SlideShare a Scribd company logo

Open Programmable Architecture for Java-enabled Network Devices

Download as PPT, PDF
Tal Lavian Ph.D., profile picture
Tal Lavian Ph.D.

The document discusses the evolution of programmable network devices and the introduction of intelligent features through a Java-enabled architecture. It highlights the growing market demand for openness and programmability, supported by various industry partners, and introduces the Oplet Run-Time Environment (ORE) as a framework for dynamically deploying services on network devices. Additionally, it addresses key applications like active network management, intrusion detection, and collaboration among network devices, emphasizing the need for secure and efficient performance.

Devices & Hardware
Related topics:
web-applications
1 of 71
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
Open Programmable Architecture for Java-enabled Network Devices 9/29/99 1 A Revolution! Tal Lavian Technology Center tlavian@NortelNetworks.com http://openet.lab.baynetworks.com
9/29/99 2 Programmable Network Devices Openly Programmable devices enable new types of intelligence on the network
Agenda • The market is changing • Local Computation • Architecture • New types of applications • ORE - Oplet Run-time Environment • API’s • Summary 9/29/99 3
9/29/99 4 Our Market is Changing • Customers demand for Openness & programmability • IEEE P1520 • Lucent’s Programmable Networks • Intel as driving force
Lucent in Open Programmable Networks • Lucent’s Programmable Network Conference 9/15- 16 9/29/99 5 — Cosponsored: Sun, HP, Oracle, Novell, Compaq ……. — Over 500 participants, enthusiastic response • SoftSwitch as programmable network — 70 developers — Jun 99 - PR, Sept 99 - Prog Conference, October 99 - SDK, Jan 00 - APIs, Feb 00 - Dev Conference, May 00 - 3rd party Test Lab • 7 R/E program • $1.7B- Excel Switching acquisition (Programmable switch) • Other products and directions in Openness and Programmability • Marketing and PR on Lucent’s Openness
9/29/99 6 ES - Openet Center • Create an open development community to deliver customer-valued solutions based on Nortel Networks’ and partners’ products and technologies • Openet Center creates a focus to open Nortel Networks platforms • Promotes Open Network Computing • This potentially changes landscape and rules of the networking industry
Vision: JOOSE - the OS of Choice for Programmable Network Devices • JOOSE - Java Oplet Operation System Environment • JOOSE is OS of choice for routers and network devices. • Be the Microsoft for Routers • (or better way the Linux for Programmable Network Devices) 9/29/99 7
Agenda • The market is changing • Local Computation • Architecture • Applications • ORE - Oplet Run-time Environment • API’s • Summary 9/29/99 8
9/29/99 9 Evolution vs. Revolution HW Net Static Net SW Net SW Intelligence Dynamic Time Performance / Enhancement Logarithmic Now 10M 100M 1G 10G Web Bandwidth x200 Last Mile 56kb ==>10Mb
9/29/99 10 Changing the Rules of the Game • Move Turing Machine onto device —Add local intelligence to network devices while (true) { doLocalProcessingOnDevice () }
9/29/99 11 Technology Concept Applet Web Server Web Browser The JVM is in the Browser DDoowwnnllooaadd aapppplliiccaattiioonnss ffoorr llooccaall pprroocceessssiinngg Reversed Applet Server
9/29/99 12 The Web Changed Everything • Browsers —Introducing JVM to browsers allowed dynamic loading of Java Applets to end stations • Routers —Introducing JVM to routers allows dynamic loading of Java Oplets to routers This Capability WILL Change Everything
9/29/99 13 D Example: Doowwnnllooaaddiinngg IInntteelllliiggeennccee Network Device Dynamic loading JVM OS HW Monitor React Authentication Security Intelligence application
9/29/99 14 Security and Stability • secure download of Java Applications • safe execution environment —insulate core router applications from dynamically loaded applications
9/29/99 15 Device-based Intelligence • Static-vs-Dynamic Agents —Static – SNMP set/get mechanisms – Telnet, User Interfaces (cli, web, etc…) —Dynamic closed-loop interaction on nodes – capable of dealing with new and difficult situations – autonomous and rational properties. – dynamically system monitoring & modification – report status and trends
Agenda • The market is changing • Local Computation • Architecture • Applications • ORE - Oplet Run-time Environment • API’s • Summary 9/29/99 16
9/29/99 17 ORE - Oplet Run-time Environment Service A Service B ORE JVM Oplet 1 Oplet 2 Service C Why ORE?
9/29/99 18 Java-enabled Device AArrcchhiitteeccttuurree JNI ORE Service Device HW Oplet JVM Operating System C/C++ API Java API Device Code Oplet Runtime Env Device Drivers JFWD API Download
9/29/99 19 Architecture Issues • Green Threads -vs- Native Threads —Native threads: – provides non-interference between Java applications – difficult thread-to-thread communication and sharing of data between threads – creates a dependency on underlying RTOS – multiple JVM instances consume resources —Green Threads – single JVM must manage CPU & memory resources between concurrently running threads
RRoouuttiinngg ssooffttwwaarree ww// rroouutteerr OOSS Added scalability, Flexibility, extensibility 9/29/99 20 Evolution of Router Architecture LLiinnee ccaarrdd ((ffoorrwwaarrddiinngg bbuuffffeerriinngg)) LLiinnee ccaarrdd ((ffoorrwwaarrddiinngg bbuuffffeerriinngg)) LLiinnee ccaarrdd ((ffoorrwwaarrddiinngg bbuuffffeerriinngg)) LLiinnee ccaarrdd ((ffoorrwwaarrddiinngg bbuuffffeerriinngg)) RRoouuttiinngg ssooffttwwaarree ww// CCOOTTSS OOSS OOSS CCPPUU BBuuffffeerr mmeemmoorryy NNII aass lliinnee ccaarrdd NNII aass lliinnee ccaarrdd NNII aass lliinnee ccaarrdd ...... RRoouuttiinngg CCPPUU BBuuffffeerr mmeemmoorryy CCeennttrraalliizzeedd,, CCPPUU--bbaasseedd MMooddeell DDiissttrriibbuutteedd,, lliinnee--ccaarrdd bbaasseedd MMooddeell CCoonnttrrooll ++ FFoorrwwaarrddiinngg FFuunnccttiioonnss ccoommbbiinneedd CCoonnttrrooll sseeppaarraatteedd FFrroomm ffoorrwwaarrddiinngg
9/29/99 21 Explicit Separation of Control Plane from Data Forwarding Control Element Forwarding Routing Shared Memory Forwarding Element Forwarding Element Forwarding Element Packet Flow Forwarding Forwarding Forwarding Forwarding/ Flow/filter Table Traditional device CPU Download Line Card Line Card
9/29/99 22 Separation of Control and Forwarding Planes CCeennttrraalliizzeedd,, CCPPUU--bbaasseedd RRoouutteerr FFoorrwwaarrddiinngg--PPrroocceessssoorrss bbaasseedd RRoouutteerr Routing SW Control Plane CCoonnttrrooll ++ FFoorrwwaarrddiinngg FFuunnccttiioonnss ccoommbbiinneedd Control separated FFrroomm ffoorrwwaarrddiinngg CPU CPU Forwarding Processor Forwarding Processor Forwarding Processor Slow Wire Speed
Application server Control element 9/29/99 23 Open Networking Architecture IP Telephony VPN Server Operating System Network Services Protocol Network Services Objects Network OS Connect Transport Interface Real-time OS Network Si Unified policy-based management Forwarding element Vertical Proprietary Networking Box Level Hardware Proprietary Apps Proprietary NOS Custom Switch ASIC’s Today Open Policy Server Firewall Copyright - Intel
Dynamic Configuration ooff FFoorrwwaarrddiinngg 9/29/99 24 RRuulleess CPU Forwarding Processor Forwarding Processor Forwarding Processor Forwarding Processor Forwarding Rules SW HW Forwarding Rules Forwarding Rules Forwarding Rules AN Apps
Real-time forwarding SSttaattss aanndd MMoonniittoorrss 9/29/99 25 CPU SW HW AN Apps Forwarding Rules Forwarding Processor Statistics &Monitors Forwarding Rules Forwarding Processor Statistics &Monitors Forwarding Rules Forwarding Processor Statistics &Monitors
9/29/99 26 Dynamic - On the FFllyy CCoonnffiigguurraattiioonn Forwarding Processor Forwarding Processor Packet Policy Filters Dynamic Apps Packet Packet Filte r
9/29/99 27 PPaacckkeett CCaappttuurree CPU Forwarding Processor Forwarding Processor Forwarding Processor Forwarding Processor Oplet JFWD to Divert or Copy Wire Speed Packet
9/29/99 28 Java Environment • Green Threads -- Present RTOS with single unified task that includes: —Java VM (JVM) —Java Resource Manager (JRM) – thread scheduling – manages CPU utilization –JVM time-slice is managed by the JRM preemptive thread scheduler – internal memory manager (intercepts “new”) – garbage collection with priority based on available memory
9/29/99 29 Non-Interference w/ Single JVM • Multiple threads compete for resources —memory —CPU —persistent storage • Denial-of-service attacks possible —memory or CPU consumption attacks —trusted/untrusted service interactions
Agenda • The market is changing • Local Computation • Architecture • Applications • ORE - Oplet Run-time Environment • API’s • Summary 9/29/99 30
9/29/99 31 Applications • Active Network Management — Proactive Network Management — Diagnostic Agents • Dynamic DiffServ Classifier • Active Intrusion Detection • Multicast Caching • IP Accounting • Application-Layer Router-Server Collaboration • Pseudo Default Drop Capability
No more polling 9/29/99 32 Active Network Management • Download Oplet Service to the device. • Monitor MIB variables • Might be complex conditions • Trend analysis • DiffServ, RMON-II, etc… MIBs • Report “events” to NMS — drop rate, packets/second • Allow Service to take action • Download application • Adjust parameters based on direction from NMS Extensive access to internal resources Monitor Appropriate Application Download Download Complex Condition Exceeded NMS router
9/29/99 33 An Open Service API Example —SNMP API for Network Management – generated automatically – allows device-based applications to query MIB – device-based application -- query local MIB – report trends or significant events – initiate downloading of problem specific diagnostic code – take corrective action
