Barista is an event-centric network operating system (NOS) composition framework that allows for flexible instantiation of NOSs. It leverages both high parallelism and centralized control. Barista uses a component-based architecture where specialized components can be selected from a pool and composed together through dynamic event chaining. This allows operators to customize a NOS by picking components that provide needed functions like distributed scaling, security, or performance optimization. Events are used to communicate between components and can be selectively distributed based on policy. This enables capabilities like a distributed and secure NOS through composition of appropriate components.
The Need for Complex Analytics from Forwarding Pipelines Netronome
Nic Viljoen, Research Engineer, (including Tom Tofigh and Bryan Sullivan form AT&T) presentation from ONS 2016 at Santa Clara Convention Center in Santa Clara, CA.
Service Assurance Constructs for Achieving Network Transformation - Sunku Ran...Liz Warner
Transformation of network softwarization towards 5G inherently requires satisfying the requirements across a broad scope of verticals while maintaining Quality of Service (QoS) and Quality of Experience (QoE) criteria required to satisfy various network slice constraints. This session with hands-on lab introduces 3 key elements of service assurance – Monitoring, Presentation & provisioning layers and introduction to various cloud-native open source frameworks like Collectd, Influxdb, Grafana, Prometheus, Kafka and Platform for Network Data Analytics (PNDA).
Service Assurance Constructs for Achieving Network Transformation by Sunku Ra...Liz Warner
Transformation of network softwarization towards 5G inherently requires satisfying the requirements across a broad scope of verticals while maintaining Quality of Service (QoS) and Quality of Experience (QoE) criteria required to satisfy various network slice constraints. This session with hands-on lab introduces 3 key elements of service assurance – Monitoring, Presentation & provisioning layers and introduction to various cloud-native open source frameworks like Collectd, Influxdb, Grafana, Prometheus, Kafka and Platform for Network Data Analytics (PNDA).
The Need for Complex Analytics from Forwarding Pipelines Netronome
Nic Viljoen, Research Engineer, (including Tom Tofigh and Bryan Sullivan form AT&T) presentation from ONS 2016 at Santa Clara Convention Center in Santa Clara, CA.
Service Assurance Constructs for Achieving Network Transformation - Sunku Ran...Liz Warner
Transformation of network softwarization towards 5G inherently requires satisfying the requirements across a broad scope of verticals while maintaining Quality of Service (QoS) and Quality of Experience (QoE) criteria required to satisfy various network slice constraints. This session with hands-on lab introduces 3 key elements of service assurance – Monitoring, Presentation & provisioning layers and introduction to various cloud-native open source frameworks like Collectd, Influxdb, Grafana, Prometheus, Kafka and Platform for Network Data Analytics (PNDA).
Service Assurance Constructs for Achieving Network Transformation by Sunku Ra...Liz Warner
Transformation of network softwarization towards 5G inherently requires satisfying the requirements across a broad scope of verticals while maintaining Quality of Service (QoS) and Quality of Experience (QoE) criteria required to satisfy various network slice constraints. This session with hands-on lab introduces 3 key elements of service assurance – Monitoring, Presentation & provisioning layers and introduction to various cloud-native open source frameworks like Collectd, Influxdb, Grafana, Prometheus, Kafka and Platform for Network Data Analytics (PNDA).
Thomas Weise, Apache Apex PMC Member and Architect/Co-Founder, DataTorrent - ...Dataconomy Media
Thomas Weise, Apache Apex PMC Member and Architect/Co-Founder of DataTorrent presented "Streaming Analytics with Apache Apex" as part of the Big Data, Berlin v 8.0 meetup organised on the 14th of July 2016 at the WeWork headquarters.
Platform Observability and Infrastructure Closed LoopsLiz Warner
Service Assurance requires deeper tracking of infrastructure & service metrics, automated intervention of threshold violations & configuring the hardware resources & service levels based on service priority. Hear about a range of closed loop platform automation domains focusing on the real-time and near-real-time loops touching the platform. We discuss the integration of infrastructure telemetry, analytics, policy management interfaces & show a closed loop resiliency demo using Kubernetes to achieve zero touch Closed Loop Automation based service assurance solutions.
