (laptop) Alice's Device Cloud Signpost (cloud) gethostbyname() DynamicTunnels At the edge, devices interconnect using tunnels created in response to authenticated, confidential DNSCurve queries. Connections access-controlled via authenticated query source.
Introduction Signposts Conclusions Components Contents 1 Introduction Challenge & Constraints Building on DNS 2 Signposts Architecture Components 3 Conclusions Implications Questions
Introduction Signposts Conclusions Components Active Edge Resolution Incremental, parallel resolution via 0 TTL responses containing multiple results.
Introduction Signposts Conclusions Components Active Edge Resolution Incremental, parallel resolution via 0 TTL responses containing multiple results. Bootstrap trusted public keys between devices via resurrecting duckling. No passwords during resolution.
Introduction Signposts Conclusions Components Active Edge Resolution Incremental, parallel resolution via 0 TTL responses containing multiple results. Bootstrap trusted public keys between devices via resurrecting duckling. No passwords during resolution. Degrade gracefully from P2P to personal cloud service to shared provider.
Introduction Signposts Conclusions Components Active Edge Resolution Incremental, parallel resolution via 0 TTL responses containing multiple results. Bootstrap trusted public keys between devices via resurrecting duckling. No passwords during resolution. Degrade gracefully from P2P to personal cloud service to shared provider. Resolution triggers tunnel establishment scripts; currently support (L2) Tuntap/SSH, OpenVPN, (L3) IPSec, (L4+) Privoxy/Tor via SOCKS
Introduction Signposts Conclusions Components Active Edge Resolution Incremental, parallel resolution via 0 TTL responses containing multiple results. Bootstrap trusted public keys between devices via resurrecting duckling. No passwords during resolution. Degrade gracefully from P2P to personal cloud service to shared provider. Resolution triggers tunnel establishment scripts; currently support (L2) Tuntap/SSH, OpenVPN, (L3) IPSec, (L4+) Privoxy/Tor via SOCKS Seamless operation with extra host support (e.g., OpenFlow)
Introduction Signposts Conclusions Components Identity Management Automatic, internal key management in a personal trust hierarchy simplifies hygiene. TSIG/SIG0 DNSSEC signatures used to demonstrate subnamespace authority. Manage keys for SSH, PGP, *Curve in parallel. Provides low-friction revocation, making rollover usable by mortals (?)
Introduction Signposts Conclusions Components Programming Model Currently: Sockets API decouples getaddrinfo(3) from connect(2), so less powerful. With Signposts: Applications bind names to flows in one call, separating connection establishment from data transfer, Signpost nodes select environmentally optimal routes via long-poll DNSCurve updates Signpost resolver proxies DNS on localhost, late-binding lookups only when traffic is sent (e.g., TCP SYN)
Introduction Signposts Conclusions Components Work-in-Progress Resolution. Looking to more efficient path establishment than “try everything at once” Identity. Automating key derivation & management Programming. Exploring details, e.g., need to patch OpenSSL, provide local OpenFlow switch; more in The Case for Reconfigurable I/O Channels, RESoLVE 2012 (http://anil.recoil.org/papers/) Implementation. May be easier to support applications that use sockets via lightweight VMs (e.g., http://openmirage.org with Message Switch, http://github.com/djs55/message-switch)
Introduction Signposts Conclusions Implications Contents 1 Introduction Challenge & Constraints Building on DNS 2 Signposts Architecture Components 3 Conclusions Implications Questions
Introduction Signposts Conclusions Implications Alternatives & Possibilities Signpost uses DNS as a device-facing interface for compatibility – but could support alternative mechanisms for upstream resolution: Perspectives (http://perspectives-project.org/) offers a P2P trust network Namecoin (http://namecoin.info/) provides decentralized naming but has economic issues. When widely deployed, a set of Signposts could help with: Tor. Constructing a mix zone, perhaps using Dustclounds (http://anil.recoil.org/papers/2010-iswp-dustclouds.pdf) Dissent (http://dedis.cs.yale.edu/2010/anon/), simplifying its use by Average Joe.
Introduction Signposts Conclusions Questions Contents 1 Introduction Challenge & Constraints Building on DNS 2 Signposts Architecture Components 3 Conclusions Implications Questions
Introduction Signposts Conclusions Questions Thank you! Questions? https://github.com/signposts https://github.com/mirage

