MAMI Management and Measurement Summit (M3S)

The MAMI project held an industry workshop on Friday, March 16, 2018 in London. As one of the focus area of the project is to work on mechanisms to support middlebox cooperation, serval projects partners are also active in standardization and as auch are already working in close cooperation with industry. With this workshop we were aiming to gather further input from industry in order to foster broader knowledge exchange with industry, especially with network equipment vendors.

The goal of this workshop was to discuss challenges in network management that arise with the increased deployment of traffic encryption on all layers, with a focus on network measurements, performance enhancement techniques based on traffic classification, as well as network-supported DDoS protection mechanisms. The scope of the workshop  included reviewing existing techniques as currently used, discussion of challenges that arise based on new protocols and mechanisms that are currently under deployment, as well as new proposals to address these challenges (see further the agenda below).

While this workshop was invitation-only and held under chatham house rules, to support an open discussion among the participants,  we will summarize the discussion and provided data (if it can be published) in the next weeks in a white paper that is intended to provide a common basis for a broader discussion in the Internet community.

Please note that this workshop, while it was co-located with the IETF meeting to make participation easier, was not an IETF activity and the white paper is not directly intended input to any specific IETF work and is not addressed to the IETF community only. However, based on our involvement in the IETF, we of course hope that the gained knowledge, that we will make accessible in the white paper, can support on-going work in standardization as well as help a boarder community to gain a better understanding of the current undergoing work in the IETF in this area.

Agenda

9:00

Welcome and Intro

9:15

Where we are? Overview of new technologies in the IETF (Mirja Kühlewind, ETH)

9:35

Middlebox Standardization? Related work items in IEEE, ETSI, ITU, and 3GPP (Arnaud Taddei, Symantec)

9:40    

The Impact of Transport Header Encryption on Operation and the Evolution of the Internet (Gorry Fairhurst, University of Aberdeen)

10:00

Wire Image and Path Signals (Brian Trammell, ETH)

10:30

Coffee break

11:00

Session I: Monitoring (chair: Brian Trammell, ETH)
Current monitoring practices (Al Morton, AT&T) – 5 minutes
How we do Network Performance Monitoring (Pavel Minarik, Flowmon) – 10 mins
Use of TCP headers to monitor network health and customer experience
(Chris Seal, HWEL – 3 Solutions)
– 10 minutes
Analyzing OTT video over QUIC (Craig Radcliffe, Netscout) – 15 minutes
Distributed Security Operations Use Case (Roman Danyliw, CERT) – 10 minutes

12:30

Lunch

13:30

Session II: Performance Enhancing Proxies (chair: Thomas Fossati, Nokia)
Transport-split Proxying for encrypted traffic (Thomas Fossati, Nokia) – 15 minutes
Use case: HTTP proxy for network multicast support (Roni Even, Huawei) – 5 mins
Use-case differences for “Transport Only Intercept” vs “Application Layer Intercept“ (David Wells, Symantec) – 20 minutes

15:00

Coffee break

15:30

Session III: DDoS Protection (chair: Gorry Fairhurst, University of Aberdeen)
Akamai’s DDoS Protection (Aaron Falk, Akamai) – 15 minutes
Challenges in building learning models when traffic is encrypted
(Vijay Gurbani, Nokia)
– 15 minutes

16:00

Wrap up and Conclusion