Current network devices enable connectivity between end systems with support for routing with a defined set of protocol software bundled with the hardware. These devices do not support user customization or the introduction of new software applications. Programmable network devices allow for the dynamic downloading of customized programs into network devices allowing for the introduction of new protocols and network services. The Oplet Runtime Environment (ORE) is a programmable network architecture built on a Gigabit Ethernet L3 Routing Switch to support downloadable services. Complementing the ORE, we introduce the JFWD API, a uniform, platform-independent portal through which application programmers control the forwarding engines of heterogeneous network nodes (e.g., switches and routers). Using the JFWD API, an ORE service has been implemented to classify and dynamically adjust packet handling on silicon-based network devices.
Enabling Active Networks Services on a Gigabit Routing SwitchTal Lavian Ph.D.
Current Active Networks (AN) research projects are mainly realized in software-based network systems since available hardware lacks networking programmability. This paper studies the deployment of AN services on the Accelar Gigabit Routing Switch. The Accelar is one of the Nortel Networks programmable networking products, and uses the ASIC technology to reach the high-speed forwarding capability. The Oplet Running Environment (ORE) and the Java Forwarding (JFWD) API provide the programmable
interface to the Accelar. The ORE is a pure Java environment that enables the Accelar to download and initiate network services dynamically. Using the oplet encapsulation, AN execution environments (EEs) can be deployed on the Accelar as ORE services. The JFWD API provides access to underlying hardware resources to perform network operations such as diverting packets and altering packet processing. We demonstrate the deployment of Active Networks EEs as network services managed by the ORE, specifically, the MIT ANTS EE. We have wrapped the MIT ANTS implementation with the ORE-mandated structure and successfully run ANTS applications over a network comprised pure and ORE encapsulated ANTS EEs. In conclusion, we present observations about the AN service deployment on the Accelar.
Active networking on a programmable networking platformTal Lavian Ph.D.
Current Active Networks research projects are mainly realized in software-based host systems since commercial network devices lack required networking programmability. This paper studies the active networking approach using the Openet programmable networking
platform. Openet comprises ORE (Oplet Runtime Environment) and hierarchical services from low-level systems to high-level applications, and provides a neutral service-based
programmability to network devices. Moreover, Openet can have customer network services including Active Networks based services deployed on current commercial network platforms. We demonstrate the active networking with commercial network devices by deploying the active network service ANTS onto the Accelar routing switches. The performance of active network communication is examined by the experiment in an
Accelar-routed active net and compared with regular non-active network communication. The experimental result reveals that Java network I/O is a bottleneck of enhancing capsule
processing capability and ends up a look at what active network services are applicable to current commercial network platforms. Finally we present observations and future works
about active networking through the Openet platform.
Presentation from October 2012 RTI Technical Road Show.
Agenda Highlights:
How the DDS standard fosters information sharing and interoperability across systems of systems while driving down development, integration, maintenance, upgrade and acquisition costs
The latest 5.0 release of RTI's DDS solution and future roadmap, including enhanced security, support for integration patterns common in C2 systems, FAA DO-178C Level A certification, and DDS standardization initiatives
RTI's new Open Community Source license, which provides free-of-charge access to RTI DDS and allows it to be freely shared across projects and organizations
Active Networking On A Programmable Network PlatformTal Lavian Ph.D.
Current Active Networks research projects are mainly realized in software-based host systems since commercial network devices lack required networking programmability. This paper studies the active networking approach using the Openet programmable networking platform. Openet comprises ORE (Oplet Runtime Environment) and hierarchical services from low-level systems to high-level applications, and provides a neutral service-based programmability to network devices. Moreover, Openet can have customer network services including Active Networks based services deployed on current commercial network platforms. We demonstrate the active networking with commercial
network devices by deploying the active network service ANTS onto the Accelar routing switches. The performance of active network communication is examined by the experiment in an Accelar-routed active net and compared with regular non-active network communication. The experimental result reveals that Java network I/O is a bottleneck of enhancing capsule processing capability and ends up a look at what active network services are applicable to current commercial network platforms. Finally we present observations and future works about active networking through the Openet platform.
Industrial Internet of Things: Protocols an StandardsJavier Povedano
Presentation for the Distributed Systems Master at the University of Cordoba (Spain). In this presentation we review the state of the art in communication middlewares for Industrial Internet of Things
Enabling Active Networks Services on a Gigabit Routing SwitchTal Lavian Ph.D.
Current Active Networks (AN) research projects are mainly realized in software-based network systems since available hardware lacks networking programmability. This paper studies the deployment of AN services on the Accelar Gigabit Routing Switch. The Accelar is one of the Nortel Networks programmable networking products, and uses the ASIC technology to reach the high-speed forwarding capability. The Oplet Running Environment (ORE) and the Java Forwarding (JFWD) API provide the programmable
interface to the Accelar. The ORE is a pure Java environment that enables the Accelar to download and initiate network services dynamically. Using the oplet encapsulation, AN execution environments (EEs) can be deployed on the Accelar as ORE services. The JFWD API provides access to underlying hardware resources to perform network operations such as diverting packets and altering packet processing. We demonstrate the deployment of Active Networks EEs as network services managed by the ORE, specifically, the MIT ANTS EE. We have wrapped the MIT ANTS implementation with the ORE-mandated structure and successfully run ANTS applications over a network comprised pure and ORE encapsulated ANTS EEs. In conclusion, we present observations about the AN service deployment on the Accelar.
Active networking on a programmable networking platformTal Lavian Ph.D.
Current Active Networks research projects are mainly realized in software-based host systems since commercial network devices lack required networking programmability. This paper studies the active networking approach using the Openet programmable networking
platform. Openet comprises ORE (Oplet Runtime Environment) and hierarchical services from low-level systems to high-level applications, and provides a neutral service-based
programmability to network devices. Moreover, Openet can have customer network services including Active Networks based services deployed on current commercial network platforms. We demonstrate the active networking with commercial network devices by deploying the active network service ANTS onto the Accelar routing switches. The performance of active network communication is examined by the experiment in an
Accelar-routed active net and compared with regular non-active network communication. The experimental result reveals that Java network I/O is a bottleneck of enhancing capsule
processing capability and ends up a look at what active network services are applicable to current commercial network platforms. Finally we present observations and future works
about active networking through the Openet platform.
Presentation from October 2012 RTI Technical Road Show.
Agenda Highlights:
How the DDS standard fosters information sharing and interoperability across systems of systems while driving down development, integration, maintenance, upgrade and acquisition costs
The latest 5.0 release of RTI's DDS solution and future roadmap, including enhanced security, support for integration patterns common in C2 systems, FAA DO-178C Level A certification, and DDS standardization initiatives
RTI's new Open Community Source license, which provides free-of-charge access to RTI DDS and allows it to be freely shared across projects and organizations
Active Networking On A Programmable Network PlatformTal Lavian Ph.D.
Current Active Networks research projects are mainly realized in software-based host systems since commercial network devices lack required networking programmability. This paper studies the active networking approach using the Openet programmable networking platform. Openet comprises ORE (Oplet Runtime Environment) and hierarchical services from low-level systems to high-level applications, and provides a neutral service-based programmability to network devices. Moreover, Openet can have customer network services including Active Networks based services deployed on current commercial network platforms. We demonstrate the active networking with commercial
network devices by deploying the active network service ANTS onto the Accelar routing switches. The performance of active network communication is examined by the experiment in an Accelar-routed active net and compared with regular non-active network communication. The experimental result reveals that Java network I/O is a bottleneck of enhancing capsule processing capability and ends up a look at what active network services are applicable to current commercial network platforms. Finally we present observations and future works about active networking through the Openet platform.
Industrial Internet of Things: Protocols an StandardsJavier Povedano
Presentation for the Distributed Systems Master at the University of Cordoba (Spain). In this presentation we review the state of the art in communication middlewares for Industrial Internet of Things
IJRET : International Journal of Research in Engineering and Technology is an international peer reviewed, online journal published by eSAT Publishing House for the enhancement of research in various disciplines of Engineering and Technology. The aim and scope of the journal is to provide an academic medium and an important reference for the advancement and dissemination of research results that support high-level learning, teaching and research in the fields of Engineering and Technology. We bring together Scientists, Academician, Field Engineers, Scholars and Students of related fields of Engineering and Technology.
Performance analysis on multihop transmission using arp routing protocol in i...eSAT Journals
Abstract
Mobile Ad Hoc Network (MANET) are becoming more and more important in the modern environment. It can be used instantly to connect to the local or remote network without using the pre-existing infrastructure. The mobile or user in the network can together establish the infrastructure. In order to improve the limited range of radio transmission, multiple network ‘hops’ are needed so that the communication between the mobiles can be establish. There are varieties of protocol that had been proposed for the hopping methods but most of them suffer from high overhead. This project proposed a new method of hopping protocol for IEEE 802.11b using the existing network protocol which is Address Resolution Protocol (ARP). The ARP message is used in the network to find the MAC address of the destination. This can also be done by having multi hops where the proposed method using ARP designed will make an intermediate node act as a router in order to find the destination address and forward the data successfully. In this proposed method, the data is directly passed to the intermediate node and the intermediate node will help to find the route to the destination and passed the data to the destination node. This will reduce the transmission time. From the simulation obtained, it proved that the proposed method using the ARP protocol can works well as the existing network protocol which is Ad Hoc On-Demand Distance Vector (AODV). The simulation is composed into two types of environment which are with and without obstacles. The throughput, the packet loss and the round trip time for various distances is simulated and the results shows that the performance of the proposed method using ARP is much better compared to the AODV.