9/29/99 34 Proactive Network Management • Device-based Intelligence is Dynamic —Static Management – SNMP set/get mechanisms – Telnet, User Interfaces (cli, web, etc…) —Dynamic Closed-loop Management at Network Node – capable of dealing with new and difficult situations – autonomous and rational properties. – dynamically system monitoring & modification – report status and trends —Monitor MIB to identify poor performance and notify NMS prior to failures —Downloaded service can instantiated new services
9/29/99 35 Diagnostic Mobile Agents • Automatic trace-route from edge router where problem exists. —Each node reached generates a report to NMS —Trace-route code “moves” to next node in path —Mobile agents identify router health —Create logs for NMS
Dynamic DiffServ Classifier • Set router filters to sample packets from edge device host ports • Identify real-time traffic (RTP flows) • Set filter on port to adjust DS-byte value based on policy • Keep track of filters set • Remove filters no longer in use 9/29/99 36
9/29/99 37 Dynamic DiffServ CCllaassssiiffiiccaattiioonn Forwarding Processor Control Plane Forwarding Processor Policy Filters ORE Service Packet Packet Filte r Packet • Sample packets, set filters to modify DS-byte for Per-Hop-Behavior modification
9/29/99 38 Active Intrusion Detection • Intruder is identified by Intrusion Detection software • Intruder signature is identified • Mobile agent is dispatched in direction of intruder (based on physical port of entry) • Mobile agent “chases” intruder and terminates him (shuts down link, reboot host, notify NMS)
Multicast Caching • Reliable Multicasting • Distribute error control throughout multicast tree • Retransmission a local node keeps control close to lossy links • Balances processor load away from multicast source 9/29/99 39
9/29/99 40 IP Accounting • Project ABCD (Active Bean Counter in Device) • Perform usage accounting at edge node • PreCorrelate/aggregate/reduce accounting record on-site • $1 rule for billing • Real-time billing can be realized • Customize billable resources
9/29/99 41 Server Collaboration • Supports distributed computing applications in which network devices participate — router to router — server to router • Supports Intelligent Agents • Supports Mobile Agents Java-based Application Java-based Application Java-based Application
Application Layer Collaboration Among Routers and Servers 9/29/99 42 • Server farm load balancing — server state monitored; rerouting based on congestion/load • Auctioning Applications • Bandwidth Broker
9/29/99 43 Collaboration with Business Applications • New paradigm of distributed applications • Network devices collaborating with business applications • Application aware routing JVM Oracle DB E-Commerce Business apps SAP , ERP, Optivity RMI, XML, CORBA Apps Accelar Passport Shasta BayRS BS450 Apps JVM Apps Server Oplet Oplet
9/29/99 44 Bandwidth Broker Collaboration • Routers Monitor RMON and DIFFSERV MIB • Report Per-IPAddress, Per Protocol statistic to resource broker • Adjust DS-byte and Per Hop Behavior based on Bandwidth Broker directions
9/29/99 45 Dynamic - On the FFllyy CCoonnffiigguurraattiioonn • From downloadable Java application, we can modify the behavior of the ASICs
Agenda • Our market is changing • Local Computation • Architecture • Applications • ORE - Oplet Run-time Environment • API’s • Summary 9/29/99 46
9/29/99 47 Oplet Runtime Environment An Overview • A platform to dynamically deploy services on network elements • Desirable properties — Portable to many different devices — Secure, reliable — Low impact on device performance — Open — Provide a framework to structure code – Reusable, maintainable, robust • Implemented in Java
9/29/99 48 ORE - Basic Concepts • Oplet Runtime Environment (ORE) — A kernel that manages the life cycle of oplets and services — Provides a registry of services • Service — The value being added. Minimal constraints, could be anything… — Represented as a Java interface • Oplet — The unit of deployment: a JAR file — Contains meta-data (eg signatures, dependency declarations) — Contains services and other resources (data files, images, properties, JAR files)
9/29/99 49 Dependencies • A service S can use facilities provided by another service T • This means that the oplet containing S has a dependency on service T • Before an oplet can be started, all of its dependent services must have be started • ORE manages dependencies and lifecycle of oplets and services
9/29/99 50 ORE Architecture Oplet Service Oplet Runtime Environment Java Virtual Machine API Extensions Oplet Service Oplet Service Oplet Service Service
9/29/99 51 Oplet Lifecycle • Install — Loaded from URL • Start — Services that are depended on must already be started • Stop — Any oplets that depend on this oplet’s services will be stopped — Code and data can be unloaded from ORE • Uninstall
9/29/99 52 Some services • Bootstrap — Basic configuration • Log — Centralized logging for oplets • HTTP server — Simple servlet support • Command line shell • Administration commands — Manage oplets and services
9/29/99 53 An Example Servlet Engine Log Native MIB Variables RSVP MIB Group MIB Engine Loopback SNMP Access HTTP Server Traffic Monitor JFWD
9/29/99 54 Security Issues • Sandbox — Each oplet provides a Java name space and applet-like sandbox • Signed oplets — Oplets can be signed for assigning trust • Denial of service — Vulnerable to DoS (memory, cycle, bandwidth, peristent storage, monitors) like all Java applications
9/29/99 55 ORE Status • Done now — Runs on Accelar and workstations — First release of ORE SDK available internally • To be done — More APIs and services (MIB, JFWD, Wrapper) — Security (authentication) — Oplet updates — Persistent storage
9/29/99 56 ORE Future work • Capabilities — Revocable services • Security — Java 2 style permissions • Resource limits, DoS protection — Probably requires support from JVM • Jini, Oplet Directory • Mobile Agents • Open source
Agenda • Our market is changing • Local Computation • Architecture • Applications • ORE - Oplet Run-time Environment • API’s • Summary 9/29/99 57
9/29/99 58 Initial APIs • Console Logging API • Generic MIB Access API • Optimized MIB Access APIs • Trap Interception API • Management Authentication API • Web-Based Management Extensions API • CLI Extensions API • MIB Extensions API • Pluggable Authentication API • Network Forwarding API
9/29/99 59 Tools • MIB API — Monitor device Management Information Base variables – MIB – RMON and RMON-II – DiffServ • Network API (JFWD) — Interface to Filters – set packet drop filters – intercept packets – carbon copy packets while forwarding at line-speed
9/29/99 60 MIB API Example Java Virtual Machine Client API Abstract Variable Interface MIB Map Native Variable Interface SNMP PDU Layer Instrumentation & Annotation Layer Real Time Operating System Processor and other Hardware Client Bean •API uses a MIB Map to dispatch requests to variable access routines •Different parts of the MIB tree can be serviced by different mechanisms •Two main schemes: •An ad hoc interface to the SNMP instrumentation layer •A generic SNMP loopback
9/29/99 61 An Open Service API Example —SNMP API for Network Management – generated automatically – allows device-based applications to query MIB – device-based application -- query local MIB – report trends or significant events – initiate downloading of problem specific diagnostic code – take corrective action
9/29/99 62 Java MIB API - Proxy Mode • Uses SNMP loopback mechanism to target a remote network element • API can be used to control devices that don’t have an embedded JVM AApppplliiccaattiioonn SSeerrvveerrss Router with No JVM JSNMP API Proxy mode JVM on PC Java Oplet
Agenda • Our market is changing • Local Computation • Architecture • New types of applications • ORE - Oplet Run-time Environment • API’s • Summary 9/29/99 63
9/29/99 64 Summary • JOOSE - OS of Choice for Open Routers • Programmable —Turing Machine on network devices —dynamic agents vs. static agents —dynamic loading • Our market is changing • Openness - successfully proven paradigm —Facilitates innovation —Domain experts - virtual development community —With 3rd parties we can change the networking landscape • Application aware routing
1903 the Wright brothers 9/29/99 65 This is only the first step Compare to this first flight and look where aviation is today
9/29/99 66 Appendix
9/29/99 67 Why Java • Dynamic Loading • Reuse security mechanisms —byte-code verifier —security manager —classloader • System stability —constrains applications to the JVM —Prohibits native code applications • Extensible, portable, & distributable services
• Intel web hosting - BIG pipes • Last mile bandwidth x 200 • Multimedia and new applications will drive the demand. 9/29/99 68 Bandwidth x200 - start of new demand Bandwidth Content Applications
9/29/99 69 The P1520 Reference Model Algorithms for value-added communication services created by network operators, users, and third parties Algorithms for routing and connection management, directory services etc. Value Added Services Level Virtual Network Device (software representation) Physical Elements (hardware, namespace) L interface Network Generic Services Level Virtual Network Devices Level End User Applications V interface U interface CCM interface PE Level
9/29/99 70 CSIX Consortium • Common switch interface for switch fabric independence — www.csix.org — Detailed interface specification between port/packet processor logic and interconnect fabric logic — Similar to common media interface such as Utopia, but for switch fabric interface — Targeted at scalable switches at higher end — Permits mix-and-match of silicon and software components
9/29/99 71 Multi-Services Switching Forum (MSF) www.msforum.org • Open Multi-service Switching — Common transmission and switching infrastructure — Modular, layered architecture — Integration at a module level through open interfaces — Multi-vendor model with 3rd party software options SSwwiittcchh AAddaappttiioonn SSwwiittcchh AAddaappttiioonn Voice Service IP Services Source: MSS ATM Services

