Papers
Topics
Authors
Recent
Gemini 2.5 Flash
Gemini 2.5 Flash
140 tokens/sec
GPT-4o
7 tokens/sec
Gemini 2.5 Pro Pro
46 tokens/sec
o3 Pro
4 tokens/sec
GPT-4.1 Pro
38 tokens/sec
DeepSeek R1 via Azure Pro
28 tokens/sec
2000 character limit reached

uTNT: Unikernels for Efficient and Flexible Internet Probing (2405.04036v1)

Published 7 May 2024 in cs.OS and cs.NI

Abstract: The last twenty years have seen the development and popularity of network measurement infrastructures. Internet measurement platforms have become common and have demonstrated their relevance in Internet understanding and security observation. However, despite their popularity, those platforms lack of flexibility and reactivity, as they are usually used for longitudinal measurements. As a consequence, they may miss detecting events that are security or Internet-related. During the same period, operating systems have evolved to virtual machines (VMs) as self-contained units for running applications, with the recent rise of unikernels, ultra-lightweight VMs tailored for specific applications, eliminating the need for a host OS. In this paper, we advocate that measurement infrastructures could take advantage of unikernels to become more flexible and efficient. We propose uTNT, a proof-of-concept unikernel-based implementation of TNT, a traceroute extension able to reveal MPLS tunnels. This paper documents the full toolchain for porting TNT into a unikernel and evaluates uTNT performance with respect to more traditional approaches. The paper also discusses a use case in which uTNT could find a suitable usage. uTNT source code is publicly available on Gitlab.

Definition Search Book Streamline Icon: https://streamlinehq.com
References (61)
  1. V. Bajpai and J. Schonwalder, “A survey on Internet performance measurement platforms and related standardization efforts,” IEEE Communications Surveys & Tutorials, vol. 17, no. 3, pp. 1313–1341, April 2015.
  2. B. Huffaker, D. Plummer, D. Moore, and k. claffy, “Topology discovery by active probing,” in Proc. Symposium on Applications and the Internet (SAINT), January 2002.
  3. k. claffy, Y. Hyun, K. Keys, M. Fomenkov, and D. Krioukov, “Internet mapping: from art to science,” in Proc. IEEE Cybersecurity Application and Technologies Conference for Homeland Security (CATCH), March 2009.
  4. RIPE Network Coordination Center, “Atlas,” 2010, see https://atlas.ripe.net.
  5. P. Gill, C. Diot, L. Y. Ohlsen, M. Mathis, and S. Soltesz, “M-lab: User initiated internet data for the research community,” ACM SIGCOMM Computer Communication Review, vol. 1, no. 52, January 2022.
  6. H. V. Madhyastha, T. Isdal, M. Piatek, C. Dixon, T. Anderson, A. Krishnamurthy, and A. Venkataramani, “iPlane: An information plane for distributed services,” in Proc. USENIX Symposium on Operating Systems Design and Implementation (OSDI), November 2006.
  7. Y. Shavitt and E. Shir, “DIMES: Let the internet measure itself,” ACM SIGCOMM Computer Communication Review, vol. 35, no. 5, 2005.
  8. C. . Simpson and G. F. Riley, “NETI@home: A distributed approach to collecting end-to-end network performance measurements,” in Proc. Passive and Active Measurement Workshop (PAM), April 2004.
  9. Z. Wen, S. Triukose, and M. Rabinovich, “Facilitating focused internet measurements,” in Proc. ACM SIGMETRICS, June 2007.
  10. D. P. Anderson, J. Cobb, E. Korpela, M. Lebofsky, and D. Werthimer, “SETI@home: An experiment in public-resource computing,” Communications of the ACM, vol. 45, no. 11, pp. 56–61, November 2002.
  11. PlanetLab Consortium, “PlanetLab project,” 2002, see http://www.planet-lab.org.
  12. B. C. Senel, M. Mouchet, J. Cappos, O. Fourmaux, T. Friedman, and R. McGeer, “EdgeNet: A multi-tenant and multi-provider edge cloud,” in Proc. International Workshop on Edge Systems, Analytics and Networking, April 2021.
  13. N. Spring, D. Wetherall, and T. Anderson, “Scriptroute: A public Internet measurement facility,” in Proc. USENIX Symposium on Internet Technologies and Systems (USITS), March 2002, see http://www.cs.washington.edu/research/networking/scriptroute/.
  14. G. Aceto, A. Botta, P. Marchetta, V. Persico, and A. Pescapé, “A comprehensive survey on Internet outages,” Journal of Network and Computer Applications, vol. 113, pp. 36–63, July 2018.