Index Terms: Address Resolution Protocol (ARP), Ad-Hoc, 802.11 Wifi, Hopping
Software-Defined Networking Changes for the Paradigm for Mission-Critical Ope...Wheeler Flemming
Learn why SEL’s SDN technology promises to revolutionize Ethernet for industrial control system networks. The white paper was originally published in The Industrial Ethernet Book, Issue 98, February 2017.
The aim of this dissertation project was to investigate and improve the performance of the two most popular link-state routing protocols when configured in IPv4/IPv6 dual-stack enterprise networks. The thesis intended to make the first step of scientific research in performance comparison of different routing protocols in IPv4-IPv6 coexistence dual stack ipv4 and ipv6 coexistence
The Veryx Optimal Server Selection Algorithm relies on performance of Intel® Xeon® processors to select the right infrastructure for workload placement.
Availability is one of the most important concerns in the networking world. For any high available
network, we need to maintain 99.99999% availability. That is why it is one of the most important factors to
find out the single point of failure in the network architecture and eliminate that single point of failure
(SPOF) from physical network and logical network. SPOF in our server infrastructure has been analysed
in terms of communicating with the router for forwarding traffic with multiple routers. We have developed
an algorithm that will automatically select default gateway into the network interface card of virtual
machines. The proposed algorithm will automatically enable Default Gateway Weight settings (DGW)
protocol among routers by configuring Network interface card with default gateway of all routers. The
proposed protocol works based on weight settings for the multiple default gateway configuration in the
host. There will be heartbeat communication and re-convergence will be performed within the shortest
possible time. Lowest weight setting will select the path for packet forwarding through specified routers
related with the default gateway from the virtual machine.
Open network boxes to public
Current network devices are close systems
Intelligence to network nodes because
Internet infrastructure evolves slow
Customers can not add new services
Better use of network resources
Abundant bandwidth
Diversified clients’ needs
Enabling Active Networks Services on A Gigabit Routing SwitchTal Lavian Ph.D.
Active Networks:
A “programmable” user-networking approach
injects network services to the network “on-the-fly”
supports per-flow service customization
enables ISPs and individuals to add their services
To support AN, hardware should provide
Fast processing ability to compete AN computation
the programmability with open networking APIs
Edge Device Multi-unicasting for Video StreamingTal Lavian Ph.D.
Multicast data stream from a server to multiple clients at the application level.
Overlay network structure must be constructed at the application layer to connect participating end systems
Mechanisms for adapting the overlay structure are necessary to provide and maintain adequate level of QoS of the application
Yoid – generic structure for overaly networks for content distribution
Overcast – single-source multicast
End System Multicast – small-scale multicast for teleconference
ALMI – an ALM infrastructure for multi-sender multicast that scales to a large number of groups with small number of members
Edge devices form overlay structure
Edge devices can replicate and multi-unicast to multiple clients
Overcome bottleneck problem over access link
IJRET : International Journal of Research in Engineering and Technology is an international peer reviewed, online journal published by eSAT Publishing House for the enhancement of research in various disciplines of Engineering and Technology. The aim and scope of the journal is to provide an academic medium and an important reference for the advancement and dissemination of research results that support high-level learning, teaching and research in the fields of Engineering and Technology. We bring together Scientists, Academician, Field Engineers, Scholars and Students of related fields of Engineering and Technology.
Performance analysis on multihop transmission using arp routing protocol in i...eSAT Journals
Abstract
Mobile Ad Hoc Network (MANET) are becoming more and more important in the modern environment. It can be used instantly to connect to the local or remote network without using the pre-existing infrastructure. The mobile or user in the network can together establish the infrastructure. In order to improve the limited range of radio transmission, multiple network ‘hops’ are needed so that the communication between the mobiles can be establish. There are varieties of protocol that had been proposed for the hopping methods but most of them suffer from high overhead. This project proposed a new method of hopping protocol for IEEE 802.11b using the existing network protocol which is Address Resolution Protocol (ARP). The ARP message is used in the network to find the MAC address of the destination. This can also be done by having multi hops where the proposed method using ARP designed will make an intermediate node act as a router in order to find the destination address and forward the data successfully. In this proposed method, the data is directly passed to the intermediate node and the intermediate node will help to find the route to the destination and passed the data to the destination node. This will reduce the transmission time. From the simulation obtained, it proved that the proposed method using the ARP protocol can works well as the existing network protocol which is Ad Hoc On-Demand Distance Vector (AODV). The simulation is composed into two types of environment which are with and without obstacles. The throughput, the packet loss and the round trip time for various distances is simulated and the results shows that the performance of the proposed method using ARP is much better compared to the AODV.
Index Terms: Address Resolution Protocol (ARP), Ad-Hoc, 802.11 Wifi, Hopping
Software-Defined Networking Changes for the Paradigm for Mission-Critical Ope...Wheeler Flemming
Learn why SEL’s SDN technology promises to revolutionize Ethernet for industrial control system networks. The white paper was originally published in The Industrial Ethernet Book, Issue 98, February 2017.
The aim of this dissertation project was to investigate and improve the performance of the two most popular link-state routing protocols when configured in IPv4/IPv6 dual-stack enterprise networks. The thesis intended to make the first step of scientific research in performance comparison of different routing protocols in IPv4-IPv6 coexistence dual stack ipv4 and ipv6 coexistence
The Veryx Optimal Server Selection Algorithm relies on performance of Intel® Xeon® processors to select the right infrastructure for workload placement.
Availability is one of the most important concerns in the networking world. For any high available
network, we need to maintain 99.99999% availability. That is why it is one of the most important factors to
find out the single point of failure in the network architecture and eliminate that single point of failure
(SPOF) from physical network and logical network. SPOF in our server infrastructure has been analysed
in terms of communicating with the router for forwarding traffic with multiple routers. We have developed
an algorithm that will automatically select default gateway into the network interface card of virtual
machines. The proposed algorithm will automatically enable Default Gateway Weight settings (DGW)
protocol among routers by configuring Network interface card with default gateway of all routers. The
proposed protocol works based on weight settings for the multiple default gateway configuration in the
host. There will be heartbeat communication and re-convergence will be performed within the shortest
possible time. Lowest weight setting will select the path for packet forwarding through specified routers
related with the default gateway from the virtual machine.
Open network boxes to public
Current network devices are close systems
Intelligence to network nodes because
Internet infrastructure evolves slow
Customers can not add new services
Better use of network resources
Abundant bandwidth
Diversified clients’ needs
Enabling Active Networks Services on A Gigabit Routing SwitchTal Lavian Ph.D.
Active Networks:
A “programmable” user-networking approach
injects network services to the network “on-the-fly”
supports per-flow service customization
enables ISPs and individuals to add their services
To support AN, hardware should provide
Fast processing ability to compete AN computation
the programmability with open networking APIs
Edge Device Multi-unicasting for Video StreamingTal Lavian Ph.D.
Multicast data stream from a server to multiple clients at the application level.
Overlay network structure must be constructed at the application layer to connect participating end systems
Mechanisms for adapting the overlay structure are necessary to provide and maintain adequate level of QoS of the application
Yoid – generic structure for overaly networks for content distribution
Overcast – single-source multicast
End System Multicast – small-scale multicast for teleconference
ALMI – an ALM infrastructure for multi-sender multicast that scales to a large number of groups with small number of members
Edge devices form overlay structure
Edge devices can replicate and multi-unicast to multiple clients
Overcome bottleneck problem over access link
An extensible, programmable, commercial-grade platform for internet service a...Tal Lavian Ph.D.
With their increasingly sophisticated applications, users promote the notion that there is more to a network (be it an intranet, or the Internet) than mere L1-3 connectivity. In what shapes a next generation service contract between users and the network, users want the network to offer services that are as ubiquitous and dependable as dial tones. Typical services include application-aware firewalls, directories, nomadic support, virtualization, load balancing, alternate site failover, etc. To fulfill this vision, a service architecture is needed. That is, an architecture wherein end-to-end services compose, on-demand, across network domains, technologies, and administration boundaries. Such an architecture requires programmable mechanisms and programmable network devices for service enabling, service negotiation, and service management. The bedrock foundation of the architecture, and also the key focus of the paper, is an open-source programmable service platform that is explicitly designed to best exploit commercial-grade network devices. The platform predicates a full separation of concerns, in that control-intensive operations are executed in software, whereas, data-intensive operations are delegated to hardware. This way, the platform is capable of performing wire-speed content filtering, and activating network services according to the state of data and control flows. The paper describes the platform and some distinguishing services realized on the platform.
Enabling Active Flow Manipulation In Silicon-based Network Forwarding EnginesTal Lavian Ph.D.
A significant challenge in today’s Internet is the ability to efficiently incorporate customizable network intelligence in commercial high performance network devices.
Framework for introducing services
API for programming network devices
Technology & Society – More Questions Than AnswersTal Lavian Ph.D.
Specific current technologies and their impact on society:
Big-Bandwidth Pipes:
Video conferencing
Virtual Presence (Holograms)
Last Mile - Optical Network availability
Big Disk availability
Video files, storage capacity
Huge Computation Power
Silicon and Consumer Electronics
New applications
Impact of Grid Computing on Network Operators and HW VendorsTal Lavian Ph.D.
The “Network” is a Prime Resource for Large- Scale Distributed System.
Integrated SW System Provide the “Glue”
Dynamic optical network as a fundamental Grid service in data-intensive Grid application, to be scheduled, to be managed and coordinated to support collaborative operations
Intelligent Network Services through Active Flow ManipulationTal Lavian Ph.D.
Active Flow Manipulation Abstractions:
Aggregate data into traffic flows
Flows whose characteristics can be identified in real-time
E.g., “all UDP packets to a particular service”, “all TCP packets from a particular machine”.
Actions to be performed in the traffic flows
Actions that can be performed in real-time
E.g., “Change the priority of all traffic destined to a particular service on a particular machine”, “Stop all traffic out of a particular link of a router”.