More Related Content

PDF
DNSSEC Validation Tutorial
byAPNIC
 
PDF
DDS Security
byReal-Time Innovations (RTI)
 
PDF
Transition to ipv6 cgv6-edited
byFred Bovy
 
PPTX
Approaches for Mitigating Discovery Problems in Larger Systems
byReal-Time Innovations (RTI)
 
PDF
Context-Aware Configuration and Management of WiFi Direct Groups for Real Opp...
byMattia Campana
 
PPT
Introduction P2p
byDavide Carboni
 
PDF
RSA and RC4 Cryptosystem Performance Evaluation Using Image and Text
byYekini Nureni
 
PDF
50120140507006
byIAEME Publication
 
DNSSEC Validation Tutorial
byAPNIC
 
DDS Security
byReal-Time Innovations (RTI)
 
Transition to ipv6 cgv6-edited
byFred Bovy
 
Approaches for Mitigating Discovery Problems in Larger Systems
byReal-Time Innovations (RTI)
 
Context-Aware Configuration and Management of WiFi Direct Groups for Real Opp...
byMattia Campana
 
Introduction P2p
byDavide Carboni
 
RSA and RC4 Cryptosystem Performance Evaluation Using Image and Text
byYekini Nureni
 
50120140507006
byIAEME Publication
 

What's hot

PDF
zenoh: zero overhead pub/sub store/query compute
byAngelo Corsaro
 
PPT
Web Services Discovery for Devices
byJorgen Thelin
 
PDF
Hacking 05 2011
byFelipe Prado
 
PDF
Review on Protocols of Virtual Private Network
byIRJET Journal
 
PDF
IMPROVING IPV6 ADDRESSING TYPES AND SIZE
byIJCNCJournal
 
PDF
Image Cryptography using RSA Algorithm
byijtsrd
 
PPTX
eProsima RPC over DDS - Connext Conf London October 2015
byJaime Martin Losa
 
PDF
82 86
byEditor IJARCET
 
PDF
232 md5-considered-harmful-slides
byDan Kaminsky
 
DOCX
Profile_Prateek
byPrateek Mathur
 
PDF
Cisco discovery d homesb module 10 final exam - v.4 in english.
byigede tirtanata
 
PPTX
Access control in decentralized online social networks applying a policy hidi...
byIGEEKS TECHNOLOGIES
 
PDF
APAC-05 XMPP AccessGrid presentation
bySteve Smith
 
PDF
A1803020108
byIOSR Journals
 
PDF
How do Things talk? IoT Application Protocols 101
byChristian Götz
 
PPT
Pki by Steve Lamb
byInformation Security Awareness Group
 
PDF
G43053847
byIJERA Editor
 
PDF
IRJET- Data Transmission using RSA Algorithm
byIRJET Journal
 
PDF
Security analysis of fbdk block cipher for digital images
byeSAT Journals
 
zenoh: zero overhead pub/sub store/query compute
byAngelo Corsaro
 
Web Services Discovery for Devices
byJorgen Thelin
 
Hacking 05 2011
byFelipe Prado
 
Review on Protocols of Virtual Private Network
byIRJET Journal
 
IMPROVING IPV6 ADDRESSING TYPES AND SIZE
byIJCNCJournal
 
Image Cryptography using RSA Algorithm
byijtsrd
 
eProsima RPC over DDS - Connext Conf London October 2015
byJaime Martin Losa
 
82 86
byEditor IJARCET
 
232 md5-considered-harmful-slides
byDan Kaminsky
 
Profile_Prateek
byPrateek Mathur
 
Cisco discovery d homesb module 10 final exam - v.4 in english.
byigede tirtanata
 