More Related Content

PDF
BKK16-208 EAS
Linaro
 
PPT
Jeremy
AbhayM7
 
PDF
LAS16-105: Walkthrough of the EAS kernel adaptation to the Android Common Kernel
Linaro
 
PDF
SFO15-302: Energy Aware Scheduling: Progress Update
Linaro
 
PPTX
Multi-IMA Partition Scheduling for Global I/O Synchronization
rtsljekim
 
PDF
A Simplex Architecture for Intelligent and Safe Unmanned Aerial Vehicles
Heechul Yun
 
PDF
LAS16-TR04: Using tracing to tune and optimize EAS (English)
Linaro
 
PDF
BKK16-311 EAS Upstream Stategy
Linaro
 
BKK16-208 EAS
Linaro
 
Jeremy
AbhayM7
 
LAS16-105: Walkthrough of the EAS kernel adaptation to the Android Common Kernel
Linaro
 
SFO15-302: Energy Aware Scheduling: Progress Update
Linaro
 
Multi-IMA Partition Scheduling for Global I/O Synchronization
rtsljekim
 
A Simplex Architecture for Intelligent and Safe Unmanned Aerial Vehicles
Heechul Yun
 
LAS16-TR04: Using tracing to tune and optimize EAS (English)
Linaro
 
BKK16-311 EAS Upstream Stategy
Linaro
 

What's hot (20)

PPTX
Advanced Computer Architecture
nibiganesh
 
PDF
CFD acceleration with FPGA (byteLAKE's presentation from PPAM 2019)
byteLAKE
 
PPTX
Improving Real-Time Performance on Multicore Platforms using MemGuard
Heechul Yun
 