Popeye - Using Fine-grained Network Access Control to Support Mobile Users an...Tal Lavian Ph.D.
We are facing a trend towards ubiquitous connectivity where users demand access at anytime, anywhere. This has lead to the deployment of public network ports and wireless networks. Current solutions to network access control are in exible and only provide all-or-nothing access. It is also increasing important to protect Intranet hosts from other mobile and static hosts on the same
Intranet, in order to contain damages in the case that a host gets compromised. We present an architecture that addresses these issues by using a programmable router to provide dynamic
ne-grained network access control. The Javaenabled router dynamically generates and enforces
access control rules using policies and user proles as input, reducing administrative overhead. Our modular design integrates well with existing authentication and directory servers, further reducing admininstrative costs. Our prototype is implemented using Nortel's Accelar router and moves users to VLANs with the appropriate access privilege.
State of the network
Plenty of bandwidth
Optical core
Increasing demand for services
Gateways
Network Service nodes
Content Switches
Network Caches
Evolving network
Network services are services that specialize in the handling of network-related or network-resident resources. Examples of network services are data transport service, network advance reservation service, network Quality of Service (QoS) service, network information service, network monitoring service, and AAA1 service.
This informational draft describes how several network services combine and yield a rich mediation function—a resource manager—between grid applications and legacy networks. Complements of these services, the network resource is seen joining CPU and storage as a first-class, grid-managed resource (and handled, as such, by a community scheduler, or other OGSA services).
Open programmable architecture for java enabled network devicesTal Lavian Ph.D.
Supports non-vendor applications
End-user custom application development
Tight interaction between business applications and network devices
Domain experts who understand business goals
Innovative approaches
“Features on Demand”
download software services
dynamically add new capabilities
Portable across a range of devices
Extensible
Simple and convenient for client use
Consistent with SNMP model
Hide unnecessary SNMP details
Permit optimized access
Re-use MIB documentation
Implementation of a quality of service feedback control loop on programmable ...Tal Lavian Ph.D.
Current Diffserv architecture lacks mechanisms for network path discovery with specific service performance.Our aim is to introduce an enhanced-Diffserv scheme utilizing a feedback loop to gather path information and allow better flexibility in managing Diffserv flows. We utilize state-of-the-art programmable routers that can host the control loop operation without compromising their normal routing and switching functionalities. Furthermore, the control feedback loop implemented on the control plane of the router can selectively alter the behaviour of a specific data flow in real-time.
Services and applications’ infrastructure for agile optical networksTal Lavian Ph.D.
Huge advancements in optical devices, components and networking.
The underline of the Internet is optical – How can we take advantage of this?
How can the applications take advantage of this?
Agile Optical Network is starting to appear. What services and interfaces we’ll need between the optical control and the applications?
What are the applications?
The Internet architecture was built on some 15-20 years old assumptions. Are some modifications needed?
Is packet switching good for all? In some cases, is circuit switching better? (move TeraBytes of SAN date, P2P, Streaming)
End-to-End Argument – Is is valid for all cases?
What cases not? What instead?
The current Internet architecture is based on L3. What is needed in order to offer services in L1-L2?
Computation vs. Bandwidth 10X in 5 years
DWDM-RAM:Enabling Grid Services with Dynamic Optical NetworksTal Lavian Ph.D.
Packet-switching technology
Great solution for small-burst communication, such as email, telnet, etc.
Data-intensive grid applications
Involves moving massive amounts of data
Requires high and sustained bandwidth
DWDM
Basically circuit switching
Enable QoS at the Physical Layer
Provide
High bandwidth
Sustained bandwidth
DWDM based on dynamic wavelength switching
Enable dedicated optical paths to be allocated dynamically
An Architecture for Data Intensive Service Enabled by Next Generation Optical...Tal Lavian Ph.D.
DWDM-RAM - An architecture for data intensive Grids enabled by next generation dynamic optical networks, incorporating new methods for lightpath provisioning.
DWDM-RAM: An architecture designed to meet the
networking challenges of extremely large scale Grid applications.
Traditional network infrastructure cannot meet these demands,
especially, requirements for intensive data flows
DWDM-RAM Components Include:
Data management services
Intelligent middleware
Dynamic lightpath provisioning
State-of-the-art photonic technologies
Wide-area photonic testbed implementation
SDN 101: Software Defined Networking Course - Sameh Zaghloul/IBM - 2014SAMeh Zaghloul
Sameh Zaghloul
Technology Manager @ IBM
+2 0100 6066012
zaghloul@eg.ibm.com
SDN: Technology that enables data center team to use software to efficiently control network resources
SDN Overview
SDN Standards
NFV – Network Function Virtualization
SDN Scenarios and Use Cases
SDN Sample Research Projects
SDN Technology Survey
SDN Case Study
SDN Online Courses
SDN Lab SW Tools
- OpenStack Framework
- OpenDayLighyt – SDN Controller
- FloodLight – SDN Controller
- Open vSwitch – Virtual Switch
- MiniNet – Virtual Network: OpenFlow Switches, SDN Controllers, and Servers/Hosts
- OMNet++ Network Simulator
- Avior – Sample FloodLight Java Application
- netem - Network Emulation
- NOX/POX - C++/ Python OpenFlow API for building network control applications
- Pyretic = Python + Frenetic - Enables network programmers and operators to write modular network applications by providing powerful abstractions
- Resonance - Event-Driven Control for Software-Defined Networks (written in Pyretic)
SDN Project
Run-Time Adaptive Processor Allocation of Self-Configurable Intel IXP2400 Net...CSCJournals
An ideal Network Processor, that is, a programmable multi-processor device must be capable of offering both the flexibility and speed required for packet processing. But current Network Processor systems generally fall short of the above benchmarks due to traffic fluctuations inherent in packet networks, and the resulting workload variation on individual pipeline stage over a period of time ultimately affects the overall performance of even an otherwise sound system. One potential solution would be to change the code running at these stages so as to adapt to the fluctuations; a near robust system with standing traffic fluctuations is the dynamic adaptive processor, reconfiguring the entire system, which we introduce and study to some extent in this paper. We achieve this by using a crucial decision making model, transferring the binary code to the processor through the SOAP protocol.
Enabling active flow manipulation in silicon-based network forwarding enginesTal Lavian Ph.D.
A significant challenge arising from today’s increasing Internet traffic is the ability to flexibly incorporate intelligent control in high performance commercial network devices. This paper tackles this challenge by introducing the Active Flow Manipulation (AFM) mechanism to enhance traffic control intelligence of network devices through programmability. With AFM, customer network services can exercise active network
control by identifying distinctive flows and applying specified actions to alter network behavior in real-time. These services are dynamically loaded through Openet by the CPU-based control unit of a network node and are closely coupled with its silicon-based forwarding engines, without negatively impacting forwarding performance. AFM is exposed as a key enabling technology of the programmable networking platform Openet. The effectiveness of our approach is demonstrated by four active network services on commercial network nodes.
Active Network is a novel approach of networking to mobile users in which the nodes are programmed to perform custom operations on the messages that pass through the node. It provides an architectural support for dynamically deploying new protocols in an existing network topology. The routers in an active network can download and execute code that is contained in the packets passing through them, thus rendering the node recognized and run totally new protocols without making any changes to the architecture of the network. Because the network's behavior can be altered at any time, active networks could be used to provide dynamic quality of service (QoS) or to support dynamic solutions to traffic congestion. This research implements and tests such specialized Active Networks security service known as the firewall and the ping service in Active Network. Active Network environment will be implemented on a small scale test scenario in order to study the performance and characteristics of active networks
HIGH PERFORMANCE ETHERNET PACKET PROCESSOR CORE FOR NEXT GENERATION NETWORKSijngnjournal
As the demand for high speed Internet significantly increasing to meet the requirement of large data transfers, real-time communication and High Definition ( HD) multimedia transfer over IP, the IP based network products architecture must evolve and change. Application specific processors require high
performance, low power and high degree of programmability is the limitation in many general processor based applications. This paper describes the design of Ethernet packet processor for system-on-chip (SoC) which performs all core packet processing functions, including segmentation and reassembly, packetization classification, route and queue management which will speedup switching/routing performance making it
more suitable for Next Generation Networks (NGN). Ethernet packet processor design can be configured for use with multiple projects targeted to a FPGA device the system is designed to support 1/10/20/40/100 Gigabit links with a speed and performance advantage. VHDL has been used to implement and simulated the required functions in FPGA
Wireless networks of microelectromechanical systems have
been envisioned since the 1990s, when early concepts such as
Smart Dust introduced the idea of computers equipped with
sensors and simple radio transceivers.
Enabling Active Flow Manipulation in Silicon-based Network Forwarding EngineTal Lavian Ph.D.
A significant challenge arising from today’s increasing Internet traffic is the ability to flexibly incorporate intelligent control in high performance commercial network devices. This paper tackles this challenge by introducing the Active Flow Manipulation (AFM)
mechanism to enhance traffic control intelligence of network devices through programmability. With AFM, customer network services can exercise active network
control by identifying distinctive flows and applying specified actions to alter network behavior in real-time. These services are dynamically loaded through Openet by the CPU-based control unit of a network node and are closely coupled with its silicon-based forwarding engines, without negatively impacting forwarding performance. AFM is exposed as a key enabling technology of the programmable networking platform Openet. The effectiveness of our approach is demonstrated by four active network services on commercial network nodes.