Access control in decentralized online social networks applying a policy hidi...
byIGEEKS TECHNOLOGIES
 
APAC-05 XMPP AccessGrid presentation
bySteve Smith
 
A1803020108
byIOSR Journals
 
How do Things talk? IoT Application Protocols 101
byChristian Götz
 
Pki by Steve Lamb
byInformation Security Awareness Group
 
G43053847
byIJERA Editor
 
IRJET- Data Transmission using RSA Algorithm
byIRJET Journal
 
Security analysis of fbdk block cipher for digital images
byeSAT Journals
 

Similar to Signpost at FOCI 2013

PDF
Devops For Networking Steven Armstrong Armstrong Steven
bybosomsuaa
 
PDF
Complete Download DevOps for networking boost your organization's growth by i...
byraiyaalaiaya
 
PPT
Common Network Services
byŐŔaṉģ Zaib
 
PDF
packet traveling (pre cloud)
byiman darabi
 
PPTX
liaison-2019-09-30-itu-t-tsag-ietf-iab-ls-on-new-ip-shaping-future-network-at...
byMohammadSwerki2
 
PPTX
Icccn 1.0
byGary Berger
 
PDF
Building a Small Datacenter
byssuser4b98f0
 
PPTX
Connectivity, Communication and Network.pptx
bywesongamoses8174
 
PPT
08Mapping.ppt
byMalikNuman8
 
DOCX
Enterprise Data Center Networking (with citations)
byJonathan Williams
 
PDF
Signposts
byHeidi Howard
 
PDF
NZNOG 2020: DOH
byAPNIC
 
PDF
2016 06-10-ieee-sdn (1)
byICT PRISTINE
 
PDF
Fulltext02
byAichetou Elkhadar
 
PDF
OpenStack Summit Paris - Neutron & Nuage Networks in Private Cloud Environments
byJonas Vermeulen
 
PDF
Network Automation Journey, A systems engineer NetOps perspective
byWalid Shaari
 
PDF
OSCON 2019 | Time to Think Different
byNATS
 
PDF
TOGETHER: TOpology GEneration THrough HEuRistics
bySubin Mathew
 
PPT
emp-internet07.ppt
byjguuhxxxfp
 
PDF
Software Defined Infrastructure
byMark Burgess
 
Devops For Networking Steven Armstrong Armstrong Steven
bybosomsuaa
 
Complete Download DevOps for networking boost your organization's growth by i...
byraiyaalaiaya
 
Common Network Services
byŐŔaṉģ Zaib
 
packet traveling (pre cloud)
byiman darabi
 
liaison-2019-09-30-itu-t-tsag-ietf-iab-ls-on-new-ip-shaping-future-network-at...
byMohammadSwerki2
 
Icccn 1.0
byGary Berger
 
Building a Small Datacenter
byssuser4b98f0
 
Connectivity, Communication and Network.pptx
bywesongamoses8174
 
08Mapping.ppt
byMalikNuman8
 
Enterprise Data Center Networking (with citations)
byJonathan Williams
 
Signposts
byHeidi Howard
 
NZNOG 2020: DOH
byAPNIC
 
2016 06-10-ieee-sdn (1)
byICT PRISTINE
 
Fulltext02
byAichetou Elkhadar
 
OpenStack Summit Paris - Neutron & Nuage Networks in Private Cloud Environments
byJonas Vermeulen
 
Network Automation Journey, A systems engineer NetOps perspective
byWalid Shaari
 
OSCON 2019 | Time to Think Different
byNATS
 
TOGETHER: TOpology GEneration THrough HEuRistics
bySubin Mathew
 
emp-internet07.ppt
byjguuhxxxfp
 
Software Defined Infrastructure
byMark Burgess
 

Recently uploaded

PDF
Guided Substation Engineering with CoMPAS: Simplifying IEC 61850
byDanBrown980551
 
