Controlling unresponsive connections in an active network architecture

This paper presents the design, implementation and evaluation of Limiting Greedy Connections (LGC), an active mechanism for controlling unresponsive connections and minimizing the degradation in network performance caused by bandwidth‐greedy applications. The primary objectives of the LGC mechanism are to limit the impact of greedy connections on a congested node, to keep a loose upper bound on the packet queue occupancy at the intermediate nodes of the network and to minimize packet loss. The LGC mechanism is evaluated for a variety of network topologies, transmitting sources and node queue parameters, using a Java‐based active network testbed. Copyright © 2003 John Wiley &Sons, Ltd.     

主动网络体系结构分析和设计

由于当前Ｉｎｔｅｒｎｅｔ是不可编程的,难以提供各种新的网络服务,并且新协议配置困难。业界对可编程网络体系结构进行了广泛深入的研究,提出了主动网络模型来解决当前基于ＩＰ模型的各种问题。文中先回顾了主动网络的发展历史,综述当前的发展动态,然后比较了两种目前成功的两种主动网络体系结构,并分析了它们的性能。最后,我们综合了两种体系结构的优点,提出了自己的主动网络体系结构以及下一步的研究重点。     

A secure active network environment architecture: realization inSwitchWare

An active network is a network infrastructure which is programmable on a per-user or even per-packet basis. Increasing the flexibility of such network infrastructures invites new security risks. Coping with these security risks represents the most fundamental contribution of active network research. The security concerns can be divided into those which affect the network as a whole and those which affect individual elements. It is clear that the element problems must be solved first, since the integrity of network-level solutions will be based on trust in the network elements. In this article we describe the architecture and implementation of a secure active network environment (SANE), which we believe provides a basis for implementing secure network-level solutions. We guarantee that a node begins operation in a trusted state with the AEGIS secure bootstrap architecture. We guarantee that the system remains in a trusted state by applying dynamic integrity checks in the network element's runtime system, using a novel naming system, and applying node-to-node authentication when needed. The construction of an extended LAN is discussed     

Application level active network (alan) server management architecture

This paper presents the details of the policy-based security and resource management architecture for Application Level Active Network (alan) servers.alan is an active network architecture which enables deployment of user-customised processes (proxylets), which enhance the existing services or introduce new services to the end-user, on the select group of servers in anip network. The issues of security and resource management in this scenario are of crucial importance so as to efficiently facilitate and control the resource consumption of user-specified processes on the active servers, as well as to protect the server platforms from unauthorised proxylet deployment or malevolent behaviour. The architecture allowing efficient resource and security control is presented in this paper, including detaileduml diagrams capturing the management functionality, as well as a set of concrete management policies for thealan scenario. The examplexml policies are also given, and the deployment of this architecture in real-life trials is described. This development forms a part of a larger management architecture foralan-enabled networks developed in the context of theist projectandroid (Active Network DistRibuted Open Infrastructure Development).     

基于移动代理技术的通用主动网络架构及原型应用

提出了一种基于移动代理技术的通用主动网络架构,并给出了一种基于此架构的原型应用——主动搜索引擎。通过对原型应用的仿真,证明该架构在完成任务所需时间和网络负载方面具有更好的性能改善和显著的优点。     

The NetScript active network system

NetScript is a language system for dynamically programming and deploying protocol software in an active network. NetScript programs are packet flow processors composed out of dataflow components. They can be dynamically dispatched to remote nodes, composed with installed software, and executed to enhance node functions. NetScript has proven useful for implementing a variety of practical network systems including Internet protocol (IP) routers, firewalls, protocol analyzers, traffic shapers, load balancers, various queuing disciplines, intrusion detection systems, Web transport protocols, and IP telephony systems. The paper illustrates the principal concepts of NetScript with an example application, an active IP router that is dynamically extended to provide firewall protection     

The autonomic network architecture (ANA)

The objective of autonomic networking is to enable the autonomous formation and parametrization of nodes and networks by letting protocols sense and adapt to the networking environment at run time. Besides its dynamic aspects, a core requirement of autonomic networking is to define a structured framework and execution environment that enables algorithms to operate in a continously changing environment. This paper presents the major design principles of the Autonomic Network Architecture (ANA) and reports on a first implementation. The guiding principle of ANA is to strive for flexibility and genericity at all levels of the architecture. In our approach we explicitly avoid to impose a "one-size-fits-all" architecture (where communication protocols and paradigms are fixed by the architecture). To this end, ANA introduces generic abstractions, for example "information dispatch points" instead of addressable endpoints, as well as communication primitives that support network heterogeneity, adaptability, and evolution. These core abstractions allow for the coexistance of multiple and diverse networking styles and protocols. With the public release of the ANA prototype, we aim at federating autonomics related networking projects, enabling different actors to share, compare, and build upon each other?s work. The ANA runtime can host clean slate network designs as well as legacy Internet technology and serves as a platform for demonstrating autonomic communication principles.     