Software Defined Networking: A Concept and Related IssuesEswar Publications
SDN (Software Defined Networking) is the networking architecture that has gained attention of researchers in recent past. It is the future of programmable networks. Traditional networks were very complex and difficult to manage. SDN is going to change this by offering a standard interface (OpenFlow) between the control plane and the networking devices (data plane). Its implementation is fully supported by software so that we can control the behavior of networking devices through programmatic control. This programmatic control provides various new ways to find breakpoints and failures in networking devices. Today SDN has become an important part of networking, so it is important to emulate its behavior. SDN support virtualization which makes it scalable and flexible. Data traffic resides in the data plane. The main function of intelligent controller is to decide the routing
policy and manage the traffic in data plane. So effectively SDN emerges as a networking architecture that has the ability to solve all problems those were found in traditional architecture In this paper the authors discussed historical perspective of SDN, languages that support SDN, emulation tools, security issues with SDN and advantages that makes SDN suitable choice for today’s network.
Zigbee Based Wireless Sensor Networks for Smart CampusIJMER
A network which connects a bunch of distributed low-power sensor nodes together, with each node dedicated to a predefined operation can be visualized as a Wireless Sensor Network (WSN).
Performance Evaluation of LEACH Protocol for Wireless Sensor NetworkAM Publications
This paper gives performance of LEACH protocol. LEACH is the first network protocol that uses hierarchical
routing for wireless sensor networks to increase the life time of network. All the nodes in a network organize themselves into
local clusters, with one node acting as the cluster-head. All non-cluster-head nodes transmit their data to the cluster-head,
while the cluster-head node receive data from all the cluster members, perform signal processing functions on the data (e.g.,
data aggregation), and transmit data to the remote base station. Therefore, being a cluster-head node is much more energyintensive
than being a non-cluster-head node. Thus, when a cluster-head node dies all the nodes that belong to the cluster lose
communication ability. This paper gives performance of LEACH protocol considering parameters i) Packet Delivery Ratio ii)
Throughput iii) Delay iv) lifetime.
International Journal of Computational Engineering Research(IJCER)ijceronline
International Journal of Computational Engineering Research (IJCER) is dedicated to protecting personal information and will make every reasonable effort to handle collected information appropriately. All information collected, as well as related requests, will be handled as carefully and efficiently as possible in accordance with IJCER standards for integrity and objectivity
ETHERNET PACKET PROCESSOR FOR SOC APPLICATIONcscpconf
As the demand for Internet expands significantly in numbers of users, servers, IP addresses,
switches and routers, the IP based network architecture must evolve and change. The design
of domain specific processors that require high performance, low power and high degree of
programmability is the bottleneck in many processor based applications. This paper describes
the design of ethernet packet processor for system-on-chip (SoC) which performs all core
packet processing functions, including segmentation and reassembly, packetization
classification, route and queue management which will speedup switching/routing
performance. Our design has been configured for use with multiple projects ttargeted to a
commercial configurable logic device the system is designed to support 10/100/1000 links with a speed advantage. VHDL has been used to implement and simulated the required functions in FPGA.
This paper focuses on the evolutionary stages for cloudification then covers the key software building blocks that will be needed to enable NFV, and ultimately ICT transformation to 5G. It describes how Intel® Open Networking Platform (Intel® ONP) Server running on innovative new networking platforms based on Intel® silicon can help reduce the cost and effort required for service providers and vendors alike to adopt and deploy SDN and NFV architectures.
ENHANCING AND MEASURING THE PERFORMANCE IN SOFTWARE DEFINED NETWORKINGIJCNCJournal
Software Defined Networking (SDN) is a challenging chapter in today’s networking era. It is a network design approach that engages the framework to be controlled or 'altered' adroitly and halfway using programming applications. SDN is a serious advancement that assures to provide a better strategy than displaying the Quality of Service (QoS) approach in the present correspondence frameworks. SDN etymologically changes the lead and convenience of system instruments using the single high state program. It separates the system control and sending functions, empowering the network control to end up specifically. It provides more functionality and more flexibility than the traditional networks. A network administrator can easily shape the traffic without touching any individual switches and services which are needed in a network. The main technology for implementing SDN is a separation of data plane and control plane, network virtualization through programmability. The total amount of time in which user can respond is called response time. Throughput is known as how fast a network can send data. In this paper, we have design a network through which we have measured the Response Time and Throughput comparing with the Real-time Online Interactive Applications (ROIA), Multiple Packet Scheduler, and NOX.
Similar to Dynamic classification in silicon-based forwarding engine environments (20)
A system for providing ultra low phase noise frequency synthesizers using Fractional-N PLL (Phase Lock Loop), Sampling Reference PLL and DDS (Direct Digital Synthesizer). Modern day advanced communication systems comprise frequency synthesizers that provide a frequency output signal to other parts of the transmitter and receiver so as to enable the system to operate at the set frequency band. The performance of the frequency synthesizer determines the performance of the communication link. Current days advanced communication systems comprises single loop Frequency synthesizers which are not completely able to provide lower phase deviations for errors (For 256 QAM the practical phase deviation for no errors is 0.4-0.5°) which would enable users to receive high data rate. This proposed system overcomes deficiencies of current generation state of the art communication systems by providing much lower level of phase deviation error which would result in much higher modulation schemes and high data rate.
A system for providing ultra low phase noise frequency synthesizers using Fractional-N PLL (Phase Lock Loop), Sampling Reference PLL and DDS (Direct Digital Synthesizer). Modern day advanced communication systems comprise frequency synthesizers that provide a frequency output signal to other parts of the transmitter and receiver so as to enable the system to operate at the set frequency band. The performance of the frequency synthesizer determines the performance of the communication link. Current days advanced communication systems comprises single loop Frequency synthesizers which are not completely able to provide lower phase deviations for errors (For 256 QAM the practical phase deviation for no errors is 0.4-0.5°) which would enable users to receive high data rate. This proposed system overcomes deficiencies of current generation state of the art communication systems by providing much lower level of phase deviation error which would result in much higher modulation schemes and high data rate.
Embodiments of the present invention present a method and apparatus for photonic line sharing for high-speed routers. Photonic switches receive high-speed optical data streams and produce the data streams to a router operating according to routing logic and produce optical data streams according to destination addresses stored in the data packets. Each photonic switch can be configured as one of a 1:N multiplexer or an M:N cross-connect switch. In one embodiment, optical data is converted to electrical data prior to routing, while an alternate embodiment routes only optical data. Another embodiment transfers large volumes of high-speed data through an optical bypass line in a circuit switched network to bypass the switch fabric thereby routing the data packets directly to the destination. An edge device selects one of the packet switched network or the circuit switched network. The bypass resources are released when the large volume of high-speed data is transferred.
Systems and methods to support sharing and exchanging in a networkTal Lavian Ph.D.
Embodiments of the invention provide for providing support for sharing and exchanging in a network. The system includes a memory coupled to a processor. The memory includes a database comprising information corresponding to first users and the second users. Each of the first users and the second users are facilitated for sharing or exchanging activity, service or product, based on one or more conditions corresponding thereto. Further, the memory includes one or more instructions executable by the processor to match each of the first users to at least one of the second users. Furthermore, the instructions may inform each of the first users about the match with the at least one of the second users when all the conditions are met by the at least one second user based on the information corresponding to each of the second users.
Systems and methods for visual presentation and selection of IVR menuTal Lavian Ph.D.
Embodiments of the invention provide a system for generating an Interactive Voice Response (IVR) database, the system comprising a processor and a memory coupled to the processor. The memory comprising a list of telephone numbers associated with one or more destinations implementing IVR menus, wherein the one or more destinations are grouped based on a plurality of categories of the IVR menus. Further the memory includes instructions executable by said processor for automatically communicating with the one of more destinations, and receiving at least one customization record from said at least one destination to store in the IVR database.
Various embodiments allow Grid applications to access resources shared in communication network domains. Grid Proxy Architecture for Network Resources (GPAN) bridges Grid services serving user applications and network services controlling network devices through proxy functions. At times, GPAN employs distributed network service peers (NSP) in network domains to discover, negotiate and allocate network resources for Grid applications. An elected master NSP is the unique Grid node that runs GPAN and represents the whole network to share network resources to Grids without Grid involvement of network devices. GPAN provides the Grid Proxy service (GPS) to interface with Grid services and applications, and the Grid Delegation service (GDS) to interface with network services to utilize network resources. In some cases, resource-based XML messaging can be employed for the GPAN proxy communication.
A system for providing ultra low phase noise frequency synthesizers using Fractional-N PLL (Phase Lock Loop), Sampling Reference PLL and DDS (Direct Digital Synthesizer). Modern day advanced communication systems comprise frequency synthesizers that provide a frequency output signal to other parts of the transmitter and receiver so as to enable the system to operate at the set frequency band. The performance of the frequency synthesizer determines the performance of the communication link. Current days advanced communication systems comprises single loop Frequency synthesizers which are not completely able to provide lower phase deviations for errors (For 256 QAM the practical phase deviation for no errors is 0.4-0.5°) which would enable users to receive high data rate. This proposed system overcomes deficiencies of current generation state of the art communication systems by providing much lower level of phase deviation error which would result in much higher modulation schemes and high data rate.
Systems and methods for electronic communicationsTal Lavian Ph.D.
Embodiments of the invention provide a system for enhancing user interaction with the Internet of Things. The system includes a processor, and a memory coupled to the processor. The memory includes a database having one or more options corresponding to each of the Internet of Things. The memory further includes instructions executable by the processor to share at least one of the one or more options with one or more users of the things. Further, the instructions receive information corresponding to selection of the at least one option by the one or more users. Additionally, the instructions update the database based on the selection of the at least one option by the one or more users. Further, a device for enhancing interaction with the things is also disclosed.
