networking overview
play

Networking Overview CS 161 - Computer Security Profs. Vern Paxson - PowerPoint PPT Presentation

Oct 19, 2022 •154 likes •521 views

Networking Overview CS 161 - Computer Security Profs. Vern Paxson & David Wagner TAs: John Bethencourt, Erika Chin, Matthew Finifter, Cynthia Sturton, Joel Weinberger http://inst.eecs.berkeley.edu/~cs161/ Feb 8, 2010 1 Focus For Today

  1. Networking Overview CS 161 - Computer Security Profs. Vern Paxson & David Wagner TAs: John Bethencourt, Erika Chin, Matthew Finifter, Cynthia Sturton, Joel Weinberger http://inst.eecs.berkeley.edu/~cs161/ Feb 8, 2010 1

  2. Focus For Today ʼ s Lecture • Sufficient background in networking to then explore security issues in next 4 lectures – Networking = the Internet • Complex topic with many facets – We will omit concepts/details that aren’t very security- relevant – We’ll mainly look at IP, TCP, DNS and DHCP • Networking is full of abstractions – Goal is for you to develop apt mental models / analogies – ASK questions when things are unclear o (but we may skip if not ultimately relevant for security, or postpone if question itself is directly about security) 2

  3. Key Concept #1: Dumb Network • Internet design: interior nodes (“routers”) have no knowledge* of ongoing connections going through them • Not: how you picture the telephone system works – Which internally tracks all of the active voice calls • Instead: the postal system! – Each Internet message (“packet”) self-contained – Interior “routers” look at destination address to forward – If you want smarts, build it “end-to-end” – Buys simplicity & robustness at the cost of shifting complexity into end systems * Today’s Internet is full of hacks that violate this 3

  4. Key Concept #2: Layering • Internet design is strongly partitioned into layers – Each layer relies on services provided by next layer below … – … and provides services to layer above it • Analogy: – Consider structure of an Code You Write application you’ve written Run-Time Library and the “services” each System Calls layer relies on / provides Magnetic Domains } Device Drivers Fully isolated Voltage Levels / from user programs 4

  5. Internet Layering (“Protocol Stack”) 7 Application 4 Transport 3 (Inter)Network Link 2 1 Physical 5

  6. Layer 1: Physical Layer 7 Application 4 Transport Encoding bits to send them over a single physical link 3 (Inter)Network e.g. patterns of Link 2 voltage levels / photon intensities / 1 Physical RF modulation 6

  7. Layer 2: Link Layer Framing and transmission of a collection of bits into individual messages sent across a 7 Application single “subnetwork” (one physical technology) 4 Transport 3 (Inter)Network Might involve multiple physical Link 2 links (e.g., modern Ethernet) 1 Physical Often technology supports broadcast transmission ( every “node” connected to subnet receives) 7

  8. Layer 3: (Inter)Network Layer Bridges multiple subnets to provide end-to-end internet connectivity between nodes 7 Application • Provides global addressing 4 Transport Works across different link 3 (Inter)Network technologies } Link 2 Different for each Internet “hop” 1 Physical 8

  9. Layer 4: Transport Layer End-to-end communication between processes 7 Application Different services provided: TCP = reliable byte stream 4 Transport UDP = unreliable datagrams 3 (Inter)Network Link 2 1 Physical 9

  10. Layer 7: Application Layer Communication of whatever you wish 7 Application Can use whatever transport(s) is convenient 4 Transport 3 (Inter)Network Freely structured Link 2 E.g.: 1 Physical Skype, SMTP (email), HTTP (Web), Halo, BitTorrent 10

  11. Internet Layering (“Protocol Stack”) } Implemented only at hosts, 7 Application not at interior routers 4 Transport (“dumb network”) 3 (Inter)Network Link 2 1 Physical 11

  12. Internet Layering (“Protocol Stack”) 7 Application 4 Transport } 3 (Inter)Network Link 2 Implemented everywhere 1 Physical 12