The double-layer network architecture for photonic switching

This paper introduces a new architecture for strictly nonblocking multistage photonic space networks implemented using the switched directional couplers. This switching architecture has the lowest path loss and the best SNR performance of any nondilated network. The architecture can also be dilated, giving it even better SNR     

The JOURNEY active network model

Faster processors are quickly enabling a new class of computationally intensive applications that actively transform information flows. Performing such computation at the terminal end is contrary to current trends toward low-power terminal devices. Moreover, scalability and efficiency concerns are also encouraging service providers to outsource computation when operating under loaded conditions. To address the problem of deploying such applications, we introduce the JOURNEY network model, which provides computation as an integrated network service. Contrary to other distributed computing models, JOURNEY does not attempt to guarantee that a given computational job will indeed be completed. Instead, the JOURNEY model trades off such hard guarantees in favor of architectural simplicity, and hence scalability. In order for the JOURNEY model to be applicable to real-time multimedia flows, we introduce the notion of soft quality-of-service (QoS) that provides a probabilistic bound on the unprocessed packet rate (UPR). Based on this notion, we describe a packet-processing admission control algorithm that additionally takes into consideration a flow's real-time constraints. We also propose a computing router architecture that is based on cluster technology. This architecture can track technology advances in both routing and computing independently. We further present a motivating multimedia application that employs a semantically driven video transcoding service within the JOURNEY framework we implemented, and describe our experience along with performance measurements     

An all-optical network architecture

A novel photonic network, MATRIX (for multi-wavelength all-optical transparent information exchange), is proposed in this paper. The all-optical multihop network supports wavelength continuity and provides a very high network capacity. Spatial reuse of wavelengths as well as the multiplicity of fibers in optical fiber cables are exploited and enable the interconnection of N² network nodes with merely N wavelengths. The node structure is simple since neither tunable devices nor wavelength converters are required. Packets are routed through the network by photonic fast packet switching as well as by wavelength and experience a maximum hop number of two. Multiple optical paths between any pair of nodes provide a good network survivability     

Multiple-availability-level ATM network architecture

Because of their high flexibility, ATM networks have the potential to achieve two objectives: switch cost reduction and multi-level network availability. For that purpose, this article proposes to use virtual circuit (VC) route self-healing schemes to achieve a multiple-availability-level ATM network. Flexible multi-QoS logical ATM network (Full-Net), a new concept for ATM networks, is now being studied at NTT Laboratories. Full-Net is a very flexible network design strategy for survivable networks that is based on a self-healing VC network. Defining several logical configurations of the VC network allows us to support multiple levels of network availability, simplifies the adaptation to future and unknown service requirements, and significantly reduces overall ATM network cost. Offering different levels of availability not only saves the network's resources, but also allows the network operator to provide its customers with services at the most appropriate cost. We introduce the advantages of VC route restoration for ATM networks, and compare virtual path (VP) level and physical level restoration strategies. We explain Full-Net's concept, propose a VC route self-healing scheme, and show the impact of the logical network configurations on network survivability and resource management     

一种新型三层卫星光网络结构

依据空间卫星网络分层化设计的思想,提出了新型GEO/MEO/LEO三层卫星激光通信网络结构.阐述了上层负责资源调度、路由表发布和下层负责承载业务的基本原理、网络吞吐量大、鲁棒性强等特点.     