A system for providing ultra low phase noise frequency synthesizers using Fractional-N PLL (Phase Lock Loop), Sampling Reference PLL and DDS (Direct Digital Synthesizer). Modern day advanced communication systems comprise frequency synthesizers that provide a frequency output signal to other parts of the transmitter and receiver so as to enable the system to operate at the set frequency band. The performance of the frequency synthesizer determines the performance of the communication link. Current days advanced communication systems comprises single loop Frequency synthesizers which are not completely able to provide lower phase deviations for errors (For 256 QAM the practical phase deviation for no errors is 0.4-0.5°) which would enable users to receive high data rate. This proposed system overcomes deficiencies of current generation state of the art communication systems by providing much lower level of phase deviation error which would result in much higher modulation schemes and high data rate.
A system for providing ultra low phase noise frequency synthesizers using Fractional-N PLL (Phase Lock Loop), Sampling Reference PLL and DDS (Direct Digital Synthesizer). Modern day advanced communication systems comprise frequency synthesizers that provide a frequency output signal to other parts of the transmitter and receiver so as to enable the system to operate at the set frequency band. The performance of the frequency synthesizer determines the performance of the communication link. Current days advanced communication systems comprises single loop Frequency synthesizers which are not completely able to provide lower phase deviations for errors (For 256 QAM the practical phase deviation for no errors is 0.4-0.5°) which would enable users to receive high data rate. This proposed system overcomes deficiencies of current generation state of the art communication systems by providing much lower level of phase deviation error which would result in much higher modulation schemes and high data rate.
Radar target detection system for autonomous vehicles with ultra-low phase no...Tal Lavian Ph.D.
An object detection system for autonomous vehicle, comprising a radar unit and at least one ultra-low phase noise frequency synthesizer, is provided. The radar unit configured for detecting the presence and characteristics of one or more objects in various directions. The radar unit may include a transmitter for transmitting at least one radio signal; and a receiver for receiving the at least one radio signal returned from the one or more objects. The ultra-low phase noise frequency synthesizer may utilize Clocking device, Sampling Reference PLL, at least one fixed frequency divider, DDS and main PLL to reduce phase noise from the returned radio signal. This proposed system overcomes deficiencies of current generation state of the art Radar Systems by providing much lower level of phase noise which would result in improved performance of the radar system in terms of target detection, characterization etc. Further, a method for autonomous vehicle is also disclosed.
Various embodiments allow Grid applications to access resources shared in communication network domains. Grid Proxy Architecture for Network Resources (GPAN) bridges Grid services serving user applications and network services controlling network devices through proxy functions. At times, GPAN employs distributed network service peers (NSP) in network domains to discover, negotiate and allocate network resources for Grid applications. An elected master NSP is the unique Grid node that runs GPAN and represents the whole network to share network resources to Grids without Grid involvement of network devices. GPAN provides the Grid Proxy service (GPS) to interface with Grid services and applications, and the Grid Delegation service (GDS) to interface with network services to utilize network resources. In some cases, resource-based XML messaging can be employed for the GPAN proxy communication.
Method and apparatus for scheduling resources on a switched underlay networkTal Lavian Ph.D.
A method and apparatus for resource scheduling on a switched underlay network (18) enables coordination, scheduling, and scheduling optimization to take place taking into account the availability of the data and the network resources comprising the switched underlay network (18). Requested transfers may be fulfilled by assessing the requested transfer parameters, the availability of the network resources required to fulfill the request, the availability of the data to be transferred, the availability of sufficient storage resources to receive the data, and other potentially conflicting requested transfers. In one embodiment, the requests are under-constrained to enable transfer scheduling optimization to occur. The under-constrained nature of the requests enable transfer scheduling optimization to occur. The under-constrained nature of the requests enables requests to be scheduled taking into account factors such as transfer priority, transfer duration, the amount of time it has been since the transfer request was submitted, and many other factors.
Dynamic assignment of traffic classes to a priority queue in a packet forward...Tal Lavian Ph.D.
An apparatus and method for dynamic assignment of classes of traffic to a priority queue. Bandwidth consumption by one or more types of packet traffic received in the packet forwarding device is monitored to determine whether the bandwidth consumption exceeds a threshold. If the bandwidth consumption exceeds the threshold, assignment of at least one type of packet traffic of the one or more types of packet traffic is changed from a queue having a first priority to a queue having a second priority.
Method and apparatus for using a command design pattern to access and configu...Tal Lavian Ph.D.
An XML accessible network device is capable of performing functions in response to an XML encoded request transmitted over a network. It includes a network data transfer service, coupled to a network, that is capable of receiving XML encoded requests from a client also connected to the network. A service engine is capable of understanding and parsing the XML encoded requests according to a corresponding DTD. The service engine further instantiates a service using parameters provided in the XML encoded request and launches the service for execution on the network device in accordance with a command design parameter. A set of device APIs interacts with hardware and software on the network device for executing the requested service on the network device. If necessary, a response is further collected from the device and provided to the client in a response message.
Embodiments of the invention provide means to the users of the system to provide ratings and corresponding feedback for enhancing the genuineness in the ratings. The system includes a memory coupled to a processor. The memory includes one or more instructions executable by the processor to enable the users of the system to rate each other based on at least one of sharing, exchanging, and selling one of activity, service or product. The system may provide a mechanism to encourage genuineness in ratings provided by the users. Furthermore, the instructions facilitate the rating receivers to provide feedbacks corresponding to the received ratings. The feedback includes accepting or objecting to a particular rating. Moreover, the memory includes instructions executable by the processor to enable the system to determine genuineness of an objection raised by a rating receiver.
Embodiments of the present invention provide a system for enhancing reliability in computation of ratings provided by a user over a social network. The system comprises of a processor and a memory coupled to the processor. The memory further comprises a rater score database, a satisfaction database, a social network registration database, a user profile database, and a plurality of instruction executable by the processor. Said instructions in the memory are enabled to accept a message from at least one user wherein said message comprises a satisfaction score associated with at least one service provider and to retrieve a rater score associated with said at least one user from said rater score database. Further, the memory includes instructions in order to compute a new satisfaction score based on said rater score and said satisfaction score and update said satisfaction database to include said new satisfaction score. In a similar manner, the new satisfaction score can be computed based upon the information stored in the social network registration database and user profile database.
Systems and methods for visual presentation and selection of ivr menuTal Lavian Ph.D.
Embodiments of the invention provide a system for generating an Interactive Voice Response (IVR) database, the system comprising a processor and a memory coupled to the processor. The memory comprising a list of telephone numbers associated with one or more destinations implementing IVR menus, wherein the one or more destinations are grouped based on a plurality of categories of the IVR menus. Further the memory includes instructions executable by said processor for automatically communicating with the one of more destinations, and receiving at least one customization record from said at least one destination to store in the IVR database.
A system for providing ultra low phase noise frequency synthesizers using Fractional-N PLL (Phase Lock Loop), Sampling Reference PLL and DDS (Direct Digital Synthesizer). Modern day advanced communication systems comprise frequency synthesizers that provide a frequency output signal to other parts of the transmitter and receiver so as to enable the system to operate at the set frequency band. The performance of the frequency synthesizer determines the performance of the communication link. Current days advanced communication systems comprises single loop Frequency synthesizers which are not completely able to provide lower phase deviations for errors (For 256 QAM the practical phase deviation for no errors is 0.4-0.5°) which would enable users to receive high data rate. This proposed system overcomes deficiencies of current generation state of the art communication systems by providing much lower level of phase deviation error which would result in much higher modulation schemes and high data rate.
A system for providing ultra low phase noise frequency synthesizers using Fractional-N PLL (Phase Lock Loop), Sampling Reference PLL and DDS (Direct Digital Synthesizer). Modern day advanced communication systems comprise frequency synthesizers that provide a frequency output signal to other parts of the transmitter and receiver so as to enable the system to operate at the set frequency band. The performance of the frequency synthesizer determines the performance of the communication link. Current days advanced communication systems comprises single loop Frequency synthesizers which are not completely able to provide lower phase deviations for errors (For 256 QAM the practical phase deviation for no errors is 0.4-0.5°) which would enable users to receive high data rate. This proposed system overcomes deficiencies of current generation state of the art communication systems by providing much lower level of phase deviation error which would result in much higher modulation schemes and high data rate.
Building a Raspberry Pi Robot with Dot NET 8, Blazor and SignalR - Slides Onl...Peter Gallagher
In this session delivered at Leeds IoT, I talk about how you can control a 3D printed Robot Arm with a Raspberry Pi, .NET 8, Blazor and SignalR.
I also show how you can use a Unity app on an Meta Quest 3 to control the arm VR too.
You can find the GitHub repo and workshop instructions here;
https://bit.ly/dotnetrobotgithub
Google Calendar is a versatile tool that allows users to manage their schedules and events effectively. With Google Calendar, you can create and organize calendars, set reminders for important events, and share your calendars with others. It also provides features like creating events, inviting attendees, and accessing your calendar from mobile devices. Additionally, Google Calendar allows you to embed calendars in websites or platforms like SlideShare, making it easier for others to view and interact with your schedules.
Dynamic classification in silicon-based forwarding engine environments
1. 1
Dynamic Classification in Silicon-Based Forwarding
Engine Environments
R. Jaeger1,2
, R. Duncan2
, F. . Travostino2
, T. Lavian2
, J. Hollingsworth1
1
University of Maryland, College Park, MD 20742
2
Nortel Networks, 4401 Great America Parkway, Santa Clara, CA 9505
{rfj,hollings}@cs.umd.edu {rduncan, travos, tlavian}@nortelnetworks.com
Abstract--Current network devices enable connectivity
between end systems with support for routing with a
defined set of protocol software bundled with the hardware.
These devices do not support user customization or the
introduction of new software applications. Programmable
network devices allow for the dynamic downloading of
customized programs into network devices allowing for the
introduction of new protocols and network services. The
Oplet Runtime Environment (ORE) is a programmable
network architecture built on a Gigabit Ethernet L3
Routing Switch to support downloadable services.