  13. Hop-By-Hop vs. End-to-End Layers Host A communicates with Host D Host C Host D Host A Router 1 Router 2 Router 3 Router 5 Host B Host E Router 7 Router 6 Router 4 13

  14. Hop-By-Hop vs. End-to-End Layers Host A communicates with Host D Host C Host D Host A E.g., Ethernet Router 1 Router 2 Router 3 E.g., Wi-Fi Router 5 Host B Host E Router 7 Router 6 Router 4 Different Physical & Link Layers (Layers 1 & 2) 14

  15. Hop-By-Hop vs. End-to-End Layers Host A communicates with Host D Host C Host D Host A Router 1 Router 2 Router 3 Router 5 E.g., HTTP over TCP over IP Host B Host E Router 7 Router 6 Router 4 Same Network / Transport / Application Layers (3/4/7) (Routers ignore Transport & Application layers) 15

  16. Key Concept #3: Protocols • A protocol is an agreement on how to communicate • Includes syntax and semantics – How a communication is specified & structured o Format, order messages are sent and received – What a communication means o Actions taken when transmitting, receiving, or timer expires • E.g.: asking a question in lecture? 1.Raise your hand. 2.Wait to be called on. 3.Or: wait for speaker to pause and vocalize 4.If unrecognized (after timeout): vocalize w/ “excuse me” 16

  17. Example: IP Packet Header (Network layer / layer 3) 4-bit 8-bit 4-bit 16-bit Total Length (Bytes) Header Type of Service Version Length (TOS) 3-bit 16-bit Identification 13-bit Fragment Offset Flags 20-byte 20-byte 8-bit Time to 8-bit Protocol 16-bit Header Checksum header header Live (TTL) 32-bit Source IP Address 32-bit Destination IP Address Payload IP = Internet Protocol

  18. IP: “ Best Effort ” Packet Delivery • Routers inspect destination address, locate “next hop” in forwarding table – Address = ~unique identifier/locator for the receiving host – (decrements TTL “Time To Live” field, drops packet if = 0) • Only provides a “I’ll give it a try” delivery service: – Packets may be lost – Packets may be corrupted – Packets may be delivered out of order source destination IP network 18

  19. “Best Effort” is Lame! What to do? • It’s the job of our Transport (layer 4) protocols to build services our apps need out of IP’s modest layer-3 service • #1 workhorse: TCP ( Transmission Control Protocol ) • TCP service: – Connection oriented (explicit set-up / tear-down) o End hosts (processes) can have multiple concurrent long-lived dialog – Reliable, in-order, byte-stream delivery o Robust detection & retransmission of lost data – Congestion control o Dynamic adaptation to network path’s capacity o (Also adaptation to receiver’s ability to absorb data) 19

  20. TCP “Stream of Bytes” Service Host A Byte 0 Byte 1 Byte 2 Byte 3 Byte 80 Hosts don’t ever see packet boundaries, lost or corrupted packets, retransmissions, etc. Host B Byte 0 Byte 1 Byte 2 Byte 3 Byte 80 20

  21. “Best Effort” is Lame! What to do? • It’s the job of our Transport (layer 4) protocols to build services our apps need out of IP’s modest layer-3 service • #1 workhorse: TCP ( Transmission Control Protocol ) • TCP service: – Connection oriented (explicit set-up / tear-down) o End hosts (processes) can have multiple concurrent long-lived dialog – Reliable, in-order, byte-stream delivery o Robust detection & retransmission of lost data – Congestion control o Dynamic adaptation to network path’s capacity o (Also adaptation to receiver’s ability to absorb data) 21

  22. TCP Header Source port Destination port Sequence number Acknowledgment HdrLen Advertised window Flags 0 Checksum Urgent pointer Options (variable) Data 22

  23. TCP Header Ports are Source port Destination port associated with OS Sequence number processes Acknowledgment IP source & destination HdrLen Advertised window Flags 0 addresses plus TCP source and destination Checksum Urgent pointer ports uniquely identifies a TCP connection Options (variable) Some port numbers are “well known” / reserved Data e.g. port 80 = HTTP 23