PDF
Maxwell siuc hpc_description_tutorial
madhuinturi
 
PPTX
MemGuard: Memory Bandwidth Reservation System for Efficient Performance Isola...
Heechul Yun
 
PPSX
System on chip architectures
Dr. A. B. Shinde
 
PPTX
Superfluid networking for 5G: vision and state of the art
Stefano Salsano
 
PDF
IBM/ASTRON DOME 64-bit Hot Water Cooled Microserver
IBM Research
 
PDF
BKK16-317 How to generate power models for EAS and IPA
Linaro
 
PDF
MIPI DevCon 2016: MIPI CSI-2 Application for Vision and Sensor Fusion Systems
MIPI Alliance
 
PDF
IBM and ASTRON 64bit μServer for DOME
IBM Research
 
PDF
MIPI DevCon 2016: Multiple MIPI CSI-2 Cameras Leveraging FPGAs
MIPI Alliance
 
PPTX
TCAM Design using Flash Transistors
Viacheslav Fedorov
 
PDF
System-on-Chip Design, Embedded System Design Challenges
pboulet
 
PDF
MIPI DevCon 2016: Image Sensor and Display Connectivity Disruption
MIPI Alliance
 
PDF
Experiments with Practical On-Demand Multi-Core Packet Capture
Tokyo University of Science
 
PDF
asap2013-khoa-presentation
Abhishek Jain
 
PDF
12 la bel_soc overview
Hema Chandran
 
PDF
An introduction to the Design of Warehouse-Scale Computers
Alessio Villardita
 
PDF
Embedded Recipes 2017 - Reliable monitoring with systemd - Jérémy Rosen
Anne Nicolas
 
Advanced Computer Architecture
nibiganesh
 
CFD acceleration with FPGA (byteLAKE's presentation from PPAM 2019)
byteLAKE
 
Improving Real-Time Performance on Multicore Platforms using MemGuard
Heechul Yun
 
Maxwell siuc hpc_description_tutorial
madhuinturi
 
MemGuard: Memory Bandwidth Reservation System for Efficient Performance Isola...
Heechul Yun
 
System on chip architectures
Dr. A. B. Shinde
 
Superfluid networking for 5G: vision and state of the art
Stefano Salsano
 
IBM/ASTRON DOME 64-bit Hot Water Cooled Microserver
IBM Research
 
BKK16-317 How to generate power models for EAS and IPA
Linaro
 
MIPI DevCon 2016: MIPI CSI-2 Application for Vision and Sensor Fusion Systems
MIPI Alliance
 
IBM and ASTRON 64bit μServer for DOME
IBM Research
 
MIPI DevCon 2016: Multiple MIPI CSI-2 Cameras Leveraging FPGAs
MIPI Alliance
 
TCAM Design using Flash Transistors
Viacheslav Fedorov
 
System-on-Chip Design, Embedded System Design Challenges
pboulet
 
MIPI DevCon 2016: Image Sensor and Display Connectivity Disruption
MIPI Alliance
 
Experiments with Practical On-Demand Multi-Core Packet Capture
Tokyo University of Science
 
asap2013-khoa-presentation
Abhishek Jain
 
12 la bel_soc overview
Hema Chandran
 
An introduction to the Design of Warehouse-Scale Computers
Alessio Villardita
 
Embedded Recipes 2017 - Reliable monitoring with systemd - Jérémy Rosen
Anne Nicolas
 
Ad

Similar to Open Programmable Architecture for Java-enabled Network Devices (20)

PPT
Open Programmable Architecture for Java-enabled Network Devices
Tal Lavian Ph.D.
 
PPT
Open Programmable Architecture for Java-enabled Network Devices
Tal Lavian Ph.D.
 
PPT
Open programmable architecture for java enabled network devices
Tal Lavian Ph.D.
 
PDF
SDN and NFV
Richard Kuo
 
PDF
Model-driven Network Management
Anees Shaikh
 
PDF
5G in Brownfield how SDN makes 5G Deployments Work
Lumina Networks
 
PPTX
Tuning VIM performance for unikernels
Stefano Salsano
 
PPTX
NoC simulators presentation
Hossam Hassan
 
PPTX
SoC Solutions Enabling Server-Based Networking
Netronome
 
PPT
Enabling Active Flow Manipulation In Silicon-based Network Forwarding Engines
Tal Lavian Ph.D.
 
PPTX
Federal Webinar: Technical Update on the Best New Features of our Most Popula...
SolarWinds
 
PDF
The Challenges of SDN/OpenFlow in an Operational and Large-scale Network
Open Networking Summits
 
PDF
CSIR 5G Research
Sabelo Dlamini
 
PPTX
Introduction to NBL
Fei Ji Siao
 
PDF
Embracing SDN in the Next Gen Network
NetCraftsmen
 
PPTX
M.Tech Internet of Things Unit - IV.pptx
AvinashAvuthu2
 
PPTX
D-STREAMON - NFV-capable distributed framework for network monitoring
Stefano Salsano
 
PPT
Open Networking Better Networking Through Programmability
Tal Lavian Ph.D.
 
PPT
Edge Device Multi-unicasting for Video Streaming
Tal Lavian Ph.D.
 
PPTX
Cisco Live Take Two: Network Troubleshooting Product Overview
SolarWinds
 
Open Programmable Architecture for Java-enabled Network Devices
Tal Lavian Ph.D.
 
Open Programmable Architecture for Java-enabled Network Devices
Tal Lavian Ph.D.
 
Open programmable architecture for java enabled network devices
Tal Lavian Ph.D.
 
SDN and NFV
Richard Kuo
 
Model-driven Network Management
Anees Shaikh
 
5G in Brownfield how SDN makes 5G Deployments Work
Lumina Networks
 
Tuning VIM performance for unikernels
Stefano Salsano
 
NoC simulators presentation
Hossam Hassan
 
SoC Solutions Enabling Server-Based Networking
Netronome
 
Enabling Active Flow Manipulation In Silicon-based Network Forwarding Engines
Tal Lavian Ph.D.
 
Federal Webinar: Technical Update on the Best New Features of our Most Popula...
SolarWinds
 
The Challenges of SDN/OpenFlow in an Operational and Large-scale Network
Open Networking Summits
 
CSIR 5G Research
Sabelo Dlamini
 
Introduction to NBL
Fei Ji Siao
 
Embracing SDN in the Next Gen Network
NetCraftsmen
 
M.Tech Internet of Things Unit - IV.pptx
AvinashAvuthu2
 
D-STREAMON - NFV-capable distributed framework for network monitoring
Stefano Salsano
 
Open Networking Better Networking Through Programmability
Tal Lavian Ph.D.
 
Edge Device Multi-unicasting for Video Streaming
Tal Lavian Ph.D.
 
Cisco Live Take Two: Network Troubleshooting Product Overview
SolarWinds
 
Ad

More from Tal Lavian Ph.D. (20)

PDF
Ultra low phase noise frequency synthesizer
Tal Lavian Ph.D.
 
PDF
Ultra low phase noise frequency synthesizer
Tal Lavian Ph.D.
 