PDF
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
PDF
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
PDF
Unser Jahresrückblick – MarvelClient in 2025
bypanagenda
 
PDF
Vibe Coding vs. Spec-Driven Development [Free Meetup]
byHaim Michael
 
PDF
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
PDF
Generative AI in UiPath: Mastering the Generative Extractor for Intelligent D...
byDianaGray10
 
PDF
TrustArc Webinar - Assessing AI Risk with Confidence
byTrustArc
 
PDF
Session 1 - Solving Semi-Structured Documents with Document Understanding
byDianaGray10
 
PDF
Agentic Automation for Testers – A Hands-On Deep Dive
byUiPathCommunity
 
PDF
Accelerating Responsible AI Adoption in Public Sector and Private Organizations.
byYasir Naveed Riaz
 
PPTX
Combining Induction and Transduction for Abstract Reasoning.pptx
byallen578468
 
PPTX
RISE with SAP for Automotive - S4 HANA Value.pptx
byAmira Jemi
 
PDF
Top Cybersecurity Threats 2025 Guide by Sureshdas
byPrintersassist
 
PPTX
The Future of IT Service Management AI Automation & Beyond.pptx
byChetu
 
PPTX
Ethics in AI - Artificial Intelligence Fundamentals.pptx
byemenyiblessing
 
PDF
The Ultimate Guide to Problem Management Dashboards for IT Teams.pdf
byomnex systems
 
PDF
Innovative AI Solutions for Business Growth.pdf
byVox Works
 
PDF
AI Technology important knowledge ......
byutkarshj2007
 
PDF
8 LLM Surveys https://tinyurl.com/bdz8e6fp
byBob Marcus
 
Guided Substation Engineering with CoMPAS: Simplifying IEC 61850
byDanBrown980551
 
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
Unser Jahresrückblick – MarvelClient in 2025
bypanagenda
 
Vibe Coding vs. Spec-Driven Development [Free Meetup]
byHaim Michael
 
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
Generative AI in UiPath: Mastering the Generative Extractor for Intelligent D...
byDianaGray10
 
TrustArc Webinar - Assessing AI Risk with Confidence
byTrustArc
 
Session 1 - Solving Semi-Structured Documents with Document Understanding
byDianaGray10
 
Agentic Automation for Testers – A Hands-On Deep Dive
byUiPathCommunity
 
Accelerating Responsible AI Adoption in Public Sector and Private Organizations.
byYasir Naveed Riaz
 
Combining Induction and Transduction for Abstract Reasoning.pptx
byallen578468
 
RISE with SAP for Automotive - S4 HANA Value.pptx
byAmira Jemi
 
Top Cybersecurity Threats 2025 Guide by Sureshdas
byPrintersassist
 
The Future of IT Service Management AI Automation & Beyond.pptx
byChetu
 
Ethics in AI - Artificial Intelligence Fundamentals.pptx
byemenyiblessing
 
The Ultimate Guide to Problem Management Dashboards for IT Teams.pdf
byomnex systems
 