Complementing the ORE, we introduce the JFWD API, a
uniform, platform-independent portal through which
application programmers control the forwarding engines of
heterogeneous network nodes (e.g., switches and routers).
Using the JFWD API, an ORE service has been
implemented to classify and dynamically adjust packet
handling on silicon-based network devices.
Index terms-- Programmable Networks, Active Networks,
ORE, JFWD, Differentiated Services
1 INTRODUCTION
Traditional network nodes (e.g. routers on the Internet)
enable end-system connectivity and sharing of network
resources by supporting a static and well-defined set of
protocols. The “virtual machine” defines the service
provided by the network to its users at each router, and is
simple and fixed. The trend in commercial-grade routers
and switches has been to implement ever more
functionality of this virtual machine in hardware; hardware
implementations have, in turn, enabled ever faster
instantiations of traditional network nodes. However, the
gain in raw performance due to hardware implementations
is, almost by necessity, at a loss of customization options
supported by the router on the data path. As more of the
router virtual machine is frozen in silicon, less are the
opportunities to introduce new services inside the
network.
1.1 Flexible Forwarding: Active Networks
In contrast, active networks (AN) expose a
“programmable” user-network interface that allows
network services to be introduced in active networks “on-
the-fly”. Active networks support per-flow customization
of the service provided by the network; flow is defined by
the user-network interface. The tenet of active networking
is as follows: the utility of the service by the network to
individual applications is maximized if applications
themselves define the service provided by the network.
To provide this level of support, active network
implementations incorporate a substantial software
component on the data path [12].1
Thus, implementations
of traditional and active networks must address the
tradeoff between performance and flexibility.
In this paper, we explore one point in the performance-
flexibility space: we describe an implementation of active
network techniques on a commercial routing platform--a
programmable network service platform implemented on
the Nortel Networks Accelar Gigabit Routing-Switch.
1.2 Active Networking applied to Commercial Grade
Hardware
This work describes a programmable network service
platform implemented on the Nortel Networks Accelar
Gigabit Routing-Switch. The primary goal of our work is
to build a working platform for implementing
programmable services on a commercial-grade router. In
doing so, we have tried to (a) preserve the router hardware
fast-path for data packets, and (b) leverage existing active
networking research as much as possible. Obviously, (a)
implies that certain computations that require data plane
flexibility are impossible in our implementation. A sub-
goal of our work is to identify sets of computations that
become possible as additional functionality is placed into
hardware. To support goal (b) we have implemented a
layer over which existing active network implementations
can be ported. In active networking parlance, we have not
introduced a new AN execution environment (EE), instead,
we added a Java-based run-time environment (the Oplet
Run-time Environment) for security and service
management over which existing EEs can be run as
network services; We ported the ANTS EE to run within
the ORE.
This paper details a policy-based packet classification
technique that is downloaded to a programmable network
device to dynamically adjust the DS-byte in the IP header
1
In case of both traditional and active networks, it may be
possible to provide fast and customizable forwarding by
incorporating hardware that is both programmable over a
relatively fine time-scale and can forward packets at line-
speeds (e.g. fast and programmable FPGAs).
2. 2
CPU
Wire Speed
Forwarding
Processor
Forwarding
Rules
Statistics
&Monitors
Forwarding
Processor
Forwarding
Rules
Statistics
&Monitors
Forwarding
Processor
Forwarding
Rules
Statistics
&Monitors
Control
Plane
. . .
of real-time flows on a silicon-based forwarding engine.
The technique is implemented using the Oplet Runtime
Environment (ORE), a network services platform which
supports dynamically loaded Java services. Crucial to the
classification engine is the JFWD network API which
provides control of the forwarding plane operations. We
demonstrate that we can support Java-based services
and implement packet copying to the control plane,
packet processing by dynamically downloaded services,
and packet forwarding policy adjustment on a silicon-
based, Gigabit Layer 3 Routing Switch.
1.3 Roadmap
In Section 2 we provide a brief overview of the DARPA
active network architecture, followed by a description of
internal architecture of the Accelar router. We discuss the
issues that must be resolved before the DARPA AN
architecture can be realized on a commercial platform such
as the Accelar routing switch and describe our mapping of
the DARPA AN architecture on the Accelar. In Section 3
we provide details of each component of our
implementation and describe the interfaces supported by
each layer. In Section 4 we present a dynamic real-time
packet classification application of the ORE/JFWD
implementation. In Section 5 we present related work and
compare our implementation with existing work both in an
architectural context and with respect to supported in-
network computations. We present conclusions and in
Section 6.
2 IMPLEMENTATION OVERVIEW
In this section, we present an overview of our
implementation. We give a synopsis of the DARPA
active networking architecture, the internal architecture of
the Accelar router, and then describe how we realize parts
of the AN architecture on the Accelar.
Figure 1 shows the node architecture for active networks
developed by the DARPA active network research
community [1].
NodeResources
NodeOperatingSystem
CommonObjects
(RoutingTables
Processors StateStore...IO Interfaces
ExecutionEnvironments
ANTS CANEs IPv4. . .
Active NetworkUserNetworkInterfaces
NodeResources
NodeOperatingSystem
CommonObjects
(RoutingTables
Processors StateStore...IO Interfaces
ExecutionEnvironments
ANTS CANEs IPv4. . .
Active NetworkUserNetworkInterfaces
Figure 1: DARPA Active Network Architecture.
2.1 DARPA Active Network Architecture
The DARPA active network architecture must address the
issue of the user-network interface supported by active
networks, i.e. what is the nature of the “virtual machine”
supported by each node in the network and what
processing does each packet in the network undergo?
The DARPA architecture supports multiple active network
user interfaces called Execution Environments (EEs). EEs
can implement a wide range of user-network interfaces
that exploit different points in the trade-off between
performance and flexibility, e.g. IPv4 can be considered a
high performance EE that does not provide much flexibility
while the ANTS [12] is an EE that provides a Java virtual
machine at each node and sacrifices some performance for
enhanced flexibility. By supporting multiple EEs, the
architecture allows network user applications choose
between performance and flexibility.
The computation, communication, and storage resources
at an active node are controlled by a Node Operating
System (Node OS). The node OS interface that exposes
resources available at the active node and mediates
access. The node OS demultiplexes incoming packets to
specific EE(s) and provides support for common objects
such as routing tables likely to be useful across EEs.
Using the node OS interface and abstractions, EEs
implement specific user-network interfaces; network
services are built using the interface exported by EEs.
2.2 Nortel Accelar Router
The Nortel Networks Accelar family of L3 Routing
Switches employs a distributed ASIC-based (Application
Specific Integrated Circuit) forwarding architecture with a
5.6-256 Gbps per second backplanes. The switches scale
to 384 10/100 ports or 96 Gigabit ports (or some
combination of the above). There are up to eight
hardware-forwarding priority queues per port and
hardware is controlled by VxWorks real-time OS.
Figure 2: Achitecture of the Accelar Router
Applications can monitor and control the ASIC hardware
via a switch-specific API that provides access to hardware
MIB instrumentation variables. For example, the switch
hardware provides functionality to set certain bits in an IP
packet or put a packet in a priority queue based on a
3. 3
matching a specific filter. This functionality is exposed by
an interface to the hardware instrumentation MIB that
controls the setting of hardware processing.
2.3 A Programmable Accelar Router
To transform the Accelar routing switch into a
programmable network service platform, we implemented a
run-time environment over which existing active network
EEs could be executed. In general, this would require the
implementation of the active network NodeOS API over
the Accelar embedded real-time OS. However, the AN
NodeOS API [2] was still evolving when we started our
work and most EEs are implemented either within a
JVM[12, 13] or over legacy OS interface. We chose not to
port/implement the NodeOS API but to provide support
for Java-based EEs by running an embedded JVM on the
Accelar VxWorks OS and by creating a Java-compatible
interface to the low-level hardware.
Unlike in traditional operating systems, the service
degradation due to a single (possibly malfunctioning or
malicious) JVM task on VxWorks is constrained because
the JVM runs as just another task in the real-time
VxWorks O/S with a fixed and upper-bounded processor
share and priority. The Java-compatible interface that
provides access to the low-level hardware of the Accelar
is the Java Forwarding (JFWD) API described in section
2.5.
Though not technically a necessity, we added separate
layer between the JVM and the EE. This layer --the Oplet
Runtime Environment (ORE)-- provides security and
management services that may eventually be subsumed
by the AN NodeOS and was deemed required for the
commercial viability of the programmable routers. As
mentioned before, the ORE enables a stricter intra-node
trust infrastructure allowing for different per-node
resource allocation policies without cooperation from EE
writers. Thus, the ORE provides mechanisms for node-
providers to impose per-EE resource limits without having
to trust the EE. A nice side-effect is that the ORE allows
multiple EEs (or multiple copies of a single EE) to be
instantiated within a single Accelar with different
privileges. In the next section, we present details of the
ORE and JFWD API.
3 THE ORE AND THE JFWD API
The ORE and the JFWD API are the two major software
components added to the hardware router. The ORE
provides a secure run-time environment for EE execution
while the JFWD API provides a mechanism for EEs to
access and control the switch hardware. We start with a
description of the ORE.
3.1 The ORE: Oplet Runtime Environment
The ORE is a platform for secure downloading,
installation, and safe execution of Java code (called
services) within a JVM. A service is an atomic piece of
code that implements specific functionality. A service
may depend on other services in order to execute. In
order to securely download and impose policy, we define
the notion of an “Oplet”. Oplets are self-contained
downloadable units that encapsulate a non-empty set of
services. Along with the service code, an Oplet specifies
service attributes, authentication information, and
resource requirements. Note that Oplets can encapsulate
a service that depends on some other service; in these
cases, Oplets also contain dependency information. In
general, the ORE must resolve and download the
transitive closure of Oplet dependencies before executing
a single service.
