wiki:GENIBibliography

Version 16 (modified by Mark Berman, 5 years ago) (diff)

--

GENI Bibliography Page

This page contains GENI-relevant papers. It is intended to include papers addressing:

  • Design, architecture, development, or deployment of GENI
  • Design, architecture, development, or deployment of aggregates or capabilities and their relationships with GENI
  • Federation of GENI and other testbeds
  • Research, experiments, services, and applications using GENI

Recognizing GENI in your work

To help us track GENI's impact, we have a simple requirement. If you use GENI in your research or classroom, you must say so in your published papers or other documents. You may make this acknowledgement by citing the following paper:

GENI: A federated testbed for innovative network experiments.

This BibTeX entry may be used to cite GENI.

We also appreciate hearing about how you're using GENI and how GENI could better meet your needs. Please send updates and thoughts to help@geni.net.

Adding to this bibliography

We welcome your contributions to this bibliography. Please send references to Mark Berman and Niky Riga. Preferred formats are:

Feel free to download the attached BibTeX source file.

GENI Bibliography

    Aikat, Jay and Hasan, Shaddi and Jeffay, Kevin and Smith, F. Donelson
  1. Author Aikat, Jay and Hasan, Shaddi and Jeffay, Kevin and Smith, F. Donelson
    Title Discrete-Approximation of Measured Round Trip Time Distributions: A Model for Network Emulation
    Booktitle First GENI Research and Educational Experiment Workshop (GREE 2012)
    Location Los Angeles
    Year 2012
    Abstract Empirical evaluations to study network performance, whether in a laboratory setting or on GENI testbeds, rely heavily on measurement-based modeling of round trip times (RTTs) to emulate realistic end-to-end delays of local and metropolitan area networks. For generating realistic traffic, we studied several models to emulate RTTs. In this paper, we performed experiments on real testbeds using synthetic TCP traffic generated from measurement data from a large university campus. As a result of our study, we present the Discrete- Approximation model for RTT (DA-RTT) emulation. Using three different metrics for performance evaluation, which include queue length at routers, connection response times, and connection durations, we demonstrate that the simple DA-RTT model closely represents the per-connection RTTs in the original traffic. While these experiments were performed in our laboratory, and not using GENI infrastructure, we present this as a possible model for adoption on GENI testbeds to emulate Round Trip Time Distributions for GENI experiments.


    Albrecht, J. and Huang, D. Y.
  2. Author Albrecht, J. and Huang, D. Y.
    Title Managing distributed applications using Gush
    Journal Proceedings of the ICST Conference on Testbeds and Research Infrastructures for the Development of Networks and Communities, Testbed Practices Session (TridentCom)
    Year 2010
    Abstract Deploying and controlling experiments running on a distributed set of resources is a challenging task. Software developers often spend a significant amount of time dealing with the complexities associated with resource configuration and management in these environments. Experiment control systems are designed to automate the process, and to ultimately help developers cope with the common problems that arise during the design, implementation, and evaluation of distributed systems. However, many of the existing control systems were designed with specific computing environments in mind, and thus do not provide support for heterogeneous resources in different testbeds. In this paper, we explore the functionality of Gush, an experiment control system, and discuss how it supports execution on three of the four GENI control frameworks.
    DOI 10.1007/978-3-642-17851-1_31
    URL http://dx.doi.org/10.1007/978-3-642-17851-1_31


    Albrecht, Jeannie R.
  3. Author Albrecht, Jeannie R.
    Title Bringing big systems to small schools: distributed systems for undergraduates
    Journal SIGCSE Bull.
    Publisher ACM
    Address New York, NY, USA
    Year 2009
    Abstract Distributed applications have become a core component of the Internet's infrastructure. However, many undergraduate curriculums, especially at small colleges, do not offer courses that focus on the design and implementation of distributed systems. The courses that are offered address the theoretical aspects of system design, but often fail to provide students with the opportunity to develop and evaluate distributed applications in real-world environments. As a result, undergraduate students are not as prepared as they should be for graduate study or careers in industry. This paper describes an undergraduate course in Distributed Systems that not only studies the key design principles of distributed systems, but also has a unique emphasis on giving students hands-on access to distributed systems through the use of shared computing testbeds, such as PlanetLab and GENI, and open-source technologies, such as Xen and Hadoop. Using these platforms, students can perform large-scale, distributed experimentation even at small colleges.
    DOI 10.1145/1539024.1508903
    URL http://dx.doi.org/10.1145/1539024.1508903


    Albrecht, Jeannie and Tuttle, Christopher and Braud, Ryan and Dao, Darren and Topilski, Nikolay and Snoeren, Alex C. and Vahdat, Amin
  4. Author Albrecht, Jeannie and Tuttle, Christopher and Braud, Ryan and Dao, Darren and Topilski, Nikolay and Snoeren, Alex C. and Vahdat, Amin
    Title Distributed application configuration, management, and visualization with plush
    Journal ACM Trans. Internet Technol.
    Publisher ACM
    Address New York, NY, USA
    Year 2011
    Abstract Support for distributed application management in large-scale networked environments remains in its early stages. Although a number of solutions exist for subtasks of application deployment, monitoring, and maintenance in distributed environments, few tools provide a unified framework for application management. Many of the existing tools address the management needs of a single type of application or service that runs in a specific environment, and these tools are not adaptable enough to be used for other applications or platforms. To this end, we present the design and implementation of Plush, a fully configurable application management infrastructure designed to meet the general requirements of several different classes of distributed applications. Plush allows developers to specifically define the flow of control needed by their computations using application building blocks. Through an extensible resource management interface, Plush supports execution in a variety of environments, including both live deployment platforms and emulated clusters. Plush also uses relaxed synchronization primitives for improving fault tolerance and liveness in failure-prone environments. To gain an understanding of how Plush manages different classes of distributed applications, we take a closer look at specific applications and evaluate how Plush provides support for each.
    DOI 10.1145/2049656.2049658
    URL http://dx.doi.org/10.1145/2049656.2049658


    Angu, Pragatheeswaran and Ramamurthy, Byrav
  5. Author Angu, Pragatheeswaran and Ramamurthy, Byrav
    Title Experiences with dynamic circuit creation in a regional network testbed
    Booktitle 2011 IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS)
    Location Shanghai, China
    Publisher IEEE
    Year 2011
    Abstract In this paper we share our experiences of enabling dynamic circuit creation in the GpENI network. GpENI is a network research testbed in the mid-west USA involving several educational institutions. University of Nebraska-Lincoln is involved in provisioning dynamic circuits across the GpENI network among its participating universities. We discuss several options investigated for deploying dynamic circuits over the GpENI network as well as our demonstration experiments at the GENI engineering conferences. UNL has also collaborated with ProtoGENI project of University of Utah and Mid-Atlantic Crossroads (MAX) facility of Washington DC to create inter-domain dynamic circuits.
    DOI 10.1109/infcomw.2011.5928801
    URL http://dx.doi.org/10.1109/infcomw.2011.5928801


    Augé, Jordan and Parmentelat, Thierry and Turro, Nicolas and Avakian, Sandrine and Baron, Lo\\ic and Larabi, Mohamed A. and Rahman, Mohammed Y. and Friedman, Timur and Fdida, Serge
  6. Author Augé, Jordan and Parmentelat, Thierry and Turro, Nicolas and Avakian, Sandrine and Baron, Lo\\ic and Larabi, Mohamed A. and Rahman, Mohammed Y. and Friedman, Timur and Fdida, Serge
    Title Tools to foster a global federation of testbeds
    Journal Computer Networks
    Year 2014
    Abstract A global federation of experimental facilities in computer networking is being built on the basis of a thin waist, the Slice-based Federation Architecture (SFA), for managing testbed resources in a secure and efficient way. Its success will depend on the existence of tools that allow testbeds to expose their local resources and users to browse and select the resources most appropriate for their experiments. This paper presents two such tools. First, SFAWrap, which makes it relatively easy for a testbed owner to provide an SFA interface for their testbed. Second, MySlice, a tool that allows experimenters to browse and reserve testbed resources via SFA, and that is extensible through a system of plug-ins. Together, these tools should lower the barriers to entry for testbed owners who wish to join the global federation.
    DOI 10.1016/j.bjp.2013.12.038
    URL http://dx.doi.org/10.1016/j.bjp.2013.12.038


    Babaoglu, Ahmet C.
  7. Author Babaoglu, Ahmet C.
    Title Verification Services for the Choice-Based Internet of the Future
    Year 2014
    Abstract The Internet has grown from its inception as a special-purpose internetwork into a general multi-purpose world-wide facility enabling education, commerce, governance, and societal communication, all in the space of a few decades. Over this time, and accelerating in the last decade or so, increasing demands and a growing variety of use cases are posing new challenges on the architecture prompting re-thinking and re-architecting of the network. One thread of research in such architectural considerations involves the issue of choice. The lack of alternative network services brings little economic incentive for the network service providers to make investments to deploy new technologies and improve the quality of their network services. In addition, most user flows goes through several providers, thus there is no effective mechanism in the current Internet to provide feedback to users about which provider is the cause of the performance problems they experience. One solution to these problems is to create a more competitive open market where providers can advertise their network services, and users can choose their desired set of network services to satisfy their needs. In this solution, the users have the option to choose another service if they are not satisfied. However, even in this solution, the root cause of the performance problems still can not be found and it brings us to the lack of a robust feedback capability. In this work, we investigate a solution to this fundamental missing piece of the In- ternet, the measurement and verification capability of the network services offered in the Internet, that indirectly pushes more responsibility to the network providers to fulfill their requirements for high quality services. Our work, while rooted in standard expectations of economic theory, is not in economics itself. Rather, it is in defining, designing, and realizing architectural entities and interactions in technical terms that can realize verification services essential to enabling such economic interactions. Our work is threefold; after giving a literature overview of the research on future Internet and Internet measurement, we first propose an architecture that defines the roles, interactions and design choices to enable a Choice-Based Verification Service. We then describe the results and analysis of a series of tests, which start with our work on measurement frameworks in wired and wireless environments and continue with the simulation, the mechanism introduced and the actual prototype of this work deployed into a real system, the GENI meso-scale testbed. Finally, we investigate and validate whether such informed choices with verification service actually lead to better overall results. We use energy-efficiency as a practical and useful domain for a case study and show the simulation results, which greatly increase the appeal of this work as applicable real-world network services.
    URL http://www.lib.ncsu.edu/resolver/1840.16/9336


    Baldine, Ilia and Xin, Yufeng and Mandal, Anirban and Renci, Chris H. and Chase, Unc-Ch J. and Marupadi, Varun and Yumerefendi, Aydan and Irwin, David
  8. Author Baldine, Ilia and Xin, Yufeng and Mandal, Anirban and Renci, Chris H. and Chase, Unc-Ch J. and Marupadi, Varun and Yumerefendi, Aydan and Irwin, David
    Title Networked cloud orchestration: A GENI perspective
    Booktitle 2010 IEEE Globecom Workshops
    Location Miami, FL, USA
    Publisher IEEE
    Year 2010
    Abstract This paper describes the experience of developing a system for creation of distributed linked configurations of heterogeneous resources (slices) in GENI. Our work leverages a number of unique architectural solutions (distributed architecture, declarative resource specifications, unique approach to slice instantiation) which is applicable to a wider set of problems related to autonomic co-scheduling and provisioning of heterogeneous networked resources. We discuss the architecture, the resource description mechanisms and some of the algorithms used to enable our system. We conclude with an analysis of a real experiment at allocating resources from multiple providers across a very wide geographic area (spanning Massachusetts, Illinois and North Carolina) to create a single private Layer 2 network connecting virtual machines on the campus of Duke University to a sensor testbed at University of Massachusetts, Amherst.
    DOI 10.1109/GLOCOMW.2010.5700385
    URL http://dx.doi.org/10.1109/GLOCOMW.2010.5700385


    Baldine, Ilia and Xin, Yufeng and Mandal, Anirban and Ruth, Paul and Yumerefendi, Aydan and Chase, Jeff
  9. Author Baldine, Ilia and Xin, Yufeng and Mandal, Anirban and Ruth, Paul and Yumerefendi, Aydan and Chase, Jeff
    Title ExoGENI: A Multi-Domain Infrastructure-as-a-Service Testbed
    Booktitle 8th International ICST Conference on Testbeds and Research Infrastructures for the Development of Networks and Communities (TRIDENTCOM 2012)
    Year 2012
    Abstract NSF's GENI program seeks to enable experiments that run within virtual network topologies built-to-order from testbed infrastructure offered by multiple providers (domains). GENI is often viewed as a network testbed integration effort, but behind it is an ambitious vision for multi-domain infrastructure-as-a-service (IaaS). This paper presents ExoGENI, a new GENI testbed that links GENI to two advances in virtual infrastructure services outside of GENI: open cloud computing (OpenStack) and dynamic circuit fabrics. ExoGENI orchestrates a federation of independent cloud sites and circuit providers through their native IaaS interfaces, and links them to other GENI tools and resources. The ExoGENI deployment consists of cloud site ``racks'' on host campuses within the US, linked with national research networks and other circuit networks through programmable exchange points. The ExoGENI sites and control software are enabled for software-defined networking using OpenFlow. ExoGENI offers a powerful unified hosting platform for deeply networked, multi-domain, multi-site cloud applications. We intend that ExoGENI will seed a larger, evolving platform linking other third-party cloud sites, transport networks, and other infrastructure services, and that it will enable real-world deployment of innovative distributed services and new visions of a Future Internet.


    Bastin, Nicholas and Bavier, Andy and Blaine, Jessica and Chen, Jim and Krishnan, Narayan and Mambretti, Joe and McGeer, Rick and Ricci, Rob and Watts, Nicki
  10. Author Bastin, Nicholas and Bavier, Andy and Blaine, Jessica and Chen, Jim and Krishnan, Narayan and Mambretti, Joe and McGeer, Rick and Ricci, Rob and Watts, Nicki
    Title The InstaGENI initiative: An architecture for distributed systems and advanced programmable networks
    Journal Computer Networks
    Year 2014
    Abstract In this paper, we describe InstaGENI, a distributed cloud based on programmable networks designed for the GENI Mesoscale deployment and large-scale distributed research projects. The InstaGENI architecture closely integrates a lightweight cluster design with software-defined networking, Hardware-as-a-Service and Containers-as-a-Service, remote monitoring and management, and high-performance inter-site networking. The initial InstaGENI deployment will encompass 34 sites across the United States, interconnected through a specialized GENI backbone network deployed over national, regional and campus research and education networks, with international network extensions to sites across the world.
    DOI 10.1016/j.bjp.2013.12.034
    URL http://dx.doi.org/10.1016/j.bjp.2013.12.034


    Bavier, Andy and Coady, Yvonne and Mack, Tony and Matthews, Chris and Mambretti, Joe and McGeer, Rick and Mueller, Paul and Snoeren, Alex and Yuen, Marco
  11. Author Bavier, Andy and Coady, Yvonne and Mack, Tony and Matthews, Chris and Mambretti, Joe and McGeer, Rick and Mueller, Paul and Snoeren, Alex and Yuen, Marco
    Title GENICloud and transcloud
    Booktitle Proceedings of the 2012 workshop on Cloud services, federation, and the 8th open cirrus summit
    Location San Jose, California, USA
    Publisher ACM
    Address New York, NY, USA
    Year 2012
    Abstract In this paper, we argue that federation of cloud systems requires a standard API for users to create, manage, and destroy virtual objects, and a standard naming scheme for virtual objects. We introduce an existing API for this purpose, the Slice-Based Federation Architecture, and demonstrate that it can be implemented on a number of existing cloud management systems. We introduce a simple naming scheme for virtual objects, and discuss its implementation.
    DOI 10.1145/2378975.2378980
    URL http://dx.doi.org/10.1145/2378975.2378980


    Berman, Mark and Chase, Jeffrey S. and Landweber, Lawrence and Nakao, Akihiro and Ott, Max and Raychaudhuri, Dipankar and Ricci, Robert and Seskar, Ivan
  12. Author Berman, Mark and Chase, Jeffrey S. and Landweber, Lawrence and Nakao, Akihiro and Ott, Max and Raychaudhuri, Dipankar and Ricci, Robert and Seskar, Ivan
    Title GENI: A federated testbed for innovative network experiments
    Journal Computer Networks
    Year 2014
    Abstract GENI, the Global Environment for Networking Innovation, is a distributed virtual laboratory for transformative, at-scale experiments in network science, services, and security. Designed in response to concerns over Internet ossification, GENI is enabling a wide variety of experiments in a range of areas, including clean-slate networking, protocol design and evaluation, distributed service offerings, social network integration, content management, and in-network service deployment. Recently, GENI has been leading an effort to explore the potential of its underlying technologies, SDN and GENI racks, in support of university campus network management and applications. With the concurrent deployment of these technologies on regional and national R&E backbones, this will result in a revolutionary new national-scale distributed architecture, bringing to the entire network the shared, deeply programmable environment that the cloud has brought to the datacenter. This deeply programmable environment will support the GENI research mission and as well as enabling research in a wide variety of application areas.
    DOI 10.1016/j.bjp.2013.12.037
    URL http://dx.doi.org/10.1016/j.bjp.2013.12.037


    Berryman, Alex and Calyam, Prasad and Cecil, Joe and Adams, George B. and Comer, Douglas
  13. Author Berryman, Alex and Calyam, Prasad and Cecil, Joe and Adams, George B. and Comer, Douglas
    Title Advanced Manufacturing Use Cases and Early Results in GENI Infrastructure
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.13
    URL http://dx.doi.org/10.1109/GREE.2013.13


    Bhanage, G. and Daya, R. and Seskar, I. and Raychaudhuri, D.
  14. Author Bhanage, G. and Daya, R. and Seskar, I. and Raychaudhuri, D.
    Title VNTS: A Virtual Network Traffic Shaper for Air Time Fairness in 802.16e Systems
    Booktitle Communications (ICC), 2010 IEEE International Conference on
    Publisher IEEE
    Year 2010
    Abstract The 802.16e standard for broadband wireless access mandates the presence of QoS classes, but does not specify guidelines for the scheduler implementation or mechanisms to ensure air time fairness. Our study demonstrates the feasibility of controlling downlink airtime fairness for slices while running above a proprietary WiMAX basestation (BS) scheduler. We design and implement a virtualized infrastructure that allows users to obtain at least an allocated percentage of BS resources in the presence of saturation and link degradation. Using Kernel virtual machines for creating slices and Click modular router for implementing the virtual network traffic shaping engine we show that it is possible to adaptively control slice usage for downlink traffic on a WiMAX Basestation. The fairness index and coupling coefficient show an improvement of up to 42%, and 73% with preliminary indoor walking mobility experiments. Outdoor vehicular measurements show an improvement of up to 27%, and 70\\\\ with the fairness index and coupling coefficient respectively
    DOI 10.1109/ICC.2010.5502484
    URL http://dx.doi.org/10.1109/ICC.2010.5502484


    Bhanage, G. and Seskar, I. and Zhang, Y. and Raychaudhuri, D. and Jain, S.
  15. Author Bhanage, G. and Seskar, I. and Zhang, Y. and Raychaudhuri, D. and Jain, S.
    Title Experimental evaluation of openvz from a testbed deployment perspective
    Journal Proceedings of the ICST Conference on Testbeds and Research Infrastructures for the Development of Networks and Communities (TridentCom)
    Year 2010
    DOI 10.1007/978-3-642-17851-1_7
    URL http://dx.doi.org/10.1007/978-3-642-17851-1_7