Innovative AI Solutions for Business Growth.pdf
byVox Works
 
AI Technology important knowledge ......
byutkarshj2007
 
8 LLM Surveys https://tinyurl.com/bdz8e6fp
byBob Marcus
 

Signpost at FOCI 2013

  • 1.
    Lost in theEdge: Finding Your Way with Signposts Charalampos Rotsos, Heidi Howard, David Sheets, Richard Mortier,† Anil Madhavapeddy, Amir Chaudhry, Jon Crowcroft http://anil.recoil.org/papers/2013-foci-slides.pdf University of Cambridge, UK † University of Nottingham, UK anil@recoil.org 13th August, 2013
  • 2.
    Introduction Signposts Conclusions Challenge& Constraints Contents 1 Introduction Challenge & Constraints Building on DNS 2 Signposts Architecture Components 3 Conclusions Implications Questions
  • 3.
    Introduction Signposts Conclusions Challenge& Constraints The Challenge Centralised cloud-hosted services are convenient but create risks: Loss of data and services due to service shutdown (whether for commercial or political reasons)
  • 4.
    Introduction Signposts Conclusions Challenge& Constraints The Challenge Centralised cloud-hosted services are convenient but create risks: Loss of data and services due to service shutdown (whether for commercial or political reasons) Global passive observers recording all 1.6% traffic
  • 5.
    Introduction Signposts Conclusions Challenge& Constraints The Challenge Centralised cloud-hosted services are convenient but create risks: Loss of data and services due to service shutdown (whether for commercial or political reasons) Global passive observers recording all 1.6% traffic Inefficient and inconvenient synchronisation in mobile and offline environments
  • 6.
    Introduction Signposts Conclusions Challenge& Constraints The Challenge Centralised cloud-hosted services are convenient but create risks: Loss of data and services due to service shutdown (whether for commercial or political reasons) Global passive observers recording all 1.6% traffic Inefficient and inconvenient synchronisation in mobile and offline environments Our Approach Use DNS to enable personal clouds, making it easy to deploy apps that function securely and efficiently across our own device network, across the Internet edge.
  • 7.
    Introduction Signposts Conclusions Challenge& Constraints Constraints Compatibility. Can’t require users to change all their apps. Security. Need to control access to our personal devices: requires authentication and confidentiality. Connectivity. Need to be able to interconnect devices whatever network is available.
  • 8.
    Introduction Signposts Conclusions Challenge& Constraints Constraints Compatibility. Can’t require users to change all their apps. Security. Need to control access to our personal devices: requires authentication and confidentiality. Connectivity. Need to be able to interconnect devices whatever network is available. Data vs Orchestration What’s the minimal network infrastructure that we can deploy to represent individual users on the core Internet?
  • 9.
    Introduction Signposts Conclusions Challenge& Constraints Regaining Connectivity Network Address Translation (NAT) killed end-to-end IP addressing 192.168.1.2 192.168.1.1 / 89.16.177.154 192.168.1.2 86.30.244.239 / 192.168.1.1 Packet filtering makes tunnel setup dynamic (Full-cone NAT? Is UDP blocked? IPSec?)
  • 10.
    Introduction Signposts Conclusions Challenge& Constraints Regaining Connectivity Network Address Translation (NAT) killed end-to-end IP addressing 192.168.1.2 192.168.1.1 / 89.16.177.154 192.168.1.2 86.30.244.239 / 192.168.1.1 Packet filtering makes tunnel setup dynamic (Full-cone NAT? Is UDP blocked? IPSec?) Redirection and proxies (e.g., Wifi hotspots) require traversal
  • 11.
    Introduction Signposts Conclusions Challenge& Constraints Regaining Connectivity Network Address Translation (NAT) killed end-to-end IP addressing 192.168.1.2 192.168.1.1 / 89.16.177.154 192.168.1.2 86.30.244.239 / 192.168.1.1 Packet filtering makes tunnel setup dynamic (Full-cone NAT? Is UDP blocked? IPSec?) Redirection and proxies (e.g., Wifi hotspots) require traversal Multipath is increasingly available (e.g., 3G + Wifi)
  • 12.