  24. TCP Header Source port Destination port Starting sequence Sequence number number (byte offset) of data Acknowledgment carried in this HdrLen Advertised window Flags 0 packet Checksum Urgent pointer Options (variable) Data 24

  25. TCP Header Source port Destination port Sequence number Acknowledgment gives seq # just Acknowledgment beyond highest seq. received in HdrLen Advertised window Flags 0 order . Checksum Urgent pointer If sender sends Options (variable) N in-order bytes starting at seq S Data then ack for it will be S+N . 25

  26. TCP Header Source port Destination port Sequence number Uses include: Acknowledgment acknowledging data (“ ACK ”) HdrLen Advertised window Flags 0 Checksum Urgent pointer setting up (“ SYN ”) and closing Options (variable) connections (“ FIN ” and “ RST ”) Data 26

  27. Establishing a TCP Connection B A SYN Each host tells its Initial Sequence Number SYN+ACK (ISN) to the other host. ACK Spec says to pick D a t a based on local clock D a t a • Three-way handshake to establish connection – Host A sends a SYN (open; “synchronize sequence numbers”) to host B – Host B returns a SYN acknowledgment ( SYN + ACK ) – Host A sends an ACK to acknowledge the SYN + ACK 27

  28. Timing Diagram: 3-Way Handshaking Passive Open Active Server Open listen() Client (initiator) connect() S Y N , S e q N u m = x SYN + ACK, SeqNum = y, Ack = x + 1 A C K , A c k = y + 1 accept() 28

Recommend

Networking By Destiney Plaza Overview What is networking Architecture Hardware

Networking By Destiney Plaza Overview What is networking Architecture Hardware

Networking By Destiney Plaza Overview What is networking Architecture Hardware Networking Details Topologies Build your own network Networking Connection between two or more devices How do humans

1.31k views • 79 slides
Networking By Destiney Plaza Overview What is networking Architecture Hardware

Networking By Destiney Plaza Overview What is networking Architecture Hardware

Networking By Destiney Plaza Overview What is networking Architecture Hardware Networking Details Topologies Build your own network Networking Connection between two or more devices How do humans

1.06k views • 74 slides
Docker Networking Workshop Agenda 1. Detailed Overview 2. Docker Networking Evolution 3. Use

Docker Networking Workshop Agenda 1. Detailed Overview 2. Docker Networking Evolution 3. Use

Docker Networking Workshop Agenda 1. Detailed Overview 2. Docker Networking Evolution 3. Use Cases Single-host networking with the Bridge driver Multi-host networking with the Overlay driver Connecting to existing VLANs with the

1.32k views • 93 slides
CS683- Security and Privacy: Overview of Computer Networking (1/2) Karim Eldefrawy

CS683- Security and Privacy: Overview of Computer Networking (1/2) Karim Eldefrawy

CS683- Security and Privacy: Overview of Computer Networking (1/2) Karim Eldefrawy keldefrawy@usfca.edu University of San Francisco A Good Text Book (if you need one) 1/24/18 Introduction 1-2 Networking Overview: Roadmap overview : our

1.34k views • 76 slides
Using Your Network 10-07-16 Networking & You What is networking? Benefits of

Using Your Network 10-07-16 Networking & You What is networking? Benefits of

Jordan Borrell Networking & Bioengineering Program Using Your Network 10-07-16 Networking & You What is networking? Benefits of networking. Who do I network with? Family/Friends/Neighbors School Connections

395 views • 14 slides
Networking Don Porter CSE 506 Networking (2 parts) Goals: Review networking basics

Networking Don Porter CSE 506 Networking (2 parts) Goals: Review networking basics

Networking Don Porter CSE 506 Networking (2 parts) Goals: Review networking basics Discuss APIs Trace how a packet gets from the network device to the application (and back) Understand Receive livelock and NAPI 4

761 views • 48 slides
An Overview of the Bio-Networking Architecture Jun Suzuki, Ph.D. jsuzuki@ics.uci.edu