    Bhanage, G. and Vete, D. and Seskar, I. and Raychaudhuri, D.
  16. Author Bhanage, G. and Vete, D. and Seskar, I. and Raychaudhuri, D.
    Title SplitAP: Leveraging Wireless Network Virtualization for Flexible Sharing of WLANs
    Booktitle Global Telecommunications Conference (GLOBECOM 2010), 2010 IEEE
    Publisher IEEE
    Year 2010
    Abstract Providing air-time guarantees across a group of clients forms a fundamental building block in sharing an access point (AP) across different virtual network providers. Though this problem has a relatively simple solution for downlink group scheduling through traffic engineering at the AP, solving this problem for uplink (UL) traffic presents a challenge for fair sharing of wireless hotspots. Among other issues, the mechanism for uplink traffic control has to scale across a large user base, and provide flexible operation irrespective of the client channel conditions and network loads. In this study, we propose the SplitAP architecture that address the problem of sharing uplink airtime across groups of users by extending the idea of network virtualization. Our architecture allows us to deploy different algorithms for enforcing UL airtime fairness across client groups. In this study, we will highlight the design features of the SplitAP architecture, and present results from evaluation on a prototype deployed with: (1) LPFC and (2) LPFC+, two algorithms for controlling UL group fairness. Performance comparisons on the ORBIT testbed show that the proposed algorithms are capable of providing group air-time fairness across wireless clients irrespective of the network volume, and traffic type. The algorithms show up to 40% improvement with a modified Jain fairness index.
    DOI 10.1109/GLOCOM.2010.5684328
    URL http://dx.doi.org/10.1109/GLOCOM.2010.5684328


    Bhanage, Gautam and Seskar, Ivan and Mahindra, Rajesh and Raychaudhuri, Dipankar
  17. Author Bhanage, Gautam and Seskar, Ivan and Mahindra, Rajesh and Raychaudhuri, Dipankar
    Title Virtual basestation: architecture for an open shared WiMAX framework
    Booktitle Proceedings of the second ACM SIGCOMM workshop on Virtualized infrastructure systems and architectures
    Location New Delhi, India
    Publisher ACM
    Address New York, NY, USA
    Year 2010
    Abstract This paper presents the architecture and performance evaluation of a virtualized wide-area 4̈G ̈cellular wireless network. Specifically, it addresses the challenges of virtualization of resources in a cellular base station to enable shared use by multiple independent slice users (experimenters or mobile virtual network operators), each with possibly distinct flow types and network layer protocols. The proposed virtual basestation architecture is based on an external substrate which uses a layer-2 switched datapath, and an arbitrated control path to the WiMAX basestation. The framework implements virtualization of base station's radio resources to achieve isolation between multiple virtual networks. An algorithm for weighted fair sharing among multiple slices based on an airtime fairness metric has been implemented for the first release. Preliminary experimental results from the virtual basestation prototype are given, demonstrating mobile network performance, isolation across slices with different flow types, and custom flow scheduling capabilities.
    DOI 10.1145/1851399.1851401
    URL http://dx.doi.org/10.1145/1851399.1851401


    Bhanage, Gautam and Seskar, Ivan and Raychaudhuri, Dipankar
  18. Author Bhanage, Gautam and Seskar, Ivan and Raychaudhuri, Dipankar
    Title A virtualization architecture for mobile WiMAX networks
    Journal SIGMOBILE Mob. Comput. Commun. Rev.
    Publisher ACM
    Address New York, NY, USA
    Year 2012
    Abstract Systems virtualization offers convenient means for sharing networking infrastructure while improving its utilization. This study addresses the challenges of virtualizing a commercial off-the-shelf 4G mobileWiMAX basestation. We highlight additions and modifications needed in theWiMAX network architecture for supporting multiple simultaneous virtual basestations on a single physical basestation. The most prominent features provided by the proposed virtual basestation framework include the capability to perform all frame switching at layer-2, and control mechanisms to provide isolation across slices needed to ensure experiment repeatability. By prototyping on a commercial WiMAX radio, this paper shows the usage of the virtual basestation system for housing mobile virtual network operators and testbeds alike. A use case is shown where the virtual basestation design is used to evaluate mobile handoff schemes. Another usage case is shown for optimizing a video delivery on the edge. The video delivery use case is used to show performance improvements of up to 5dB in the PSNR. Evaluation of prototype shows a significant improvement in the slice isolation, with aggregate throughput improvements of up to 192% achievable through fair resource allocation.
    DOI 10.1145/2169077.2169082
    URL http://dx.doi.org/10.1145/2169077.2169082


    Blanton, Ethan and Chatterjee, Sarbajit and Gangam, Sriharsha and Kala, Sumit and Sharma, Deepti and Fahmy, Sonia and Sharma, Puneet
  19. Author Blanton, Ethan and Chatterjee, Sarbajit and Gangam, Sriharsha and Kala, Sumit and Sharma, Deepti and Fahmy, Sonia and Sharma, Puneet
    Title Design and evaluation of the S3 monitor network measurement service on GENI
    Booktitle 2012 Fourth International Conference on Communication Systems and Networks (COMSNETS 2012)
    Location Bangalore, India
    Publisher IEEE
    Year 2012
    Abstract Network monitoring capabilities are critical for both network operators and networked applications. In the context of an experimental test facility, network measurement is important for researchers experimenting with new network architectures and applications, as well as operators of the test facility itself. The Global Environment for Network Innovations (GENI) is a sophisticated test facility comprised of multiple ” control frameworks.” In this paper, we describe the design and implementation of S
    DOI 10.1109/COMSNETS.2012.6151327
    URL http://dx.doi.org/10.1109/COMSNETS.2012.6151327


    Calyam, P. and Rajagopalan, S. and Selvadhurai, A. and Mohan, S. and Venkataraman, A. and Berryman, A. and Ramnath, R.
  20. Author Calyam, P. and Rajagopalan, S. and Selvadhurai, A. and Mohan, S. and Venkataraman, A. and Berryman, A. and Ramnath, R.
    Title Leveraging OpenFlow for resource placement of virtual desktop cloud applications
    Booktitle Integrated Network Management (IM 2013), 2013 IFIP/IEEE International Symposium on
    Year 2013


    Calyam, P. and Sridharan, M. and Xu, Yingxiao and Zhu, Kunpeng and Berryman, A. and Patali, R. and Venkataraman, A.
  21. Author Calyam, P. and Sridharan, M. and Xu, Yingxiao and Zhu, Kunpeng and Berryman, A. and Patali, R. and Venkataraman, A.
    Title Enabling performance intelligence for application adaptation in the Future Internet
    Journal Communications and Networks, Journal of
    Year 2011
    DOI 10.1109/JCN.2011.6157475
    URL http://dx.doi.org/10.1109/JCN.2011.6157475


    Calyam, Prasad and Venkataraman, Aishwarya and Berryman, Alex and Faerman, Marcio
  22. Author Calyam, Prasad and Venkataraman, Aishwarya and Berryman, Alex and Faerman, Marcio
    Title Experiences from Virtual Desktop CloudExperiments in GENI
    Booktitle First GENI Research and Educational Experiment Workshop (GREE 2012)
    Location Los Angeles
    Year 2012
    Abstract Popular applications such as email, photo/video galleries, and file storage are increasingly being supported by cloud platforms in residential, academia and industry communities. The next frontier for these user communities will be to transition 'traditional desktops' that have dedicated hardware and software configurations into 'virtual desktop clouds' that are accessible via thin-clients. In this paper, we describe experiences from our research and development of virtual desktop cloud experiments in GENI. Our experimentation goal is to investigate and develop optimal resource allocation frameworks and performance bench- marking tools that can enable provisioning (i.e., resource sizing) and placement (i.e., resource mapping) of thin-client based virtual desktops at Internet-scale. We first motivate why virtual desktop cloud experiments cannot be done only at a table-top level, and why infrastructures such as GENI are essential. Next, we detail the methodology of our completed ” provisioning” experiments, and our work-in-progress ” placement” experiments in GENI that leverage multiple kinds of GENI resources such as aggregates, measurement services and experimenter workflow tools, as well as commercial software. Lastly, we present our vision on how our experiment slice setup and application development experiences, as well as outcomes can be leveraged in classroom labs, and 'living labs' that use GENI resources to foster training and wide- adoption of Future Internet applications.


    Cameron, Katherine and Brooks, R. R. and Deng, Juan and Yu, Lu and Wang, K. C. and Martin, James
  23. Author Cameron, Katherine and Brooks, R. R. and Deng, Juan and Yu, Lu and Wang, K. C. and Martin, James
    Title WiMAX: Bandwidth Contention Resolution Vulnerability to Denial of Service Attacks
    Booktitle First GENI Research and Educational Experiment Workshop (GREE 2012)
    Location Los Angeles
    Year 2012
    Abstract Wireless communications is part of everyday life and 4G technology, including WiMAX, offers higher data rates and wider coverage than predecessor 3G technologies. Many security vulnerabilities have been discovered in 3G protocols and these vulnerabilities may still exist in next generation 4G protocols. This paper examines how system parameters for the WiMAX Bandwidth Contention Resolution process can affect network vulnerability to DoS attacks. It will present software simulations that explore system parameter settings and will cover the current phase of hardware simulations.


    Chakrabortty, Aranya and Xin, Yufeng
  24. Author Chakrabortty, Aranya and Xin, Yufeng
    Title Hardware-in-the-Loop Simulations and Verifications of Smart Power Systems Over an Exo-GENI Testbed
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.12
    URL http://dx.doi.org/10.1109/GREE.2013.12


    Chen, Kang and Shen, Haiying and Zhang, Haibo
  25. Author Chen, Kang and Shen, Haiying and Zhang, Haibo
    Title Leveraging Social Networks for P2P Content-Based File Sharing in Mobile Ad Hoc Networks
    Booktitle 2011 IEEE Eighth International Conference on Mobile Ad-Hoc and Sensor Systems
    Location Valencia, Spain
    Publisher IEEE
    Year 2011
    Abstract Current P2P file sharing methods in mobile ad hoc networks (MANETs) can be classified into three groups: flooding-based, advertisement-based and social contact-based. The first two groups of methods can easily generate high overhead and low scalability, and the third group fails to consider the social interests (content) of mobile nodes, which otherwise can improve file searching efficiency. In this paper, we propose a P2P content-based file sharing system for MANETs. The system uses an interest extraction algorithm to derive a node's interests from its files for complex queries. For efficient file searching, it groups common-interest nodes that frequently meet with each other as communities. Further, it takes advantage of node mobility by designating stable nodes, which has frequent contact with community members, as community coordinators for intra-community searching, and highly-mobile nodes as community ambassadors for inter-community searching. An interest-oriented file searching scheme further enhances the file searching success rate. We first deployed our system on the real-world GENI Orbit testbed with a real trace and then conducted experiment on the ns2 simulator with both real trace and simulated disconnected and connected MANET scenario. The test results show that our system significantly lowers transmission cost and improves file searching success rate compared to current methods.
    DOI 10.1109/MASS.2011.24
    URL http://dx.doi.org/10.1109/MASS.2011.24


    Chen, Kang and Xu, Ke and Winburn, Steven and Shen, Haiying and Wang, Kuang-Ching and Li, Ze
  26. Author Chen, Kang and Xu, Ke and Winburn, Steven and Shen, Haiying and Wang, Kuang-Ching and Li, Ze
    Title Experimentation of a MANET Routing Algorithm on the GENI ORBIT Testbed
    Booktitle First GENI Research and Educational Experiment Workshop (GREE 2012)
    Location Los Angeles
    Year 2012
    Abstract This paper proposes a systematic procedure for experimentation of Mobile ad hoc networks (MANETs) on the ORBIT testbed. MANETs have attracted significant re- search interests in recent years. Most of routing or file sharing algorithms in MANETs were only evaluated by theoretical analysis or simulations because of the requirement of large scale networks. However, due to the distinctive properties of MANETs, such as mobility and decentralized structure, it has been non-trivial to deploy a real testbed for the verification. The Global Environment for Network Innovations (GENI) project sponsored by the National Science Foundation (NSF) provides an exploratory environment for academic real-world experiments, such as the ORBIT testbed. A stable and repeatable procedure for experimentation on real testbeds is necessary and important to assure the validity of results. In this paper, a MANET routing algorithm, namely LORD, was tested on the ORBIT testbed, using the proposed procedure. Specifically, we first configure the wireless interface on each node to enable the communication between each pair of nodes. Then a set of methods are adopted to construct the MANETs scenario for test. The network status is monitored throughout the entire duration of experiments. Finally, the experiment results of LORD on the GENI ORBIT testbed are demonstrated.


    Cherukuri, Ramkumar and Liu, Xuan and Bavier, Andy and Sterbenz, James P. G. and Medhi, Deep
  27. Author Cherukuri, Ramkumar and Liu, Xuan and Bavier, Andy and Sterbenz, James P. G. and Medhi, Deep
    Title Network virtualization in GpENI: Framework, implementation & integration experience
    Booktitle 12th IFIP/IEEE International Symposium on Integrated Network Management (IM 2011) and Workshops
    Location Dublin, Ireland
    Publisher IEEE
    Year 2011
    Abstract Great Plains Environment for Network Innovation (GpENI) is an international testbed for future Internet research. A key component of GpENI is programmable network virtualization (GpENI-VINI). The scope of this paper is to present the framework, implementation and integration experience with network virtualization in GpENI. In particular, this is described through our experience of implementing and integrating the XORP (eXtensible Open Router Platform) routing platform into GpENI-VINI. Preliminary results on measurements and validation are presented.
    DOI 10.1109/INM.2011.5990568
    URL http://dx.doi.org/10.1109/INM.2011.5990568


    Chowdhury and Boutaba, Raouf
  28. Author Chowdhury and Boutaba, Raouf
    Title A survey of network virtualization
    Journal Computer Networks
    Year 2010
    DOI http://dx.doi.org/10.1016/j.comnet.2009.10.017
    URL http://www.sciencedirect.com/science/article/pii/S1389128609003387


    Das, S. and Yiakoumis, Y. and Parulkar, G. and McKeown, N. and Singh, P. and Getachew, D. and Desai, P. D.
  29. Author Das, S. and Yiakoumis, Y. and Parulkar, G. and McKeown, N. and Singh, P. and Getachew, D. and Desai, P. D.
    Title Application-aware aggregation and traffic engineering in a converged packet-circuit network
    Booktitle Optical Fiber Communication Conference and Exposition (OFC/NFOEC), 2011 and the National Fiber Optic Engineers Conference
    Publisher IEEE
    Year 2011
    URL http://ieeexplore.ieee.org/xpls/abs_all.jsp?arnumber=5875210


    Deng, Juan and Brooks, Richard R. and Martin, James
  30. Author Deng, Juan and Brooks, Richard R. and Martin, James
    Title Assessing the Effect of WiMAX System Parameter Settings on MAC-level Local DoS Vulnerability
    Journal International Journal of Performability Engineering
    Year 2012
    Abstract The research community has established that WiMAX networks suffer from Denial of Service (DoS) vulnerabilities. In this paper, we analyze how WiMAX system parameter settings increase or decrease DoS vulnerabilities of WiMAX networks. The behavior of the WiMAX MAC level protocol is sensitive to the settings of core system parameters. Unlike traditional network-based DoS attacks, attacks resulting from parameter misconfiguration are difficult for network operators to detect. We focus on bandwidth contention resolution aspects of the WiMAX MAC protocol. Simulations are performed using the ns-2 simulator. Analysis of Variance (ANOVA) techniques on the resulting simulation data identify which bandwidth contention resolution parameter combinations are crucial for configuring WiMAX to be less vulnerable to DoS attacks.


    Duerig, Jonathon and Ricci, Robert and Stoller, Leigh and Strum, Matt and Wong, Gary and Carpenter, Charles and Fei, Zongming and Griffioen, James and Nasir, Hussamuddin and Reed, Jeremy and Wu, Xiongqi
  31. Author Duerig, Jonathon and Ricci, Robert and Stoller, Leigh and Strum, Matt and Wong, Gary and Carpenter, Charles and Fei, Zongming and Griffioen, James and Nasir, Hussamuddin and Reed, Jeremy and Wu, Xiongqi
    Title Getting started with GENI: a user tutorial
    Journal SIGCOMM Comput. Commun. Rev.
    Publisher ACM
    Address New York, NY, USA
    Year 2012
    Abstract GENI, the Global Environment for Network Innovations, is a National Science Foundation project to create a v̈irtual laboratory at the frontiers of network science and engineering for exploring future internets at scale. ̈It provides researchers, educators, and students with resources that they can use to build their own networks that span the country and - through federation - the world. GENI enables experimenters to try out bold new network architectures and designs for networked systems, and to deploy and evaluate these systems on a diverse set of resources over a large footprint. This tutorial is a starting point for running experiments on GENI. It provides an overview of GENI and covers the process of creating a network and running a simple experiment using two tools: the Flack GUI and the INSTOOLS instrumentation service.
    DOI 10.1145/2096149.2096161
    URL http://dx.doi.org/10.1145/2096149.2096161


    Duerig, Jonathon and Ricci, Robert and Stoller, Leigh and Wong, Gary and Chikkulapelly, Srikanth and Seok, Woojin
  32. Author Duerig, Jonathon and Ricci, Robert and Stoller, Leigh and Wong, Gary and Chikkulapelly, Srikanth and Seok, Woojin
    Title Designing a Federated Testbed as a Distributed System
    Journal 8th International ICST Conference on Testbeds and Research Infrastructures for the Development of Networks and Communities (TRIDENTCOM 2012)
    Year 2012
    Abstract Traditionally, testbeds for networking and systems research have been stand-alone facilities: each is owned and operated by a single administrative entity, and is intended to be used independently of other testbeds. However, this isolated facility model is at odds with researchers' ever-increasing needs for experiments at larger scale and with a broader diversity of network technologies. The research community will be much better served by a federated model. In this model, each federated testbed maintains its own autonomy and unique strengths, but all federates work together to make their resources available under a common framework. Our challenge, then, is to design a federated testbed framework that balances competing needs: We must establish trust, but at the same time maintain the autonomy of each federated facility. While providing a unified interface to a broad set of resources, we need to expose the diversity that makes them valuable. Finally, our federation should work smoothly in a coordinated fashion, but avoid central points of failure and inter-facility dependencies. We argue that treating testbed design as a federated distributed systems problem is an effective approach to achieving this balance. The technique is illustrated through the example of ProtoGENI, a system we have designed, built, and operated according to the federated model.


    Elliott, Chip and Falk, Aaron
  33. Author Elliott, Chip and Falk, Aaron
    Title An update on the GENI project
    Journal SIGCOMM Comput. Commun. Rev.
    Publisher ACM
    Address New York, NY, USA
    Year 2009
    Abstract Environment for Network Innovations. Early prototypes of GENI are starting to come online as an end-to-end system and network researchers are invited to participate by engaging in the design process or using GENI to conduct experiments.
    DOI 10.1145/1568613.1568620
    URL http://dx.doi.org/10.1145/1568613.1568620


    Erazo, Miguel A. and Liu, Jason
  34. Author Erazo, Miguel A. and Liu, Jason
    Title On enabling real-time large-scale network simulation in GENI: the PrimoGENI approach
    Booktitle Proceedings of the 3rd International ICST Conference on Simulation Tools and Techniques
    Location Torremolinos, Malaga, Spain
    Publisher ICST (Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering)
    Address ICST, Brussels, Belgium, Belgium
    Year 2010
    Abstract The Global Environment for Network Innovations (GENI) is a community-driven research and development effort to build a collaborative and exploratory network experimentation platform, a v̈irtual laboratory ̈for the design, implementation and evaluation of future Internets. In this paper, we present an overview of PrimoGENI, a GENI project with the goal of extending the GENI suite of interoperable infrastructure to allow network experiments at scale, involving physical, simulated and emulated network entities.
    DOI 10.4108/ICST.SIMUTOOLS2010.8636
    URL http://dx.doi.org/10.4108/ICST.SIMUTOOLS2010.8636


    Esposito, Flavio and Wang, Yuefeng and Matta, Ibrahim and Day, John
  35. Author Esposito, Flavio and Wang, Yuefeng and Matta, Ibrahim and Day, John
    Title Dynamic Layer Instantiation as a Service
    Location Lombard, IL
    Publisher USENIX Association
    Address Berkeley, CA, USA
    Year 2013
    URL https://www.usenix.org/system/files/nsdip13-paper11.pdf


    Feamster, Nick and Gao, Lixin and Rexford, Jennifer
  36. Author Feamster, Nick and Gao, Lixin and Rexford, Jennifer
    Title How to lease the internet in your spare time
    Journal SIGCOMM Comput. Commun. Rev.
    Publisher ACM
    Address New York, NY, USA
    Year 2007
    DOI 10.1145/1198255.1198265
    URL http://doi.acm.org/10.1145/1198255.1198265


    Feamster, Nick and Nayak, Ankur and Kim, Hyojoon and Clark, Russell and Mundada, Yogesh and Ramachandran, Anirudh and bin Tariq, Mukarram
  37. Author Feamster, Nick and Nayak, Ankur and Kim, Hyojoon and Clark, Russell and Mundada, Yogesh and Ramachandran, Anirudh and bin Tariq, Mukarram
    Title Decoupling policy from configuration in campus and enterprise networks
    Booktitle 2010 17th IEEE Workshop on Local & Metropolitan Area Networks (LANMAN)
    Location Long Branch, NJ, USA
    Publisher IEEE
    Year 2010
    Abstract This paper surveys our ongoing work on the use of software-defined networking to simplify two acute policy problems in campus and enterprise network operations: access control and information flow control. We describe how the current coupling of high-level policy with low-level configuration makes these problems challenging today. We describe the specific policy problems faced by campus and enterprise network operators; illustrate our approach, which leverages recent trends in separating the network's ” control plane” from the data plane; and show how this approach can be applied to simplify these two enterprise network management tasks. We also describe our ongoing deployment efforts to build a campus network testbed where trial designs can be deployed and evaluated. We close with a summary of current and future research challenges for solving challenges within enterprise networks within the context of this new paradigm.
    DOI 10.1109/LANMAN.2010.5507162
    URL http://dx.doi.org/10.1109/LANMAN.2010.5507162


    Femminella, Mauro and Francescangeli, Roberto and Reali, Gianluca and Lee, Jae W. and Schulzrinne, Henning
  38. Author Femminella, Mauro and Francescangeli, Roberto and Reali, Gianluca and Lee, Jae W. and Schulzrinne, Henning
    Title An enabling platform for autonomic management of the future internet
    Journal IEEE Network
    Year 2011
    Abstract This article shows an autonomic management solution based on the recently defined programmable node architecture NetServ. The article starts with a general description of the classical network management requirements and their adaptation to the expected network evolution. After a description of the major issues characterizing the management of the expected Future Internet, the main autonomic management paradigms, and some recently introduced autonomic service platforms, we show and demonstrate the effectiveness of the NetServ architecture. Born as a means to deploy and execute networked services at runtime over programmable routers, NetServ has proved to be a suitable environment for hosting an autonomic management architecture.
    DOI 10.1109/MNET.2011.6085639
    URL http://dx.doi.org/10.1109/MNET.2011.6085639


    Fund, Fraida and Wang, Cong and Korakis, Thanasis and Zink, Michael and Panwar, Shivendra
  39. Author Fund, Fraida and Wang, Cong and Korakis, Thanasis and Zink, Michael and Panwar, Shivendra
    Title GENI WiMAX Performance: Evaluation and Comparison of Two Campus Testbeds
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.23
    URL http://dx.doi.org/10.1109/GREE.2013.23


    Gangam, Sriharsha and Blanton, Ethan and Fahmy, Sonia
  40. Author Gangam, Sriharsha and Blanton, Ethan and Fahmy, Sonia
    Title Exercises for Graduate Students using GENI
    Booktitle First GENI Research and Educational Experiment Workshop (GREE 2012)
    Location Los Angeles
    Year 2012
    Abstract GENI brings together a wide variety of heterogeneous networking infrastructure and technologies under a common platform. We propose programming exercises for graduate students to introduce GENI and enable students to conduct high fidelity networking experiments. In this paper, we focus on an exercise to study congestion control and reliability using the ProtoGENI aggregate. A planned second exercise aims to leverage GENI OpenFlow aggregates to study firewalls and QoS mechanisms. We believe that these lab exercises will expose students to key networking concepts and recent research directions, e.g., in the data center context.


    Gangam, Sriharsha and Fahmy, Sonia
  41. Author Gangam, Sriharsha and Fahmy, Sonia
    Title Mitigating interference in a network measurement service
    Booktitle 2011 IEEE Nineteenth IEEE International Workshop on Quality of Service
    Location San Jose, CA, USA
    Publisher IEEE
    Year 2011
    Abstract Shared measurement services offer key advantages over conventional ad-hoc techniques for network monitoring. A measurement service may receive measurement requests concurrently from different applications and network administrators. These measurement requests are often served by injecting active network measurement traffic between two hosts. Two active measurements are said to interfere when the probe packets of one measurement tool are viewed as network traffic by the other. This may lead to faulty measurement readings. In this paper, we model the measurement interference problem, and show how to schedule measurement tasks to reduce interference and hence increase measurement accuracy. We propose twelve computationally tractable algorithms that decrease the total completion time (makespan) of measurement tasks, while avoiding interference. Our evaluation shows that the algorithm we refer to as Largest Area First, Busiest Node First - Earliest Interval Schedule (LAFBNF-EIS) has a mean makespan of about 5% more than the theoretical lower bound over our set of measurement workloads.
    DOI 10.1109/IWQOS.2011.5931347
    URL http://dx.doi.org/10.1109/IWQOS.2011.5931347


    Gao, Jingcheng and Xiao, Yang
  42. Author Gao, Jingcheng and Xiao, Yang
    Title ProtoGENI DoS/DDoS Security Tests and Experiments
    Booktitle First GENI Research and Educational Experiment Workshop (GREE 2012)
    Location Los Angeles
    Year 2012
    Abstract his paper will explain some tests and experiments to investigate selected security issues through ProtoGENI mainly during Spiral 3 time period and the beginning of Spiral 4. In this paper, we conduct multiple sets of DoS/ DDoS attacks in the current ProtoGENI testbed. These attacks show that it is very possible that ProtoGENI nodes may render vulnerabilities to such attacks.


    Gember, Aaron and Dragga, Chris and Akella, Aditya
  43. Author Gember, Aaron and Dragga, Chris and Akella, Aditya
    Title ECOS: Practical Mobile Application Offloading for Enterprises
    Booktitle 2nd USENIX Workshop on Hot Topics in Management of Internet, Cloud, and Enterprise Networks and Services (Hot-ICE '12)
    Year 2012
    Abstract Offloading has emerged as a promising idea to allow handheld devices to access intensive applications without performance or energy costs. This could be particularly useful for enterprises seeking to run line-of-business applications on handhelds. However, we must address two practical roadblocks in order to make offloading amenable for enterprises: (i) ensuring data privacy and the use of trusted offloading resources, and (ii) accommodating offload at scale with diverse handheld objectives and compute resource capabilities. We present the design and implementation of an Enterprise-Centric Offloading System (ECOS) which augments prior offloading proposals to address these issues. ECOS uses a logically central controller to opportunistically leverage diverse compute resources, while tightly controlling where specific applications offload depending on privacy, performance, and energy constraints of users and applications. A wide range of experiments using a real prototype establish the effectiveness of our approach.
    URL http://www.usenix.org/conference/hot-ice12/ecos-practical-mobile-application-of%EF%AC%82oading-enterprises


    Grandl, Robert and Han, Dongsu and Lee, Suk B. and Lim, Hyeontaek and Machado, Michel and Mukerjee, Matthew and Naylor, David
  44. Author Grandl, Robert and Han, Dongsu and Lee, Suk B. and Lim, Hyeontaek and Machado, Michel and Mukerjee, Matthew and Naylor, David
    Title Supporting network evolution and incremental deployment with XIA
    Booktitle Proceedings of the ACM SIGCOMM 2012 conference on Applications, technologies, architectures, and protocols for computer communication
    Location Helsinki, Finland
    Publisher ACM
    Address New York, NY, USA
    Year 2012
    Abstract eXpressive Internet Architecture (XIA) [1] is an architecture that natively supports multiple communication types and allows networks to evolve their abstractions and functionality to accommodate new styles of communication over time. XIA embeds an elegant mechanism for handling unforeseen communication types for legacy routers. In this demonstration, we show that XIA overcomes three key barriers in network evolution (outlined below) by (1) allowing end-hosts and applications to start using new communication types (e.g., service and content) before the network supports them, (2) ensuring that upgrading a subset of routers to support new functionalities immediately benefits applications, and (3) using the same mechanisms we employ for 1 and 2 to incrementally deploy XIA in IP networks.
    DOI 10.1145/2342356.2342410
    URL http://dx.doi.org/10.1145/2342356.2342410


    Griffioen, J. and Fei, Zongming and Nasir, H. and Wu, Xiongqi and Reed, J. and Carpenter, C.
  45. Author Griffioen, J. and Fei, Zongming and Nasir, H. and Wu, Xiongqi and Reed, J. and Carpenter, C.
    Title The design of an instrumentation system for federated and virtualized network testbeds
    Booktitle Network Operations and Management Symposium (NOMS), 2012 IEEE
    Publisher IEEE
    Year 2012
    Abstract Much of the GENI effort in developing network testbeds has been focused on building the control frameworks needed to allocate and initialize the network resources that make up an experiment. We argue that building the instrumentation and measurement system to monitor and capture the behavior of the network is just as important and challenging as setting up the network itself, especially in a virtualized and federated environment where getting information from experimental nodes is too complicated and too much to handle for a typical user. In this paper, we describe the design of an instrumentation and measurement infrastructure that allows users to monitor their experiments. The challenge that virtualization and federation of GENI testbeds bring to instrumentation and monitoring is how to hide the details of instrumentation setup from users so that users do not need to be experts in system administration or network management of virtualized and federated systems, but are still able to ” see” what is going on with their experiments. Our instrumentation tool sets up experiment-specific monitoring infrastructure that is tailored to capture, record, and display only information associated with that experiment. Our tools are currently available in GENI, and we present a simple example of how to use them to instrument an experiment.
    DOI 10.1109/NOMS.2012.6212061
    URL http://dx.doi.org/10.1109/NOMS.2012.6212061


    Griffioen, James and Fei, Zongming and Nasir, Hussamuddin and Wu, Xiongqi and Reed, Jeremy and Carpenter, Charles
  46. Author Griffioen, James and Fei, Zongming and Nasir, Hussamuddin and Wu, Xiongqi and Reed, Jeremy and Carpenter, Charles
    Title Measuring experiments in GENI
    Journal Computer Networks
    Year 2014
    Abstract Experimentation with new network architectures and protocols is one of the primary motivations for building future Internet testbeds such as the Global Environment for Network Innovations (GENI) testbed. A key part of experimentation is the ability to observe, measure, evaluate, and compare these new architectures and protocols. Observing an experiment's network performance requires setting up the measurement infrastructure needed to monitor and record the behavior of the network. It also requires a full set of tools and user interfaces that enable access to the measurement data both while the experiment is running and later during post-analysis. To simplify the task of measuring experiments in future Internet testbeds like GENI, we developed an instrumentation and measurement system called INSTOOLS. It automates the process of setting up the measurement infrastructure, tailoring the measurement infrastructure and the data capture to the experimental network's topology and configuration. In addition, INSTOOLS provides a suite of tools via its ” portal” service that make it easy for users to observe, measure, format, and archive data from their experiments. This paper describes the INSTOOLS system and the set of interfaces/tools it offers to users. INSTOOLS has been in use for several years, and we provide performance results that illustrate its scalability. We also present our second-generation portal, the GENI One Stop Portal, that offers a comprehensive interface to a wide range of tools.
    DOI 10.1016/j.bjp.2013.10.016
    URL http://dx.doi.org/10.1016/j.bjp.2013.10.016


  47. Author Griffioen, James and Fei, Zongming and Nasir, Hussamuddin and Wu, Xiongqi and Reed, Jeremy and Carpenter, Charles
    Title GENI-enabled Programming Experiments for Networking Classes
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.30
    URL http://dx.doi.org/10.1109/GREE.2013.30


    Griffioen, James and Fei, Zongming and Nasir, Hussanmuddin and Wu, Xiongqi and Reed, Jeremy and Carpenter, Charles
  48. Author Griffioen, James and Fei, Zongming and Nasir, Hussanmuddin and Wu, Xiongqi and Reed, Jeremy and Carpenter, Charles
    Title Teaching with the Emerging GENI Network
    Booktitle Proceedings of the 2012 International Conference on Frontiers in Education: Computer Science and Computer Engineering (FECS)
    Location Las Vegas
    Year 2012


    Group, GENI Planning
  49. Author Group, GENI Planning
    Title GENI Design Principles
    Journal Computer
    Publisher IEEE
    Year 2006
    Abstract The Global Environment for Network Innovations is a major planned initiative of the US National Science Foundation to build an open, large-scale, realistic experimental facility for evaluating new network architectures. The facility's goal is to change the way we design networked and distributed systems, creating over time new paradigms that integrate rigorous theoretical understanding with compelling and thorough experimental validation. The research that GENI enables can lead to a future Internet that is more secure, available, manageable, and efficient, and better at handling mobile nodes. GENI is intended to support two general kinds of activities: running controlled experiments to evaluate design, implementation, and engineering choices; and deploying prototype systems and learning from observations of how they behave under real usage
    DOI 10.1109/mc.2006.307
    URL http://dx.doi.org/10.1109/mc.2006.307


    Guan, Xinjie and Choi, Baek-Young and Song, Sejun
  50. Author Guan, Xinjie and Choi, Baek-Young and Song, Sejun
    Title Reliability and Scalability Issues in Software Defined Network Frameworks
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.28
    URL http://dx.doi.org/10.1109/GREE.2013.28


    Herron, Jon-Paul
  51. Author Herron, Jon-Paul
    Title GENI Meta-Operations Center
    Booktitle 2008 IEEE Fourth International Conference on eScience
    Location Indianapolis, IN, USA
    Publisher IEEE
    Year 2008
    Abstract NSF's GENI program represents an opportunity to build the kind of programmable, virtualized testbed scientists exploring the future of networking will need to support their research. As with any other scientific instrument, it will be crucial that the GENI infrastructure offer repeatable, consistent results to the researchers using it.The GENI Meta-Operations Center, operated by the Global Research NOC at Indiana University, will develop the software, protocols, and processes needed to ensure the repeatability, consistency, and efficiency of GENI.
    DOI 10.1109/eScience.2008.103
    URL http://dx.doi.org/10.1109/eScience.2008.103


    Huang, Shufeng and Griffioen, James and Calvert, Kenneth L.
  52. Author Huang, Shufeng and Griffioen, James and Calvert, Kenneth L.
    Title Fast-tracking GENI Experiments using HyperNets
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.10
    URL http://dx.doi.org/10.1109/GREE.2013.10


    Jin, Ruofan and Wang, Bing
  53. Author Jin, Ruofan and Wang, Bing
    Title Malware Detection for Mobile Devices Using Software-Defined Networking
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.24
    URL http://dx.doi.org/10.1109/GREE.2013.24


    Jofre, Jordi and Velayos, Celia and Landi, Giada and Giertych, Michał and Hume, Alastair C. and Francis, Gareth and Vico Oton, Albert
  54. Author Jofre, Jordi and Velayos, Celia and Landi, Giada and Giertych, Michał and Hume, Alastair C. and Francis, Gareth and Vico Oton, Albert
    Title Federation of the BonFIRE multi-cloud infrastructure with networking facilities
    Journal Computer Networks
    Year 2014
    Abstract Network performance in terms of throughput, latency, packet loss or jitter significantly influences user's quality of experience of cloud applications. Network services impact on cloud applications performance and this impact is even more significant when the cloud infrastructure spreads over different administrative domains, such as in a federated cloud or hybrid-cloud scenarios. Given this strong coupling between cloud application performance and network performance there is great value to be gained by supporting advanced controlled networking functionalities between distributed cloud infrastructures. These functionalities would be useful to the Future Internet (FI) experimentation community as well as future production clouds. This paper describes an architecture and a set of procedures to interconnect a multi-cloud environment with advanced facilities for controlled networking. This integration allows the provisioning of customized network functions and services in support of experiments running in a multi-cloud test-bed. The possibility to control the network connectivity is a key feature to provide better performance for the experimenters' cloud applications. We focus on the details of federating three advanced networking facilities with the BonFIRE multi-cloud environment. These three networking facilities are: FEDERICA, which supports controlled routing; GÉANT's Bandwidth-on-Demand service and OFELIA that uses OpenFlow to provide Software Defined Network functionalities. The interconnections with FEDERICA and GÉANT are already active, while OFELIA is envisaged as future work for a third facility to interconnect.
    DOI 10.1016/j.bjp.2013.11.012
    URL http://dx.doi.org/10.1016/j.bjp.2013.11.012


    Ju, Xi and Zhang, Hongwei and Zeng, Wenjie and Sridharan, Mukundan and Li, Jing and Arora, Anish and Ramnath, Rajiv and Xin, Yufeng
  55. Author Ju, Xi and Zhang, Hongwei and Zeng, Wenjie and Sridharan, Mukundan and Li, Jing and Arora, Anish and Ramnath, Rajiv and Xin, Yufeng
    Title LENS: resource specification for wireless sensor network experimentation infrastructures
    Booktitle Proceedings of the 6th ACM international workshop on Wireless network testbeds, experimental evaluation and characterization
    Location Las Vegas, Nevada, USA
    Publisher ACM
    Address New York, NY, USA
    Year 2011
    Abstract As a first step towards predictable, repeatable WSN experimentation, we propose the resource specification language LENS (a.k.a. Language for Embedded Networked Sensing) for WSN experimentation infrastructures. Using the Resource Description Framework (RDF) and the Web Ontology Language (OWL), LENS defines a semantic ontology for WSN resources; LENS enables explicit control and measurement of uncertainty factors, and it enables reasoning about the relationships between WSN resources. Focusing on basic concepts of WSNs, LENS supports resource specification in a wide range of WSN experimentation infrastructures, and it is extensible to support potentially unforeseen technologies. LENS is also compatible with specification languages for other network resources such as optical networks. As a part of the NSF GENI initiative, we have implemented LENS in the KanseiGenie control framework, and LENS has been actively used to support experimentation in the federated WSN infrastructure involving Kansei and NetEye. Enabling reasoning about uncertainty factors in experimentation, LENS is expected to serve as a basis for developing methodologies and tools for predictable, repeatable WSN experimentation.
    DOI 10.1145/2030718.2030727
    URL http://dx.doi.org/10.1145/2030718.2030727