Why Serverless Flink Matters - Blazing Fast Stream Processing Made ScalableHostedbyConfluent
"The shift from batch processing to real-time processing of data is accelerating. Building real-time data applications is a necessity for many businesses as customers expect data to be always up-to-date and their apps to react to changes as they happen. However building and productizing real-time applications is often a complex and lengthy process due to limited serverless options to build such apps.
The introduction of AWS lambdas was a watershed moment in the world of cloud computing. It allowed developers to fire up “fully-managed” computer programs while paying for only when the program ran. Serverless compute comes with three big advantages - improved scalability, reduced cost, and increased flexibility. We’re bringing this same powerful paradigm to real time data processing with Flink in Confluent Cloud. Using this model, users can focus on writing business logic instead of managing nodes and other infrastructure.
Attendees will learn the benefits of serverless and see how it fits into the context of stream processing. We’ll then kick off a demo where we’ll focus on a real world production use case that uses Flink jobs to power an application with extremely low latency."
SDN Security: Two Sides of the Same CoinZivaro Inc
When it comes to Software Defined Networking (SDN) Security there are two sides of the story. This webinar addresses both sides – what security vulnerabilities exist in modern SDN technologies and how SDN technologies can create new security protections. Also included are use cases that SDN solutions can provide and the new applications of SDN that can secure modern enterprise and data center environments.
Presented by GTRI CTO, Scott Hogg, in a webinar on June 9, 2016. For more information, visit http://www.gtri.com/.
Using Kubernetes to make cellular data plans cheaper for 50M usersMirantis
Use case of Kubernetes based NFV infrastructure used in production to run an open source evolved packet core. Presented by Facebook Connectivity and Mirantis at KubeCon + CloudNativeCon Europe 2020.
In this presentation, you'll learn how to get started with bandwidth monitoring tool, NetFlow Analyzer.
Topics covered:
1. Configuring flow export from network devices
2. Traffic group
3. Application mapping
4. In-depth traffic visibility
5. Threshold-based alerting
DEVNET-1164 Using OpenDaylight for Notification Driven WorkflowsCisco DevNet
Implementing Data-Driven Networking has significant challenges if we are going to successfully acquire the wealth of data available, and subsequently distribute this data to intelligent systems. During this presentation Andrew will discuss some of the challenges the network operating model has faced in the past and how he believes OpenDaylight can bring about changes in the way we think about managing networks. In the talk Andrew will present some additions to MD-SAL, through which OpenDaylight can be used to acquire data from devices and distribute it to multiple systems
Software Innovations and Control Plane Evolution in the new SDN Transport Arc...Cisco Canada
Loukas Paraschis, Technology Solution Architecture at Cisco presents software innovation and control plane evolution in the new SDN transport at Cisco Connect Toronto 2015.
The process of streaming real-time data from a wide variety of machine data sources and entities can be very complex and unwieldy. Using an agent-based approach, Informatica has invented a new technique and open access product that makes this process much more user friendly and efficient, even when dealing with multiple environments such as Hadoop, Cassandra, Storm, Amazon Kinesis and Complex Event Processing.
Designing for Privacy in Amazon Web ServicesKrzysztofKkol1
Data privacy is one of the most critical issues that businesses face. This presentation shares insights on the principles and best practices for ensuring the resilience and security of your workload.
Drawing on a real-life project from the HR industry, the various challenges will be demonstrated: data protection, self-healing, business continuity, security, and transparency of data processing. This systematized approach allowed to create a secure AWS cloud infrastructure that not only met strict compliance rules but also exceeded the client's expectations.
We describe the deployment and use of Globus Compute for remote computation. This content is aimed at researchers who wish to compute on remote resources using a unified programming interface, as well as system administrators who will deploy and operate Globus Compute services on their research computing infrastructure.