An Overview of the Bio-Networking Architecture Jun Suzuki, Ph.D. jsuzuki@ics.uci.edu

An Overview of the Bio-Networking Architecture Jun Suzuki, Ph.D. jsuzuki@ics.uci.edu www.ics.uci.edu/~jsuzuki/ netresearch.ics.uci.edu/bionet/ Dept. of Information and Computer Science University of California, Irvine Overview

658 views • 39 slides
Social Networking (A Summary) Presented by Gerald Bauer JB Systems, LLC Networking In The

Social Networking (A Summary) Presented by Gerald Bauer JB Systems, LLC Networking In The

Social Networking (A Summary) Presented by Gerald Bauer JB Systems, LLC Networking In The Digital Age Welcome Overview: History of Networking 7 Minutes of Facebook 7 Minutes of Linked In 7 Minutes of Blogging 7 Minutes of Q&A

310 views • 30 slides
NAMED DATA NETWORKING (NDN) Named Data Networking NDN BRIEF HISTORY When the Networking was

NAMED DATA NETWORKING (NDN) Named Data Networking NDN BRIEF HISTORY When the Networking was

NAMED DATA NETWORKING (NDN) Named Data Networking NDN BRIEF HISTORY When the Networking was developed in the 60s and 70s Networking was mainly used for resource sharing. IP was the effective communication protocol in place.

484 views • 29 slides
NETWORKING ATTACKS NETWORKING ATTACKS NOTICES Lab #2 extended to Feb. 17 @ 23:59 HW #3

NETWORKING ATTACKS NETWORKING ATTACKS NOTICES Lab #2 extended to Feb. 17 @ 23:59 HW #3

CMPS122: COMPUTER SECURITY NETWORKING ATTACKS NETWORKING ATTACKS NOTICES Lab #2 extended to Feb. 17 @ 23:59 HW #3 due tonight NETWORKING ATTACKS LAST TIME TCP/IP networking stack Physical layer Data link layer Network

1.1k views • 61 slides
Networking 192.168.1. 101 By: Vince Disclaimer I am NOT a Networking expert you might ask

Networking 192.168.1. 101 By: Vince Disclaimer I am NOT a Networking expert you might ask

Networking 192.168.1. 101 By: Vince Disclaimer I am NOT a Networking expert you might ask questions that I dont know the answer to Networking is hard to teach but I know how to do your homeworks so that counts for something,

780 views • 52 slides
CS683 - Security and Privacy: Reviewing Computer Networking (2/2) Karim Eldefrawy

CS683 - Security and Privacy: Reviewing Computer Networking (2/2) Karim Eldefrawy

CS683 - Security and Privacy: Reviewing Computer Networking (2/2) Karim Eldefrawy keldefrawy@usfca.edu Universit of San Francisco Overview of Networking, TCP/IP Stack, ARP, IP 1 Networking Concepts Protocol Architecture (Stack or Suite)

1.59k views • 57 slides
Computer Networking NETWORKING Computer Networking Computer network is like a phone system

Computer Networking NETWORKING Computer Networking Computer network is like a phone system

Computer Networking NETWORKING Computer Networking Computer network is like a phone system for computers, data call Basic outline is surprisingly simple, complex details Worth knowing .. using all the time The details of

424 views • 6 slides
Multimedia Communications @CS.NCTU Lecture 1: Networking Overview Instructor: Kate Ching-Ju Lin (

Multimedia Communications @CS.NCTU Lecture 1: Networking Overview Instructor: Kate Ching-Ju Lin (

Multimedia Communications @CS.NCTU Lecture 1: Networking Overview Instructor: Kate Ching-Ju Lin ( ) Slides modified from Computer Networking: A Top-Down Approach 6th Edition Outline Whats the Internet? Whats a

1.19k views • 71 slides
Networking Tapping the Hidden Job Market n How are jobs

Networking Tapping the Hidden Job Market n How are jobs

Networking Tapping the Hidden Job Market n How are jobs found? n Networking Tools n Networking Guidelines n Networking Process n Networking Mee?ngs 1