    Khurshid, Ahmed and Zhou, Wenxuan and Caesar, Matthew and Godfrey, P. Brighten
  56. Author Khurshid, Ahmed and Zhou, Wenxuan and Caesar, Matthew and Godfrey, P. Brighten
    Title VeriFlow: verifying network-wide invariants in real time
    Booktitle Proceedings of the first workshop on Hot topics in software defined networks
    Location Helsinki, Finland
    Publisher ACM
    Address New York, NY, USA
    Year 2012
    DOI 10.1145/2342441.2342452
    URL http://doi.acm.org/10.1145/2342441.2342452


    Kim, Dae Y. and Mathy, Laurent and Campanella, Mauro and Summerhill, Rick and Williams, James and Shimojo, Shinji and Kitamura, Yasuichi and Otsuki, Hideaki
  57. Author Kim, Dae Y. and Mathy, Laurent and Campanella, Mauro and Summerhill, Rick and Williams, James and Shimojo, Shinji and Kitamura, Yasuichi and Otsuki, Hideaki
    Title Future Internet: Challenges in Virtualization and Federation
    Booktitle 2009 Fifth Advanced International Conference on Telecommunications
    Location Venice/Mestre, Italy
    Publisher IEEE
    Year 2009
    Abstract Future Internet is a clean-slate research activity in the quest of new networking technologies to overcome the limits of the current Internet. In its experimental research, virtualization and federation are emerging as essential features, especially in the construction and operation of the testbeds. Moreover, they are believed to sustain as the fundamental features of the Future Internet itself. Visions and experiences on virtualization and federation are given by leading experts from US, EU, and Asia.
    DOI 10.1109/AICT.2009.8
    URL http://dx.doi.org/10.1109/AICT.2009.8


    Kim, Dongkyun and Kim, Joobum and Wang, Gicheol and Park, Jin-Hyung and Kim, Seung-Hae
  58. Author Kim, Dongkyun and Kim, Joobum and Wang, Gicheol and Park, Jin-Hyung and Kim, Seung-Hae
    Title K-GENI testbed deployment and federated meta operations experiment over GENI and KREONET
    Journal Computer Networks
    Year 2014
    Abstract The classical Internet has confronted many drawbacks in terms of network security, scalability, and performance, although it has strongly influenced the development and evolution of diverse network technologies, applications, and services. Therefore, new innovative research on the Future Internet has been performed to resolve the inherent weaknesses of the traditional Internet, which, in turn, requires new at-scale network testbeds and research infrastructure for large-scale experiments. In this context, K-GENI has been developed as an international programmable Future Internet testbed in the GENI spiral-2 program, and it has been operational between the USA (GENI) and Korea (KREONET) since 2010. The K-GENI testbed and the related collaborative efforts will be introduced with two major topics in this paper: (1) the design and deployment of the K-GENI testbed and (2) the federated meta operations between the K-GENI and GENI testbeds. Regarding the second topic in particular, we will describe how meta operations are federated across K-GENI between GMOC (GENI Meta Operations Center) and DvNOC (Distributed virtual Network Operations Center on KREONET/K-GENI), which is the first trial of an international experiment on the federated network operations over GENI.
    DOI 10.1016/j.bjp.2013.11.016
    URL http://dx.doi.org/10.1016/j.bjp.2013.11.016


    Kim, Hyunjun and Lee, Sungwon
  59. Author Kim, Hyunjun and Lee, Sungwon
    Title FiRST Cloud Aggregate Manager development over FiRST: Future Internet testbed
    Booktitle The International Conference on Information Network 2012
    Location Bali, Indonesia
    Publisher IEEE
    Year 2012
    Abstract FiRST (Future Internet Research for Sustainable Test-bed) is the future internet platform development project being performed in Korea. The goal of the project is to create the virtualized and dynamic service creation environments over future internet networks; it is an experimental project to realize future innovative service ideas over real network environments. Among this, cloud computing is the key enabler to control and allocate virtualized network resources (such as CPU, storage, and virtualized network configuration) for the requested services. However, researches on interworking between future internet and cloud computing is in initial phase. In this paper, we propose the FiRST Cloud Aggregate Manager (AM) based on GENI (Global Environment for Network Innovation) AM Application Programming Interface (API) for the federation between future internet test-bed and open source OpenStack cloud computing platform. After that, we propose the zero-client service for mobile cloud management. In order to control the zero-client service, we develop Cloud Mobility Client/Server. And, we validate and verified our FiRST Cloud AM and zero-client service by developing experimental test-bed. Through this test-bed, we confirm that the proposed FiRST Cloud AM and zero-client service efficiently interworks with future internet control plane framework by using GENI Control Framework (GCF) tools.
    DOI 10.1109/ICOIN.2012.6164436
    URL http://dx.doi.org/10.1109/ICOIN.2012.6164436


    Kline, Donald and Quan, John
  60. Author Kline, Donald and Quan, John
    Title Attribute description service for large-scale networks
    Booktitle Proceedings of the 2nd international conference on Human centered design
    Location Orlando, FL, USA
    Publisher Springer-Verlag
    Address Berlin, Heidelberg
    Year 2011
    Abstract An analysis of requesting resources from large-scale networks reveals a fundamental challenge. As the network grows, more and more resources become available, and so finding resources that fit experimental test criteria becomes difficult and time consuming. For example, the National Science Foundation sponsors GENI--an experimental network with a goal to gain enough resources to model the Internet at scale. Currently, GENI contains relatively few contributed resources donated from businesses and academia, and so matching resources to tests is rather simple. However, experimenters plan to conduct network experiments that are very complex and difficult to accurately model by using the vast numbers of resources expected in GENI. When GENI reaches its final state, finding the right resources that fit experimental test criteria out of many thousands of donated resources may be as difficult as conducting the experiment itself. This dilemma underscores the importance of establishing an attribute description service that promotes a standardized language for all interactions between the end users and the large-scale network.
    DOI 10.1007/978-3-642-21753-1_58
    URL http://portal.acm.org/citation.cfm?id=2021672.2021735


    Kobayashi, Masayoshi and Seetharaman, Srini and Parulkar, Guru and Appenzeller, Guido and Little, Joseph and van Reijendam, Johan and Weissmann, Paul and McKeown, Nick
  61. Author Kobayashi, Masayoshi and Seetharaman, Srini and Parulkar, Guru and Appenzeller, Guido and Little, Joseph and van Reijendam, Johan and Weissmann, Paul and McKeown, Nick
    Title Maturing of OpenFlow and Software-defined Networking through deployments
    Journal Computer Networks
    Year 2014
    Abstract Software-defined Networking (SDN) has emerged as a new paradigm of networking that enables network operators, owners, vendors, and even third parties to innovate and create new capabilities at a faster pace. The SDN paradigm shows potential for all domains of use, including data centers, cellular providers, service providers, enterprises, and homes. Over a three-year period, we deployed SDN technology at our campus and at several other campuses nation-wide with the help of partners. These deployments included the first-ever SDN prototype in a lab for a (small) global deployment. The four-phased deployments and demonstration of new networking capabilities enabled by SDN played an important role in maturing SDN and its ecosystem. We share our experiences and lessons learned that have to do with demonstration of SDN's potential; its influence on successive versions of OpenFlow specification; evolution of SDN architecture; performance of SDN and various components; and growing the ecosystem.
    DOI 10.1016/j.bjp.2013.10.011
    URL http://dx.doi.org/10.1016/j.bjp.2013.10.011


    Krishnappa, D. K. and Irwin, D. and Lyons, E. and Zink, M.
  62. Author Krishnappa, D. K. and Irwin, D. and Lyons, E. and Zink, M.
    Title CloudCast: Cloud Computing for Short-Term Weather Forecasts
    Journal Computing in Science & Engineering
    Publisher IEEE
    Year 2013
    Abstract CloudCast provides personalized short-term weather forecasts to clients based on their current location using cloud services, generating accurate forecasts tens of minutes in the future for small areas. Results show that it takes less than two minutes from the start of data sampling to deliver a 15-minute forecast to a client.
    DOI 10.1109/mcse.2013.43
    URL http://dx.doi.org/10.1109/mcse.2013.43


    Krishnappa, Dilip K. and Lyons, Eric and Irwin, David and Zink, Michael
  63. Author Krishnappa, Dilip K. and Lyons, Eric and Irwin, David and Zink, Michael
    Title Performance of GENI Cloud Testbeds for Real Time Scientific Application
    Booktitle First GENI Research and Educational Experiment Workshop (GREE 2012)
    Location Los Angeles
    Year 2012
    Abstract Dedicating high end servers for short-term execution of scientific applications such as weather forecasting wastes resources. Cloud platforms IaaS model seems well suited for applications which are executed on an irregular basis and for short duration. In this paper, we evaluate the performance of research testbed cloud platforms such as GENICloud and ORCA cloud clusters for our real-time scientific application of short-term weather forecasting called Nowcasting. In this paper, we evaluate the network capabilities of these research cloud testbeds for our real-time application of weather forecasting. In addition, we evaluate the computation time of executing Nowcasting on each cloud platform for weather data collected from real weather events. We also evaluate the total time taken to generate and transmit short-term forecast images to end users with live data from our own radar on campus. We also compare the performance of each of these clusters for Nowcasting with commercial cloud services such as Amazon's EC2. The results obtained from our measurement show that cloud testbeds are suitable for real-time application experiments to be carried out on a cloud platform.


  64. Author Krishnappa, Dilip K. and Lyons, Eric and Irwin, David and Zink, Michael
    Title Network capabilities of cloud services for a real time scientific application
    Booktitle 37th Annual IEEE Conference on Local Computer Networks
    Location Clearwater Beach, FL, USA
    Publisher IEEE
    Year 2012
    Abstract Dedicating high-end servers for executing scientific applications that run intermittently, such as severe weather detection or generalized weather forecasting, wastes resources. While the Infrastructure-as-a-Service (IaaS) model used by today's cloud platforms is well-suited for the bursty computational demands of these applications, it is unclear if the network capabilities of today's cloud platforms are sufficient. In this paper, we analyze the networking capabilities of multiple commercial (Amazon's EC2 and Rackspace) and research (GENICloud and ExoGENI cloud) platforms in the context of a Nowcasting application, a forecasting algorithm for highly accurate, near-term, e.g., 5-20 minutes, weather predictions. The application has both computational and network requirements. While it executes rarely, whenever severe weather approaches, it benefits from an IaaS model; However, since its results are time-critical, enough bandwidth must be available to transmit radar data to cloud platforms before it becomes stale. We conduct network capacity measurements between radar sites and cloud platforms throughout the country. Our results indicate that ExoGENI cloud performs the best for both serial and parallel data transfer with an average throughput of 110.22 Mbps and 17.2 Mbps, respectively. We also found that the cloud services perform better in the distributed data transfer case, where a subset of nodes transmit data in parallel to a cloud instance. Ultimately, we conclude that commercial and research clouds are capable of providing sufficient bandwidth for our real-time Nowcasting application.
    DOI 10.1109/lcn.2012.6423665
    URL http://dx.doi.org/10.1109/lcn.2012.6423665


    Lee, Jae W.
  65. Author Lee, Jae W.
    Title Towards a Common System Architecture for Dynamically Deploying Network Services in Routers and End Hosts
    Year 2012
    Abstract The architectural simplicity of the core Internet is a double-edged sword. On the one hand, its agnostic nature paved the way for endless innovations of end-to-end applications. On the other hand, the inherent limitation of this simplicity makes it difficult to add new functions to the network core itself. This is exacerbated by the conservative tendency of commercial entities to l̈eave well-enough alone,̈ leading to the current situation often referred to as the ossification of the Internet. For decades, there has been practically no new functionality that has been added to the core Internet on a large scale. This thesis explores the possibility of enabling in-network services towards the goal of overcoming the ossification of the Internet. Our ultimate goal is to provide a common run-time environment supported by all Internet nodes and a wide-area deployment mechanism, so that network services can be freely installed, removed, and migrated among Internet nodes of all kinds–from a backbone router to a set-top box at home. In that vision of a future Internet, there is little difference between servers and routers for the purpose of running network services. Services can run anywhere on the Internet. Application service providers will have the freedom to choose the best place to run their code. This thesis presents NetServ, our first step to realize the vision of network services running anywhere on the Internet. NetServ is a node architecture for dynamically deploying in-network services on edge routers. Network functions and applications are implemented as software modules which can be deployed at any NetServ-enabled node on the Internet, subject to policy restrictions. The NetServ framework provides a common execution environment for service modules and the ability to dynamically install and remove the services without restarting the nodes. There are many challenges in designing such a system. The main contribution of this thesis lies in meeting those challenges. First, we recognize that the primary impetus for adopting new technologies is economics. To address the challenge of providing economic incentives for enabling in-network services, we demonstrate how NetServ can facilitate an economic alliance between content providers and ISPs. Using NetServ, content providers and the ISPs operating at the network edge (aka eyeball ISPs) can enter into a mutually beneficial economic relationship. ISPs make their NetServ-enabled edge routers available for hosting content providers' applications and contents. Content providers can operate closer to end users by deploying code modules on NetServ-enabled edge routers. We make our case by presenting NetServ applications which represent four concrete use cases. Second, our node architecture must support both traditional server applications and in-network packet processing applications since content providers' applications running on ISPs' routers will combine the traits of both. To address this challenge, NetServ framework can host a packet processing module that sits in the data path, a server module that uses the TCP/IP stack in the traditional way, or a combined module that does both. NetServ provides a unified runtime environment between routers and servers, taking us a step closer to the vision of the unified runtime available on all Internet nodes. Third, we must provide a fast and streamlined deployment mechanism. Content providers should be able to deploy their applications at any NetServ-enabled edge router on the Inter- net, given that they have proper authorizations. Moreover, in some application scenarios, content providers may not know the exact locations of the target routers. Content providers need a way to send a message to install or remove an application module towards a network destination, and have the NetServ-enabled routers located in the path catch and act on the message. To address this challenge, we adopted on-path signaling as the deployment mechanism for NetServ. A NetServ signaling message is sent in an IP packet towards a destination. The packet gets forwarded by IP routers as usual, but when it transits a NetServ-enabled router, the message gets intercepted and passed to the NetServ control layer. Fourth, a NetServ-enabled router must support the concurrent executions of multiple without restarting the nodes. There are many challenges in designing such a system. The main contribution of this thesis lies in meeting those challenges. First, we recognize that the primary impetus for adopting new technologies is economics. To address the challenge of providing economic incentives for enabling in-network services, we demonstrate how NetServ can facilitate an economic alliance between content providers and ISPs. Using NetServ, content providers and the ISPs operating at the network edge (aka eyeball ISPs) can enter into a mutually beneficial economic relationship. ISPs make their NetServ-enabled edge routers available for hosting content providers' applications and contents. Content providers can operate closer to end users by deploying code modules on NetServ-enabled edge routers. We make our case by presenting NetServ applications which represent four concrete use cases. Second, our node architecture must support both traditional server applications and in-network packet processing applications since content providers' applications running on ISPs' routers will combine the traits of both. To address this challenge, NetServ framework can host a packet processing module that sits in the data path, a server module that uses the TCP/IP stack in the traditional way, or a combined module that does both. NetServ provides a unified runtime environment between routers and servers, taking us a step closer to the vision of the unified runtime available on all Internet nodes. Third, we must provide a fast and streamlined deployment mechanism. Content providers should be able to deploy their applications at any NetServ-enabled edge router on the Internet, given that they have proper authorizations. Moreover, in some application scenarios, content providers may not know the exact locations of the target routers. Content providers need a way to send a message to install or remove an application module towards a network destination, and have the NetServ-enabled routers located in the path catch and act on the message. To address this challenge, we adopted on-path signaling as the deployment mechanism for NetServ. A NetServ signaling message is sent in an IP packet towards a destination. The packet gets forwarded by IP routers as usual, but when it transits a NetServ-enabled router, the message gets intercepted and passed to the NetServ control layer. Fourth, a NetServ-enabled router must support the concurrent executions of multiple content providers' applications. Each content provider's execution environment must be isolated from one another, and the resource usage of each must be controlled. To address the challenge of providing a robust multi-user execution environment, we chose to run NetServ modules in user space. This is in stark contrast to most programmable routers, which run service modules in kernel space for fast packet processing. Furthermore, NetServ modules are written in Java and run in Java Virtual Machines (JVMs). Our choice of user space execution and JVM allows us to leverage the decades of technology advances in operating systems, virtualization, and Java. Lastly, in order to host the services of a large number of content providers, NetServ must be able to scale beyond the single-box architecture. We address this challenge with the multi-box lateral expansion of NetServ using the OpenFlow forwarding engine. In this extended architecture, multiple NetServ nodes are attached to an OpenFlow switch, which provides a physically separate forwarding plane. The scalability of user services is no longer limited to a single NetServ box. Additionally, this thesis presents our prior work on improving service discovery in local and global networks. The service discovery work makes indirect contribution because the limitations of local and overlay networks encountered during those studies eventually led us to investigate in-network services, which resulted in NetServ. Specifically, we investigate the issues involved in bootstrapping large-scale structured overlay networks, present a tool to merge service announcements from multiple local networks, and propose an enhancement to structured overlay networks using link-local multicast.
    URL http://academiccommons.columbia.edu/download/fedora_content/download/ac:147210/CONTENT/Lee_columbia_0054D_10773.pdf


    Lee, Jae W. and Francescangeli, Roberto and Janak, Jan and Srinivasan, Suman and Baset, Salman A. and Schulzrinne, Henning and Despotovic, Zoran and Kellerer, Wolfgang
  66. Author Lee, Jae W. and Francescangeli, Roberto and Janak, Jan and Srinivasan, Suman and Baset, Salman A. and Schulzrinne, Henning and Despotovic, Zoran and Kellerer, Wolfgang
    Title NetServ: Active Networking 2.0
    Booktitle 2011 IEEE International Conference on Communications Workshops (ICC)
    Location Kyoto, Japan
    Publisher IEEE
    Year 2011
    Abstract We present NetServ, a node architecture for deploying in-network services in the next generation Internet. NetServ-enabled network nodes provide a common execution environment, where network services implemented as modules can be dynamically installed and removed. We demonstrate three such modules. MicroCDN is a dynamic content distribution network (CDN) service which implements a content caching strategy specific to a content provider. The NAT Keep-alive module offloads the processing of keep-alive messages from SIP servers. The Media Relay module allows any NetServ node to act as a media relay, eliminating the need to manage standalone relay servers. NetServ aims to revive the Active Networking vision. It was too far ahead of its time a decade ago, but we believe its time has finally arrived.
    DOI 10.1109/iccw.2011.5963554
    URL http://dx.doi.org/10.1109/iccw.2011.5963554


    Lee, Ki S. and Wang, Han and Weatherspoon, Hakim
  67. Author Lee, Ki S. and Wang, Han and Weatherspoon, Hakim
    Title SoNIC: precise realtime software access and control of wired networks
    Booktitle Proceedings of the 10th USENIX conference on Networked Systems Design and Implementation
    Location Lombard, IL
    Publisher USENIX Association
    Address Berkeley, CA, USA
    Year 2013
    URL http://dl.acm.org/citation.cfm?id=2482626.2482648


    Li, Dawei and Hong, Xiaoyan
  68. Author Li, Dawei and Hong, Xiaoyan
    Title Practical exploitation on system vulnerability of ProtoGENI
    Booktitle Proceedings of the 49th Annual Southeast Regional Conference
    Location Kennesaw, Georgia
    Publisher ACM
    Address New York, NY, USA
    Year 2011
    Abstract Global Environment for Network Innovations (GENI) is a unique virtual laboratory for at-scale networking experimentation exploring future Internets. The successful development of GENI has to consider security problems from the design and prototyping stages. However, in many cases, system vulnerability cannot be found unless through real experimentation bearing purposeful and meaningful designs. In this paper, we introduce some of our efforts in exploring the security vulnerabilities in ProtoGENI, a prototype implementation and deployment of GENI. Our results show potential breach on security of GENI in terms of availability. We make suggestions on potential defense strategies in order to improve the ProtoGENI security and its development.
    DOI 10.1145/2016039.2016073
    URL http://dx.doi.org/10.1145/2016039.2016073


    Li, Dawei and Hong, Xiaoyan and Bowman, Jason
  69. Author Li, Dawei and Hong, Xiaoyan and Bowman, Jason
    Title Evaluation of Security Vulnerabilities by Using ProtoGENI as a Launchpad
    Booktitle IEEE Global Communications Conference (GLOBECOM 2011)
    Year 2011
    Abstract In this paper we analyze the security architecture of ProtoGENI. ProtoGENI is a prototype control framework implementation of GENI (Global Environment for Network Innovations). We perform a variety of experiments in an effort to identify potential vulnerabilities presented in the current implementation. We classify our attacks into three types: data plane to data plane, data plane to control plane, and data plane to Internet. Our results indicate the potential for a breach of confidentiality and availability internally within ProtoGENI, as well as risks to external Internet. We make suggestions outlining possible defense strategies to improve ProtoGENI security and aid in future development
    URL ftp://202.38.75.7/pub/%D0%C2%CE%C4%BC%FE%BC%D0%20(2)/DATA/PID1102190.PDF


    Li, Ting and Van Vorst, Nathanael and Rong, Rong and Liu, Jason
  70. Author Li, Ting and Van Vorst, Nathanael and Rong, Rong and Liu, Jason
    Title Simulation studies of OpenFlow-based in-network caching strategies
    Booktitle Proceedings of the 15th Communications and Networking Simulation Symposium
    Location Orlando, Florida
    Publisher Society for Computer Simulation International
    Address San Diego, CA, USA
    Year 2012
    Abstract We propose an in-network caching architecture using Open-Flow to coordinate caching decisions in the network. Our scheme, called CacheFlow, extends the cache-and-forward concept by moving contents closer to the clients hop-by-hop using TCP for sending requests and retrieving contents. As such, CacheFlow can be incrementally implemented and deployed in the real network. In this paper, we present a simulation study of several caching policies, including a random cache policy, a statically optimal cache placement policy and a new disk placement strategy that places popular contents at the c̈enter ̈of the network. Experimental results show that simple in-network caching policies can be realized using today's technology to improve network performance.
    URL http://portal.acm.org/citation.cfm?id=2331762.2331774


    Liu, Jun and O'Neil, Thomas and Desell, Travis and Carlson, Ross
  71. Author Liu, Jun and O'Neil, Thomas and Desell, Travis and Carlson, Ross
    Title Work-in-Progress: Empirical Verification of A Subset Sum Hypothesis in GENI Cloud
    Booktitle First GENI Research and Educational Experiment Workshop (GREE 2012)
    Location Los Angeles
    Year 2012


    Luna, Nicholas and Shetty, Sachin and Rogers, Tamara and Xiong, Kaiqi
  72. Author Luna, Nicholas and Shetty, Sachin and Rogers, Tamara and Xiong, Kaiqi
    Title Assessment of Router Vulnerabilities on PlanetLab Infrastructure for Secure Cloud Computing
    Booktitle First GENI Research and Educational Experiment Workshop (GREE 2012)
    Location Los Angeles
    Year 2012
    Abstract In recent times, the cloud computing based delivery model has been proven to reduce enterprise IT costs and complexities. In contrast to traditional enterprise IT solutions, the cloud computing model moves the application software and data to remote servers in large datacenters, which raises many security challenges. One of the critical challenges is the inability to characterize the impact of the vulnerabilities of routers on the cloud security and performance guarantees. In this paper, we analyze the degree of security provided by routers to data sharing applications deployed in cloud environments that span administrative and network domains. Our analysis is based on examining the security level of network applications on routers which lie between nodes on Planetlab infrastructure. We assume that some of the PlanetLab nodes will share the same wide area network path as the cloud servers. Our preliminary results confirm that the majority of the routers are plagued by insecure network protocols, leading to vulnerable routers. These results confirm our hypothesis that the security of the network infrastructure needs to be upgraded to assure the protection of information exchanged on the wide area network path.


    Maccherani, E. and Femminella, M. and Lee, J. W. and Francescangeli, R. and Janak, J. and Reali, G. and Schulzrinne, H.
  73. Author Maccherani, E. and Femminella, M. and Lee, J. W. and Francescangeli, R. and Janak, J. and Reali, G. and Schulzrinne, H.
    Title Extending the NetServ autonomic management capabilities using OpenFlow
    Booktitle Network Operations and Management Symposium (NOMS), 2012 IEEE
    Year 2012
    DOI 10.1109/NOMS.2012.6211961
    URL http://dx.doi.org/10.1109/NOMS.2012.6211961


  74. Author Maccherani, E. and Femminella, M. and Lee, J. W. and Francescangeli, R. and Janak, J. and Reali, G. and Schulzrinne, H.
    Title Extending the NetServ autonomic management capabilities using OpenFlow
    Booktitle 2012 IEEE Network Operations and Management Symposium
    Location Maui, HI
    Publisher IEEE
    Year 2012
    Abstract Autonomic management capabilities of the Future Internet can be provided through a recently proposed service architecture called NetServ. It consists of the interconnection of programmable nodes which enable dynamic deployment and execution of network and application services. This paper shows how this architecture can be further improved by introducing the OpenFlow architecture and implementing the OpenFlow controller as a NetServ service, thus improving both the NetServ management performance and its flexibility. These achievements are demonstrated experimentally on the GENI environment, showing the platform self-protecting capabilities in case of a SIP DoS attack.
    DOI 10.1109/NOMS.2012.6211961
    URL http://dx.doi.org/10.1109/NOMS.2012.6211961


    Mahindra, R. and Bhanage, G. D. and Hadjichristofi, G. and Seskar, I. and Raychaudhuri, D. and Zhang, Y. Y.
  75. Author Mahindra, R. and Bhanage, G. D. and Hadjichristofi, G. and Seskar, I. and Raychaudhuri, D. and Zhang, Y. Y.
    Title Space Versus Time Separation for Wireless Virtualization on an Indoor Grid
    Booktitle Next Generation Internet Networks, 2008. NGI 2008
    Publisher IEEE
    Year 2008
    Abstract The decreasing cost of wireless hardware and ever increasing number of wireless testbeds has led to a shift in the protocol evaluation paradigm from simulations towards emulation. In addition, with a large number of users demanding experimental resources and lack of space and time for deploying more hardware, fair resource sharing among independent co-existing experiments is important. We study the proposed approaches to wireless virtualization with a focus on schemes conserving wireless channels rather than nodes. Our detailed comparison reveals that while experiments sharing a channel by space separation achieve better efficiency than those relying on time separation of a channel, the isolation between experiments in both cases is comparable. We propose and implement a policy manager to alleviate the isolation problem and suggest scenarios in which either of the schemes would provide a suitable virtualization solution.
    DOI 10.1109/NGI.2008.36
    URL http://dx.doi.org/10.1109/NGI.2008.36


    Mahindra, R. and Bhanage, G. and Hadjichristofi, G. and Ganu, S. and Kamat, P. and Seskar, I. and Raychaudhuri, D.
  76. Author Mahindra, R. and Bhanage, G. and Hadjichristofi, G. and Ganu, S. and Kamat, P. and Seskar, I. and Raychaudhuri, D.
    Title Integration of heterogeneous networking testbeds
    Booktitle Proceedings of the 4th International Conference on Testbeds and research infrastructures for the development of networks & communities
    Location Innsbruck, Austria
    Publisher ICST (Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering)
    Address ICST, Brussels, Belgium, Belgium
    Year 2008
    Abstract As networking research expands into new frontiers, the research community has felt a need for a heterogeneous networking research infrastructure to experiment with the interaction and integration of different types of networks, and to test the performance of various networking protocols in realistic environments. This requirement has led to the Global Environment for Network Innovations (GENI) initiative to create a global infrastructure for conducting networking experiments across diverse substrates such as wired (local and wide-area), wireless, sensor and cellular networks. In this paper, we discuss and present two models for building such an experimental infrastructure. The first model enables a wired testbed to link with wireless edge nodes during an experiment, whereas the second model enables a wireless testbed to link to wired testbeds. Proof-of-concept experiments are also presented reinforcing the usefulness of the models in terms of facilitating experiments over the integrated heterogeneous infrastructure.
    URL http://portal.acm.org/citation.cfm?id=1390609


    Mambretti, Joe and Chen, Jim and Yeh, Fei
  77. Author Mambretti, Joe and Chen, Jim and Yeh, Fei
    Title Creating environments for innovation: Designing and implementing advanced experimental network research testbeds based on the Global Lambda Integrated Facility and the StarLight Exchange
    Journal Computer Networks
    Year 2014
    DOI 10.1016/j.bjp.2013.12.024
    URL http://dx.doi.org/10.1016/j.bjp.2013.12.024


    Mandvekar, Lokesh and Qiao, Chunming and Husain, Mohammad I.
  78. Author Mandvekar, Lokesh and Qiao, Chunming and Husain, Mohammad I.
    Title Enabling Wide Area Single System Image Experimentation on the GENI Platform
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.27
    URL http://dx.doi.org/10.1109/GREE.2013.27


    Mandvekar, Lokesh and Sathyaraja, Anandatirtha and Qiao, Chunming
  79. Author Mandvekar, Lokesh and Sathyaraja, Anandatirtha and Qiao, Chunming
    Title Socially Aware Single System Images
    Booktitle First GENI Research and Educational Experiment Workshop (GREE 2012)
    Location Los Angeles
    Year 2012
    Abstract Cloud computing enables users to get access to huge amounts of computing resources as desired. There are many popular commercial cloud service providers which provide resources to users at a price. These providers can not be trusted as far as privacy of data is concerned. On the other hand, people do trust their close friends, relatives and other social contacts, albeit, to varying degrees. This paper reports the work-in-progress on S3I(Socially Aware Single System Images) which allows users to form computing clusters using resources owned by their social contacts. It tries to utilize the trust found between people in real life and translate it to provide trustworthy resource sharing between them.


    Marasevic, Jelena and Janak, Jan and Schulzrinnedag, Henning and Zussman, Gil
  80. Author Marasevic, Jelena and Janak, Jan and Schulzrinnedag, Henning and Zussman, Gil
    Title WiMAX in the Classroom: Designing a Cellular Networking Hands-on Lab
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.29
    URL http://dx.doi.org/10.1109/GREE.2013.29


    Maziku, Hellen and Shetty, Sachin and Rogers, Tamara
  81. Author Maziku, Hellen and Shetty, Sachin and Rogers, Tamara
    Title Measurement-based IP Geolocation of Routers on Planetlab Infrastructure
    Booktitle First GENI Research and Educational Experiment Workshop (GREE 2012)
    Location Los Angeles
    Year 2012
    Abstract Location aware applications can benefit from a more accurate yet robust IP geolocation framework. Various approaches to IP geolocation have been well documented. The most recent approach casts IP geolocation as a machine learn- ing classification problem. This approach makes it possible to incorporate both delay and non delay based information. The accuracy of IP geolocation can be improved by incorporating additional types of geolocation information rather relying on network delay alone. To enhance the classification accuracy of the existing classification framework, we expand it to include 6 features (3 of which are novel). We use PlanetLab as a testbed to generate our measurement set. We select 67 PlanetLab nodes within the United States with known geographic location as our landmarks. We test the accuracy of our framework on 23,843 routers given ping measurements from the 67 landmarks. With only three features (average delay, average hops and population density) tested, our new classifier gives a reduced average error distance of 157.81 miles and a median error distance of 0 miles, compared to the present classifier that gives an average error distance of 253.34 miles. This is very promising as we move on to the next phase of incorporating data for the remaining 5 features. To the best of our knowledge, this is the first proposed framework that aims to improve the accuracy of the present classifier based IP geolocation.


    McKeown, Nick and Anderson, Tom and Balakrishnan, Hari and Parulkar, Guru and Peterson, Larry and Rexford, Jennifer and Shenker, Scott and Turner, Jonathan
  82. Author McKeown, Nick and Anderson, Tom and Balakrishnan, Hari and Parulkar, Guru and Peterson, Larry and Rexford, Jennifer and Shenker, Scott and Turner, Jonathan
    Title OpenFlow: enabling innovation in campus networks
    Journal SIGCOMM Comput. Commun. Rev.
    Publisher ACM
    Address New York, NY, USA
    Year 2008
    DOI 10.1145/1355734.1355746
    URL http://doi.acm.org/10.1145/1355734.1355746


    Medhi, Deep and Ramamurthy, Byrav and Scoglio, Caterina and Rohrer, Justin P. and Çetinkaya, Egemen K. and Cherukuri, Ramkumar and Liu, Xuan and Angu, Pragatheeswaran and Bavier, Andy and Buffington, Cort and Sterbenz, James P. G.
  83. Author Medhi, Deep and Ramamurthy, Byrav and Scoglio, Caterina and Rohrer, Justin P. and Çetinkaya, Egemen K. and Cherukuri, Ramkumar and Liu, Xuan and Angu, Pragatheeswaran and Bavier, Andy and Buffington, Cort and Sterbenz, James P. G.
    Title The GpENI testbed: Network infrastructure, implementation experience, and experimentation
    Journal Computer Networks
    Year 2014
    Abstract The Great Plains Environment for Network Innovation (GpENI) is an international programmable network testbed centered initially in the Midwest US with the goal to provide programmability across the entire protocol stack. In this paper, we present the overall GpENI framework and our implementation experience for the programmable routing environment and the dynamic circuit network (DCN). GpENI is built to provide a collaborative research infrastructure enabling the research community to conduct experiments in Future Internet architecture. We present illustrative examples of our experimentation in the GpENI platform.
    DOI 10.1016/j.bjp.2013.12.027
    URL http://dx.doi.org/10.1016/j.bjp.2013.12.027


    Mitroff, Sarah
  84. Author Mitroff, Sarah
    Title Lawrence Landweber Helped Build Today's Internet, Now He's Advising Its Future
    Journal Wired
    Year 2012
    URL http://www.wired.com/business/2012/08/lawrence-landweber/


    Muhammad, Monzur and Cappos, Justin
  85. Author Muhammad, Monzur and Cappos, Justin
    Title Towards a Representive Testbed: Harnessing Volunteers for Networks Research
    Booktitle First GENI Research and Educational Experiment Workshop (GREE 2012)
    Location Los Angeles
    Year 2012
    Abstract A steady rise in home systems has been seen over the past few years. As more systems are designed and deployed, an appropriate testbed is required to test these systems. Sev- eral systems exist, such as PlanetLab, that currently provide a networking testbed allowing researchers and developers to test and measure various applications. However in the long run such testbeds will be unable to keep up and meet all the demands of many of the large scale modern day peer-to-peer systems. We outline the various challenges and essentials of a networking testbed and we provide an alternate network- ing testbed that is driven by resources that are voluntarily contributed. We talk about the various advantages and dis- advantages of the Seattle system, an open source peer-to- peer computing testbed that has the potential to meet these demands. The testbed is composed of sandboxed resources that are donated by volunteers. Seattle has been deployed for about three years and supports many researchers who are interested in a networking testbed. The testbed consists of over 4100 nodes and is constantly growing. Seattle looks to grow and meet the demands of networking testbeds as they are made.


    Narisetty, RajaRevanth and Dane, Levent and Malishevskiy, Anatoliy and Gurkan, Deniz and Bailey, Stuart and Narayan, Sandhya and Mysore, Shivaram
  86. Author Narisetty, RajaRevanth and Dane, Levent and Malishevskiy, Anatoliy and Gurkan, Deniz and Bailey, Stuart and Narayan, Sandhya and Mysore, Shivaram
    Title OpenFlow Configuration (OFConfig) Protocol: Implementation for the OF Management Plane
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.21
    URL http://dx.doi.org/10.1109/GREE.2013.21


    Nozaki, Yoshihiro and Bakshi, Parth and Tuncer, Hasan and Shenoy, Nirmala
  87. Author Nozaki, Yoshihiro and Bakshi, Parth and Tuncer, Hasan and Shenoy, Nirmala
    Title Evaluation of tiered routing protocol in floating cloud tiered internet architecture
    Journal Computer Networks
    Year 2014
    Abstract Clean slate future Internet initiatives have been ongoing for a few years. An important consideration in the eventual deployment of solutions for such Internet architectures is the testing and validation of the design and its scalability in realistic network environments. Large scale emulation and experimentation testbeds sponsored and funded by major research organizations worldwide provide a suitable platform for the purpose. In this article, we present the implementation details of a new network and routing protocol that entirely replaces IP and its routing protocols from the protocol stack to provide efficient routing and forwarding of packets in a clean slate Floating Cloud Tiered (FCT) Internet architecture. The FCT architecture leverages the tier structure existing among ISPs, and has a new addressing and routing schema based on tiers. In this article, the implementation and evaluation details of the network protocol with these two features, namely the tiered addressing and tier-based routing using the Global Environmental for Network Innovations (GENI) testbed are presented. The performance of the protocol is also compared with Open Shortest Path First (OSPF) implemented over the GENI testbed for identical network topologies.
    DOI 10.1016/j.bjp.2013.11.010
    URL http://dx.doi.org/10.1016/j.bjp.2013.11.010


    O'Neill, Derek and Aikat, Jay and Jeffay, Kevin
  88. Author O'Neill, Derek and Aikat, Jay and Jeffay, Kevin
    Title Experiment Replication using ProtoGENI nodes
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.11
    URL http://dx.doi.org/10.1109/GREE.2013.11


    Ozcelik, Ilker and Brooks, Richard R.
  89. Author Ozcelik, Ilker and Brooks, Richard R.
    Title Security experimentation using operational systems
    Booktitle Proceedings of the Seventh Annual Workshop on Cyber Security and Information Intelligence Research
    Location Oak Ridge, Tennessee
    Publisher ACM
    Address New York, NY, USA
    Year 2011
    Abstract Computers and Internet have evolved into necessary tools for our professional, personal and social lives. As a result of this growing dependence, there is a concern that these systems remain protected and available. This concern increases exponentially when considering systems such as smart power grids. Therefore, research should be conducted to develop effective ways of detecting system anomalies. To have realistic results, the studies should be tested on real systems. However, it is not possible to test these experiments on the live network. With the recent collaboration of Universities and research labs, a new experiment test bed has been established. As a result, experiments can now be implemented on real networks. In our study, we design an experiment to analyze Distributed Denial of Service Attacks (DDoS Attack) on a real network with real Internet traffic. The approach that we use in our study can easily be generalized to apply to smart power grids.
    DOI 10.1145/2179298.2179388
    URL http://dx.doi.org/10.1145/2179298.2179388


  90. Author Ozcelik, Ilker and Brooks, Richard R.
    Title Performance Analysis of DDoS Detection Methods on Real Network
    Booktitle First GENI Research and Educational Experiment Workshop (GREE 2012)
    Location Los Angeles
    Year 2012
    Abstract Distributed Denial of Service (DDoS) attacks are major security threats to the Internet. The distributed structure of these attacks makes it difficult to distinguish between legitimate and attack traffic, making detection difficult. In addition to this challenge, researchers also have to study and find countermeasures against these attacks without using an operational network for testing, since attacks on operational networks inconvenience users. In this paper, we propose a method to perform DDoS analysis on real hardware using real traffic without jeopardizing the original network. We implement our experiments on the Geni testbed using Openflow. We present results from DDoS detection methods using operational traffic.


