CSE 525

CSE 525: Advanced Networking (Winter 2004)

This course is an advanced research seminar course covering contemporary networking and security papers.

Instructor:

Wu-chang Feng (wgf at cse dot ogi dot edu)

Format:

This class will cover paper groups consisting of a primary paper and a set of related papers. One person in the class will be responsible for each paper group. This person will

Read all of the papers in the group
Do a short 20 minute slide presentation in class summarizing them (20 slide maximum!!!)

What were the main contributions of the work?

What were the advantages and disadvantages of the approach?
How does it compare to other related work in the paper group?
What are potential avenues for further work and improvements?

Submit a tar ball one week after the presentation containing

your slide presentation
a local copy of the papers covered
a web page that includes

a short summary of the major contributions of the papers and class discussion
complete references for the papers covered and relative links to the copies enclosed in the tarball
link to the slides that are enclosed in the tarball
links to related papers and web sites

We will be covering 3-4 paper groups per class based on enrollment. Every person in the class is responsible for reading the primary papers.

Grading:

Grades will be based on class participation, class presentations, and paper reports.

Class presentations 50%
Summaries 30%
Class participation 20%

Papers:

We will be selecting paper groups to cover on the first day of class.
UPDATE: Paper groups have been selected based on your topic rankings. The groups have all been scheduled and are listed below. The list of paper groups that were leftover can be found here.

Schedule

The schedule will be completed after the first day of class. Primary papers which everyone in the class is required to read are in bold

1/5 Introduction
Cancelled due to weather

1/12 Week #1 Introduction/Potpourri

0. Course information

Review format and syllabus
Paper selection
Reading assignment.... paper
Sample tarball paper

1. Client puzzle protocols (Ed Kaiser)

D. Dean, A. Stubblefield, "Using Client Puzzles to Protect TLS", USENIX Security Symposium 2001 paper
Adam Back. "Hashcash - a denial of service counter-measure" 2002. paper
Jussipekka Leiwo, Pekka Nikander, and Tuomas Aura. Towards network denial of service resistant protocols. IFIP/SEC 2000, paper

2. Internet tomography and geography (Chris Chambers)

M. Andrews, B. Shepherd, A. Srinivasan, P. Winkler, F. Zane, "Clustering and Server Selection using Passive Monitoring", INFOCOM 2002 paper
V. N. Padmanabhan and L. Subramanian. An Investigation of Geographic Mapping Techniques for Internet Hosts. ACM SIGCOMM, August 2001. paper
E.Ng and H.Zhang, "Predicting Internet network distance with coordiantes-based approaches," INFOCOM 2001. paper

1/19 No class (MLK Day)

1/26 Week #2 Network and OS security

3. Security protocols (Artur Saygin)

Kevin Fu, Emil Sit, Kendra Smith, and Nick Feamster. Dos and don'ts of client authentication on the web. In Proceedings of the 10th USENIX Security Symposium 2001. paper
W. Aiello, S. Bellovin, M. Blaze, R. Canetti, J. Ioannidis, A. Keromytis, O. Reingold, "Efficient, DoS-Resistant, Secure Key Exchange for Internet Protocols", CCS 2002 paper

4. Vulnerabilities (Robert Nesius)

S. Staniford, V. Paxson, N. Weaver, "How to 0wn the Internet on Your Spare Time", USENIX Security Symposium 2002. paper
S. Crosby, D. Wallach, "Denial of Service via Algorithmic Complexity Attacks", USENIX Security Symposium 2003 paper
John Bellardo and Stefan Savage, 802.11 Denial-of-Service Attacks: Real Vulnerabilities and Practical Solutions, USENIX Security Symposium 2003. paper

5. Code Red (Jason Bittel)

D. Moore, C. Shannon, k. claffy, "Code-Red: A Case Study on the Spread and Victims of an Internet Worm", IMW 2002, paper
L. Wang, X. Zhao, D. Pei, R. Bush, D. Massey, A. Mankin, S. Wu, L. Zhang, "Observation and Analysis of BGP Behavior under Stress", IMW 2002, paper

6. OS security (Dhanashri Kelkar)

C. Cowan, S. Beattie, C. Wright, G. Kroah-Hartman "RaceGuard: Kernel Protection From Temporary File Race Vulnerabilities", USENIX Security Symposium 2001.paper
C. Wright, C. Cowan, J. Morris, S. Smalley, and G. KroahHartman. Linux security modules: General security support for the linux kernel. In Linux Security Modules: General Security Support for the Linux Kernel, USENIX Security Symposium 2002. paper

2/2 Week #3 Network and host security

7. IDS systems (Rajan Palanivel)

S. Axelsson. "Intrusion Detection Systems: A Survey and Taxonomy". Technical Report 99-15, Depart. of Computer Engineering, Chalmers University, March 2000. paper or "Research in Intrusion-Detection systems: A Survey". Technical Report 98--17, Dept. of Computer Eng. Chalmers Univ. December 1998. paper

8. Machine learning in IDS #1 (Bobin John)

J. Frank. Artificial intelligence and intrusion detection: Current and future directions. In Proceedings of the 17th National Computer Security Conference, October 1994. paper
M. Crosbie and E. Spafford "Applying genetic programming to intrusion detection" AAAI 1995 Fall Symposium series, paper

9. Malware (Ho Jeong An)

D. Moore, Colleen Shannon, Geoffrey Voelker, Stefan Savage, "Internet Quarantine: Requirements for Containing Self-Propagating Code", INFOCOM 2003, paper
Z. Chen, L. Gao, K. Kwiat, "Modeling the Spread of Active Worms", INFOCOM 2003, paper
M. Garetto, W. Gong, D. Towsley, "Modeling Malware Spreading Dynamics", INFOCOM 2003, paper

10. Wireless security (Jason Liu)

J. Walker, "IEEE 802.11 Wireless LANs Unsafe at any key size; An analysis of the WEP encapsulation", paper
Nikita Borisov, Ian Goldberg, and David Wagner. Intercepting mobile communications: The insecurity of 802.11. In Proceedings of MOBICOM 2001, 2001. paper
W. Arbaugh, N. Shankar, Y. Wan, "Your 802.11 Wireless Network Has No Clothes", paper

2/9 Week #4 Sensor and energy-efficient networking

11. Sensor networks (Madhu Jayaprakash)

A. Vahdat and D. Becker. Epidemic Routing for Partially Connected Ad Hoc Networks. Technical Report CS-200006, Duke University, April 2000. paper
P. Juang, H. Oki, Y. Wang, M. Martonosi, L. Peh, and D. Rubenstein. Energy-efficient computing for wildlife tracking: Design tradeoffs and early experiences with Zebranet.ASPLOS 2002. paper
R. Shah, S. Roy, S. Jain, W. Brunette, "Data MULEs: Modeling a Three-tier Architecture for Sparse Sensor Networks," SNPA 2003 paper

12. Data transport in challenged networks (Chetan Hiremath)

K. Fall, "A Delay-Tolerant Network Architecture for Challenged Internets", ACM SIGCOMM 2003 paper
S. Burleigh, V. Cerf, R. Durst, K. Fall, A. Hooke, K. Scott, H. Weiss, "The Interplanetary Internet: A Communications Infrastructure for Mars Exploration" paper

13. Energy-efficient MAC survey (Kiran Muthabatulla)

C. E. Jones, K. M. Sivalingam, P. Agrawal, and J. C. Chen. A survey of energy efficient network protocols for wireless networks. Wireless Networks, 7(4):343--358, July 2001. paper

