PIM-SM extension for Source-Specific Multicast through non multicast networks

Barneko ikerkuntza-txostenaDeployment of multicast in the open Internet is stagnated, mainly as a result of service provider policies and network limitations. To skip the lack of multicast connectivity between receivers and networks that carry traffic generated by multicast sources, the IETF has developed a proposal, called Automatic Multicast Tunnelling (AMT), supported in routers at least from 2011. Even so, it has not brought the necessary momentum to the expansion of multicast. In this report a similar but simpler than AMT proposal to skip the non-multicast gap is described. The basic idea in the proposal is to remove from multicast routing architecture some elements imposed by ASM model, those elements that are not needed for the SSM applications (e.g. Internet TV), but make multicast an 'all-or-nothing' technology.The University of the Basque Country (UPV/EHU

Host mobility key management in dynamic secure group communication

The key management has a fundamental role in securing group communications taking place over vast and unprotected networks. It is concerned with the distribution and update of the keying materials whenever any changes occur in the group membership. Wireless mobile environments enable members to move freely within the networks, which causes more difficulty to design efficient and scalable key management protocols. This is partly because both member location dynamic and group membership dynamic must be managed concurrently, which may lead to significant rekeying overhead. This paper presents a hierarchical group key management scheme taking the mobility of members into consideration intended for wireless mobile environments. The proposed scheme supports the mobility of members across wireless mobile environments while remaining in the group session with minimum rekeying transmission overhead. Furthermore, the proposed scheme alleviates 1-affect-n phenomenon, single point of failure, and signaling load caused by moving members at the core network. Simulation results shows that the scheme surpasses other existing efforts in terms of communication overhead and affected members. The security requirements studies also show the backward and forward secrecy is preserved in the proposed scheme even though the members move between areas

Yodel: A Layer 3.5 Name-Based Multicast Network Architecture For The Future Internet

Multicasting refers to the ability of transmitting data to multiple recipients without data sources needing to provide more than one copy of the data to the network. The network takes responsibility to route and deliver a copy of each data to every intended recipient. Multicasting has the potential to improve the network efficiency and performance (e.g., throughput and latency) through transferring fewer bits in communicating the same data to multiple recipients compared with unicast transmissions, reduce the amount of networking resources needed for communication, lower the network energy footprint, and alleviate the occurrence of congestion in the network. Over the past few decades, providing multicast services has been a real challenge for ISPs, especially to support home users and multi-domain network applications, leading to the emergence of complex application-level solutions. These solutions like Content Delivery and Peer-to-Peer networks take advantage of complex caching, routing, transport, and topology management systems which put heavy strains on the underlying Internet infrastructures to offer multicasting services. In reality, the main motivation behind the design of these systems is rather sharing content than offering efficient multicast services. In this paper, we propound Yodel, a name-based multicast network architecture that can provide multi-domain multicast services for current and future Internet applications. Compared to the wider array of other name-based network architectures with clean-slate infrastructure requirements, Yodel is designed to provide multicast services over the current Internet infrastructure. Hence, Yodel puts forward several design goals that distinguish it from other name-based network architectures with inherent multicast capabilities. This paper is prepared to discuss the Yodel architecture, its design goals, and architectural functions.Comment: Contains animated figure

Live media production: multicast optimization and visibility for clos fabric in media data centers