  15. M. Safaei Pour, C. Nader, K. Friday, and E. Bou-Harb, “A comprehensive survey of recent internet measurement techniques for cyber security,” Computers & Security, vol. 128, May 2023.
  16. B. Donnet, “Incentvies for BGP guided IP-level topology discovery,” in Proc. Traffic and Measurement Analysis Workshop (TMA), May 2009.
  17. Hykes, S. et al, “Docker,” https://docker.com/, 2018, [Last Accessed: October 26th, 2023].
  18. Lezcano D., Hallyn S., Graber S., “Linux Containers,” https://linuxcontainers.org, 2008, [Last Accessed: October 26th, 2023].
  19. E. Kovacs, “Docker fixes vulnerabilities, shares plans for making platform safer,” http://www.securityweek.com/docker-fixes-vulnerabilities-shares-plans-making-platform-safer, 2014, [Last Accessed: October 26th, 2023].
  20. A. Grattafiori, “Understanding and hardening linux containers,” https://research.nccgroup.com/2016/05/05/understanding-and-hardening-linux-containers/, 2016, [Last Accessed: October 26th, 2023].
  21. A. Madhavapeddy and D. J. Scott, “Unikernels: The rise of the virtual library operating systems,” Communications of the ACM, vol. 57, no. 1, pp. 61–69, January 2014.
  22. G. Gain, C. Soldani, F. Huici, and L. Mathy, “Want more unikernels? inflate them!” in Proc. Symposium on Cloud Computing (SoCC), November 2022.
  23. A. Kantee, “Flexible operating systems internals: The design and implementation of the anykernel and rump kernels,” Ph.D. dissertation, Aalto University, 2012.
  24. A. Kivity, D. Laor, G. Costa, P. Enberg, N. Har’El, D. Marti, and Z. V., “OSv–optimizing the operating system for virtual machines,” in Proc. USENIX Annual Technical Conference, June 2014.
  25. S. Kuenzer, V.-A. Badoiu, H. Lefeuvre, S. Santhanam, A. Jung, G. Gain, C. Soldani, C. Lupu, S. Teodorescu, C. Raducanu, C. Banu, L. Mathy, R. Deaconescu, C. Raiciu, and F. Huici, “Unikraft: Fast, specialized unikernels the easy way,” ser. In: Proc. European Conference on Computer Systems (EuroSys), April 2021.
  26. H.-C. Kuo, D. Williams, R. Koller, and S. Mohan, “A Linux in unikernel clothing,” in Proc. European Conference on Computer Systems (EuroSys), April 2020.
  27. G. Gain, “Unikraft Tools,” 2019, [Last Accessed: October 24th, 2023]. [Online]. Available: https://github.com/gaulthiergain/tools
  28. H. Lefeuvre, G. Gain, V.-A. Bădoiu, D. Dinca, V.-R. Schiller, C. Raiciu, F. Huici, and P. Olivier, “Loupe: Driving the development of OS compatibility layers,” in Proc. ACM Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS), May 2024.
  29. Y. Vanaubel, J.-R. Luttringer, P. Mérindol, J.-J. Pansiot, and B. Donnet, “TNT, watch me explode: A light in the dark for revealing MPLS tunnels,” in Proc. IFIP Network Traffic Measurement and Analysis Conference (TMA), June 2019.
  30. J.-R. Luttringer, Y. Vanaubel, P. Mérindol, J.-J. Pansiot, and B. Donnet, “Let there be light: Revealing hidden MPLS tunnels with TNT,” IEEE Transactions on Network and Service Management (TNSM), vol. 17, no. 2, pp. 1239–1253, June 2020.
  31. Red Hat., “Kernel virtual machine,” [Last Accessed: October 24th, 2023]. [Online]. Available: https://linux-kvm.org/page/Main_Page
  32. P. Barham, B. Dragovic, K. Fraser, S. Hand, T. Harris, A. Ho, R. Neugebauer, I. Pratt, and A. Warfield, “Xen and the art of virtualization,” in Proc. ACM symposium on Operating systems principles (SOSP), October 2003.
  33. C. Jacobsen, M. Khole, S. Spall, S. Bauer, and A. Burtsev, “Lightweight capability domains: Towards decomposing the linux kernel,” in Proc. Workshop on Programming Languages and Operating Systems (PLOS)., October 2015.
  34. L. Torvalds, “The Linux Kernel Archives,” 2019, [Last Accessed: October 24th, 2023]. [Online]. Available: https://www.kernel.org
  35. H. Hartig, M. Hohmuth, J. Liedtke, S. Schonberg, and J. Wolter, “The performance of μ𝜇\muitalic_μ-kernel-based systems,” in Proc. ACM Symposium on Operating Systems Principles (SOSP), October 1997.