The ORE provides mechanisms to download Oplets,
resolve dependencies, manage the Oplet lifecycle, and
maintain a registry of active services. The ORE uses a
public-key infrastructure to download “trusted” Oplets.
In brief, the security infrastructure provides
authentication, integrity, and non-repudiation guarantees
on downloaded Oplets. Due to space restrictions, we will
not elaborate more on the secure downloading, execution,
or resource management features of Oplets.
3.2 Oplet Execution Safety
The ORE must provide safe execution and impose
resource limits. As far as possible, the ORE uses the
mechanisms provided by the Java language (type safety)
and the standard JVM (bytecode verification, sandbox,
security manager) to provide execution safety. The ORE
controls allocation of system resources by intercepting
allocation calls from the service code to the JVM.
To protect itself from denial of service attacks, deadlocks,
and unstable states, the ORE implements mechanisms for
thread safety and revocation. The ORE controls thread
creation by requiring Oplets to request new threads from
the ORE. The ORE determines whether to grant the
request based upon a node policy that takes into account
current thread usage, and the credentials of the requesting
Oplet. Once a thread is allocated, however, the current
implementation of the ORE has no mechanism in place to
account for or limit the consumption of computing
resources. In its most general form, the ORE must address
denial of service caused by a misbehaving service that
consumes CPU resources. To handle these issues, the
ORE needs JVM support for CPU accounting [14].
Sharing threads between Oplets presents two main
problems: (a) deadlock caused by a callee not returning
and (b) caller Oplet killing the shared thread while it is
executing in a callee Oplet's critical section. The ORE
protects itself from the first problem by never interacting
directly with any Oplet that it loads. Instead it creates a
trusted proxy which the ORE uses to delegate its
commands to the untrusted Oplet. The proxy uses a
4. 4
separate thread to call a method on the untrusted Oplet
and sets a timeout for returning from the call; if the thread
call does not return after a conservatively set timeout, a
fail-stop situation is assumed and the thread is killed. The
second problem is handled by the ORE by revoking
Oplet's ability to manipulate a thread's running status.
The ORE uses object revocation to control access to its
own resources. If the ORE determines that a specific
service is no longer permitted to use a resource reference
the reference can be revoked. For example, a service may
possess a “handle” to a data structure exported by
another Oplet that no longer exists. The ORE can detect
these cases and revoke access to “stale” objects.
However, for absolute protection, non-standard support is
required from the JVM implementation. Significant
modification would include the ability to perform
accounting for both CPU and memory consumption and
support for per-thread heap allocation and garbage
collection [14].
The ORE is currently under active development. At
present, it supports secure downloading of services,
resolves service dependencies, and allows access to
native router functionality through the JFWD API.
However, the current ORE version is still susceptible to
several flavors of denial-of-service attacks. These include
spurious triggering of the Java garbage collector, memory
fragmentation attacks, and stalling finalization of
objects[14]. Several memory related safety hazards
confronting the ORE will be resolved as JVMs support
multiple heaps, revocation and copy semantics of the
JKernel [8].
3.3 JFWD: The Java Forwarding API
The Java Forwarding API specifies interfaces for Java
applications to control a generic, platform-neutral
forwarding plane. The JFWD API consists of a set of Java
classes specifications and has been implemented on the
Accelar. Implementations of the JFWD classes is highly
platform dependent (recall that on the Accelar, the JFWD
API is a wrapper around the hardware MIB
instrumentation interface) is not part of the JFWD API.
JFWD is the first Java API package to explicitly address
the needs of contemporary forwarding planes of network
nodes which are increasingly implemented in silicon, must
support multiple protocols, and must realize Quality-of-
Service (QoS) low-level functionality. To drive an ever-
growing number of options, more diversified control data
will have to be fed into control planes.
The JFWD implementation across multiple hardware
platforms brings a) the abstraction of a platform-neutral
forwarding engine, b) a framework within which new
protocols and control data can be described, and c) a new
breed of shrink-wrapped Java programs for controlling
network nodes. In the rest of this section, we highlight
the main mechanisms that are provided by the JFWD API
on the Accelar switch.
The JFWD API can be used to instruct the forwarding
engine to alter packet processing through the installation
of hardware filters. The hardware filters execute “actions”
specified by a filter policy. On the Accelar, the filter can
be based on combinations of fields in the MAC, IP, and
transport headers. The policy can define where the
matching packets are delivered and can also be used to
alter the packet content. Packet delivery options include
discarding matching packets (or conversely, forwarding
matching packets if the default behavior was to drop
them) and diverting matching packets to the control plane.
Diverting packets to the control plane allows applications,
such as AN EEs to process packets. Additionally,
packets can be “copied” to the control plane or to a
mirrored interface. Packets may also be identified as being
part of high priority flows; these packets can be placed in
a static hardware high priority queue.
The filter policy can also cause packet and header content
to be selectively altered (e.g. the Type of Service bits on
matching packets can be set). The existing hardware is
capable of re-computing IP header checksum information
at line speeds when the IP header is changed.
3.4 Network Services supported by the JFWD API
In this section, we explore the set of possible and
precluded computations on the ORE/JFWD API.
Obviously, these computations define and constrain the
set of network services that can be implemented on the
ORE/JFWD platform. Note that the ORE does not, a-
priori, exclude any computation; instead, it enforces node
policy that may cause certain (e.g. processor-intensive)
computations to not be started or terminated during
execution. Computations are, instead, constrained by the
JFWD API since this API defines the capabilities exported
by the hardware that can be used to build network
services. Thus, some computations, e.g. certain video
transcoding techniques that must process every packet,
cannot efficiently be implemented in our system
regardless of node policy. Not all precluded computations
involve data transformation; certain network based
anycasting/routing schemes in which a program must be
executed to find the outgoing switch port cannot be
supported either.
In general, all control-plane only computations, e.g.
installing new routing tables or parsing a new ICMP
message type, can rather easily be accommodated by the
ORE/JFWD API. An important ability provided the JFWD
API is to selectively route (or copy) packets to the
control plane. As we will see, this does significantly
enlarge the set of services that can be implemented on the
Accelar. In the rest of this section, we identify a specific
set of services that can be implemented using the current
version of the JFWD API.
The following network services can be implemented using
the current implementation (obviously, this list is merely
representative and not meant to be exhaustive):
5. 5
- Filtering firewall - A simple application would be a
firewall that allows or denies packets to traverse on
specified interfaces depending on whether the
packet's header matches a given bit mask.
-Application-specific firewall - It is relatively
straightforward to extend the filtering firewall
implement certain application-specific firewalls. For
example, a FTP gateway that dynamically changes the
firewall rules to allow ftp-data connections to a
``trusted'' host can be implemented. Security
functions like stopping TCP segments with no (or all)
bits set can also be dynamically programmed on the
Accelar.
Almost all modern routers allow for a filtering firewall
and application-specific firewall functionality. It is
imperative to note that these services can be added,
modified, and deleted dynamically on to the Accelar
ORE/JFWD platform. The next three services are
examples that, in general, are not yet available in most
commercial routers. (There are isolated instances of
routers where some of these services may be built
into the hardware).
- Dynamic RTP flow identification - RTP over UDP
flows are identified by an ephemeral UDP port
number. In general, some host chooses this port
number and it is not well known. We have
implemented several mechanisms to identify RTP
flows traversing the Accelar. Using the JFWD API,
control protocol (SIP/RTSP/H.323) messages can be
intercepted to identify port numbers for RTP flows.
- DiffServ: Classifier, Marker - The Accelar can be
turned into a DiffServ[6] Classifier by suitably
programming its hardware filters. Further, the
hardware (and in turn, the JFWD API) provides
mechanisms to change, at line-speed, selected bits in
the IP header. This ability can be used to implement
parts of DiffServ ingress/egress marker capabilities on
the Accelar. A subtle benefit of this solution is that
new firmware or hardware does not have to be
shipped each time a new DiffServ scheme/PHB
becomes popular. Instead, using existing ORE
service instantiation mechanisms, only the service-
specific logic has to be uploaded onto the router.
This can be accomplished on-line, without
interrupting existing flows or services.
- PGM-like Reliable multicast - The packet filtering
capabilities of the Accelar allows certain packets to
be copied on for inspection by the service code. This
mechanism can be used to divert (negative)
acknowledgements from multicast sessions to the
control plane. The service code can, much like the
PGM reliable multicast scheme, send one copy of the
NAK upstream and suppress duplicate NAKs. Unlike
PGM, modulo resource constrains, it is possible to
implement reliable multicast services that keep a small
packet cache and immediately re-transmit a lost
segment. Other services, such as multicast ancestor
discovery, can also be efficiently implemented by
providing the service code interfaces to the routing
table.
4 EXPERIMENTAL JFWD APPLICATION
To support a new breed of router-based programs that do
not delay packet forwarding, we use the JFWD API to
instruct the forwarding engine to send packets to both the
data plane output queue and also to the control plane.
This feature, called CarbonCopy, does not divert packets
to the control plane; it performs wire-speed forwarding
while copying the packets to the control planes. Packets
captured into the control plane can then be processed and
decisions about packet processing can be made. By
allowing ORE services to modify the packet handling in
the ASIC forwarding engine, new types of applications are
possible that do not require core router functionality to be
altered.
In [5], the authors present a control-on-demand
architecture in which flow control is performed on a best
effort basis. An IPv4 flow is determined by five fields in
the IPv4 header: the IP source and destination address,
the source and destination port numbers, and the
protocol. Packets belonging to a flow are copied to the
control plane for processing while simultaneously
forwarding the packet. This is our approach as well. It
deviates from the store-execute-forward paradigm of
Active Networks.