More Related Content
Similar to Barista: Event-centric NOS Composition Framework for SDN
Thomas Weise, Apache Apex PMC Member and Architect/Co-Founder, DataTorrent - ...Dataconomy Media
Thomas Weise, Apache Apex PMC Member and Architect/Co-Founder of DataTorrent presented "Streaming Analytics with Apache Apex" as part of the Big Data, Berlin v 8.0 meetup organised on the 14th of July 2016 at the WeWork headquarters.
Platform Observability and Infrastructure Closed LoopsLiz Warner
Service Assurance requires deeper tracking of infrastructure & service metrics, automated intervention of threshold violations & configuring the hardware resources & service levels based on service priority. Hear about a range of closed loop platform automation domains focusing on the real-time and near-real-time loops touching the platform. We discuss the integration of infrastructure telemetry, analytics, policy management interfaces & show a closed loop resiliency demo using Kubernetes to achieve zero touch Closed Loop Automation based service assurance solutions.
Why Serverless Flink Matters - Blazing Fast Stream Processing Made ScalableHostedbyConfluent
"The shift from batch processing to real-time processing of data is accelerating. Building real-time data applications is a necessity for many businesses as customers expect data to be always up-to-date and their apps to react to changes as they happen. However building and productizing real-time applications is often a complex and lengthy process due to limited serverless options to build such apps.
The introduction of AWS lambdas was a watershed moment in the world of cloud computing. It allowed developers to fire up “fully-managed” computer programs while paying for only when the program ran. Serverless compute comes with three big advantages - improved scalability, reduced cost, and increased flexibility. We’re bringing this same powerful paradigm to real time data processing with Flink in Confluent Cloud. Using this model, users can focus on writing business logic instead of managing nodes and other infrastructure.
Attendees will learn the benefits of serverless and see how it fits into the context of stream processing. We’ll then kick off a demo where we’ll focus on a real world production use case that uses Flink jobs to power an application with extremely low latency."
SDN Security: Two Sides of the Same CoinZivaro Inc
When it comes to Software Defined Networking (SDN) Security there are two sides of the story. This webinar addresses both sides – what security vulnerabilities exist in modern SDN technologies and how SDN technologies can create new security protections. Also included are use cases that SDN solutions can provide and the new applications of SDN that can secure modern enterprise and data center environments.
Presented by GTRI CTO, Scott Hogg, in a webinar on June 9, 2016. For more information, visit http://www.gtri.com/.
Using Kubernetes to make cellular data plans cheaper for 50M usersMirantis
Use case of Kubernetes based NFV infrastructure used in production to run an open source evolved packet core. Presented by Facebook Connectivity and Mirantis at KubeCon + CloudNativeCon Europe 2020.
In this presentation, you'll learn how to get started with bandwidth monitoring tool, NetFlow Analyzer.
Topics covered:
1. Configuring flow export from network devices
2. Traffic group
3. Application mapping
4. In-depth traffic visibility
5. Threshold-based alerting
DEVNET-1164 Using OpenDaylight for Notification Driven WorkflowsCisco DevNet
Implementing Data-Driven Networking has significant challenges if we are going to successfully acquire the wealth of data available, and subsequently distribute this data to intelligent systems. During this presentation Andrew will discuss some of the challenges the network operating model has faced in the past and how he believes OpenDaylight can bring about changes in the way we think about managing networks. In the talk Andrew will present some additions to MD-SAL, through which OpenDaylight can be used to acquire data from devices and distribute it to multiple systems
Software Innovations and Control Plane Evolution in the new SDN Transport Arc...Cisco Canada
Loukas Paraschis, Technology Solution Architecture at Cisco presents software innovation and control plane evolution in the new SDN transport at Cisco Connect Toronto 2015.
The process of streaming real-time data from a wide variety of machine data sources and entities can be very complex and unwieldy. Using an agent-based approach, Informatica has invented a new technique and open access product that makes this process much more user friendly and efficient, even when dealing with multiple environments such as Hadoop, Cassandra, Storm, Amazon Kinesis and Complex Event Processing.