Media production data centers are undergoing a major architectural shift to introduce digitization concepts to media creation and media processing workflows. Content companies such as NBC Universal, CBS/Viacom and Disney are modernizing their workflows to take advantage of the flexibility of IP and virtualization. In these new environments, multicast is utilized to provide point-to-multi-point communications. In order to build point-to-multi-point trees, Multicast has an established set of control protocols such as IGMP and PIM. The existing multicast protocols do not optimize multicast tree formation for maximizing network throughput which lead to decreased fabric utilization and decreased total number of admitted flows. In addition, existing multicast protocols are not bandwidth-aware and could cause links to over-subscribe leading to packet loss and lower video quality. TV production traffic patterns are unique due to ultra high bandwidth requirements and high sensitivity to packet loss that leads to video impairments. In such environments, operators need monitoring tools that are able to proactively monitor video flows and provide actionable alerts. Existing network monitoring tools are inadequate because they are reactive by design and perform generic monitoring of flows with no insights into video domain. The first part of this dissertation includes a design and implementation of a novel Intelligent Rendezvous Point algorithm iRP for bandwidth-aware multicast routing in media DC fabrics. iRP utilizes a controller-based architecture to optimize multicast tree formation and to increase bandwidth availability in the fabric. The system offers up to 50\% increase in fabric capacity to handle multicast flows passing through the fabric. In the second part of this dissertation, DiRP algorithm is presented. DiRP is based on a distributed decision-making approach to achieve multicast tree capacity optimization while maintaining low multicast tree setup time. DiRP algorithm is tested using commercially available data center switches. DiRP algorithm offers substantially lower path setup time compared to centralized systems while maintaining bandwidth awareness when setting up the fabric. The third part of this dissertation studies the utilization of machine learning algorithms to improve on multicast efficiency in the fabric. The work includes implementation and testing of LiRP algorithm to increase iRP\u27s fabric efficiency by implementing k-fold cross validation method to predict future multicast group memberships for time-series analysis. Testing results confirm that LiRP system increases the efficiency of iRP by up to 40\% through prediction of multicast group memberships with online arrival. In the fourth part of this dissertation, The problem of live video monitoring is studied. Existing network monitoring tools are either reactive by design or perform generic monitoring of flows with no insights into video domain. MediaFlow is a robust system for active network monitoring and reporting of video quality for thousands of flows simultaneously using a fraction of the cost of traditional monitoring solutions. MediaFlow is able to detect and report on integrity of video flows at a granularity of 100 mSec at line rate for thousands of flows. The system increases video monitoring scale by a thousand-fold compared to edge monitoring solutions

Servicio IPTV para dar soporte a docencia basado en SIP y P2P

En los últimos años, la demanda de contenido multimedia por parte de los usuarios a través de Internet ha aumentado considerablemente debido a que la mayoría de las personas disponen o bien de dispositivos móviles como pueden ser un smartphone, una tablet o un ordenador portatil; o dispositivos fijos como es el caso de una televisión o un ordenador de sobremesa, en definitiva, dispositivos capaces de reproducir cualquier contenido multimedia, ya sea vídeo bajo demanda (como son el caso de Youtube, Netflix), IPTV (IP Television), o similares. Además otro factor decisivo en la demanda de contenido multimedia ha sido la aparición de nuevas tecnologías de acceso de banda ancha, tanto fija como móviles. Por estos motivos van apareciendo nuevas formas de transmitir dicho contenido a través de la red. Además, debido a que tenemos la facilidad de comunicarnos con personas que están a una cierta distancia o de aprender nuevos conocimientos a través de los nuevos avances tecnológicos, principalmente a través de Internet, se abre un nuevo campo de posibilidades de comunicación dentro de las empresas o sin ir más lejos en el ámbito educativo. Es en éste último, debido a la gran demanda de usuarios que realizan sus estudios de manera semipresencial u online en dónde se está ampliando el uso del vídeo bajo demanda (VoD) de contenido educativo o incluso la transmisión de dichas clases a través de internet (IPTV). El objetivo principal de este Trabajo Fin de Grado ha consistido en la implementación de un sistema IPTV para dar soporte a la actividad docente. El desarrollo, que ha sido realizado mediante herramientas open source, permite la retransmisión en directo de una sesión docente, a través de Internet, desde el equipo del profesor a un número potencialmente elevado de alumnos. El desarrollo del servicio se ha estructurado en dos planos, uno de señalización y uno de datos. En ambos planos, la implementación realizada utiliza protocolos de Internet definidos por el IETF (Internet Engineering Task Force) [IET] que es una organización cuya misión es hacer que Internet funcione mejor mediante la elaboración de documentos técnicos de alta calidad que influyen en la forma de diseñar, utilizar y gestionar Internet.In recent years, the demand of multimedia content by users through the Internet has increased considerably due to the most people have or mobile devices such as a smartphone, a tablet or a laptop, or fixed devices such as TV or a desktop computer, in short, any device able to play multimedia content whether video on demand (such as the case of YouTube, Netflix), IPTV, or similar. Also another factor in the demand for multimedia content has been the emergence of new technologies for broadband access, fixed and mobile. For these reasons new ways of transmitting the content through the network are emerging. Also, due to we have the facility to communicate with people who are at a certain distance or to learn new knowledge through new technological advances, mainly through the Internet, opens a new field of possibilities for communication within companies or in the educational scope. It is in this last, due to the high demand of users who carry out their studies in a blended or online in where the use of video on demand (VoD) of educational content or the transmission of these classes over the Internet (IPTV) are being expanded. The main goal of this Bachelor Thesis has been the implementation of an IPTV system to support teaching. The development, which has been performed using open source tools, allows the retransmission of a live teaching session, through the Internet, from the teacher's computer to a potentially high number of students. The development of the service is structured in two planes, one signaling and one data. In both plans, the implementation uses Internet protocols on defined by IETF (Internet Engineering Task Force) which is an organization whose mission is to make the Internet work better by producing high quality, relevant technical documents that in uence the way people design, use, and manage the Internet.Ingeniería Telemátic