We implemented an ORE service, called the DiffServ
Classification service (DSC), to classify flows and modify
packet headers based on the policy set for a particular
protocol contained in the IP header. A policy determines
the action to be taken for a particular flow or class of
flows. A policy filter executes the actions specified in the
policy.
Our implementation copies all real-time protocol
connection signaling messages (e.g. SIP, RTSP, H.323)
from the forwarding plane. To accomplish this task, the
service sets a filter for packets on the default SIP
connection setup port. This filter copies all packets on
that port into the control plane. The DSC receives these
packets and processes the content to identify the ports on
which the RTP communication is to take place. Since the
SIP messages use a text format for communicating the port
information, identifying the port information is straight
forward.
The DSC creates a policy filter for RTP flows identified by
the signaling messages. The policy filter created for a
particular flow is based on the IP header fields in the
packet that determine a flow. We call this the flow
signature. In this case, the signature consists of the
source and destination IP addresses and the source and
destination port numbers. Protocol could also be used as
part of the signature (e.g. UDP). The DSC sets a policy
6. 6
filter for the packet signature that will put those flows into
the higher priority queue within the edge router. The
Accelar 1100B has 2 priority queues so RTP packets were
placed into the higher of the two queues. The DSC also
sets the DS-byte in the Ipv4 header on the packets to
ensure better processing treatment at downstream
processors that implement Differentiated Services as
determined by the per-hop behavior policy. A policy filter
is stored for each RTP flow identified by the signaling
message processing.
4.1 Discussion
The novelty of the experiment described above is that it is
done by a service that is downloaded and installed
dynamically onto a commercial-grade router and that
RTP flows are identified dynamically, not preconfigured.
In this section, we discuss an immediate application of
this functionality that we are using in our own research
facilities.
An immediate benefit of on-line identification of flows and
dynamic adjustment of packet priority is to support cluster
computing. In cluster systems such as Condor[11],
NOW[3], Stealth[10], and Linger-Longer[15] workstations
are used to run jobs when the computer's primary user is
not using their computers. To make these systems usable,
the software that runs guest jobs user's workstations goes
to great lengths to ensure that the guest process does not
interfere with the primary user. However, until now there
has been no clean way to isolate guest use of a
workstation from network traffic generated by normal
users.
By using active networking at the local area network
switch, we can dynamically identify the flows associated
with guest jobs. Although these jobs typically have a set
of well-known ports, they also can use other network
services. To help identify these flows, the cluster
scheduler software, can inform the switch when a
particular node has started to run a guest process. For
some clusters such as Condor and NOW, a node in a
cluster is either running guest processes or local process
and switches between them on a time-scale measured in
minutes. For these types of systems, a simple filter to re-
prioritize all traffic from the host running a guest process
can be installed by the cluster scheduler. However,
system such as Stealth and Linger-Longer allow fine-grain
sharing of processors between guest and local processes.
To accommodate these systems, the filter needs to be able
to identify whether traffic associated from a node is due to
a guest process or a local process. To do this a more
complete dynamic flow detection that that can now be
implemented on the Accelar is required.
5 RELATED WORK
We are not aware of another integrated active networking
platform implementation on a (commercial) hardware
platform. The active networking work on the Washington
University Switch Kit employs locally connected
machines as active processors2
. The Tempest [13]
provides a customizable control plane for ATM networks.
The basic ideas of high-performance active networking by
decoupling the forwarding path from a programmable
control plane was introduced, in a software
implementation, in the Control-on-Demand (CoD) [9]
platform co-developed at AT&T Labs. In this section, we
compare our approach to CoD, and discuss how existing
active networking research fits within our framework.
The Control-on-Demand platform was developed and
implemented over IPv6 as an extension to the Linux kernel
[9]3
. Data packets were kept in the kernel in per-flow
queues while active control could be applied to the data
packets by dynamically loaded “per-flow controllers” that
executed in user space. The per-flow controllers affected
the data path using the CoD API. A meta-controller
loaded each per-flow controller using a signaling protocol.
CoD was developed to be specifically mapped onto
hardware platforms and its relationship to our work is
clear. Services on the Accelar map to per-flow controllers
in CoD; the JFWD API on the Accelar maps to the CoD
API; the ORE functionality on the Accelar is not
completely replicated in CoD, though the meta-controller
does provide a subset of the ORE functionality. As CoD
was implemented in software; it provides all of the JFWD
functionality, and also provides the queue exposure and
manipulation facilities on our hardware wish list.
Active networking NodeOS's can potentially be
implemented over VxWorks on the Acclear. There is one
fundamental problem: the AN NodeOS architecture allows
for all packets on specific channels to be delivered to the
EE for further processing. This would negate the benefits
of the hardware forwarding path available in the Accelar.
However, the Accelar provides a perfect platform for
implementing fast cut-through paths. The Bowman
NodeOS[12] is a particularly good fit as it is specifically
supports cut-through paths and is designed as alayer
above a host OS that provides low-level hardware access.
Thus, Bowman can directly be ported on to the Accelar
using VxWorks as its host OS.
For other Node OS efforts, the VxWorks platform already
implements much of the required functionality such as
memory management. However, it is not obvious if some
of the abstractions supported by these systems (e.g. the
path abstraction in Scout) can directly be mapped on to
the Accelar hardware features.
Java-based EEs can directly be ported on to the ORE.
Once a functional AN Node OS has been ported to run
over VxWorks, other “native” EEs such as CANEs can be
implemented on the Accelar.
6 CONCLUSION
2
See http://www.ccrc.wustl.edu/gigabitkits/kits.html
3
Control on Demand was co-developed by S.
Bhattacharjee
7. 7
We presented a summary of the challenges in bringing
Active Networking ideas to current high performance
hardware-based routers and switches. In addition, we
showed that while it is not possible to support active
packets for every packet at line speed on these systems
(nor any system), it is possible to exploit existing hardware
filtering mechanisms to allow a variety of scenarios that
require active functionality on routers. To demonstrate
the feasibility of our approach, we implemented a dynamic
classification service on a commercial-grade Gigabit L3
Routing Switch. The ORE supports the creation of
services in Java that are extensible, portable, and easily
distributed over the network. It provides a platform for
safely running these services without disturbing the
existing core functionality of the router. Through the
JFWD API, the packet capture, processing, and
modification capabilities are realized at the programmable
node. Because of the CarbonCopy and filter mapping
features provided in the JFWD API, we were able to create
an ORE service to perform dynamic DiffServ Classification
and DS-byte adjustment in an effort to improve the
performance of real-time network flows.
7 REFERENCES
1. "Architectural Framework for Active Networks
Version 0.9," . August 31, 1999,.Active Networks
Working Group.
2. "NodeOS Interface Specification," . June 15,
1999,.AN Node OS Working Group.
3. R. H. Arpaci, A. C. Dusseau, A. M. Vahdat, L. T.
Liu, T. E. Anderson, and D. A. Patterson, "The
Interaction of Parallel and Sequential Workloads
on a Network of Workstations," SIGMETRICS.
May 1995, Ottawa, pp. 267-278.
4. S. Bhattacharjee, Active Networks:
Architectures, Composition, and
Applications,Ph.D., Computer Science
Department Georgia Institute of
Technology,1999.
5. R. Braden, L. Zhang, S. Berson, S. Herzog, and S.
Jamin., Resource ReSerVation Protocol (RSVP),
RFC 2205, , September 1997.
6. D. Black, S. Blake, M. Carlson, E. Davies, Z.
Wang, and W. Weiss, An Architecture for
Differentiated Services, RFC2475, , Dec. 1998.
7. S. Floyd and V. Jacobson, "Random Early
Detection Gateways for Congestion Avoidance,"
IEEE/ACM Transactions on Networking, 1(4),
1993, pp. 397-413.
8. C. Hawblitzel, C. Chang, G. Czajkowski, D. Hu,
and T. v. Eicken, "Implementing Multiple
Protection Domains in Java," USENIX Technical
Conference Proceedings. June 1998.
9. G. Hja'lmtysson and S. Bhattacharjee, "Control
on Demand: An efficient approach to router
programmability," . April 1999.
10. P. Kruger and R. Chawla, "The Stealth
Distributed Scheduler," ICDCS. 1991, pp. 336-
343.
11. M. Litzkow, M. Livny, and M. Mutka, "Condor -
A Hunter of Idle Workstations," International
Conference on Distributed Computing Systems.
June 1988, pp. 104-111.
12. S. Merugu, S. Bhattacharjee, E. Zegura, and K.
Calvert, "Bowman: A Node OS for Active
Networks," to appear INFOCOM'2000.
13. J. E. v. d. Merwe, S. Rooney, M. Leslie, and S. A.
Crosby, "The Tempest - A Practical Framework
for Network Programmability," IEEE Network,
12(3), 1998.
14. P.Bernadat, D. Lambright, and F. Travostino,
"Towards a Resource-safe Java for Service-
Guarantees in Uncooperative Environments,"
IEEE Symposium on Programming Languages
for Real-time Industrial Applications (PLRTIA).
Dec. 98, Madrid, Spain.
15. K. D. Ryu and J. K. Hollingsworth, "Linger
Longer: Fine-Grain Cycle Stealing for Networks
of Workstations," SC'98. Nov. 1998, Orlando,
ACM Press.
16. D. Wetherall and e. al., "ANTS: A Toolkit for
Building and Dynamically Deploying Network
Protocols," OPENARACH'98. 1998.
17. Y. Yemini and S. da Silva, “Towards
Programmable Networks,” in IFIP/IEEE
International Workshop on Distributed Systems:
Operations and Management, L’Aquila, Italy,
October, 1996