Designing for Privacy in Amazon Web ServicesKrzysztofKkol1
Data privacy is one of the most critical issues that businesses face. This presentation shares insights on the principles and best practices for ensuring the resilience and security of your workload.
Drawing on a real-life project from the HR industry, the various challenges will be demonstrated: data protection, self-healing, business continuity, security, and transparency of data processing. This systematized approach allowed to create a secure AWS cloud infrastructure that not only met strict compliance rules but also exceeded the client's expectations.
We describe the deployment and use of Globus Compute for remote computation. This content is aimed at researchers who wish to compute on remote resources using a unified programming interface, as well as system administrators who will deploy and operate Globus Compute services on their research computing infrastructure.
Exploring Innovations in Data Repository Solutions - Insights from the U.S. G...Globus
The U.S. Geological Survey (USGS) has made substantial investments in meeting evolving scientific, technical, and policy driven demands on storing, managing, and delivering data. As these demands continue to grow in complexity and scale, the USGS must continue to explore innovative solutions to improve its management, curation, sharing, delivering, and preservation approaches for large-scale research data. Supporting these needs, the USGS has partnered with the University of Chicago-Globus to research and develop advanced repository components and workflows leveraging its current investment in Globus. The primary outcome of this partnership includes the development of a prototype enterprise repository, driven by USGS Data Release requirements, through exploration and implementation of the entire suite of the Globus platform offerings, including Globus Flow, Globus Auth, Globus Transfer, and Globus Search. This presentation will provide insights into this research partnership, introduce the unique requirements and challenges being addressed and provide relevant project progress.
Large Language Models and the End of ProgrammingMatt Welsh
Talk by Matt Welsh at Craft Conference 2024 on the impact that Large Language Models will have on the future of software development. In this talk, I discuss the ways in which LLMs will impact the software industry, from replacing human software developers with AI, to replacing conventional software with models that perform reasoning, computation, and problem-solving.
Enhancing Research Orchestration Capabilities at ORNL.pdfGlobus
Cross-facility research orchestration comes with ever-changing constraints regarding the availability and suitability of various compute and data resources. In short, a flexible data and processing fabric is needed to enable the dynamic redirection of data and compute tasks throughout the lifecycle of an experiment. In this talk, we illustrate how we easily leveraged Globus services to instrument the ACE research testbed at the Oak Ridge Leadership Computing Facility with flexible data and task orchestration capabilities.
Understanding Globus Data Transfers with NetSageGlobus
NetSage is an open privacy-aware network measurement, analysis, and visualization service designed to help end-users visualize and reason about large data transfers. NetSage traditionally has used a combination of passive measurements, including SNMP and flow data, as well as active measurements, mainly perfSONAR, to provide longitudinal network performance data visualization. It has been deployed by dozens of networks world wide, and is supported domestically by the Engagement and Performance Operations Center (EPOC), NSF #2328479. We have recently expanded the NetSage data sources to include logs for Globus data transfers, following the same privacy-preserving approach as for Flow data. Using the logs for the Texas Advanced Computing Center (TACC) as an example, this talk will walk through several different example use cases that NetSage can answer, including: Who is using Globus to share data with my institution, and what kind of performance are they able to achieve? How many transfers has Globus supported for us? Which sites are we sharing the most data with, and how is that changing over time? How is my site using Globus to move data internally, and what kind of performance do we see for those transfers? What percentage of data transfers at my institution used Globus, and how did the overall data transfer performance compare to the Globus users?
Modern design is crucial in today's digital environment, and this is especially true for SharePoint intranets. The design of these digital hubs is critical to user engagement and productivity enhancement. They are the cornerstone of internal collaboration and interaction within enterprises.
