the design and implementation of a next generation name service for the internet

The Design and Implementation of a Next Generation Name Service for the Internet V. Ramasubramanian, E. Gun Sirer Cornell Univ. SIGCOMM 2004 Ciprian Tutu – Systems Seminar 8/4/04 Johns Hopkins University

Upload: kiril

Post on 22-Feb-2016

31 views

Category:

Documents

0 download

Report

Download

Tags:

Embed Size (px):

DESCRIPTION

The Design and Implementation of a Next Generation Name Service for the Internet. V. Ramasubramanian, E. Gun Sirer Cornell Univ. SIGCOMM 2004. Ciprian Tutu – Systems Seminar 8/4/04 Johns Hopkins University. DNS: Current Operation and Issues. - PowerPoint PPT Presentation

TRANSCRIPT

The Design and Implementation of a Next Generation Name Service for the Internet

V. Ramasubramanian, E. Gun SirerCornell Univ.SIGCOMM 2004

Ciprian Tutu – Systems Seminar 8/4/04Johns Hopkins University

Page 2: The Design and Implementation of a Next Generation Name Service for the Internet

DNS: Current Operation and IssuesHigh latency in query resolve (low cache hit-rates)High load on root and TLD serversSlow update propagation (40% have TTL > 1 day)Lame delegationsImplementation errors (?)

Page 3: The Design and Implementation of a Next Generation Name Service for the Internet

Current DNS: bottlenecks

Page 4: The Design and Implementation of a Next Generation Name Service for the Internet

CoDoNS GoalsHigh Performance

Low latency, increased lookup performance

Resilience to AttacksDecentralizationDynamic load balancing

Fast Update PropagationSupport secure delegation

Page 5: The Design and Implementation of a Next Generation Name Service for the Internet

Beehive Prefix-matching DHTO(logN) lookup Pastry, Tapestry

Proactive cachingO(1) lookup

C=0.5 hopsxi=fraction of objects replicated at level Ib=DHT base

Page 6: The Design and Implementation of a Next Generation Name Service for the Internet

CoDoNS: ArchitectureDecouples namespace management from query resolutionDomain names mapped to 128bit unique identifiersDirect caching for localityHome node stores permanent copies of RR’sNo TTL associated with records inside CoDoNSSupports negative caching (NXDOMAIN)

Page 7: The Design and Implementation of a Next Generation Name Service for the Internet

CoDoNS (cont.)Supports DNSSEC signatures

Caches certificatesInsert/Update use version number to prevent replay attacks. (!! not Dynamic DNS compliant)Allows multiple operators to manage the same part of the name hierarchy

If conflicting records, clients “simply” pick records signed by an operator they trust (?!)

CoDoNS uses its own centralized authority to sign resource records fetched from legacy DNS (!!)

Page 8: The Design and Implementation of a Next Generation Name Service for the Internet

CoDoNS EvaluationMIT trace

12 hours; 281,943 queries; 47,230 unique domain names

Deployed on 75 PlanetLab nodes

Query Resolution Latency

Page 9: The Design and Implementation of a Next Generation Name Service for the Internet

CoDoNS Latency

Page 10: The Design and Implementation of a Next Generation Name Service for the Internet

CoDoNS: Flash-crowd Effect

Avg bw: 12.2KB/s/node AvgRecords/node: 4217 (10% of total, 13MB storage)

Page 11: The Design and Implementation of a Next Generation Name Service for the Internet

CoDoNS: Update Propagation

For 1 million node CoDoNS network it would take less than 1 minute to update 99% of replicas

Page 12: The Design and Implementation of a Next Generation Name Service for the Internet

ConclusionsDecouple management from query resolutionReduce resolver latencyImprove update propagation delayReduce load on root serversResistent to flash-crowd effect (?)Attempt to eliminate monopoly in namespace management

Page 13: The Design and Implementation of a Next Generation Name Service for the Internet

Questions/IssuesCompatibility with dynamic DNSGiving RR signing authority to CoDoNSNot really great behaviour for flash-crowdsCoDoNS caches any data that is queried (size issues)

Selective caching?No TTL on CoDoNS nodes -> if home node becomes partitioned, then no expiration.

Further issues related to CoDoNS network partitioning

Is there enough incentive for cooperation?

Next Generation Access – Implementation Issues …...BoR (10) 08 1 Next Generation Access – Implementation Issues and Wholesale Products Executive summary This document is a follow

Next Generation ITS Implementation Aspects in 5G Wireless … · 2017-08-06 · Next Generation ITS Implementation Aspects in 5G Wireless Communication Network Gajewski Slawomir Faculty

INSPIRING THE NEXT GENERATION OF …...Rapid Ideation & Implementation: Time and resource constraints require fast idea generation, implementation, possible failure, and an immediate

Infectious Disease Next Generation Sequencing Based ... · Contains Nonbinding Recommendations Draft - Not for Implementation 1 Infectious Disease Next Generation 2 Sequencing Based

Cancer Next Generation Sequencing Clinical Implementation in CLIA/CAP facility

Training the Next Generation: Planning, Development and ...€¦ · Training the Next Generation: Planning, Development and Implementation of Training Programs in RD Samarpita Sengupta,

Next Generation Industry Partnership Grants€¦ · The bidder’s webinar for the Next Generation Industry Partnership convening and implementation grants will be: ... PAsmart is

Next-Generation Datacenter Security Implementation Guidelines · Palo Alto Networks: Next-Generation Datacenter Security Implementation Guidelines PA-7050 boundary firewalls to protect

High-Performance 5LPE Implementation Next-Generation Arm ... · High-Performance 5LPE Implementation Next-Generation Arm “Hercules” CPU Kevin K. Yee (Samsung), Fakhruddin Ali