PDF
Photonic line sharing for high-speed routers
Tal Lavian Ph.D.
 
PDF
Systems and methods to support sharing and exchanging in a network
Tal Lavian Ph.D.
 
PDF
Systems and methods for visual presentation and selection of IVR menu
Tal Lavian Ph.D.
 
PDF
Grid proxy architecture for network resources
Tal Lavian Ph.D.
 
PDF
Ultra low phase noise frequency synthesizer
Tal Lavian Ph.D.
 
PDF
Systems and methods for electronic communications
Tal Lavian Ph.D.
 
PDF
Ultra low phase noise frequency synthesizer
Tal Lavian Ph.D.
 
PDF
Ultra low phase noise frequency synthesizer
Tal Lavian Ph.D.
 
PDF
Radar target detection system for autonomous vehicles with ultra-low phase no...
Tal Lavian Ph.D.
 
PDF
Grid proxy architecture for network resources
Tal Lavian Ph.D.
 
PDF
Method and apparatus for scheduling resources on a switched underlay network
Tal Lavian Ph.D.
 
PDF
Dynamic assignment of traffic classes to a priority queue in a packet forward...
Tal Lavian Ph.D.
 
PDF
Method and apparatus for using a command design pattern to access and configu...
Tal Lavian Ph.D.
 
PDF
Reliable rating system and method thereof
Tal Lavian Ph.D.
 
PDF
Time variant rating system and method thereof
Tal Lavian Ph.D.
 
PDF
Systems and methods for visual presentation and selection of ivr menu
Tal Lavian Ph.D.
 
PDF
Ultra low phase noise frequency synthesizer
Tal Lavian Ph.D.
 
PDF
Ultra low phase noise frequency synthesizer
Tal Lavian Ph.D.
 
Ultra low phase noise frequency synthesizer
Tal Lavian Ph.D.
 
Ultra low phase noise frequency synthesizer
Tal Lavian Ph.D.
 
Photonic line sharing for high-speed routers
Tal Lavian Ph.D.
 
Systems and methods to support sharing and exchanging in a network
Tal Lavian Ph.D.
 
Systems and methods for visual presentation and selection of IVR menu
Tal Lavian Ph.D.
 
Grid proxy architecture for network resources
Tal Lavian Ph.D.
 
Ultra low phase noise frequency synthesizer
Tal Lavian Ph.D.
 
Systems and methods for electronic communications
Tal Lavian Ph.D.
 
Ultra low phase noise frequency synthesizer
Tal Lavian Ph.D.
 
Ultra low phase noise frequency synthesizer
Tal Lavian Ph.D.
 
Radar target detection system for autonomous vehicles with ultra-low phase no...
Tal Lavian Ph.D.
 
Grid proxy architecture for network resources
Tal Lavian Ph.D.
 
Method and apparatus for scheduling resources on a switched underlay network
Tal Lavian Ph.D.
 
Dynamic assignment of traffic classes to a priority queue in a packet forward...
Tal Lavian Ph.D.
 
Method and apparatus for using a command design pattern to access and configu...
Tal Lavian Ph.D.
 
Reliable rating system and method thereof
Tal Lavian Ph.D.
 
Time variant rating system and method thereof
Tal Lavian Ph.D.
 
Systems and methods for visual presentation and selection of ivr menu
Tal Lavian Ph.D.
 
Ultra low phase noise frequency synthesizer
Tal Lavian Ph.D.
 
Ultra low phase noise frequency synthesizer
Tal Lavian Ph.D.
 

Recently uploaded (20)

PPT
Lines and angles cbse class 9 math chemistry
cuteprincessmisty
 
PPTX
unit1d-communitypharmacy-240815170017-d032dce8.pptx
malidipak2021
 
PDF
Dozuki_Solution-hardware minimalization.
kurtaku1
 
PPTX
Nanokeyer nano keyekr kano ketkker nano keyer
Oscar Tebar Serrano
 
PPTX
Entre CHtzyshshshshshshshzhhzzhhz 4MSt.pptx
Eyob262486
 
PPTX
Embeded System for Artificial intelligence 2.pptx
ifnadeksisa
 
PPTX
Presentacion compuuuuuuuuuuuuuuuuuuuuuuu
EstefaniaVillegas11
 
PPT
chapter_1_a.ppthduushshwhwbshshshsbbsbsbsbsh
sriram270905
 
PDF
Dynamic Checkweighers and Automatic Weighing Machine Solutions
dadisick66688
 
PPTX
Lecture-3-Computer-programming for BS InfoTech
UzumakiNamikaze
 
PDF
How NGOs Save Costs with Affordable IT Rentals
C Prompt Solutions Pvt Ltd
 
PPTX
Computers and mobile device: Evaluating options for home and work
4mqw9zch22
 
PPTX
PLC ANALOGUE DONE BY KISMEC KULIM TD 5 .0
MahadzirMatRabi1
 
PPT
FABRICATION OF MOS FET BJT DEVICES IN NANOMETER
Nikhil Raj
 
PPTX
Lecture 3b C Library _ ESP32.pptxjfjfjffkkfkfk
indalrenu
 
PPTX
Fundamentals of Computer.pptx Computer BSC
muhammadawais03085
 
PPTX
Sem-8 project ppt fortvfvmat uyyjhuj.pptx
canvaanshul
 
PPTX
quadraticequations-111211090004-phpapp02.pptx
marcusaviso1101
 
PDF
-DIGITAL-INDIA.pdf one of the most prominent
vishu244x
 
PPTX
sdn_based_controller_for_mobile_network_traffic_management1.pptx
beatereichrath9
 