A Secure and Efficient Communications Architecture for Global Information Grid Users via Cooperating Space Assets

With the Information Age in full and rapid development, users expect to have global, seamless, ubiquitous, secure, and efficient communications capable of providing access to real-time applications and collaboration. The United States Department of Defense’s (DoD) Network-Centric Enterprise Services initiative, along with the notion of pushing the “power to the edge,” aims to provide end-users with maximum situational awareness, a comprehensive view of the battlespace, all within a secure networking environment. Building from previous AFIT research efforts, this research developed a novel security framework architecture to address the lack of efficient and scalable secure multicasting in the low earth orbit satellite network environment. This security framework architecture combines several key aspects of different secure group communications architectures in a new way that increases efficiency and scalability, while maintaining the overall system security level. By implementing this security architecture in a deployed environment with heterogeneous communications users, reduced re-keying frequency will result. Less frequent re-keying means more resources are available for throughput as compared to security overhead. This translates to more transparency to the end user; it will seem as if they have a “larger pipe” for their network links. As a proof of concept, this research developed and analyzed multiple mobile communication environment scenarios to demonstrate the superior re-keying advantage offered by the novel “Hubenko Security Framework Architecture” over traditional and clustered multicast security architectures. For example, in the scenario containing a heterogeneous mix of user types (Stationary, Ground, Sea, and Air), the Hubenko Architecture achieved a minimum ten-fold reduction in total keys distributed as compared to other known architectures. Another experiment demonstrated the Hubenko Architecture operated at 6% capacity while the other architectures operated at 98% capacity. In the 80% overall mobility experiment with 40% Air users, the other architectures re-keying increased 900% over the Stationary case, whereas the Hubenko Architecture only increased 65%. This new architecture is extensible to numerous secure group communications environments beyond the low earth orbit satellite network environment, including unmanned aerial vehicle swarms, wireless sensor networks, and mobile ad hoc networks

Scalable download protocols

Scalable on-demand content delivery systems, designed to effectively handle increasing request rates, typically use service aggregation or content replication techniques. Service aggregation relies on one-to-many communication techniques, such as multicast, to efficiently deliver content from a single sender to multiple receivers. With replication, multiple geographically distributed replicas of the service or content share the load of processing client requests and enable delivery from a nearby server.Previous scalable protocols for downloading large, popular files from a single server include batching and cyclic multicast. Analytic lower bounds developed in this thesis show that neither of these protocols consistently yields performance close to optimal. New hybrid protocols are proposed that achieve within 20% of the optimal delay in homogeneous systems, as well as within 25% of the optimal maximum client delay in all heterogeneous scenarios considered.In systems utilizing both service aggregation and replication, well-designed policies determining which replica serves each request must balance the objectives of achieving high locality of service, and high efficiency of service aggregation. By comparing classes of policies, using both analysis and simulations, this thesis shows that there are significant performance advantages in using current system state information (rather than only proximities and average loads) and in deferring selection decisions when possible. Most of these performance gains can be achieved using only “local” (rather than global) request information.Finally, this thesis proposes adaptations of already proposed peer-assisted download techniques to support a streaming (rather than download) service, enabling playback to begin well before the entire media file is received. These protocols split each file into pieces, which can be downloaded from multiple sources, including other clients downloading the same file. Using simulations, a candidate protocol is presented and evaluated. The protocol includes both a piece selection technique that effectively mediates the conflict between achieving high piece diversity and the in-order requirements of media file playback, as well as a simple on-line rule for deciding when playback can safely commence