Gamify Your Mind; The Secret Sauce to Delivering Success, Continuously Improv...Shahin Sheidaei
Games are powerful teaching tools, fostering hands-on engagement and fun. But they require careful consideration to succeed. Join me to explore factors in running and selecting games, ensuring they serve as effective teaching tools. Learn to maintain focus on learning objectives while playing, and how to measure the ROI of gaming in education. Discover strategies for pitching gaming to leadership. This session offers insights, tips, and examples for coaches, team leads, and enterprise leaders seeking to teach from simple to complex concepts.
Check out the webinar slides to learn more about how XfilesPro transforms Salesforce document management by leveraging its world-class applications. For more details, please connect with sales@xfilespro.com
If you want to watch the on-demand webinar, please click here: https://www.xfilespro.com/webinars/salesforce-document-management-2-0-smarter-faster-better/
Your Digital Assistant.
Making complex approach simple. Straightforward process saves time. No more waiting to connect with people that matter to you. Safety first is not a cliché - Securely protect information in cloud storage to prevent any third party from accessing data.
Would you rather make your visitors feel burdened by making them wait? Or choose VizMan for a stress-free experience? VizMan is an automated visitor management system that works for any industries not limited to factories, societies, government institutes, and warehouses. A new age contactless way of logging information of visitors, employees, packages, and vehicles. VizMan is a digital logbook so it deters unnecessary use of paper or space since there is no requirement of bundles of registers that is left to collect dust in a corner of a room. Visitor’s essential details, helps in scheduling meetings for visitors and employees, and assists in supervising the attendance of the employees. With VizMan, visitors don’t need to wait for hours in long queues. VizMan handles visitors with the value they deserve because we know time is important to you.
Feasible Features
One Subscription, Four Modules – Admin, Employee, Receptionist, and Gatekeeper ensures confidentiality and prevents data from being manipulated
User Friendly – can be easily used on Android, iOS, and Web Interface
Multiple Accessibility – Log in through any device from any place at any time
One app for all industries – a Visitor Management System that works for any organisation.
Stress-free Sign-up
Visitor is registered and checked-in by the Receptionist
Host gets a notification, where they opt to Approve the meeting
Host notifies the Receptionist of the end of the meeting
Visitor is checked-out by the Receptionist
Host enters notes and remarks of the meeting
Customizable Components
Scheduling Meetings – Host can invite visitors for meetings and also approve, reject and reschedule meetings
Single/Bulk invites – Invitations can be sent individually to a visitor or collectively to many visitors
VIP Visitors – Additional security of data for VIP visitors to avoid misuse of information
Courier Management – Keeps a check on deliveries like commodities being delivered in and out of establishments
Alerts & Notifications – Get notified on SMS, email, and application
Parking Management – Manage availability of parking space
Individual log-in – Every user has their own log-in id
Visitor/Meeting Analytics – Evaluate notes and remarks of the meeting stored in the system
Visitor Management System is a secure and user friendly database manager that records, filters, tracks the visitors to your organization.
"Secure Your Premises with VizMan (VMS) – Get It Now"
How Recreation Management Software Can Streamline Your Operations.pptxwottaspaceseo
Recreation management software streamlines operations by automating key tasks such as scheduling, registration, and payment processing, reducing manual workload and errors. It provides centralized management of facilities, classes, and events, ensuring efficient resource allocation and facility usage. The software offers user-friendly online portals for easy access to bookings and program information, enhancing customer experience. Real-time reporting and data analytics deliver insights into attendance and preferences, aiding in strategic decision-making. Additionally, effective communication tools keep participants and staff informed with timely updates. Overall, recreation management software enhances efficiency, improves service delivery, and boosts customer satisfaction.
Listen to the keynote address and hear about the latest developments from Rachana Ananthakrishnan and Ian Foster who review the updates to the Globus Platform and Service, and the relevance of Globus to the scientific community as an automation platform to accelerate scientific discovery.
Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...Globus
The Earth System Grid Federation (ESGF) is a global network of data servers that archives and distributes the planet’s largest collection of Earth system model output for thousands of climate and environmental scientists worldwide. Many of these petabyte-scale data archives are located in proximity to large high-performance computing (HPC) or cloud computing resources, but the primary workflow for data users consists of transferring data, and applying computations on a different system. As a part of the ESGF 2.0 US project (funded by the United States Department of Energy Office of Science), we developed pre-defined data workflows, which can be run on-demand, capable of applying many data reduction and data analysis to the large ESGF data archives, transferring only the resultant analysis (ex. visualizations, smaller data files). In this talk, we will showcase a few of these workflows, highlighting how Globus Flows can be used for petabyte-scale climate analysis.
SOCRadar Research Team: Latest Activities of IntelBrokerSOCRadar
The European Union Agency for Law Enforcement Cooperation (Europol) has suffered an alleged data breach after a notorious threat actor claimed to have exfiltrated data from its systems. Infamous data leaker IntelBroker posted on the even more infamous BreachForums hacking forum, saying that Europol suffered a data breach this month.
The alleged breach affected Europol agencies CCSE, EC3, Europol Platform for Experts, Law Enforcement Forum, and SIRIUS. Infiltration of these entities can disrupt ongoing investigations and compromise sensitive intelligence shared among international law enforcement agencies.
However, this is neither the first nor the last activity of IntekBroker. We have compiled for you what happened in the last few days. To track such hacker activities on dark web sources like hacker forums, private Telegram channels, and other hidden platforms where cyber threats often originate, you can check SOCRadar’s Dark Web News.
Stay Informed on Threat Actors’ Activity on the Dark Web with SOCRadar!
Multiple Your Crypto Portfolio with the Innovative Features of Advanced Crypt...Hivelance Technology
Cryptocurrency trading bots are computer programs designed to automate buying, selling, and managing cryptocurrency transactions. These bots utilize advanced algorithms and machine learning techniques to analyze market data, identify trading opportunities, and execute trades on behalf of their users. By automating the decision-making process, crypto trading bots can react to market changes faster than human traders
Hivelance, a leading provider of cryptocurrency trading bot development services, stands out as the premier choice for crypto traders and developers. Hivelance boasts a team of seasoned cryptocurrency experts and software engineers who deeply understand the crypto market and the latest trends in automated trading, Hivelance leverages the latest technologies and tools in the industry, including advanced AI and machine learning algorithms, to create highly efficient and adaptable crypto trading bots
TROUBLESHOOTING 9 TYPES OF OUTOFMEMORYERRORTier1 app
Even though at surface level ‘java.lang.OutOfMemoryError’ appears as one single error; underlyingly there are 9 types of OutOfMemoryError. Each type of OutOfMemoryError has different causes, diagnosis approaches and solutions. This session equips you with the knowledge, tools, and techniques needed to troubleshoot and conquer OutOfMemoryError in all its forms, ensuring smoother, more efficient Java applications.
How Does XfilesPro Ensure Security While Sharing Documents in Salesforce?XfilesPro
Worried about document security while sharing them in Salesforce? Fret no more! Here are the top-notch security standards XfilesPro upholds to ensure strong security for your Salesforce documents while sharing with internal or external people.
To learn more, read the blog: https://www.xfilespro.com/how-does-xfilespro-make-document-sharing-secure-and-seamless-in-salesforce/
Developing Distributed High-performance Computing Capabilities of an Open Sci...Globus
COVID-19 had an unprecedented impact on scientific collaboration. The pandemic and its broad response from the scientific community has forged new relationships among public health practitioners, mathematical modelers, and scientific computing specialists, while revealing critical gaps in exploiting advanced computing systems to support urgent decision making. Informed by our team’s work in applying high-performance computing in support of public health decision makers during the COVID-19 pandemic, we present how Globus technologies are enabling the development of an open science platform for robust epidemic analysis, with the goal of collaborative, secure, distributed, on-demand, and fast time-to-solution analyses to support public health.
Developing Distributed High-performance Computing Capabilities of an Open Sci...