Lines and angles cbse class 9 math chemistry
cuteprincessmisty
 
unit1d-communitypharmacy-240815170017-d032dce8.pptx
malidipak2021
 
Dozuki_Solution-hardware minimalization.
kurtaku1
 
Nanokeyer nano keyekr kano ketkker nano keyer
Oscar Tebar Serrano
 
Entre CHtzyshshshshshshshzhhzzhhz 4MSt.pptx
Eyob262486
 
Embeded System for Artificial intelligence 2.pptx
ifnadeksisa
 
Presentacion compuuuuuuuuuuuuuuuuuuuuuuu
EstefaniaVillegas11
 
chapter_1_a.ppthduushshwhwbshshshsbbsbsbsbsh
sriram270905
 
Dynamic Checkweighers and Automatic Weighing Machine Solutions
dadisick66688
 
Lecture-3-Computer-programming for BS InfoTech
UzumakiNamikaze
 
How NGOs Save Costs with Affordable IT Rentals
C Prompt Solutions Pvt Ltd
 
Computers and mobile device: Evaluating options for home and work
4mqw9zch22
 
PLC ANALOGUE DONE BY KISMEC KULIM TD 5 .0
MahadzirMatRabi1
 
FABRICATION OF MOS FET BJT DEVICES IN NANOMETER
Nikhil Raj
 
Lecture 3b C Library _ ESP32.pptxjfjfjffkkfkfk
indalrenu
 
Fundamentals of Computer.pptx Computer BSC
muhammadawais03085
 
Sem-8 project ppt fortvfvmat uyyjhuj.pptx
canvaanshul
 
quadraticequations-111211090004-phpapp02.pptx
marcusaviso1101
 
-DIGITAL-INDIA.pdf one of the most prominent
vishu244x
 
sdn_based_controller_for_mobile_network_traffic_management1.pptx
beatereichrath9
 

Open Programmable Architecture for Java-enabled Network Devices

  • 1. Open Programmable Architecture for Java-enabled Network Devices 9/29/99 1 A Revolution! Tal Lavian Technology Center tlavian@NortelNetworks.com http://openet.lab.baynetworks.com
  • 2. 9/29/99 2 Programmable Network Devices Openly Programmable devices enable new types of intelligence on the network
  • 3. Agenda • The market is changing • Local Computation • Architecture • New types of applications • ORE - Oplet Run-time Environment • API’s • Summary 9/29/99 3
  • 4. 9/29/99 4 Our Market is Changing • Customers demand for Openness & programmability • IEEE P1520 • Lucent’s Programmable Networks • Intel as driving force
  • 5. Lucent in Open Programmable Networks • Lucent’s Programmable Network Conference 9/15- 16 9/29/99 5 — Cosponsored: Sun, HP, Oracle, Novell, Compaq ……. — Over 500 participants, enthusiastic response • SoftSwitch as programmable network — 70 developers — Jun 99 - PR, Sept 99 - Prog Conference, October 99 - SDK, Jan 00 - APIs, Feb 00 - Dev Conference, May 00 - 3rd party Test Lab • 7 R/E program • $1.7B- Excel Switching acquisition (Programmable switch) • Other products and directions in Openness and Programmability • Marketing and PR on Lucent’s Openness
  • 6. 9/29/99 6 ES - Openet Center • Create an open development community to deliver customer-valued solutions based on Nortel Networks’ and partners’ products and technologies • Openet Center creates a focus to open Nortel Networks platforms • Promotes Open Network Computing • This potentially changes landscape and rules of the networking industry
  • 7. Vision: JOOSE - the OS of Choice for Programmable Network Devices • JOOSE - Java Oplet Operation System Environment • JOOSE is OS of choice for routers and network devices. • Be the Microsoft for Routers • (or better way the Linux for Programmable Network Devices) 9/29/99 7
  • 8. Agenda • The market is changing • Local Computation • Architecture • Applications • ORE - Oplet Run-time Environment • API’s • Summary 9/29/99 8
  • 9. 9/29/99 9 Evolution vs. Revolution HW Net Static Net SW Net SW Intelligence Dynamic Time Performance / Enhancement Logarithmic Now 10M 100M 1G 10G Web Bandwidth x200 Last Mile 56kb ==>10Mb
  • 10. 9/29/99 10 Changing the Rules of the Game • Move Turing Machine onto device —Add local intelligence to network devices while (true) { doLocalProcessingOnDevice () }
  • 11. 9/29/99 11 Technology Concept Applet Web Server Web Browser The JVM is in the Browser DDoowwnnllooaadd aapppplliiccaattiioonnss ffoorr llooccaall pprroocceessssiinngg Reversed Applet Server
  • 12. 9/29/99 12 The Web Changed Everything • Browsers —Introducing JVM to browsers allowed dynamic loading of Java Applets to end stations • Routers —Introducing JVM to routers allows dynamic loading of Java Oplets to routers This Capability WILL Change Everything
  • 13. 9/29/99 13 D Example: Doowwnnllooaaddiinngg IInntteelllliiggeennccee Network Device Dynamic loading JVM OS HW Monitor React Authentication Security Intelligence application
  • 14. 9/29/99 14 Security and Stability • secure download of Java Applications • safe execution environment —insulate core router applications from dynamically loaded applications
  • 15. 9/29/99 15 Device-based Intelligence • Static-vs-Dynamic Agents —Static – SNMP set/get mechanisms – Telnet, User Interfaces (cli, web, etc…) —Dynamic closed-loop interaction on nodes – capable of dealing with new and difficult situations – autonomous and rational properties. – dynamically system monitoring & modification – report status and trends
  • 16. Agenda • The market is changing • Local Computation • Architecture • Applications • ORE - Oplet Run-time Environment • API’s • Summary 9/29/99 16
  • 17. 9/29/99 17 ORE - Oplet Run-time Environment Service A Service B ORE JVM Oplet 1 Oplet 2 Service C Why ORE?
  • 18. 9/29/99 18 Java-enabled Device AArrcchhiitteeccttuurree JNI ORE Service Device HW Oplet JVM Operating System C/C++ API Java API Device Code Oplet Runtime Env Device Drivers JFWD API Download
  • 19. 9/29/99 19 Architecture Issues • Green Threads -vs- Native Threads —Native threads: – provides non-interference between Java applications – difficult thread-to-thread communication and sharing of data between threads – creates a dependency on underlying RTOS – multiple JVM instances consume resources —Green Threads – single JVM must manage CPU & memory resources between concurrently running threads
  • 20. RRoouuttiinngg ssooffttwwaarree ww// rroouutteerr OOSS Added scalability, Flexibility, extensibility 9/29/99 20 Evolution of Router Architecture LLiinnee ccaarrdd ((ffoorrwwaarrddiinngg bbuuffffeerriinngg)) LLiinnee ccaarrdd ((ffoorrwwaarrddiinngg bbuuffffeerriinngg)) LLiinnee ccaarrdd ((ffoorrwwaarrddiinngg bbuuffffeerriinngg)) LLiinnee ccaarrdd ((ffoorrwwaarrddiinngg bbuuffffeerriinngg)) RRoouuttiinngg ssooffttwwaarree ww// CCOOTTSS OOSS OOSS CCPPUU BBuuffffeerr mmeemmoorryy NNII aass lliinnee ccaarrdd NNII aass lliinnee ccaarrdd NNII aass lliinnee ccaarrdd ...... RRoouuttiinngg CCPPUU BBuuffffeerr mmeemmoorryy CCeennttrraalliizzeedd,, CCPPUU--bbaasseedd MMooddeell DDiissttrriibbuutteedd,, lliinnee--ccaarrdd bbaasseedd MMooddeell CCoonnttrrooll ++ FFoorrwwaarrddiinngg FFuunnccttiioonnss ccoommbbiinneedd CCoonnttrrooll sseeppaarraatteedd FFrroomm ffoorrwwaarrddiinngg
  • 21. 9/29/99 21 Explicit Separation of Control Plane from Data Forwarding Control Element Forwarding Routing Shared Memory Forwarding Element Forwarding Element Forwarding Element Packet Flow Forwarding Forwarding Forwarding Forwarding/ Flow/filter Table Traditional device CPU Download Line Card Line Card
  • 22. 9/29/99 22 Separation of Control and Forwarding Planes CCeennttrraalliizzeedd,, CCPPUU--bbaasseedd RRoouutteerr FFoorrwwaarrddiinngg--PPrroocceessssoorrss bbaasseedd RRoouutteerr Routing SW Control Plane CCoonnttrrooll ++ FFoorrwwaarrddiinngg FFuunnccttiioonnss ccoommbbiinneedd Control separated FFrroomm ffoorrwwaarrddiinngg CPU CPU Forwarding Processor Forwarding Processor Forwarding Processor Slow Wire Speed