  91. Author Ozcelik, Ilker and Brooks, Richard R.
    Title Operational System Testing for Designed in Security
    Booktitle Proceedings of the Eighth Annual Cyber Security and Information Intelligence Research Workshop
    Location Oak Ridge, Tennessee
    Publisher ACM
    Address New York, NY, USA
    Year 2013
    Abstract To design secure systems, one needs to understand how attackers use system vulnerabilities in their favor. This requires testing vulnerabilities on operational systems. However, working on operational systems is not always possible because of the risk of disturbance. In this study, we introduce an approach to experimenting using operational system data and performing real attacks without disturbing the original system. We applied this approach to a network security experiment and tested the performance of three detection methods. The approach used in this study can be used when developing systems with Designed-in Security to identify and test system vulnerabilities.
    DOI 10.1145/2459976.2460038
    URL http://dx.doi.org/10.1145/2459976.2460038


    Ozcelik, Ilker and Fu, Yu and Brooks, Richard R.
  92. Author Ozcelik, Ilker and Fu, Yu and Brooks, Richard R.
    Title DoS Detection is Easier Now
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.18
    URL http://dx.doi.org/10.1109/GREE.2013.18


    Paul, Subharthi and Pan, Jianli and Jain, Raj
  93. Author Paul, Subharthi and Pan, Jianli and Jain, Raj
    Title Architectures for the future networks and the next generation Internet: A survey
    Journal Computer Communications
    Publisher Elsevier Science Publishers B. V.
    Address Amsterdam, The Netherlands, The Netherlands
    Year 2011
    Abstract Networking research funding agencies in USA, Europe, Japan, and other countries are encouraging research on revolutionary networking architectures that may or may not be bound by the restrictions of the current TCP/IP based Internet. We present a comprehensive survey of such research projects and activities. The topics covered include various testbeds for experimentations for new architectures, new security mechanisms, content delivery mechanisms, management and control frameworks, service architectures, and routing mechanisms. Delay/disruption tolerant networks which allow communications even when complete end-to-end path is not available are also discussed.
    DOI 10.1016/j.comcom.2010.08.001
    URL http://dx.doi.org/10.1016/j.comcom.2010.08.001


    Qin, Z. and Xiong, X. and Chuah, M.
  94. Author Qin, Z. and Xiong, X. and Chuah, M.
    Title Lehigh Explorer: Android Application Utilizing Content Centric Features
    Booktitle First GENI Research and Educational Experiment Workshop (GREE 2012)
    Location Los Angeles
    Year 2012
    Abstract Companies, government organizations or institutions from anywhere in the world publish different types of information e.g. news, health alerts, disaster warnings at any time. Rather than consuming all published data, users only desire access to information of interest to themselves irrespective of where the data is located and who publish them. Existing publish/subscribe systems built based on IP-based network can be inefficient and are not flexible enough to meet emerging requirements e.g. deal with mobile users, dynamic contents, searching over encrypted data. Recently content-centric networks have been proposed to provide flexibility to users to access such information. We have designed secure content centric mobile networks that allow users to publish and retrieve contents securely. As with any new architecture, one important issue is to have useful applications that can utilize features provided in the new architecture. In this paper, we describe an Android application we recently developed that allows visitors to explore Lehigh campus based on their expressed interests. Our application utilizes keyword based interest messages to retrieve matching data items of interests to a user. We are giving a demo of Lehigh Explorer at GEC13.


    Quan, John and Nance, Kara and Hay, Brian
  95. Author Quan, John and Nance, Kara and Hay, Brian
    Title A Mutualistic Security Service Model: Supporting Large-Scale Virtualized Environments
    Journal IT Professional
    Year 2011
    Abstract Applying a mutualistic security service model to large-scale virtualized environments that rely on contributed hardware lets researchers improve security in exchange for resources. The authors discuss this model in the context of the Global Environment for Network Innovation (GENI) project.
    DOI 10.1109/MITP.2011.36
    URL http://dx.doi.org/10.1109/MITP.2011.36


    Raychaudhuri, Dipankar and Nagaraja, Kiran and Venkataramani, Arun
  96. Author Raychaudhuri, Dipankar and Nagaraja, Kiran and Venkataramani, Arun
    Title MobilityFirst: a robust and trustworthy mobility-centric architecture for the future internet
    Journal SIGMOBILE Mob. Comput. Commun. Rev.
    Publisher ACM
    Address New York, NY, USA
    Year 2012
    Abstract This paper presents an overview of the MobilityFirst network architecture, currently under development as part of the US National Science Foundation's Future Internet Architecture (FIA) program. The proposed architecture is intended to directly address the challenges of wireless access and mobility at scale, while also providing new services needed for emerging mobile Internet application scenarios. After briefly outlining the original design goals of the project, we provide a discussion of the main architectural concepts behind the network design, identifying key features such as separation of names from addresses, public-key based globally unique identifiers (GUIDs) for named objects, global name resolution service (GNRS) for dynamic binding of names to addresses, storage-aware routing and late binding, content- and context-aware services, optional in-network compute layer, and so on. This is followed by a brief description of the MobilityFirst protocol stack as a whole, along with an explanation of how the protocol works at end-user devices and inside network routers. Example of specific advanced services supported by the protocol stack, including multi-homing, mobility with disconnection, and content retrieval/caching are given for illustration. Further design details of two key protocol components, the GNRS name resolution service and the GSTAR routing protocol, are also described along with sample results from evaluation. In conclusion, a brief description of an ongoing multi-site experimental proof-of-concept deployment of the MobilityFirst protocol stack on the GENI testbed is provided.
    DOI 10.1145/2412096.2412098
    URL http://dx.doi.org/10.1145/2412096.2412098


    Ricci, Robert and Wong, Gary and Stoller, Leigh and Duerig, Jonathon
  97. Author Ricci, Robert and Wong, Gary and Stoller, Leigh and Duerig, Jonathon
    Title An Architecture For International Federation of Network Testbeds
    Journal IEICE Transactions on Communications
    Year 2013
    Abstract Testbeds play a key role in the advancement of network science and the exploration of new network architectures. Because the scale and scope of any individual testbed is necessarily limited, federation is a useful technique for constructing testbeds that serve a wide range of experimenter needs. In a federated testbed, individual facilities maintain local autonomy while cooperating to provide a unified set of abstractions and interfaces to users. Forming an international federation is particularly challenging, because issues of trust, user access policy, and local laws and regulations are of greater concern that they are for federations within a single country. In this paper, we describe an architecture, based on the US National Science Foundation's GENI project, that is capable of supporting the needs of an international federation.
    DOI 10.1587/transcom.E96.B.2
    URL http://dx.doi.org/10.1587/transcom.E96.B.2


    Rohrer, Justin P. and Çetinkaya, Egemen K. and Sterbenz, James P. G.
  98. Author Rohrer, Justin P. and Çetinkaya, Egemen K. and Sterbenz, James P. G.
    Title Progress and challenges in large-scale future internet experimentation using the GpENI programmable testbed
    Booktitle Proceedings of the 6th International Conference on Future Internet Technologies
    Location Seoul, Republic of Korea
    Publisher ACM
    Address New York, NY, USA
    Year 2011
    Abstract GpENI is evolving to provide a promising environment in which to do experimental research in the resilience and survivability of future networks, by allowing programmable control over topology and mechanism, while providing the scale and global reach needed to conduct network experiments far beyond the capabilities of a conventional testbed. Addressing this need at scale introduces a number of challenges both in deployment and in collecting results that can be directly compared to simulation results for cross-verification purposes. In this short paper we present the scope, design goals, challenges, and current status of the GpENI programmable testbed, as well as an overview and examples of the types of experiments we are beginning to run.
    DOI 10.1145/2002396.2002409
    URL http://dx.doi.org/10.1145/2002396.2002409


    Rosen, Aaron and Wang, Kuang-Ching
  99. Author Rosen, Aaron and Wang, Kuang-Ching
    Title Steroid OpenFlow Service: Seamless Network Service Delivery in Software Defined Networks
    Booktitle First GENI Research and Educational Experiment Workshop (GREE 2012)
    Location Los Angeles
    Year 2012
    Abstract In a software defined network (SDN), packet forwarding is controlled by software controllers. In an OpenFlow SDN, a controller can control the forwarding, rewriting, and dropping of packets based on their header attributes. The ability to handle packets in customizable ways in software has significant implications for both network users and operators. Via software, users can convey application specific expectations while operators can deliver application specific services to enhance user experiences. In this paper, we present the Steroid OpenFlow Services (SOS) paradigm for network services delivery. The paradigm enables operators to deliver network services without any setup requirements on user machines. SOS utilizes OpenFlow to redirect application specific traffic to application specific service agents; SOS also rewrites packet headers for a service to remain seamless to users. This paper presents an example SOS service for optimizing large volume TCP download across a large delay-bandwidth-product wide area network. SOS service agents on both ends of the connection seamlessly terminate a user TCP connection, launch a set of parallel TCP connections, and leverage multiple paths when available to maximize throughput. With the NSF GENI future Internet testbed, a prototype implementation achieved up to 320 times throughput enhancement seamless to the end users.


    Schwerdel, Dennis and Reuther, Bernd and Zinner, Thomas and M\\uller, Paul and Tran-Gia, Phouc
  100. Author Schwerdel, Dennis and Reuther, Bernd and Zinner, Thomas and M\\uller, Paul and Tran-Gia, Phouc
    Title Future Internet research and experimentation: The G-Lab approach
    Journal Computer Networks
    Year 2014
    Abstract The German Lab (G-Lab) project aims to investigate architectural concepts and technologies for a new inter-networking architecture as an integrated approach between theoretic and experimental studies. Thus G-Lab consists of two major fields of activities: research studies of future network components and the design and setup of experimental facilities. Both are controlled by the same community to ensure that the experimental facility meets the demands of the researchers. Researchers gain access to virtualized resources or may gain exclusive access to resources if necessary. We present the current setup of the experimental facility, describing the available hardware, management of the platform, the utilization of the PlanetLab software and the user management. Moreover, a new approach to setup and deploy virtual network topologies will be described.
    DOI 10.1016/j.bjp.2013.12.023
    URL http://dx.doi.org/10.1016/j.bjp.2013.12.023


    Scoglio, Caterina M. and Sydney, Ali and Youssef, Mina and Schumm, Phillip and Kooij, Robert E.
  101. Author Scoglio, Caterina M. and Sydney, Ali and Youssef, Mina and Schumm, Phillip and Kooij, Robert E.
    Title Elasticity and Viral Conductance: Unveiling Robustness in Complex Networks through Topological Characteristics
    Journal CoRR
    Year 2008


    Seskar, Ivan and Nagaraja, Kiran and Nelson, Sam and Raychaudhuri, Dipankar
  102. Author Seskar, Ivan and Nagaraja, Kiran and Nelson, Sam and Raychaudhuri, Dipankar
    Title MobilityFirst future internet architecture project
    Booktitle Proceedings of the 7th Asian Internet Engineering Conference
    Location Bangkok, Thailand
    Publisher ACM
    Address New York, NY, USA
    Year 2011
    Abstract This short paper presents an overview of the MobilityFirst network architecture, which is a clean-slate project being conducted as part of the NSF Future Internet Architecture (FIA) program. The proposed architecture is intended to directly address the challenges of wireless access and mobility at scale, while also providing new multicast, anycast, multi-path and context-aware services needed for emerging mobile Internet application scenarios. Key protocol components of the proposed architecture are: (a) separation of naming from addressing; (b) public key based self-certifying names (called globally unique identifiers or GUIDs) for network-attached objects; (c) global name resolution service (GNRS) for dynamic name-to-address binding; (d) delay-tolerant and storage-aware routing (GSTAR) capable of dealing with wireless link quality fluctuations and disconnections; (e) hop-by-hop transport of large protocol data units; and (f) location or context-aware services. The basic operations of a MobilityFirst router are outlined. This is followed by a discussion of ongoing proof-of-concept prototyping and experimental evaluation efforts for the MobilityFirst protocol stack. In conclusion, a brief description of an ongoing multi-site experimental deployment of the MobilityFirst protocol stack on the GENI testbed is provided.
    DOI 10.1145/2089016.2089017
    URL http://dx.doi.org/10.1145/2089016.2089017


    Sharma, Navin and Gummeson, Jeremy and Irwin, David and Shenoy, Prashant
  103. Author Sharma, Navin and Gummeson, Jeremy and Irwin, David and Shenoy, Prashant
    Title Cloudy Computing: Leveraging Weather Forecasts in Energy Harvesting Sensor Systems
    Booktitle 2010 7th Annual IEEE Communications Society Conference on Sensor, Mesh and Ad Hoc Communications and Networks (SECON)
    Location Boston, MA, USA
    Publisher IEEE
    Year 2010
    Abstract To sustain perpetual operation, systems that harvest environmental energy must carefully regulate their usage to satisfy their demand. Regulating energy usage is challenging if a system's demands are not elastic and its hardware components are not energy-proportional, since it cannot precisely scale its usage to match its supply. Instead, the system must choose when to satisfy its energy demands based on its current energy reserves and predictions of its future energy supply. In this paper, we explore the use of weather forecasts to improve a system's ability to satisfy demand by improving its predictions. We analyze weather forecast, observational, and energy harvesting data to formulate a model that translates a weather forecast to a wind or solar energy harvesting prediction, and quantify its accuracy. We evaluate our model for both energy sources in the context of two different energy harvesting sensor systems with inelastic demands: a sensor testbed that leases sensors to external users and a lexicographically fair sensor network that maintains steady node sensing rates. We show that using weather forecasts in both wind- and solar-powered sensor systems increases each system's ability to satisfy its demands compared with existing prediction strategies.
    DOI 10.1109/SECON.2010.5508260
    URL http://dx.doi.org/10.1109/SECON.2010.5508260


    Shen, Haiying and Liu, Guoxin
  104. Author Shen, Haiying and Liu, Guoxin
    Title Harmony: Integrated Resource and Reputation Management for Large-Scale Distributed Systems
    Booktitle 2011 Proceedings of 20th International Conference on Computer Communications and Networks (ICCCN)
    Location Lahaina, HI, USA
    Publisher IEEE
    Year 2011
    Abstract Advancements in technology over the past decade are leading to a promising future for large-scale distributed systems, where globally-scattered distributed resources are collectively pooled and used in a cooperative manner to achieve unprecedented petascale supercomputing capabilities. The issues of resource management (resMgt) and reputation management (repMgt) need to be addressed in order to ensure the successful deployment of large-scale distributed systems. However, these two issues have typically been addressed separately, despite the significant interdependencies between them: resMgt needs repMgt to provide a cooperative environment for resource sharing, and in turn facilitates repMgt to evaluate multi-faceted node reputations for providing different resources. Current repMgt methods provide a single reputation value for each node in providing all types of resources. However, a node willing to provide one resource may not be willing to provide another resource. In addition, current repMgt methods often guide node selection policy to select the highest-reputed nodes, which may overload these nodes. Also, few works exploited node reputation in resource selection in order to fully and fairly utilize resources in the system and to meet users' diverse QoS demands. We propose a system called Harmony that integrates resMgt and repMgt in a harmonious manner. Harmony incorporates two key innovations: integrated multi-faceted resource/reputation management and multi-QoS-oriented resource selection. The trace data we collected from an online trading platform confirms the importance of multi-faceted reputation and potential problems with highest-reputed node selection. Trace-driven experiments performed on PlanetLab show that Harmony outperforms existing resMgt and repMgt in terms of the success rate, service delay, and efficiency.
    DOI 10.1109/ICCCN.2011.6005739
    URL http://dx.doi.org/10.1109/ICCCN.2011.6005739


    Sher-DeCusatis, Carolyn J. and DeCusatis, Casimer
  105. Author Sher-DeCusatis, Carolyn J. and DeCusatis, Casimer
    Title Developing a Software Defined Networking curriculum through industry partnerships
    Booktitle American Society for Engineering Education (ASEE Zone 1), 2014 Zone 1 Conference of the
    Year 2014
    DOI 10.1109/ASEEZone1.2014.6820653
    URL http://dx.doi.org/10.1109/ASEEZone1.2014.6820653


    Shin, Sunae and Dhondge, Kaustubh and Choi, Baek-Young
  106. Author Shin, Sunae and Dhondge, Kaustubh and Choi, Baek-Young
    Title Understanding the Performance of TCP and UDP-based Data Transfer Protocols using EMULAB
    Booktitle First GENI Research and Educational Experiment Workshop (GREE 2012)
    Location Los Angeles
    Year 2012
    Abstract In this paper, we present a hands-on course project that explores the performance of data transfer protocols using a GENI resource. TCP is one of the key topics in networking courses, and understanding its behavior as well as limitations, from real experiments, offers an invaluable and deep learning experience. A protocol's performance is directly impacted by network parameters such as network bandwidth, delay and loss. However, it is difficult to control and even vary those parameters, if it is not evaluated with simulations. GENI facilities conveniently provide a virtual laboratory that enables us to control the network settings with real network systems. Through this educational project, students had an opportunity to control important network parameters, and measure and compare TCP's performance with a UDP-based data transfer protocol, UDT, using EMULAB. Students were enthusiastic to witness the protocols' performances, and the limitations of TCP under a high bandwidth delay product network in the presence of packet loss, and to recognize the importance of protocol design and system issues for the future Internet.


