Nothing Special   »   [go: up one dir, main page]
Skip to main content
Springer Nature Link
Log in

Towards Trustworthy Network Measurements

  • Conference paper
Trust and Trustworthy Computing (Trust 2013)

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 7904))

Included in the following conference series:

Abstract

End-to-end network measurement tools are gaining increasing importance in many Internet services. These tools were designed, however, without prior security consideration which renders their extracted network estimates questionable, given the current adversarial Internet. In this paper, we highlight the major security vulnerabilities of existing end-to-end measurement tools and we sketch possible avenues to counter these threats by leveraging functionality from the OpenFlow protocol. More specifically, we show that the security of bottleneck bandwidth estimation and RTT latency measurements in network coordinate systems can be strengthened when the network deploys a number of OpenFlow-operated switches.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 49.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. CAIDA, tools: taxonomies, http://www.caida.org/tools/taxonomy/performance.xml

  2. HTB Traffic Shaper, http://luxik.cdi.cz/~devik/qos/htb/

  3. mtr, http://www.bitwizard.nl/mtr/

  4. NetLimiter, http://www.netlimiter.com/

  5. OpenFlow–Enabling Innovation in your Network, http://www.openflow.org/

  6. Viznet, http://dast.nlanr.net/Projects/Viznet/

  7. Barford, P.: Measurement as a First Class Network Citizen, http://pages.cs.wisc.edu/~pb/sngi_whitepaper.pdf

  8. Capkun, S., Rasmussen, K.B., Cagalj, M., Srivastava, M.: Secure Location Verification With Hidden and Mobile Base Stations. IEEE Transactions on Mobile Computing (TMC) (2008)

    Google Scholar 

  9. Dabek, F., Cox, R., Kaashoek, F., Morris, R.: Vivaldi: A Decentralized Network Coordinate System. In: Proceedings of SIGCOMM (2004)

    Google Scholar 

  10. Dimitriou, T., Karame, G., Christou, I.: SuperTrust – A Secure and Efficient Framework for Handling Trust in Super Peer Networks. In: Proceedings of ACM PODC (2007)

    Google Scholar 

  11. Harris, B., Hunt, R.: TCP/IP security threats and attack methods. Computer Communications (1999)

    Google Scholar 

  12. Hu, N., Li, L., Mao, Z.M., Steenkiste, P., Wang, J.: A Measurement Study of Internet Bottlenecks. In: Proceedings of INFOCOM (2005)

    Google Scholar 

  13. Jocobson, V.: Pathchar, http://www.caida.org/tools/utilities/others/pathchar

  14. Jose, L., Yu, M., Rexford, J.: Online measurement of large traffic aggregates on commodity switches. In: Proceedings of Hot-ICE (2011)

    Google Scholar 

  15. Kaafar, M.A., Mathy, L., Barakat, C., Salamatian, K., Turletti, T., Dabbous, W.: Securing Internet Coordinate Embedding Systems. In: Proceedings of ACM SIGCOMM (2007)

    Google Scholar 

  16. Kaafar, M.A., Mathy, L., Turletti, T., Dabbous, W.: Virtual Networks under Attack: Disrupting Internet Coordinate Systems. In: Proceedings of CoNext (2006)

    Google Scholar 

  17. Karame, G., Christou, I., Dimitriou, T.: A Secure Hybrid Reputation Management System for Super-Peer Networks. In: Proceedings of IEEE CCNC (2008)

    Google Scholar 

  18. Karame, G., Gubler, D., Čapkun, S.: On the Security of Bottleneck Bandwidth Estimation Techniques. In: Chen, Y., Dimitriou, T.D., Zhou, J. (eds.) SecureComm 2009. LNICST, vol. 19, pp. 121–141. Springer, Heidelberg (2009)

    Chapter  Google Scholar 

  19. Karame, G., Danev, B., Bannwart, C., Capkun, S.: On the Security of End-to-End Measurements based on Packet-Pair Dispersions. IEEE Transactions on Information Forensics & Security (TIFS) (2013)

    Google Scholar 

  20. Lai, K., Baker, M.: Nettimer: A Tool for Measuring Bottleneck Link Bandwidth. In: Proceedings of USITS (2001)

    Google Scholar 

  21. Muuss, M.: ping, ftp://ftp.arl.mil/pub/ping.shar

  22. Saltzer, J.H., Reed, D.P., Clark, D.D.: End-to-End Arguments in System Design. ACM Transactions on Computer Systems (1984)

    Google Scholar 

  23. Saroiu, S., Gummadi, P., Gribble, S.: A Measurement Study of Peer-to-Peer File Sharing Systems. In: Proceedings of MMCN (2002)

    Google Scholar 

  24. Sariou, S., Gummadi, P., Gribble, S.: SProbe: A Fast Technique for Measuring Bottleneck Bandwidth in Uncooperative Environments. In: INFOCOM (2002)

    Google Scholar 

  25. Schiely, M., Renfer, L., Felber, P.: Self-Organization in Cooperative Content Distribution Networks. In: Proceedings of NCA (2005)

    Google Scholar 

  26. Tootoonchian, A., Ghobadi, M., Ganjali, Y.: OpenTM: Traffic matrix estimator for OpenFlow networks. In: Krishnamurthy, A., Plattner, B. (eds.) PAM 2010. LNCS, vol. 6032, pp. 201–210. Springer, Heidelberg (2010)

    Chapter  Google Scholar 

  27. Walters, A., Zage, D., Nita-Rotaru, C.: A Framework for Mitigating Attacks Against Measurement-Based Adaptation Mechanisms in Unstructured Multicast Overlay Networks. ACM/IEEE Transactions on Networking (2007)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. NEC Laboratories Europe, 69115, Heidelberg, Germany

    Ghassan O. Karame

Authors
  1. Ghassan O. Karame
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Department of Computing, Imperial College London, SW7 2AZ, London, United Kingdom

    Michael Huth

  2. Nokia Research Center, Helsinki, Finland

    N. Asokan

  3. Department of Computer Science, ETH Zurich, Switzerland

    Srdjan Čapkun

  4. University of Oxford, UK

    Ivan Flechais

  5. Information Security Group, Royal Holloway University of London, TW20 0EX, Egham, Surrey, UK

    Lizzie Coles-Kemp

Rights and permissions

Reprints and permissions

Copyright information

© 2013 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Karame, G.O. (2013). Towards Trustworthy Network Measurements. In: Huth, M., Asokan, N., Čapkun, S., Flechais, I., Coles-Kemp, L. (eds) Trust and Trustworthy Computing. Trust 2013. Lecture Notes in Computer Science, vol 7904. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-38908-5_6

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-38908-5_6

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-38907-8

  • Online ISBN: 978-3-642-38908-5

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation