1 / 16

Lecture 27: Internet Measurement

Lecture 27: Internet Measurement. CS 765: Complex Networks. Traffic Measurements. Monitoring and measuring network traffic to produce better models of network behavior to diagnose failures and detect anomalies to defend against unwanted traffic Live weather map Internernet2 PlanetLab.

penha
Download Presentation

Lecture 27: Internet Measurement

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Lecture 27: Internet Measurement CS 765: Complex Networks

  2. Traffic Measurements • Monitoring and measuring network traffic • to produce better models of network behavior • to diagnose failures and detect anomalies • to defend against unwanted traffic • Live weather map • Internernet2 • PlanetLab

  3. A Census of the Internet Address Space http://www.isi.edu/ant/address/browse/

  4. Code-Red Worm • On July 19, 2001, more than 359,000 computers connected to the Internet were infected with the Code-Red (CRv2) worm in less than 14 hours • Spread

  5. Sapphire Worm • was the fastest computer worm in history • doubled in size every 8.5 seconds • infected more than 90 percent of vulnerable hosts within 10 minutes.

  6. Witty Worm • reached its peak activity after approximately 45 minutes • at which point the majority of vulnerable hosts had been infected • World • USA

  7. Nyxem Email Virus • Estimate of total number of infected computers is between 470K and 945K • At least 45K of the infected computers were also compromised by other forms of spyware or botware • Spread

  8. Scam Hosting • Study dynamics of scam hosting infrastructure

  9. Sipscan scan • a botnet-orchestrated stealth scan of the entire IPv4 address space • during 31 Jan - 12 Feb 2011 • originated from ~3 million IP addresses • heavily coordinated • unusually covert scanning strategy • to discover and compromise VoIP-related (SIP server) infrastructure http://www.youtube.com/watch?v=n6MRlEJeD8M

  10. Anonymizer Usage • Anonymity network usage analysis • 205 million packets • about 1.44TB data • Analyzed Anonymity Networks

  11. Anonymity Network Geolocation

  12. Tor usage

  13. Host Classification Client vs Server Personal vs Public Web vs Email Server Two Colleges

  14. Measurement Studies • Glasnost • tests whether BitTorrent is being blocked or throttled • BW-meter • Measurement tools for the capacity and load of Internet paths • NPAD Diagnostics Servers • Automatic diagnostic server for troubleshooting end-systems and last-mile network problems • iPlane • construct a router interface-level atlas of the Internet • measuring link attributes • Hubble • find persistent Internet black holes as they occur

  15. Measurement Studies • Japanese ISP traffic • http://www.caida.org/tools/visualization/cuttlefish/pics/japan-traces.gif • DNS workload • http://www.caida.org/research/dns/cl/animated_maps/images/cl-worldmap.animated.queries.gif • Egypt Internet Blackout • http://www.caida.org/publications/papers/2013/coordinated_view_internet_events/supplemental/egypt.composite.mp4 • http://youtu.be/4Khc0XgvdbM • http://youtu.be/YWXgWfNxR9Q

  16. Internet Measurements • The Internet is man-made, so why do we need to measure it? • Because we still don’t really understand it • Sometimes things go wrong • Malicious users • Measurement for network operations • Detecting and diagnosing problems • What-if analysis of future changes • Measurement for scientific discovery • Creating accurate models that represent reality • Identifying new features and phenomena

More Related