Publish/Subscribe Gateway for Real-time Communication

Tässä diplomityössä esitellään yhdyskäytävä, jolla voidaan yhdistää IP-verkot ja informaatiokeskeiset julkaisu/tilaus-verkot toisiinsa sekä mahdollistaa niiden käyttäminen rinnakkain. Internetin arkkitehtuuria on ehdotettu uudistettavaksi siten, että nykyisestä ns. isäntäkeskeisestä mallista siirryttäisiin informaatiokeskeiseen malliin. Eräs projekti, jossa tätä tutkitaan, on PURSUIT, jossa tietoliikenne perustuu julkaisu/tilaus-malliin. Projektissa on otettu huomioon myös tämän uuden arkkitehtuurin käyttöönottaminen Internetissä. Tähän liittyen tässä diplomityössä on suunniteltu yhdyskäytävä, joka muuntaa IP-liikenteen julkaisu/tilaaja-pohjaiseksi ja päinvastoin. Muunnos voidaan tehdä SIP-protokollaa käyttäville puheluille sekä IP-monilähetystä hyödyntäville multimediavirroille. Yhdyskäytävän avulla operaattorit voivat hyödyntää verkossaan informaatiokeskeisen mallin ominaisuuksia sekä siihen liittyviä mekanismeja, kuten tilatonta monilähetystä, ja verkon käyttäjät puolestaan voivat edelleen käyttää IP-yhteyksiä ja -sovelluksia. Työssä kuvataan, yhdyskäytävän toiminnallisuudet, jotka mahdollistavat SIP-istunnon alullepanemisen, parametrien neuvottelun, media-istunnon käynnistämisen sekä istunnon ylläpitämisen ja katkaisemisen julkaisu/tilaus-verkon ylitse. Työssä on myös suunniteltu SIP-rekisteriöintipalvelinsovellus, joka hoitaa käyttäjien rekisteröinnin, puheluiden uudelleenohjaukset sekä käyttäjien liikkuvuuden. Lisäksi kuvataan yhdyskäytävään sisältyvä mekanismi, jolla multimedian virtauttaminen monilähetyksenä on toteutettu. Yhteyskäytävä vastaa tässä tapauksessa monilähetysryhmien luomisesta ja purkamisesta sekä istuntoihin liittymisestä ja poistumisesta. Yhdyskäytävän suunnitelman lisäksi diplomityössä kuvataan prototyypin toteutus sekä arvioimme järjestelmän vastaavuutta työssä määriteltyihin vaatimuksiin. Lisäksi analysoimme järjestelmän suorituskykyä ja liikenteen määrää istuntojen eri vaiheissa, sekä vertaamme näitä tuloksia IP- ja julkaisu/tilaus-verkkojen välillä.This thesis proposes a design of a gateway, which connects IP and publish/subscribe networks together, enabling their co-existence, for example, during an IP to pub/sub migration phase. There is a proposal to revise the architecture of the present Internet, from "Host-Centric Networking" to a new concept called "Information-Centric Networking (ICN)". One of the ongoing projects in this field is the PURSUIT project, which uses the publish/subscribe paradigm as a basic communication model. Since the proposal from the PURSUIT project has gained quite much interest recently, the next step is to consider the process of deploying the new Internet architecture. This thesis focuses on gateway's mechanism to transparently convert IP-based end-to-end traffic to the publish/subscribe based and vice versa, in order to support voice communication using Session Initiation Protocol as well as multimedia streaming over multicast. The main idea of our design is to allow operators to utilize the features of Information-Centric Networking, while home users or companies can still use legacy IP connectivity and applications. In this scenario, the operators will gain benefits from new solutions, e.g., stateless Bloom-filter based multicast forwarding in the pub/sub network. We describe the gateway's functionalities to handle SIP session initialization, parameters negotiation, media session establishment, as well as maintaining and terminating the session over the publish/subscribe network. This includes a design of a pub/sub based SIP registrar for taking care of user registration, call redirection, and mobility. Moreover, we also discuss the mechanism to support multimedia streaming over multicast. Our gateway is responsible for group establishment, session joining and leaving, and eventually group termination. In addition to our design, we describe an implemented prototype, and evaluate the system's functionalities according to the requirements of this thesis. After that, we analyze the performance of the design and implementation, traffic density during different phases of both SIP and multicast sessions, and finally compare the call setup duration between IP and pub/sub networks