14. Energy-efficient MACs (Nilesh Jain)

W. Ye, J. Heidemann, and D. Estrin, "An energy-efficient MAC protocol for wireless sensor networks," in INFOCOM 2002. paper
E.Jung and N. Vaidya, "An Energy Efficient MAC Protocol for Wireless LANs," in INFOCOM 2002. paper
A. Spyropoulos and C. Raghavendra, "Energy efficient communications in ad hoc networks using directional antennas," IEEE INFOCOM 2002. paper

2/16 No class (President's Day)

2/23 Week #5 P2P, OS

15. P2P architecture (Jordan Justen)

Y. Chawathe, S. Ratnasamy, L. Breslau, N. Lanham, S. Shenker, "Making Gnutella-like P2P Systems Scalable", ACM SIGCOMM 2003 paper
H. Zhang, A. Goel, R. Govindan, "Using the Small-World Model to Improve Freenet Performance," Proc. IEEE INFOCOM, 2002. paper
L. Cox and B. Noble, "Samsara: Honor Among Thieves in Peer-to-Peer Storage", SOSP 2003 paper

16. Application measurement (Bobin John)

Krishna P. Gummadi, Richard J. Dunn, Stefan Saroiu, Steven D. Gribble, Henry M. Levy, John Zahorjan, "Measurement, Modeling, and Analysis of a Peer-to-Peer File-Sharing Workload" SOSP 2003. paper
C. Dewes, A. Wichmann, A. Feldmann, "An Analysis of Internet Chat Systems", IMC 2003, paper

17. Distributed storage (Madhu Jayaprakash)

A. Muthitacharoen, B. Chen, and D. Mazieres. A low-bandwidth network file system. SOSP 2001. paper
Athicha Muthitacharoen, Robert Morris, Thomer M. Gil, Benjie Chen, "Ivy: A Read/Write Peer-to-Peer File System" OSDI 2002 paper

18. Virtual machines (Rajan Palanivel)

Paul Barham, Boris Dragovic, Keir Fraser, Steven Hand, Tim Harris, Alex Ho, Rolf Neugebauer, Ian Pratt, Andrew Warfield "Xen and the Art of Virtualization", SOSP 2003 paper
T. Garfinkel, B. Pfaff, J. Chow, M. Rosenblum, D. Boneh, "Terra: A Virtual-Machine Based Platform for Trusted Computing" SOSP 2003 paper

3/1 Week #6 Overlays, Traffic engineering

19. Multicast overlays (Kiran Muthabatulla)

Dejan Kostic, Adolfo Rodriguez, Jeannie Albrecht, Amin Vahdat, "Bullet: High Bandwidth Data Dissemination Using an Overlay Mesh" SOSP 2003. paper
J. Jannotti, D. K. Gifford, K. L. Johnson, M. F. Kaashoek, and J. W. O'Toole Jr. "Overcast: Reliable multicasting with an overlay network". OSDI 2000. paper

20. Overlay topology construction (Chetan Hiremath)

A. Nakao, L. Peterson, A. Bavier, "A Routing Underlay for Overlay Networks", ACM SIGCOMM 2003 paper
S. Shi and J. Turner. Routing in Overlay Multicast Networks. In Proc. of IEEE INFOCOM 2002 paper
S. Ratnasamy, M. Handley, R. Karp, and S. Shenker, "Topologically-aware overlay construction and server selection," IEEE INFOCOM'02. paper

21. Multi-path routing (Dhanashri Kelkar)

A. Akella, B. Maggs, S. Seshan, A. Shaikh, R. Sitaraman, "A Measurement-Based Analysis of Multihoming", ACM SIGCOMM 2003. paper
D. Andersen, A. Snoeren, H. Balakrishnan, "Best-Path v. Multi-Path Overlay Routing", IMC 2003, paper

22. Traffic engineering (Jason Liu)

Bernard Fortz, Jennifer Rexford, and Mikkel Thorup, "Traffic engineering with traditional IP routing protocols," IEEE Communication Magazine, October 2002. paper
Nick Feamster, Jay Borkenhagen, and Jennifer Rexford, "Guidelines for interdomain traffic engineering," ACM SIGCOMM Computer Communications Review, paper
Anees Shaikh, Jennifer Rexford, and Kang G. Shin. Load-sensitive routing of long-lived IP flows. ACM SIGCOMM 1999 paper