  • 23. Application server Control element 9/29/99 23 Open Networking Architecture IP Telephony VPN Server Operating System Network Services Protocol Network Services Objects Network OS Connect Transport Interface Real-time OS Network Si Unified policy-based management Forwarding element Vertical Proprietary Networking Box Level Hardware Proprietary Apps Proprietary NOS Custom Switch ASIC’s Today Open Policy Server Firewall Copyright - Intel
  • 24. Dynamic Configuration ooff FFoorrwwaarrddiinngg 9/29/99 24 RRuulleess CPU Forwarding Processor Forwarding Processor Forwarding Processor Forwarding Processor Forwarding Rules SW HW Forwarding Rules Forwarding Rules Forwarding Rules AN Apps
  • 25. Real-time forwarding SSttaattss aanndd MMoonniittoorrss 9/29/99 25 CPU SW HW AN Apps Forwarding Rules Forwarding Processor Statistics &Monitors Forwarding Rules Forwarding Processor Statistics &Monitors Forwarding Rules Forwarding Processor Statistics &Monitors
  • 26. 9/29/99 26 Dynamic - On the FFllyy CCoonnffiigguurraattiioonn Forwarding Processor Forwarding Processor Packet Policy Filters Dynamic Apps Packet Packet Filte r
  • 27. 9/29/99 27 PPaacckkeett CCaappttuurree CPU Forwarding Processor Forwarding Processor Forwarding Processor Forwarding Processor Oplet JFWD to Divert or Copy Wire Speed Packet
  • 28. 9/29/99 28 Java Environment • Green Threads -- Present RTOS with single unified task that includes: —Java VM (JVM) —Java Resource Manager (JRM) – thread scheduling – manages CPU utilization –JVM time-slice is managed by the JRM preemptive thread scheduler – internal memory manager (intercepts “new”) – garbage collection with priority based on available memory
  • 29. 9/29/99 29 Non-Interference w/ Single JVM • Multiple threads compete for resources —memory —CPU —persistent storage • Denial-of-service attacks possible —memory or CPU consumption attacks —trusted/untrusted service interactions
  • 30. Agenda • The market is changing • Local Computation • Architecture • Applications • ORE - Oplet Run-time Environment • API’s • Summary 9/29/99 30
  • 31. 9/29/99 31 Applications • Active Network Management — Proactive Network Management — Diagnostic Agents • Dynamic DiffServ Classifier • Active Intrusion Detection • Multicast Caching • IP Accounting • Application-Layer Router-Server Collaboration • Pseudo Default Drop Capability
  • 32. No more polling 9/29/99 32 Active Network Management • Download Oplet Service to the device. • Monitor MIB variables • Might be complex conditions • Trend analysis • DiffServ, RMON-II, etc… MIBs • Report “events” to NMS — drop rate, packets/second • Allow Service to take action • Download application • Adjust parameters based on direction from NMS Extensive access to internal resources Monitor Appropriate Application Download Download Complex Condition Exceeded NMS router
  • 33. 9/29/99 33 An Open Service API Example —SNMP API for Network Management – generated automatically – allows device-based applications to query MIB – device-based application -- query local MIB – report trends or significant events – initiate downloading of problem specific diagnostic code – take corrective action
  • 34. 9/29/99 34 Proactive Network Management • Device-based Intelligence is Dynamic —Static Management – SNMP set/get mechanisms – Telnet, User Interfaces (cli, web, etc…) —Dynamic Closed-loop Management at Network Node – capable of dealing with new and difficult situations – autonomous and rational properties. – dynamically system monitoring & modification – report status and trends —Monitor MIB to identify poor performance and notify NMS prior to failures —Downloaded service can instantiated new services
  • 35. 9/29/99 35 Diagnostic Mobile Agents • Automatic trace-route from edge router where problem exists. —Each node reached generates a report to NMS —Trace-route code “moves” to next node in path —Mobile agents identify router health —Create logs for NMS
  • 36. Dynamic DiffServ Classifier • Set router filters to sample packets from edge device host ports • Identify real-time traffic (RTP flows) • Set filter on port to adjust DS-byte value based on policy • Keep track of filters set • Remove filters no longer in use 9/29/99 36
  • 37. 9/29/99 37 Dynamic DiffServ CCllaassssiiffiiccaattiioonn Forwarding Processor Control Plane Forwarding Processor Policy Filters ORE Service Packet Packet Filte r Packet • Sample packets, set filters to modify DS-byte for Per-Hop-Behavior modification
  • 38. 9/29/99 38 Active Intrusion Detection • Intruder is identified by Intrusion Detection software • Intruder signature is identified • Mobile agent is dispatched in direction of intruder (based on physical port of entry) • Mobile agent “chases” intruder and terminates him (shuts down link, reboot host, notify NMS)
  • 39. Multicast Caching • Reliable Multicasting • Distribute error control throughout multicast tree • Retransmission a local node keeps control close to lossy links • Balances processor load away from multicast source 9/29/99 39
  • 40. 9/29/99 40 IP Accounting • Project ABCD (Active Bean Counter in Device) • Perform usage accounting at edge node • PreCorrelate/aggregate/reduce accounting record on-site • $1 rule for billing • Real-time billing can be realized • Customize billable resources
  • 41. 9/29/99 41 Server Collaboration • Supports distributed computing applications in which network devices participate — router to router — server to router • Supports Intelligent Agents • Supports Mobile Agents Java-based Application Java-based Application Java-based Application
  • 42. Application Layer Collaboration Among Routers and Servers 9/29/99 42 • Server farm load balancing — server state monitored; rerouting based on congestion/load • Auctioning Applications • Bandwidth Broker
  • 43. 9/29/99 43 Collaboration with Business Applications • New paradigm of distributed applications • Network devices collaborating with business applications • Application aware routing JVM Oracle DB E-Commerce Business apps SAP , ERP, Optivity RMI, XML, CORBA Apps Accelar Passport Shasta BayRS BS450 Apps JVM Apps Server Oplet Oplet
  • 44. 9/29/99 44 Bandwidth Broker Collaboration • Routers Monitor RMON and DIFFSERV MIB • Report Per-IPAddress, Per Protocol statistic to resource broker • Adjust DS-byte and Per Hop Behavior based on Bandwidth Broker directions
  • 45. 9/29/99 45 Dynamic - On the FFllyy CCoonnffiigguurraattiioonn • From downloadable Java application, we can modify the behavior of the ASICs
  • 46. Agenda • Our market is changing • Local Computation • Architecture • Applications • ORE - Oplet Run-time Environment • API’s • Summary 9/29/99 46
  • 47. 9/29/99 47 Oplet Runtime Environment An Overview • A platform to dynamically deploy services on network elements • Desirable properties — Portable to many different devices — Secure, reliable — Low impact on device performance — Open — Provide a framework to structure code – Reusable, maintainable, robust • Implemented in Java
  • 48. 9/29/99 48 ORE - Basic Concepts • Oplet Runtime Environment (ORE) — A kernel that manages the life cycle of oplets and services — Provides a registry of services • Service — The value being added. Minimal constraints, could be anything… — Represented as a Java interface • Oplet — The unit of deployment: a JAR file — Contains meta-data (eg signatures, dependency declarations) — Contains services and other resources (data files, images, properties, JAR files)
  • 49. 9/29/99 49 Dependencies • A service S can use facilities provided by another service T • This means that the oplet containing S has a dependency on service T • Before an oplet can be started, all of its dependent services must have be started • ORE manages dependencies and lifecycle of oplets and services
  • 50. 9/29/99 50 ORE Architecture Oplet Service Oplet Runtime Environment Java Virtual Machine API Extensions Oplet Service Oplet Service Oplet Service Service
  • 51. 9/29/99 51 Oplet Lifecycle • Install — Loaded from URL • Start — Services that are depended on must already be started • Stop — Any oplets that depend on this oplet’s services will be stopped — Code and data can be unloaded from ORE • Uninstall
  • 52. 9/29/99 52 Some services • Bootstrap — Basic configuration • Log — Centralized logging for oplets • HTTP server — Simple servlet support • Command line shell • Administration commands — Manage oplets and services
  • 53. 9/29/99 53 An Example Servlet Engine Log Native MIB Variables RSVP MIB Group MIB Engine Loopback SNMP Access HTTP Server Traffic Monitor JFWD
  • 54. 9/29/99 54 Security Issues • Sandbox — Each oplet provides a Java name space and applet-like sandbox • Signed oplets — Oplets can be signed for assigning trust • Denial of service — Vulnerable to DoS (memory, cycle, bandwidth, peristent storage, monitors) like all Java applications
  • 55. 9/29/99 55 ORE Status • Done now — Runs on Accelar and workstations — First release of ORE SDK available internally • To be done — More APIs and services (MIB, JFWD, Wrapper) — Security (authentication) — Oplet updates — Persistent storage
  • 56. 9/29/99 56 ORE Future work • Capabilities — Revocable services • Security — Java 2 style permissions • Resource limits, DoS protection — Probably requires support from JVM • Jini, Oplet Directory • Mobile Agents • Open source
  • 57. Agenda • Our market is changing • Local Computation • Architecture • Applications • ORE - Oplet Run-time Environment • API’s • Summary 9/29/99 57
  • 58. 9/29/99 58 Initial APIs • Console Logging API • Generic MIB Access API • Optimized MIB Access APIs • Trap Interception API • Management Authentication API • Web-Based Management Extensions API • CLI Extensions API • MIB Extensions API • Pluggable Authentication API • Network Forwarding API
  • 59. 9/29/99 59 Tools • MIB API — Monitor device Management Information Base variables – MIB – RMON and RMON-II – DiffServ • Network API (JFWD) — Interface to Filters – set packet drop filters – intercept packets – carbon copy packets while forwarding at line-speed
  • 60. 9/29/99 60 MIB API Example Java Virtual Machine Client API Abstract Variable Interface MIB Map Native Variable Interface SNMP PDU Layer Instrumentation & Annotation Layer Real Time Operating System Processor and other Hardware Client Bean •API uses a MIB Map to dispatch requests to variable access routines •Different parts of the MIB tree can be serviced by different mechanisms •Two main schemes: •An ad hoc interface to the SNMP instrumentation layer •A generic SNMP loopback
  • 61. 9/29/99 61 An Open Service API Example —SNMP API for Network Management – generated automatically – allows device-based applications to query MIB – device-based application -- query local MIB – report trends or significant events – initiate downloading of problem specific diagnostic code – take corrective action
  • 62. 9/29/99 62 Java MIB API - Proxy Mode • Uses SNMP loopback mechanism to target a remote network element • API can be used to control devices that don’t have an embedded JVM AApppplliiccaattiioonn SSeerrvveerrss Router with No JVM JSNMP API Proxy mode JVM on PC Java Oplet
  • 63. Agenda • Our market is changing • Local Computation • Architecture • New types of applications • ORE - Oplet Run-time Environment • API’s • Summary 9/29/99 63
  • 64. 9/29/99 64 Summary • JOOSE - OS of Choice for Open Routers • Programmable —Turing Machine on network devices —dynamic agents vs. static agents —dynamic loading • Our market is changing • Openness - successfully proven paradigm —Facilitates innovation —Domain experts - virtual development community —With 3rd parties we can change the networking landscape • Application aware routing
  • 65. 1903 the Wright brothers 9/29/99 65 This is only the first step Compare to this first flight and look where aviation is today
  • 67. 9/29/99 67 Why Java • Dynamic Loading • Reuse security mechanisms —byte-code verifier —security manager —classloader • System stability —constrains applications to the JVM —Prohibits native code applications • Extensible, portable, & distributable services
  • 68. • Intel web hosting - BIG pipes • Last mile bandwidth x 200 • Multimedia and new applications will drive the demand. 9/29/99 68 Bandwidth x200 - start of new demand Bandwidth Content Applications
  • 69. 9/29/99 69 The P1520 Reference Model Algorithms for value-added communication services created by network operators, users, and third parties Algorithms for routing and connection management, directory services etc. Value Added Services Level Virtual Network Device (software representation) Physical Elements (hardware, namespace) L interface Network Generic Services Level Virtual Network Devices Level End User Applications V interface U interface CCM interface PE Level
  • 70. 9/29/99 70 CSIX Consortium • Common switch interface for switch fabric independence — www.csix.org — Detailed interface specification between port/packet processor logic and interconnect fabric logic — Similar to common media interface such as Utopia, but for switch fabric interface — Targeted at scalable switches at higher end — Permits mix-and-match of silicon and software components
  • 71. 9/29/99 71 Multi-Services Switching Forum (MSF) www.msforum.org • Open Multi-service Switching — Common transmission and switching infrastructure — Modular, layered architecture — Integration at a module level through open interfaces — Multi-vendor model with 3rd party software options SSwwiittcchh AAddaappttiioonn SSwwiittcchh AAddaappttiioonn Voice Service IP Services Source: MSS ATM Services

Editor's Notes

  • #10: The Internet has had a profound, and not-yet-complete impact on the ways corporations do business with other corporations, governments, and consumers. The “Net Economy” is based on the fact that companies can be connected to each other without regard to the barriers of distance, time zones, and differing legacy computing systems. Thus, companies are free to seek business relationships with customers and suppliers based on the greatest economic return. In addition to reducing the costs of doing business with its existing business partners, a company can now establish new business relationships based on its business assets. (word choice here). Marketmakers - Deliver services to large communities of partners, suppliers and customers e.g. Citibank Commerce Leaders- Set up commerce shops to transact business outside corporate boundaries e.g. GMBuyPower Service Providers - Supply hosted communications & commerce services to consumers & small-medium businesses e.g. Netcom
  • #70: U interface -- provides a means for creating a representation of specific services (DIFF SERV or INT SERV).