Barista: Event-centric NOS Composition Framework for SDN
1. Barista
An Event-centric NOS Composition Framework
for Software-Defined Networks
Jaehyun Nam1, Hyeonseong Jo1, Yeonkeun Kim1,
Phillip Porras2, and Vinod Yegneswaran2, and Seungwon Shin1
KAIST1 and SRI International2
2. Flexible Network Configurations
§ Software-defined networks (SDNs)
• Programmable control layer à increasing network agility
・Unified integration and management of diverse functions
• Deployment in various network environments
・E.g., enterprise, data center and cloud networks
§ Network operating systems (NOSs)
• The strategic control center of SDNs
・Management of network switches
and high-level applications
・Global network programmability
2
3. NOS Characteristics
§ A variety of NOSs
• Academia à Onix, Beacon, Rosemary, SE-Floodlight
• Open-source projects à
• Industry à
§ Specialized NOSs in different dimensions
• Specific purposes to design NOSs, resulting in architectural differences
• Examples
・Beacon for high performance
・ONOS and OpenDaylight for distributed scalability
・SE-Floodlight for enhanced security
3
4. Architectural Composition Challenge
§ What if we need a scalable and secure NOS?
• ONOS with scalability à high parallelism
• SE-Floodlight with security à centralized control
§ Architectural Gap between NOS design principles
• SE-Floodlight à ONOS
・Hard to inspect control flows due to direct comm. between components
• ONOS à SE-Floodlight
・Hard to achieve high performance due to centralized inspection mechanisms
・E.g., role-based authorization, flow rule conflict resolution
4
5. Barista
§ A novel architecture
• Enable flexible and customizable instantiations of NOSs
• Leverage both high parallelism and centralized control
§ Key Contributions
• Flexible component synthesis
・Accelerate rapid prototyping and integration of new NOS functionalities
• Dynamic event control
・Enable fine-grained control over events delivered to NOS components
◦ A diverse set of event types
◦ Dynamic chaining among components
◦ Policy-based event distribution
5
6. Barista System Overview
Operator
Operator’s
component
3-rd party
component
Barista
component
Barista (base framework)
Barista
Component pool
Component
management
Event
management
Command-line
interface
Admin
Network
Network
Security
Security
Network
Management
Network
Base
<Dynamic component event chaining>
Deploy
Pick-and-choose
Event
Worker
Event
Worker
Event
Worker
<Event handler>
Seq Seq
Parallel
Seq
Seq
Seq
Parallel
Event A
Event B
Event C
Centralized control
High
parallelism
6
7. Component
§ Implementation of a specific NOS function
§ Two types of components
⁃ General component
・Embedded as a part of control flows (e.g., OpenFlow engine)
⁃ Autonomous component
・Designed to take independent actions (e.g., Resource management)
§ Component pool
⁃ A set of components supporting the functionalities of contemporary NOSs
・Distributed scaling, performance improvement, security, failure isolation, etc.
7
8. Event
§ Message delivery mechanism among components
§ No direct communication between components
• All communications through the event handler
§ Enable high composability
8
Component #2
Component #5
Component #3
Component #n
Event handler
Component #1
Component #4
Event #1
Event #2
Event #3
Event #4
9. Component Portability
§ Execute the same code of a component either inside or outside
of the framework
§ Internal components
• Higher performance
• Limited flexibility
§ External components
• High flexibility and availability
• Lower performance
Barista framework
Source code
of a component
Wrapper library Source code
of a component
Event pipelines Control channel
9
10. Diverse Event Classes
§ Three types of event classes
• (i) Notification events, (ii) inter-component events, and (iii) meta events
Event queue Worker pool
C #1 C #2 C #3
Data
Push
Worker #1
Worker #2
Worker #n
Event chain
Component
Pop
(i) Notification events
(ii) Inter-component
events
Look up a receiver
Check event types
Return results
to the trigger
Triggered events Reply data
Push
Event broker
Update results
Statistics Base framework Component
(De)activate
Collect Meta events
(iii) Meta events
10
11. Dynamic Component Event Chaining
§ Two ways to deliver events to components
• Sequential vs. parallel delivery
§ Event sequence formulation
• Ordering components based on their role and permissions
• Evaluating which component can be processed in parallel or sequential
Control flow
integrity Flow mgmt OFP engine
Rule conflict
check
Security / r-x Security / r-x Mgmt / r-- Base / r--
Data
Role = {admin | security | network | management | base}
Perm = {r (read) | w (update data) | x (cut off its control flow)}
Role / Permission
Control flow
integrity Flow mgmt
OFP engine
Rule conflict
check
Should be in sequential Okay to be in parallel
11
12. Policy-based Event Distribution
§ Event handling policy for deployed components
§ Operator-defined policy (ODP)
• Datapath ID, in-port, protocol, source and dst IP addresses and ports
Event queues
pi
pj
pk
…
Pop
Add an ODP to the target component
Policy table Component
Handler
Check
DPID
Inport
Proto
Src IP
Dst IP
Sport
Dport
DPID1 DPID2
Any
IPv4
Src IP1 Src IP2
Dst IP range 1
Any
Any
Skip if not matched
12
13. Event Distribution Across Instances
§ Cluster component for event distribution
• Store triggered events into a distributed storage
• Keep polling new events in the distributed storage
§ Maintenance of logical sequence of events
• Eventual consistency support
§ Operator-defined event sharing
• Which instance listens to what kinds of events
• E.g., sharing ONLY switch and topology events with other instances
13
14. Implementation
§ Base framework and a broad set of components
• 17K lines of C code and Python script
• Maria DB, Galera Cluster for event distribution across instances
§ Open-source project
• All implementation details will be provided at
https://github.com/sdx4u/barista
14
15. Distributed and Secure NOS
§ Need a distributed and secure NOS?
• No controller that currently supports scalability and security together
§ NOS composition with the Barista component pool
• Pick and choose the following components from the Barista pool
⁃ “cluster, role-based authorization, component access control, and flow rule conflict resolution”
0
200K
400K
600K
800K
1.0M
1.2M
1 2 4 8 16 32 64 128
Throughput
(responses/s)
The number of switches
Barista ONOS SE-Floodlight
15
16. Policy-based Event Distribution
§ Selective event distribution based on ODPs
⁃ Forwarding à DPID:!2 / DPID:2; Port:1,2; Proto:LLDP
⁃ VNF manger à DPID:2
SDN controller
<Current Approach> <New Approach>
Barista NOS
Forwarding
VNF manager Forwarding
VNF manager
SW#1 SW#3
SW#2
NF
NF NF
Unified network view Per-component network view
SW#2
NF
NF NF
SW#1 SW#3
SW#2
Selectively deliver events
Deliver all events
VNF events Non-VNF events
2
1 2
1
16
17. Dynamic Component Activation
§ Monitor event statistics in the event handler
⁃ Event volume, component level statistics regarding event consumption and production
⁃ Event distribution statistics
§ Dynamically trigger meta events defined by operators
based on event statistics
SDN controller
<Current Approach> <Barista Approach>
Barista NOS
DDoS preventer
(1-2) Run it all the time
Operator
DDoS attack
happens!
Event handler DDoS preventer
(0) Define a meta event
“Activate the DDoS preventer
if # of new flows > 1,000 pec second”
(2) Activate the DDoS
preventer by itself
(1) # of new flows > 1,000 per sec
(1-1) Activate the DDoS preventer in manual
17
18. Conclusion
§ Contemporary NOSs à specialized NOSs
• Optimized controller design across one or a few dimensions
• Fundamental differences in architectural trade-offs needed
to support competing demands
§ Barista, A framework to build customized NOSs
suited for a variety of requirements from network operators
• Support flexible composition of functionalities in contemporary NOSs
• Dynamic control of associated events for deployed functionalities
18
Github: https://github.com/sdx4u/barista