3/8 Week #7 Routing, TCP

23. New directions in routing (Jordan Justen)

L. Gao and J. Rexford, "Stable Internet routing without global coordination," in Proc. ACM SIGMETRICS, June 2000. paper
Xiaowei Yang, "NIRA: A New Internet Routing Architecture", in ACM SIGCOMM FDNA-03 paper
N. Feamster, H. Balakrishnan, "Towards a Logic for Wide-Area Internet Routing", in ACM SIGCOMM FDNA-03 paper

24. Route lookup (Nilesh Jain)

Ioannis Ioannidis, Ananth Grama, Mikhail Atallah, "Adaptive Data Structures for IP Lookups", INFOCOM 2003 paper
Giancarlo Bongiovanni, Paolo Penna "XOR-based schemes for fast parallel IP lookups", paper

25. Packet classification (Robert Nesius)

Florin Baboescu, Sumeet Singh, George Varghese, "Packet Classification for Core Routers: Is there an alternative to CAMs?", INFOCOM 2003 paper
Anindya Basu, Girija Narlikar, "Fast Incremental Updates for Pipelined Forwarding Engines", INFOCOM 2003, paper
Girija Narlikar, Anindya Basu, Francis Zane, "CoolCAMs: Power-Efficient TCAMs for Forwarding Engines", INFOCOM 2003 paper

26. High-speed TCP (Artur Saygin)

Cheng Jin, David X. Wei and Steven H. Low, "FAST TCP: motivation, architecture, algorithms, performance", INFOCOM 2004 paper
S. Floyd, S. Ratnasamy, and S. Shenker. "Modifying TCP's Congestion Control for High Speeds" paper
Tom Kelly, "Scalable TCP: Improving Performance in HighSpeed Wide Area Networks", February 2003. paper

3/15 Week #8 IDS, DDoS

27. Machine learning in IDS #2 (Jason Bittel)

T. Lane and C. E. Brodley. An application of machine learning to anomaly detection. NIST-NCSC National Information Systems Security Conference, 1997. paper
J. Ryan, M. Lin, R. Miikkulainen "Intrusion Detection with Neural Networks", MIT Press 1998 paper
A. K. Ghosh, A. Schwatzbard and M. Shatz, "Learning Program Behavior Profiles for Intrusion Detection", USENIX Workshop on Intrusion Detection and Network Monitoring 1999, paper
D. Endler. "Intrusion detection: Applying machine learning to solaris audit data", ACSAC'98. paper

28. Machine learning in IDS #3 (Chris Chambers)

D. Dasgupta, F. Gonzalez, "An Immunity-Based Technique to Characterize Intrusions in Computer Networks", IEEE Transactions on Evolutionary Computing, 2002. paper
B. Adolf, "New Paradigms for Intrusion Detection Using Genetic Programming", 2003 paper
S. Bridges, R. Vaughn, "Fuzzy Data Mining and Genetic Algorithms Applied to Intrusion Detection", NISSC 2000, paper

29. DDoS (Ho Jeong An)

V. Paxson, "An Analysis of Using Reflectors for Distributed Denial-of-Service Attacks", CCR vol. 31, no. 3, July 2001. paper
F. Kargl, J. Maier, M. Weber "Protecting Web Servers from Distributed Denial of Service Attacks", WWW 2001, paper
Catherine Meadows. A cost-based framework for analysis of denial of service in networks. Journal of Computer Security, 9(1--2):143--164, 2001 paper.

30. Client puzzle algorithms (Ed Kaiser)

M. Abadi, M. Burrows, M. Manasse, T. Wobber, "Moderately Hard, Memory-bound Functions", paper
R. Rivest, A. Shamir and D. Wagner. Time-lock puzzles and timed-release crypto. paper.