576 views • 22 slides
Networking Patrick Cardwell James Lowrey Blaine Morbitzer Overview Transmission protocol

Networking Patrick Cardwell James Lowrey Blaine Morbitzer Overview Transmission protocol

Networking Patrick Cardwell James Lowrey Blaine Morbitzer Overview Transmission protocol UDP, TCP Game Networking Architecture Server/Client Interactions Client-side prediction, Interpolation, Lag Compensation

606 views • 39 slides
Networking By: Dewan Islam What is Networking? - Networking is the connection between two or

Networking By: Dewan Islam What is Networking? - Networking is the connection between two or

Networking By: Dewan Islam What is Networking? - Networking is the connection between two or more devices - This connection involves the sending and receiving of data between the two devices which is how they communicate between each other -

746 views • 35 slides
Kids and Social Networking Introduction Kids and Social Networking Social Networking sites play

Kids and Social Networking Introduction Kids and Social Networking Social Networking sites play

Learwood Middle School Parent Handbook Kids and Social Networking Introduction Kids and Social Networking Social Networking sites play an important role in connecting the lives of people. Research has shown that social media is the preferred

542 views • 9 slides
ECE590 Computer and Information Security Fall 2018 Networking Overview Tyler Bletsch Duke

ECE590 Computer and Information Security Fall 2018 Networking Overview Tyler Bletsch Duke

ECE590 Computer and Information Security Fall 2018 Networking Overview Tyler Bletsch Duke University Some slides adapted from Brian Rogers (Duke) Network fundamentals This course isnt a networking course, so well just hit the highlights

682 views • 65 slides
ECE590 Computer and Information Security Fall 2019 Networking Overview Tyler Bletsch Duke

ECE590 Computer and Information Security Fall 2019 Networking Overview Tyler Bletsch Duke

ECE590 Computer and Information Security Fall 2019 Networking Overview Tyler Bletsch Duke University Some slides adapted from Brian Rogers (Duke) Network fundamentals This course isnt a networking course, so well just hit the highlights

1.13k views • 67 slides
Topics Why SDN? What is SDN? SDN in OpenStack and K8s Overview of SDN controllers

Topics Why SDN? What is SDN? SDN in OpenStack and K8s Overview of SDN controllers

Topics Why SDN? What is SDN? SDN in OpenStack and K8s Overview of SDN controllers Why SDN? Limitations of Traditional Networking Traditional networking It's hardware centric! Closed systems Vendor specific software

787 views • 54 slides
Overview Introduction Adaptability Reconfiguration Recap of the Bio-Networking

Overview Introduction Adaptability Reconfiguration Recap of the Bio-Networking

Toward Adaptable Super Distributed Objects (SDOs): Reconfigurability in the Bio-Networking Architecture Jun Suzuki, Ph.D. jsuzuki@ics.uci.edu www.ics.uci.edu/~jsuzuki/ netresearch.ics.uci.edu/bionet/ Dept. of Information and Computer Science

756 views • 11 slides
TCP/IP Networking Computer Center, CS, NCTU Overview Introduction Layers of TCP/IP

TCP/IP Networking Computer Center, CS, NCTU Overview Introduction Layers of TCP/IP

TCP/IP Networking Computer Center, CS, NCTU Overview Introduction Layers of TCP/IP Link Layer Network Layer Transport Layer Application Layer Network Interface and Hardware Networking ARP Setting up Network

1.04k views • 50 slides
On 802.1 Time Sensitive Networking Norm Finn Cisco 1 1 1 1 This is an overview, with

On 802.1 Time Sensitive Networking Norm Finn Cisco 1 1 1 1 This is an overview, with

On 802.1 Time Sensitive Networking Norm Finn Cisco 1 1 1 1 This is an overview, with lots of pointers to more detailed documents. One slide has market justification. The rest of the deck is about making it happen, with an emphasis on

436 views • 18 slides

More recommend