    Sivakumar, Ashiwan and Shankaranarayanan, P. N. and Rao, Sanjay
  107. Author Sivakumar, Ashiwan and Shankaranarayanan, P. N. and Rao, Sanjay
    Title Closer to the Cloud - A Case for Emulating Cloud Dynamics by Controlling the Environment
    Booktitle First GENI Research and Educational Experiment Workshop (GREE 2012)
    Location Los Angeles
    Year 2012


    Soroush, Hamed and Banerjee, Nilanjan and Corner, Mark and Levine, Brian and Lynn, Brian
  108. Author Soroush, Hamed and Banerjee, Nilanjan and Corner, Mark and Levine, Brian and Lynn, Brian
    Title A retrospective look at the UMass DOME mobile testbed
    Journal SIGMOBILE Mob. Comput. Commun. Rev.
    Publisher ACM
    Address New York, NY, USA
    Year 2012
    Abstract In this paper we describe the evolution of DOME, a diverse outdoor testbed for mobile experimentation. In addition, while highlighting the challenges faced in construction of DOME, we describe a concrete set of scientific results derived from this experience in a retrospective study. First, we argue that a broad range of mobility experiments could be performed in a testbed which provides the properties of temporal, technological, and spatial diversity. We demonstrate these properties in our testbed through analysis of data collected from DOME over a period of four years. Second, we crystallize a set of design principles that others should use when constructing testbeds of their own, including those related to deploying and managing a diverse testbed, distributing experiments remotely, and fostering collaborations among testbed stakeholders. Finally, using traces collected by DOME, we provide insights into several important problems in mobile systems research.
    DOI 10.1145/2169077.2169079
    URL http://dx.doi.org/10.1145/2169077.2169079


    Sridharan, Mukundan and Calyam, Prasad and Venkataraman, Aishwarya and Berryman, Alex
  109. Author Sridharan, Mukundan and Calyam, Prasad and Venkataraman, Aishwarya and Berryman, Alex
    Title Defragmentation of Resources in Virtual Desktop Clouds for Cost-Aware Utility-Optimal Allocation
    Booktitle 2011 Fourth IEEE International Conference on Utility and Cloud Computing
    Location Melbourne, Australia
    Publisher IEEE
    Year 2011
    Abstract Cloud Service Providers (CSPs) make virtual desktop cloud (VDC) resource provisioning decisions within desktop pools based on user groups and their application profiles. Such provisioning is aimed to satisfy acceptable user quality of experience (QoE) levels and is coupled with subsequent placement of VDs across distributed data centers. The placement decisions are influenced by session latency, load balancing and operation cost constraints. In this paper, we identify the resource fragmentation problem that occurs when placement is done opportunistically to minimize provisioning time and deliver satisfactory user QoE. To solve this problem, which inherently is an NP-Hard problem, we propose a defragmentation scheme that has fast convergence time and has three levels of complexity: (i) ütility fair provisioning ̈(UFP) to optimize resource provisioning within a data center - to achieve relative fairness between desktop pools, (ii) s̈tatic migration-free utility optimal placement and provisioning ̈(MUPP) to optimize resource provisioning between multiple data centers - to improve performance, and (iii) d̈ynamic global utility optimal placement and provisioning ̈(GUPP) to optimize resource provisioning using cost-aware and utility-maximal VD re-allocations and migrations - to increase scalability. We evaluate our defragmentation scheme against 'least latency', 'least load', and 'least cost' schemes using a novel V̈DC-Sim ̈simulator that we have developed in this study. Our simulations leverage profiles of user groups and their applications within desktop pools, obtained from a real VDC test bed. Our simulation results demonstrate that defragmentation is an important optimization step that can enable CSPs to achieve fairness, substantially improve user QoE and increase VDC scalability.
    DOI 10.1109/UCC.2011.41
    URL http://dx.doi.org/10.1109/UCC.2011.41


    Sridharan, Mukundan and Zeng, Wenjie and Leal, William and Ju, Xi and Ramanath, Rajiv and Zhang, Hongwei and Arora, Anish
  110. Author Sridharan, Mukundan and Zeng, Wenjie and Leal, William and Ju, Xi and Ramanath, Rajiv and Zhang, Hongwei and Arora, Anish
    Title From Kansei to KanseiGenie: Architecture of Federated, Programmable Wireless Sensor Fabrics
    Journal Proceedings of the ICST Conference on Testbeds and Research Infrastructures for the Development of Networks and Communities (TridentCom)
    Year 2010
    Abstract This paper deals with challenges in federating wireless sensing fabrics. Federations of this sort are currently being developed in next generation global end-to-end experimentation infrastructures, such as GENI, to support rapid prototyping and hi-fidelity validation of protocols and applications. On one hand, federation should support access to diverse (and potentially provider-specific) wireless sensor resources and, on the other, it should enable users to uniformly task these resources. Instead of more simple basing federation upon a standard description of resources, we propose an architecture where the ontology of resource description can vary across providers, and a mapping of user needs to resources is performed to achieve uniform tasking. We illustrate one realization of this architecture, in terms of our refactoring the Kansei testbed to become the KanseiGenie federated fabric manager, which has full support for programmability, sliceability, and federated experimentation over heterogeneous sensing fabrics.


    Stabler, Greg and Goasguen, Sebastien and Rosen, Aaron and Wang, Kuang-Ching
  111. Author Stabler, Greg and Goasguen, Sebastien and Rosen, Aaron and Wang, Kuang-Ching
    Title OneCloud: Controlling the Network in an OpenFlow Cloud
    Booktitle First GENI Research and Educational Experiment Workshop (GREE 2012)
    Location Los Angeles
    Year 2012
    Abstract Cloud computing is an emerging paradigm for on-demand access to computing resources over the network. Beyond early Software as a Service (SaaS) offerings, there is an increasing interest in the Infrastructure as a Service (IaaS) model where users request specific storage, networking, and computing resources to meet their application needs. To provision the network in a cloud, IaaS providers, such as the Amazon Web Services, allow users to choose their IP addresses, which can be associated with a dynamic set of virtual hosts (Elastic IP) with VPN, dynamic DNS, and dynamic firewall services. In this paper, we analyze a range of cloud network provisioning needs and the means to realize them in an OpenFlow network. We present an OpenFlow enabled framework for cloud network provisioning, based on the Open- Nebula cloud provisioning engine. Specifically, we demonstrate an Elastic IP service compatible with the Amazon Elastic Compute Cloud (EC2) API. This demonstration is available on the Clemson OneCloud IaaS offering. Ongoing efforts focus on the enablement of additional cloud network services for campus networks and wide area experimental networks like the National Science Foundation's GENI network.


    Stabler, Greg and Rosen, Aaron and Goasguen, Sebastien and Wang, Kuang-Ching
  112. Author Stabler, Greg and Rosen, Aaron and Goasguen, Sebastien and Wang, Kuang-Ching
    Title Elastic IP and security groups implementation using OpenFlow
    Booktitle Proceedings of the 6th international workshop on Virtualization Technologies in Distributed Computing Date
    Location Delft, The Netherlands
    Publisher ACM
    Address New York, NY, USA
    Year 2012
    DOI 10.1145/2287056.2287069
    URL http://doi.acm.org/10.1145/2287056.2287069


    Sterbenz, J. P. G. and Egemen and Hameed, M. A. and Jabbar, A. and Rohrer, J. P.
  113. Author Sterbenz, J. P. G. and Egemen and Hameed, M. A. and Jabbar, A. and Rohrer, J. P.
    Title Modelling and analysis of network resilience
    Booktitle 2011 Third International Conference on Communication Systems and Networks (COMSNETS 2011)
    Location Bangalore
    Publisher IEEE
    Year 2011
    Abstract As the Internet becomes increasingly important to all aspects of society, the consequences of disruption become increasingly severe. Thus it is critical to increase the resilience and survivability of the future network. We define resilience as the ability of the network to provide desired service even when challenged by attacks, large-scale disasters, and other failures. This paper describes a comprehensive methodology to evaluate network resilience using a combination of analytical and simulation techniques with the goal of improving the resilience and survivability of the Future Internet.
    DOI 10.1109/COMSNETS.2011.5716502
    URL http://dx.doi.org/10.1109/COMSNETS.2011.5716502


    Sterbenz, James P. G. and Çetinkaya, Egemen K. and Hameed, Mahmood A. and Jabbar, Abdul and Qian, Shi and Rohrer, Justin P.
  114. Author Sterbenz, James P. G. and Çetinkaya, Egemen K. and Hameed, Mahmood A. and Jabbar, Abdul and Qian, Shi and Rohrer, Justin P.
    Title Evaluation of network resilience, survivability, and disruption tolerance: analysis, topology generation, simulation, and experimentation
    Journal Telecommunication Systems
    Publisher Springer Netherlands
    Year 2011
    Abstract As the Internet becomes increasingly important to all aspects of society, the consequences of disruption become increasingly severe. Thus it is critical to increase the resilience and survivability of future networks. We define resilience as the ability of the network to provide desired service even when challenged by attacks, large-scale disasters, and other failures. This paper describes a comprehensive methodology to evaluate network resilience using a combination of topology generation, analytical, simulation, and experimental emulation techniques with the goal of improving the resilience and survivability of the Future Internet.
    DOI 10.1007/s11235-011-9573-6
    URL http://dx.doi.org/10.1007/s11235-011-9573-6


    Suñé, M. and Bergesio, L. and Woesner, H. and Rothe, T. and K\\opsel, A. and Colle, D. and Puype, B. and Simeonidou, D. and Nejabati, R. and Channegowda, M. and Kind, M. and Dietz, T. and Autenrieth, A. and Kotronis, V. and Salvadori, E. and Salsano, S. and K\\orner, M. and Sharma, S.
  115. Author Suñé, M. and Bergesio, L. and Woesner, H. and Rothe, T. and K\\opsel, A. and Colle, D. and Puype, B. and Simeonidou, D. and Nejabati, R. and Channegowda, M. and Kind, M. and Dietz, T. and Autenrieth, A. and Kotronis, V. and Salvadori, E. and Salsano, S. and K\\orner, M. and Sharma, S.
    Title Design and implementation of the OFELIA FP7 facility: The European OpenFlow testbed
    Journal Computer Networks
    Year 2014
    Abstract The growth of the Internet in terms of number of devices, the number of networks associated to each device and the mobility of devices and users makes the operation and management of the Internet network infrastructure a very complex challenge. In order to address this challenge, innovative solutions and ideas must be tested and evaluated in real network environments and not only based on simulations or laboratory setups. OFELIA is an European FP7 project and its main objective is to address the aforementioned challenge by building and operating a multi-layer, multi-technology and geographically distributed Future Internet testbed facility, where the network itself is precisely controlled and programmed by the experimenter using the emerging OpenFlow technology. This paper reports on the work done during the first half of the project, the lessons learned as well as the key advantages of the OFELIA facility for developing and testing new networking ideas. An overview on the challenges that have been faced on the design and implementation of the testbed facility is described, including the OFELIA Control Framework testbed management software. In addition, early operational experience of the facility since it was opened to the general public, providing five different testbeds or islands, is described.
    DOI 10.1016/j.bjp.2013.10.015
    URL http://dx.doi.org/10.1016/j.bjp.2013.10.015


    Sydney, A. and Nutaro, J. and Scoglio, C. and Gruenbacher, D. and Schulz, N.
  116. Author Sydney, A. and Nutaro, J. and Scoglio, C. and Gruenbacher, D. and Schulz, N.
    Title Simulative Comparison of Multiprotocol Label Switching and OpenFlow Network Technologies for Transmission Operations
    Journal Smart Grid, IEEE Transactions on
    Year 2013
    DOI 10.1109/TSG.2012.2227516
    URL http://dx.doi.org/10.1109/TSG.2012.2227516


    Sydney, Ali
  117. Author Sydney, Ali
    Title The evaluation of software defined networking for communication and control of cyber physical systems
    Year 2013
    URL http://hdl.handle.net/2097/15577


    Sydney, Ali and Ochs, David S. and Scoglio, Caterina and Gruenbacher, Don and Miller, Ruth
  118. Author Sydney, Ali and Ochs, David S. and Scoglio, Caterina and Gruenbacher, Don and Miller, Ruth
    Title Using GENI for experimental evaluation of Software Defined Networking in smart grids
    Journal Computer Networks
    Year 2014
    Abstract The North American Electric Reliability Corporation (NERC) envisions a smart grid that aggressively explores advance communication network solutions to facilitate real-time monitoring and dynamic control of the bulk electric power system. At the distribution level, the smart grid integrates renewable generation and energy storage mechanisms to improve the reliability of the grid. Furthermore, dynamic pricing and demand management provide customers an avenue to interact with the power system to determine the electricity usage that best satisfies their lifestyle. At the transmission level, efficient communication and a highly automated architecture provide visibility in the power system and as a result, faults are mitigated faster than they can propagate. However, such higher levels of reliability and efficiency rest on the supporting communication infrastructure. To date, utility companies are moving towards Multiprotocol Label Switching (MPLS) because it supports traffic engineering and virtual private networks (VPNs). Furthermore, it provides Quality of Service (QoS) guarantees and fail-over mechanisms in addition to meeting the requirement of non-routability as stipulated by NERC. However, these benefits come at a cost for the infrastructure that supports the full MPLS specification. With this realization and given a two week implementation and deployment window in GENI, we explore the modularity and flexibility provided by the low cost OpenFlow Software Defined Networking (SDN) solution. In particular, we use OpenFlow to provide (1) automatic fail-over mechanisms, (2) a load balancing, and (3) Quality of Service guarantees: all essential mechanisms for smart grid networks.
    DOI 10.1016/j.bjp.2013.12.021
    URL http://dx.doi.org/10.1016/j.bjp.2013.12.021


    Teerapittayanon, Surat and Fouli, Kerim and Médard, Muriel and Montpetit, Marie-José and Shi, Xiaomeng and Seskar, Ivan and Gosain, Abhimanyu
  119. Author Teerapittayanon, Surat and Fouli, Kerim and Médard, Muriel and Montpetit, Marie-José and Shi, Xiaomeng and Seskar, Ivan and Gosain, Abhimanyu
    Title Network Coding as a WiMAX Link Reliability Mechanism
    Booktitle Multiple Access Communications
    Publisher Springer Berlin Heidelberg
    Year 2012
    Abstract We design and implement a network-coding-enabled relia- bility architecture for next generation wireless networks. Our network coding (NC) architecture uses a flexible thread-based design, with each encoder-decoder instance applying systematic intra-session random lin- ear network coding as a packet erasure code at the IP layer. Using GENI WiMAX platforms, a series of point-to-point transmission experiments were conducted to compare the performance of the NC architecture to that of the Automatic Repeated reQuest (ARQ) and Hybrid ARQ (HARQ) mechanisms. In our scenarios, the proposed architecture is able to decrease packet loss from around 11-32% to nearly 0%; compared to HARQ and joint HARQ/ARQ mechanisms, the NC architecture offers up to 5.9 times gain in throughput and 5.5 times reduction in end-to- end file transfer delay. By establishing NC as a potential substitute for HARQ/ARQ, our experiments offer important insights into cross-layer designs of next generation wireless networks.
    DOI 10.1007/978-3-642-34976-8_1
    URL http://dx.doi.org/10.1007/978-3-642-34976-8_1


    Thomas, Charles and Sommers, Joel and Barford, Paul and Kim, Dongchan and Das, Ananya and Segebre, Roberto and Crovella, Mark
  120. Author Thomas, Charles and Sommers, Joel and Barford, Paul and Kim, Dongchan and Das, Ananya and Segebre, Roberto and Crovella, Mark
    Title A Passive Measurement System for Network Testbeds
    Booktitle 8th International ICST Conference on Testbeds and Research Infrastructures for the Development of Networks and Communities (TRIDENTCOM 2012)
    Year 2012
    Abstract The ability to capture and process packet-level data is of intrinsic importance in network testbeds that offer broad experimental capabilities to researchers. In this paper we describe the design and implementation of a passive measurement system for network testbeds called GIMS. The system enables users to specify and centrally manage packet capture on a set of dedicated measurement nodes deployed on links in a distributed testbed. The first component of GIMS is a scalable experiment management system that coordinates multi-tenant access to measurement nodes through a web-based user interface. The second component of GIMS is a node management system that enables \\\\em (i) local processing on packets (\\\\em e.g., flow aggregation and sampling), \\\\em (ii) meta-data to be added to captured packets (\\\\em e.g., timestamps), \\\\em (iii) packet anonymization per local security policy, and \\\\em (iv) flexible data storage including transfer to remote archives. We demonstrate the capabilities of GIMS through a set of micro-benchmarks that specifically highlight the performance of the node management system deployed on a commodity workstation. Our implementations are openly available to the community and our development efforts are on-going.


    Tiako, Pierre F.
  121. Author Tiako, Pierre F.
    Title Perspectives of delegation in team-based distributed software development over the GENI infrastructure (NIER track)
    Booktitle Proceedings of the 33rd International Conference on Software Engineering
    Location Waikiki, Honolulu, HI, USA
    Publisher ACM
    Address New York, NY, USA
    Year 2011
    Abstract Team-based distributed software development (TBDSD) is one of the single biggest challenges facing software companies. The need to manage development efforts and resources in different locations increase the complexity and cost of modern day software development. Current software development environments do not provide suitable support to delegate task among teams with appropriate directives. TBDSD is also limited to the current internet capabilities. One of the resulting problems is the difficulty to delegate and control tasks assigned among remote teams. This paper proposes (1) a new framework for delegation in TBDSD, and (2) perspectives for deploying Process-centered Software Engineering Environments (PSEE) over the Global Environment for Network Innovations (GENI) infrastructure. GENI, the 'future Internet' that is taking shape in prototypes across the US, will allow, in the context of our study, to securely access and share software artifacts, resources, and tools as never before seen over the current Internet.
    DOI 10.1145/1985793.1985905
    URL http://dx.doi.org/10.1145/1985793.1985905


    Tredger, Stephen and Zhuang, Yanyan and Matthews, Chris and Short-Gershman, Jesse and Coady, Rick
  122. Author Tredger, Stephen and Zhuang, Yanyan and Matthews, Chris and Short-Gershman, Jesse and Coady, Rick
    Title Building Green Systems with Green Students: An Educational Experiment with GENI Infrastructure
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.15
    URL http://dx.doi.org/10.1109/GREE.2013.15


    Tuncer, Hasan and Nozaki, Yoshihiro and Shenoy, Nirmala
  123. Author Tuncer, Hasan and Nozaki, Yoshihiro and Shenoy, Nirmala
    Title Virtual Mobility Domains - A Mobility Architecture for the Future Internet
    Booktitle IEEE International Conference on Commnunications (IEE ICC 2012) Symposium on Next-Generation Networking
    Year 2012
    Abstract This paper presents a novel mobility architecture called Virtual Mobility Domains that is designed to work with the Floating Cloud Tiered Internetworking model. Virtual Mobility Domains supports both inter Autonomous System (macro) and intra Autonomous System (micro) mobility by leveraging a tiered addressing, a network cloud concept, and a unique packet forwarding scheme introduced by the Floating Cloud Tiered Internetworking model. The proposed mobility architecture is distinct from others by not using IP addressing and classic routing protocols, and deploying user-centric overlapping mobility domains. The comparative simulation study of Virtual Mobility Domains against Mobile IPv6, Hierarchical Mobile IPv6, and Proxy Mobile IPv6 using OPNET shows that Virtual Mobility Domains brings lower latency, lesser signaling overhead, and fewer packets loss during handoffs, specially during inter Autonomous System roaming. The results highlight the potential for a seamless mobility management.
    DOI 10.1109/ICC.2012.6363872
    URL ftp://lesc.det.unifi.it/pub/LenLar/proceedings/2012/ICC2012/symposia/papers/virtual_mobility_domains_-_a_mobility_architecture_for_the_\\_.pdf