    Introduction Signposts Conclusions Buildingon DNS Contents 1 Introduction Challenge & Constraints Building on DNS 2 Signposts Architecture Components 3 Conclusions Implications Questions
  • 13.
    Introduction Signposts Conclusions Buildingon DNS DNS DNS is THE Internet naming standard: Supported in almost every embedded device. Naturally hierarchical and cacheable. Flexible and ”extensible”. Resolver infrastructure exists almost everywhere (including censorship).
  • 14.
    Introduction Signposts Conclusions Buildingon DNS DNS Today # host recoil.org recoil.org has address 89.16.177.154 recoil.org mail is handled by 10 dark.recoil.org. recoil.org mail is handled by 20 mx-caprica.easydns.com.
  • 15.
    Introduction Signposts Conclusions Buildingon DNS DNS Today # host recoil.org recoil.org has address 89.16.177.154 recoil.org mail is handled by 10 dark.recoil.org. recoil.org mail is handled by 20 mx-caprica.easydns.com. Why can’t we have stronger DNS bindings between edge devices? # host ipad.home.anil.recoil.org ipad.home.anil.recoil.org has address 192.168.1.19
  • 16.
    Introduction Signposts Conclusions Buildingon DNS DNS Manipulation DNS is already manipulated: content networks differentiate results by the query source so the nearest CDN node can serve data Indeed, “DNS servers can play games. As long as they appear to deliver a syntactically correct response to every query, they can fiddle the semantics.” — RFC3234
  • 17.
    Introduction Signposts Conclusions Buildingon DNS DNS Manipulation DNS is already manipulated: content networks differentiate results by the query source so the nearest CDN node can serve data Indeed, “DNS servers can play games. As long as they appear to deliver a syntactically correct response to every query, they can fiddle the semantics.” — RFC3234 Names for The Average Joe But there’s nowhere for individuals to easily host their own little name services online. Change this, and everything improves.
  • 18.
    Introduction Signposts Conclusions Buildingon DNS DNS Security Authentication. DNSSEC provides a standard, deployed security model where identity chains are established by trusting the registrars or other trust anchors Confidentiality. DNSCurve adds confidentiality, repudiability, integrity, and authentication to name resolution through an Elliptic Curve Cryptographic tunnel; can trade compatibility against overhead, with 255-bit Curve25519 keys offering complexity equivalent to 3072-bit RSA
  • 19.
    Introduction Signposts Conclusions Architecture Contents 1Introduction Challenge & Constraints Building on DNS 2 Signposts Architecture Components 3 Conclusions Implications Questions
  • 20.
    Introduction Signposts Conclusions Architecture Architecture DNSCurve IP,TCP,UDP, ... Signpost Device DNS Resolver Applications Signpost (home) gethostbyname() DynamicTunnels At the edge, devices interconnect using tunnels created in response to authenticated, confidential DNSCurve queries. Connections access-controlled via authenticated query source.
  • 21.
    Introduction Signposts Conclusions Architecture Architecture DNSCurve IP,TCP,UDP, ... Signpost Device Edge DNS Resolver Applications Signpost (home) Signpost (laptop) Signpost (cloud) gethostbyname() DynamicTunnels At the edge, devices interconnect using tunnels created in response to authenticated, confidential DNSCurve queries. Connections access-controlled via authenticated query source.
  • 22.
    Introduction Signposts Conclusions Architecture Architecture DNSSEC DNSCurve IP,TCP,UDP, ... Signpost Device Edge Internet Bob's Device Cloud DNS Resolver Applications Signpost (home) Signpost (laptop) Alice's Device Cloud Signpost (cloud) gethostbyname() DynamicTunnels At the edge, devices interconnect using tunnels created in response to authenticated, confidential DNSCurve queries. Connections access-controlled via authenticated query source.
  • 23.
    Introduction Signposts Conclusions Components Contents 1Introduction Challenge & Constraints Building on DNS 2 Signposts Architecture Components 3 Conclusions Implications Questions
  • 24.
    Introduction Signposts Conclusions Components ActiveEdge Resolution Incremental, parallel resolution via 0 TTL responses containing multiple results.