FTTH网络结构分析

文章描述了光纤到户（FTTH）在通信网中的位置及作用,FTTH系统的网络结构及功能要求。在FTTH的网络结构方面,通过对各种方案进行比较,建议在不同的应用环境中采取不同的网络方案。这些方案包括光纤到大楼（FTTB）的光网络,基于点到点的纤分方式,基于点到点结构的有源光网络,基于IEEE的以太网无源光网络（EPON）系统和基于ITU—T的吉比特无源光网络（GPON）的系统。     

RACE telecommunications management network architecture

An implementation architecture for a telecommunications management network (TMN) suitable for the management of integrated broadband communications in the CEC RACE programme is described. The architecture is intended to support the future implementation of TMN systems within Europe and elsewhere. Having outlined some of the motivations for the development of a TMN architecture, the paper introduces the various functions associated with a TMN. An overview is given of the functional and physical views of the TMN. One of the major components of any network management system is the management information base. This is described in some detail because of its central role in the architecture. Finally a list of some of the open issues still remaining concludes the paper     

网络病毒主动预警模型

对比于传统的主机病毒，在开放式网络环境中，网络病毒疫情的蔓延更加迅速、破坏力也更强，建立行之有效的预警体系，是尽早发现新型网络病毒，并控制其蔓延的有力举措。本文研究主动式病毒疫情预警体系结构模型，实时分析网络上的疫情信息；通过基于流量的检测，实现对于新型未知网络病毒的挖掘。     

The dilated slipped Banyan switching network architecture for usein an all-optical local-area network

A modification of the classical banyan switching network architecture, called the dilated slipped banyan, is described. This architecture is recursive and switching networks of any size perform permutation switching under a simple switching rule. They also exhibit column-control and dilation, properties that are particularly relevant to guided-wave and free-space photonic technologies. A photonic switching network, with this dilated slipped banyan architecture, is proposed as the hub of an all-optical active-star local-area network. The switching assignment at this hub is time-multiplexed on a fixed schedule that is known to all the terminals. This all-optical local-area network provides the equivalent of full-connectivity with high simultaneous data rates between every pair of terminals. A 16-terminal local-area network with 100 Mb/s of contention-free bandwidth between every pair of terminals is described     

MIRAI architecture for heterogeneous network

One of the keywords that describe next-generation wireless communications is "seamless." As part of the e-Japan Plan promoted by the Japanese Government, the Multimedia Integrated Network by Radio Access Innovation project has as its goal the development of new technologies to enable seamless integration of various wireless access systems for practical use by 2005. This article describes a heterogeneous network architecture including a common tool, a common platform, and a common access. In particular, software-defined radio technologies are used to develop a multiservice user terminal to access different wireless networks. The common platform for various wireless networks is based on a wireless-supporting IPv6 network. A basic access network, separated from other wireless access networks, is used as a means for wireless system discovery, signaling, and paging. A proof-of-concept experimental demonstration system is available     

一种新型网络攻击分类体系

提出了一种面向生命周期的网络攻击分类体系,从平台依赖性、漏洞相关性、攻击作用点、攻击结果、破坏强度和传播性6个方面描述了网络攻击各阶段的特点,对每个方面的属性给出了明确的定义。实践表明,该分类体系具有良好的普适性和可扩展性,能够适应于多种应用的需要。     

传送网体制的革命--智能交换光网络

基于IP over WDM技术的光互联网被公认是目前实现数据网和光网融合的最有前途的网络解决方案。围绕这种方案出现了多种IP层和光层的新适配技术和新思路，如多协议标签交换(MPLS)及其扩展的通用多协议标签交换(GMPLS)、多协议波长标签交换、SDH、10G以太网、简单数据链路（SDL）和数字包封(DW)等，但由于IP业务量本身的不确定性和不可预见性，对网络带宽的动态分配要求显得尤为迫切，传统的人工或半永久性的网络连接配置方式难以满足业务拓展和市场竞争的需要。一种能够自动完成网络连接的新型网络—自动交换传送网(ASTN)应运而…     

Broadband public network and switch architecture

The authors present a view of public network and switch architecture evolution to broadband capabilities, driven by the applications evolutions and built on a synchronous fiber transmission infrastructure such as SONET (synchronous optical network). The scenario is based on the partitioning of broadband network functions between synchronous fiber transmission systems and cell-based transport. The first stage of evolution incorporates frame-based switching to support increasing data traffic for LAN (local area network) interconnections. Cell-based technology appears first in the form of point-to-point high-speed data trunks and then as switched high-speed access. Centralized cell switching will provide interconnect between cell-based trunks and shared access lines. Remote cell multipliers will provide traffic concentration when the number of customers further increases. Since cell transport will first be introduced in the network as an extension of frame transport to higher speed, interworking between cells and frames will be necessary