    Turner, Jonathan S.
  124. Author Turner, Jonathan S.
    Title A proposed architecture for the GENI backbone platform
    Booktitle Proceedings of the 2006 ACM/IEEE symposium on Architecture for networking and communications systems
    Location San Jose, California, USA
    Publisher ACM
    Address New York, NY, USA
    Year 2006
    Abstract The GENI Project (Global Environment for Network Innovation) is a major NSF-sponsored initiative that seeks to create a national research facility to enable experimental deployment of innovative new network architectures on a sufficient scale to enable realistic evaluation. One key component of the GENI system will be the GENI Backbone Platform (GBP) that provides the resources needed to allow multiple experimental networks to co-exist within the shared GENI infrastructure. This paper reviews the objectives for the GBP, the key issues that affect its design and develops a reference architecture that provides a concrete example for how the objectives can be met, using commercially available subsystems.
    DOI 10.1145/1185347.1185349
    URL http://dx.doi.org/10.1145/1185347.1185349


    Turner, Jonathan S. and Crowley, Patrick and DeHart, John and Freestone, Amy and Heller, Brandon and Kuhns, Fred and Kumar, Sailesh and Lockwood, John and Lu, Jing and Wilson, Michael and Wiseman, Charles and Zar, David
  125. Author Turner, Jonathan S. and Crowley, Patrick and DeHart, John and Freestone, Amy and Heller, Brandon and Kuhns, Fred and Kumar, Sailesh and Lockwood, John and Lu, Jing and Wilson, Michael and Wiseman, Charles and Zar, David
    Title Supercharging planetlab: a high performance, multi-application, overlay network platform
    Journal SIGCOMM Comput. Commun. Rev.
    Publisher ACM
    Address New York, NY, USA
    Year 2007
    Abstract In recent years, overlay networks have become an important vehicle for delivering Internet applications. Overlay network nodes are typically implemented using general purpose servers or clusters. We investigate the performance benefits of more integrated architectures, combining general-purpose servers with high performance Network Processor (NP) subsystems. We focus on PlanetLab as our experimental context and report on the design and evaluation of an experimental PlanetLab platform capable of much higher levels of performance than typical system configurations. To make it easier for users to port applications, the system supports a fast path/slow path application structure that facilitates the mapping of the most performance-critical parts of an application onto an NP subsystem, while allowing the more complex control and exception-handling to be implemented within the programmer-friendly environment provided by conventional servers. We report on implementations of two sample applications, an IPv4 router, and a forwarding application for the Internet Indirection Infrastructure. We demonstrate an 80x improvement in packet processing rates and comparable reductions in latency.
    DOI 10.1145/1282427.1282391
    URL http://dx.doi.org/10.1145/1282427.1282391


    Valancius, Vytautas and Feamster, Nick
  126. Author Valancius, Vytautas and Feamster, Nick
    Title Multiplexing BGP sessions with BGP-Mux
    Booktitle Proceedings of the 2007 ACM CoNEXT conference
    Location New York, New York
    Publisher ACM
    Address New York, NY, USA
    Year 2007
    Abstract This paper describes a BGP-session multiplexer called BGP-Mux, which provides stable, on-demand access to global BGP route feeds. This gateway allows arbitrary and even transient client BGP connections to be provisioned and torn down on demand without affecting globally visible BGP sessions. BGP-Mux provides two capabilities: (1) the ability for a client network to receive multiple unfiltered routes per destination from a set of upstream ASes; and (2) the ability to provision BGP sessions without introducing global instability. Several applications could benefit from these features:
    DOI 10.1145/1364654.1364707
    URL http://dx.doi.org/10.1145/1364654.1364707


    Valancius, Vytautas and Feamster, Nick and Rexford, Jennifer and Nakao, Akihiro
  127. Author Valancius, Vytautas and Feamster, Nick and Rexford, Jennifer and Nakao, Akihiro
    Title Wide-area route control for distributed services
    Booktitle Proceedings of the 2010 USENIX conference on USENIX annual technical conference
    Location Boston, MA
    Publisher USENIX Association
    Address Berkeley, CA, USA
    Year 2010
    Abstract Many distributed services would benefit from control over the flow of traffic to and from their users, to offer better performance and higher reliability at a reasonable cost. Unfortunately, although today's cloud-computing platforms offer elastic computing and bandwidth resources, they do not give services control over wide-area routing. We propose replacing the data center's border router with a Transit Portal (TP) that gives each service the illusion of direct connectivity to upstream ISPs, without requiring each service to deploy hardware, acquire IP address space, or negotiate contracts with ISPs. Our TP prototype supports many layer-two connectivity mechanisms, amortizes memory and message overhead over multiple services, and protects the rest of the Internet from misconfigured and malicious applications. Our implementation extends and synthesizes open-source software components such as the Linux kernel and the Quagga routing daemon. We also implement a management plane based on the GENI control framework and couple this with our four-site TP deployment and Amazon EC2 facilities. Experiments with an anycast DNS application demonstrate the benefits the TP offers to distributed services.
    URL http://portal.acm.org/citation.cfm?id=1855842


    Valancius, Vytautas and Kim, Hyojoon and Feamster, Nick
  128. Author Valancius, Vytautas and Kim, Hyojoon and Feamster, Nick
    Title Transit portal: BGP connectivity as a service
    Journal SIGCOMM Comput. Commun. Rev.
    Publisher ACM
    Address New York, NY, USA
    Year 2010
    Abstract We demonstrate Transit Portal, a system that provides on-demand BGP Internet connectivity to multiple ISPs. Transit Portal provides connectivity to any virtual network or distributed service that needs to control its inbound and outbound route control. Examples of such services include virtual networks and distributed services in cloud computing environments (e.g., Amazon's EC2) that need to control inbound and outbound traffic.
    DOI 10.1145/1851182.1851265
    URL http://dl.acm.org/citation.cfm?id=1851265


    Van Vorst, N. and Erazo, M. and Liu, J.
  129. Author Van Vorst, N. and Erazo, M. and Liu, J.
    Title PrimoGENI: Integrating Real-Time Network Simulation and Emulation in GENI
    Booktitle Principles of Advanced and Distributed Simulation (PADS), 2011 IEEE Workshop on
    Location Nice, France
    Publisher IEEE
    Year 2011
    Abstract The Global Environment for Network Innovations (GENI) is a community-driven research and development effort to build a collaborative and exploratory network experimentation platform -- a v̈irtual laboratory'' for the design, implementation and evaluation of future networks. The PrimoGENI project enables real-time network simulation by extending an existing network simulator to become part of the GENI federation to support large-scale experiments involving physical, simulated and emulated network entities. In this paper, we describe a novel design of PrimoGENI, which aims at supporting realistic, scalable, and flexible network experiments with real-time simulation and emulation capabilities. We present a flexible emulation infrastructure that allows both remote client machines and local cluster nodes running virtual machines to seamlessly interoperate with the simulated network running within a designated s̈lice'' of resources. We show the results of our preliminary validation and performance studies to demonstrate the capabilities and limitations of our approach.
    DOI 10.1109/pads.2011.5936747
    URL http://dx.doi.org/10.1109/pads.2011.5936747


  130. Author Van Vorst, N. and Erazo, M. and Liu, J.
    Title PrimoGENI for hybrid network simulation and emulation experiments in GENI
    Journal Journal of Simulation
    Year 2012
    Abstract The Global Environment for Network Innovations (GENI) is a community-driven research and development effort to build a collaborative and exploratory network experimentation platform—a 'virtual laboratory' for the design, implementation, and evaluation of future networks. The PrimoGENI project enables real-time network simulation by extending an existing network simulator to become part of the GENI federation to support large-scale experiments involving physical, simulated, and emulated network entities. In this paper, we describe a novel design of PrimoGENI, which aims at supporting realistic, scalable, and flexible network experiments with real-time simulation and emulation capabilities. We present a flexible emulation infrastructure that allows both remote client machines, local cluster nodes running virtual machines, and external networks to seamlessly interoperate with the simulated network running within a designated 'slice' of resources. We present the results of our preliminary validation and performance studies to demonstrate the capabilities as well as limitations of our approach.
    DOI 10.1057/jos.2012.5
    URL http://dx.doi.org/10.1057/jos.2012.5


    Van Vorst, N. and Li, Ting and Liu, J.
  131. Author Van Vorst, N. and Li, Ting and Liu, J.
    Title How Low Can You Go? Spherical Routing for Scalable Network Simulations
    Booktitle Modeling, Analysis & Simulation of Computer and Telecommunication Systems (MASCOTS), 2011 IEEE 19th International Symposium on
    Publisher IEEE
    Year 2011
    Abstract Memory consumption is a critical problem for large-scale network simulations. Particularly, the large memory footprint needed for maintaining routing tables can severely obturate scalability. We present an approach of composing large-scale network models using sharable model fragments to achieve significant reduction in the amount of memory required for storing forwarding tables in simulation. Our approach, called spherical routing, conducts static routing within spheres according to user-defined policies. Our routing scheme pre-calculates the forwarding table for each routing sphere, and allows spheres with identical sub-structures to share forwarding tables. Through extensive experiments we demonstrate that our approach can achieve several orders of magnitude in memory reduction for large-scale network models.
    DOI 10.1109/MASCOTS.2011.35
    URL http://dx.doi.org/10.1109/MASCOTS.2011.35


    Van Vorst, N. and Liu, J.
  132. Author Van Vorst, N. and Liu, J.
    Title Realizing Large-Scale Interactive Network Simulation via Model Splitting
    Booktitle Principles of Advanced and Distributed Simulation (PADS), 2012 ACM/IEEE/SCS 26th Workshop on
    Publisher IEEE
    Year 2012
    Abstract This paper presents the model splitting method for large-scale interactive network simulation, which addresses the separation of concerns between network researchers, who focus on developing complex network models and conducting large-scale network experiments, and simulator developers, who are concerned with developing efficient simulation engines to achieve the best performance on parallel platforms. Modeling splitting divides the system into an interactive model to support user interaction, and an execution model to facilitate parallel processing. We describe techniques to maintain consistency and real-time synchronization between the two models. We also provide solutions to reduce the memory complexity of large network models and to ensure data persistency and access efficiency for out-of-core processing.
    DOI 10.1109/pads.2012.35
    URL http://dx.doi.org/10.1109/pads.2012.35


    Vulimiri, Ashish and Michel, Oliver and Godfrey, P. Brighten and Shenker, Scott
  133. Author Vulimiri, Ashish and Michel, Oliver and Godfrey, P. Brighten and Shenker, Scott
    Title More is Less: Reducing Latency via Redundancy
    Booktitle Proceedings of the 11th ACM Workshop on Hot Topics in Networks
    Location Redmond, Washington
    Publisher ACM
    Address New York, NY, USA
    Year 2012
    Abstract Low latency is critical for interactive networked applications. But while we know how to scale systems to increase capacity, reducing latency --- especially the tail of the latency distribution --- can be much more difficult. We argue that the use of redundancy in the context of the wide-area Internet is an effective way to convert a small amount of extra capacity into reduced latency. By initiating redundant operations across diverse resources and using the first result which completes, redundancy improves a system's latency even under exceptional conditions. We demonstrate that redundancy can significantly reduce latency for small but critical tasks, and argue that it is an effective general-purpose strategy even on devices like cell phones where bandwidth is relatively constrained.
    DOI 10.1145/2390231.2390234
    URL http://dx.doi.org/10.1145/2390231.2390234


    Wang, Yuefeng and Esposito, Flavio and Matta, Ibrahim
  134. Author Wang, Yuefeng and Esposito, Flavio and Matta, Ibrahim
    Title Demonstrating RINA using the GENI Testbed
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.26
    URL http://dx.doi.org/10.1109/GREE.2013.26


    Wong, G. and Ricci, R. and Duerig, J. and Stoller, L. and Chikkulapelly, S. and Seok, Woojin
  135. Author Wong, G. and Ricci, R. and Duerig, J. and Stoller, L. and Chikkulapelly, S. and Seok, Woojin
    Title Partitioning Trust in Network Testbeds
    Booktitle System Science (HICSS), 2012 45th Hawaii International Conference on
    Publisher IEEE
    Year 2012
    Abstract Traditionally, test beds for networking and systems research have been designed as monolithic facilities: they contain a single root of trust. The resources in the facility are assumed to be administered by a single entity or a set of mutually-trusting entities. All user management, including vouching for users' identities and taking responsibility for their actions, is done using a flat trust structure or a simple hierarchy with the facility itself as the root. This design is not a good match for test beds that are composed of multiple autonomous facilities, or in which different parts of the test bed operate under different trust models. In this paper, we argue that partitioned trust is increasingly important in large scale and security-sensitive test beds. We present a design that accomplishes this partitioning by using multiple trust roots. The trust domains created by these roots may decide, independently, how much trust to place in each other, and can apply policies based on the domain or principal that originates a request. The domains could represent separately administered facilities (as in a federated test bed), or they could represent sections within a single facility that run with different trust models (for example, with differing levels of security.) We have implemented this design in ProtoGENI, a control framework for federated test beds, we include details of this implementation and share experiences from using it in an active deployment with hundreds of users.
    DOI 10.1109/HICSS.2012.466
    URL http://dx.doi.org/10.1109/HICSS.2012.466


    Xing, Tianyi and Huang, Dijiang and Xu, Le and Chung, Chun-Jen and Khatkar, Pankaj
  136. Author Xing, Tianyi and Huang, Dijiang and Xu, Le and Chung, Chun-Jen and Khatkar, Pankaj
    Title SnortFlow: A OpenFlow-based Intrusion Prevention System in Cloud Environment
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.25
    URL http://dx.doi.org/10.1109/GREE.2013.25


    Xiong, Kaiqi and Pan, Yin
  137. Author Xiong, Kaiqi and Pan, Yin
    Title Understanding ProtoGENI in Networking Courses for Research and Education
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.31
    URL http://dx.doi.org/10.1109/GREE.2013.31


    Xu, Ke and Izard, Ryan and Yang, Fan and Wang, Kuang-Ching and Martin, Jim
  138. Author Xu, Ke and Izard, Ryan and Yang, Fan and Wang, Kuang-Ching and Martin, Jim
    Title Cloud-based Handoff as a Service for Heterogeneous Vehicular Networks with OpenFlow
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.17
    URL http://dx.doi.org/10.1109/GREE.2013.17


    Xu, Ke and Sampathkumar, Saravan and Wang, Kuang-Ching and Ramanathan, Parmesh
  139. Author Xu, Ke and Sampathkumar, Saravan and Wang, Kuang-Ching and Ramanathan, Parmesh
    Title Network Coding for Efficient Broadband Data Delivery in Infrastructure-based Vehicular Networks with OpenFlow
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.19
    URL http://dx.doi.org/10.1109/GREE.2013.19


    Yi, Ping
  140. Author Yi, Ping
    Title Peer-to-Peer based Trading and File Distribution for Cloud Computing
    Address Lexington, Kentucky
    Year 2014
    Abstract In this dissertation we take a peer-to-peer approach to deal with two specific issues, fair trading and file distribution, arisen from data management for cloud computing. In mobile cloud computing environment cloud providers may collaborate with each other and essentially organize some dedicated resources as a peer to peer sharing system. One well-known problem in such peer to peer systems with exchange of resources is free riding. Providing incentives for peers to contribute to the system is an important issue in peer to peer systems. We design a reputation-based fair trading mechanism that favors peers with higher reputation. Based on the definition of the reputation used in the system, we derive a fair trading policy. We evaluate the performance of reputation-based trading mechanisms and highlight the scenarios in which they can make a difference. Distribution of data to the resources within a cloud or to different collaborating clouds efficiently is another issue in cloud computing. The delivery efficiency is de- pendent on the characteristics of the network links available among these network nodes and the mechanism that takes advantage of them. Our study is based on the Global Environment for Network Innovations (GENI), a testbed for researchers to build a virtual laboratory at scale to explore future Internets. Our study consists of two parts. First, we characterize the links in the GENI network. Even though GENI has been used in many research and education projects, there is no systematic study about what we can expect from the GENI testbeds from a performance perspective. The goal is to characterize the links of the GENI networks and provide guidance for GENI experiments. Second, we propose a peer to peer approach to file distribution for cloud comput- ing. We develop a mechanism that uses multiple delivery trees as the distribution structure, which takes into consideration the measured performance information in the GENI network. Files are divided into chunks to improve parallelism among differ- ent delivery trees. With a strict scheduling mechanism for each chunk, we can reduce the overall time for getting the file to all relevant nodes. We evaluate the proposed mechanism and show that our mechanism can significantly reduce the overall delivery time.
    URL http://uknowledge.uky.edu/cs_etds/22/


    Yu, Xinxin and Li, Min and Liu, Kaikai and Li, Xiaolin
  141. Author Yu, Xinxin and Li, Min and Liu, Kaikai and Li, Xiaolin
    Title ExoApp: Performance Evaluation of Data-Intensive Applications on ExoGENI
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.14
    URL http://dx.doi.org/10.1109/GREE.2013.14


    Yuen, Marco
  142. Author Yuen, Marco
    Title GENI in the Cloud
    Year 2010
    Abstract Computer networking researchers often have access to a few dierent network testbeds (Section 1.2) for their experiments. However, those testbeds are limited in resources; contentions for resources are prominent in those testbeds especially when conference deadline is looming. Moreover, services running on those testbeds are subject to seasonal and daily trac spikes from users all round the world. Hence, demand for resources at the testbeds are high. Some researchers can use other testbeds in conjunction with the ones they are using. Even though each of the testbeds may have dierent infrastructures, and characteristics, in the end, what the researchers receive in return is a set of computing resources, either virtual machines or physical machines. Essentially, those testbeds are providing a similar service, but researchers have to manage the credentials for accessing the testbeds manually, and they have to manually request resources from dierent testbeds in order to setup experiments that span across dierent testbeds. This thesis presents GENICloud, a project that enables the federation of testbeds with clouds. Computing and storage resources can be provisioned to researchers and services running on existing testbeds dynamically from an Eucalyptus cloud. As a part of the GENICloud project, the user proxy (Section 3.4) provides a less arduous method for testbeds administrators to federate with other testbeds; the same serviceiv also manages researchers credentials, so they do not have to acquire resources from each testbed individually. The user proxy provides a single interface for researchers to interact with dierent testbeds and clouds and manage their experiments. Furthermore, GENICloud demonstrates that there are, in fact, quite a few architectural similarities between dierent testbeds and even clouds
    URL http://s3.amazonaws.com/marcoy_thesis/Thesis.pdf


    Zhuang, Yanyan and Rafetseder, Albert and Cappos, Justin
  143. Author Zhuang, Yanyan and Rafetseder, Albert and Cappos, Justin
    Title Experience with Seattle: A Community Platform for Research and Education
    Booktitle 2013 Proceedings Second GENI Research and Educational Experiment Workshop
    Location Salt Lake City, UT
    Publisher IEEE
    Year 2013
    DOI 10.1109/GREE.2013.16
    URL http://dx.doi.org/10.1109/GREE.2013.16



Attachments (3)

Download all attachments as: .zip