  • 25.
    Introduction Signposts Conclusions Components ActiveEdge Resolution Incremental, parallel resolution via 0 TTL responses containing multiple results. Bootstrap trusted public keys between devices via resurrecting duckling. No passwords during resolution.
  • 26.
    Introduction Signposts Conclusions Components ActiveEdge Resolution Incremental, parallel resolution via 0 TTL responses containing multiple results. Bootstrap trusted public keys between devices via resurrecting duckling. No passwords during resolution. Degrade gracefully from P2P to personal cloud service to shared provider.
  • 27.
    Introduction Signposts Conclusions Components ActiveEdge Resolution Incremental, parallel resolution via 0 TTL responses containing multiple results. Bootstrap trusted public keys between devices via resurrecting duckling. No passwords during resolution. Degrade gracefully from P2P to personal cloud service to shared provider. Resolution triggers tunnel establishment scripts; currently support (L2) Tuntap/SSH, OpenVPN, (L3) IPSec, (L4+) Privoxy/Tor via SOCKS
  • 28.
    Introduction Signposts Conclusions Components ActiveEdge Resolution Incremental, parallel resolution via 0 TTL responses containing multiple results. Bootstrap trusted public keys between devices via resurrecting duckling. No passwords during resolution. Degrade gracefully from P2P to personal cloud service to shared provider. Resolution triggers tunnel establishment scripts; currently support (L2) Tuntap/SSH, OpenVPN, (L3) IPSec, (L4+) Privoxy/Tor via SOCKS Seamless operation with extra host support (e.g., OpenFlow)
  • 29.
    Introduction Signposts Conclusions Components IdentityManagement Automatic, internal key management in a personal trust hierarchy simplifies hygiene. TSIG/SIG0 DNSSEC signatures used to demonstrate subnamespace authority. Manage keys for SSH, PGP, *Curve in parallel. Provides low-friction revocation, making rollover usable by mortals (?)
  • 30.
    Introduction Signposts Conclusions Components ProgrammingModel Currently: Sockets API decouples getaddrinfo(3) from connect(2), so less powerful. With Signposts: Applications bind names to flows in one call, separating connection establishment from data transfer, Signpost nodes select environmentally optimal routes via long-poll DNSCurve updates Signpost resolver proxies DNS on localhost, late-binding lookups only when traffic is sent (e.g., TCP SYN)
  • 31.
    Introduction Signposts Conclusions Components Work-in-Progress Resolution.Looking to more efficient path establishment than “try everything at once” Identity. Automating key derivation & management Programming. Exploring details, e.g., need to patch OpenSSL, provide local OpenFlow switch; more in The Case for Reconfigurable I/O Channels, RESoLVE 2012 (http://anil.recoil.org/papers/) Implementation. May be easier to support applications that use sockets via lightweight VMs (e.g., http://openmirage.org with Message Switch, http://github.com/djs55/message-switch)
  • 32.
    Introduction Signposts Conclusions Implications Contents 1Introduction Challenge & Constraints Building on DNS 2 Signposts Architecture Components 3 Conclusions Implications Questions
  • 33.
    Introduction Signposts Conclusions Implications Alternatives& Possibilities Signpost uses DNS as a device-facing interface for compatibility – but could support alternative mechanisms for upstream resolution: Perspectives (http://perspectives-project.org/) offers a P2P trust network Namecoin (http://namecoin.info/) provides decentralized naming but has economic issues. When widely deployed, a set of Signposts could help with: Tor. Constructing a mix zone, perhaps using Dustclounds (http://anil.recoil.org/papers/2010-iswp-dustclouds.pdf) Dissent (http://dedis.cs.yale.edu/2010/anon/), simplifying its use by Average Joe.
  • 34.
    Introduction Signposts Conclusions Questions Contents 1Introduction Challenge & Constraints Building on DNS 2 Signposts Architecture Components 3 Conclusions Implications Questions
  • 35.
    Introduction Signposts Conclusions Questions Thankyou! Questions? https://github.com/signposts https://github.com/mirage