  36. D. Du, Z. Hua, Y. Xia, B. Zang, and H. Chen, “Xpc: Architectural support for secure and efficient cross process call,” in Proc. ACM/IEEE Annual International Symposium on Computer Architecture (ISCA), June 2019.
  37. OpenSSL, “Cryptography and SSL/TLS toolkit,” [Last Accessed: October 24th, 2023]. [Online]. Available: https://www.openssl.org
  38. Google, “Protocol buffers,” [Last Accessed: October 24th, 2023]. [Online]. Available: https://protobuf.dev
  39. D. Richard Hipp, “sqlite,” [Last Accessed: October 30th, 2023]. [Online]. Available: https://sqlite.com
  40. NGINX, Inc, “Advanced load balancer, web server, & reverse proxy - nginx,” [Last Accessed: October 30th, 2023]. [Online]. Available: https://www.nginx.com
  41. A. Agache, M. Brooker, A. Iordache, A. Liguori, R. Neugebauer, P. Piwonka, and D.-M. Popa, “Firecracker: Lightweight virtualization for serverless applications,” in Proc. USENIX Symposium on Networked Systems Design and Implementation (NSDI), February 2020.
  42. Unikraft, “ukboot: Unikraft bootstrapping,” [Last Accessed: October 24th, 2023]. [Online]. Available: https://github.com/unikraft/unikraft/tree/staging/lib/ukboot
  43. unikraft, “unikraft,” https://github.com/unikraft, n.d, [Last Accessed: October 26th, 2023].
  44. A. Arcangeli, I. Eidus, and C. Wright, “Increasing memory density by using KSM,” in Proc. Linux Symposium, January 2009.
  45. N. Xia, C. Tian, Y. Luo, H. Liu, and X. Wang, “UKSM: Swift memory deduplication via hierarchical and adaptive memory region distilling,” in Proc. USENIX Conference on File and Storage Technologies (FAST), February 2018.
  46. K. Miller, F. Franz, T. Groeninger, M. Rittinghaus, M. Hillenbrand, and F. Bellosa, “KSM++: Using I/O-based hints to make memory-deduplication scanners more efficient,” in Proc. ASPLOS Workshop on Runtime Environments, Systems, Layering and Virtualized Environments (RESoLVE), March 2012.
  47. M. Luckie, “Scamper: a scalable and extensible packet prober for active measurement of the Internet,” in Proc. ACM Internet Measurement Conference (IMC), November 2010.
  48. K. Keys, “Internet-scale IP alias resolution techniques,” ACM SIGCOMM Computer Communication Review, vol. 40, no. 1, pp. 50–55, January 2010.
  49. B. Augustin, R. Teixeira, and T. Friedman, “Measuring load-balanced paths in the Internet,” in Proc. ACM/USENIX Internet Measurement Conference (IMC), November 2007.
  50. Y. Vanaubel, P. Mérindol, J.-J. Pansiot, and B. Donnet, “Through the wormhole: Tracking invisible MPLS tunnels,” in Proc. ACM Internet Measurement Conference (IMC), November 2017.
  51. Y. Vanaubel, J.-J. Pansiot, P. Mérindol, and B. Donnet, “Network fingerprinting: TTL-based router signature,” in Proc. ACM Internet Measurement Conference (IMC), October 2013.
  52. The Nanos developers, “Nanos,” [Last Accessed: October 24th, 2023]. [Online]. Available: https://nanos.org
  53. Al Danial, “cloc: Count lines of code,” [Last Accessed: October 30th, 2023]. [Online]. Available: https://github.com/AlDanial/cloc
  54. Ubuntu, “Libvirt,” https://ubuntu.com/server/docs/virtualization-libvirt, n.d, [Last Accessed: October 26th, 2023].
  55. Linux, “Kernel samepage merging,” [Last Accessed: October 24th, 2023]. [Online]. Available: https://docs.kernel.org/admin-guide/mm/ksm.html
  56. Google, “Google cloud platform,” https://cloud.google.com/, [Last Accessed: October 24th, 2023].
  57. Amazon, “Aws,” https://aws.amazon.com, [Last Accessed: October 24th, 2023].
  58. Docker, “Dockerhub: Build and ship any application anywhere,” [Last Accessed: October 24th, 2023]. [Online]. Available: https://hub.docker.com
  59. Vagrant, “Vagrant cloud,” [Last Accessed: October 24th, 2023]. [Online]. Available: https://app.vagrantup.com/boxes/search
  60. OVH, “Global cloud service provider | ovhcloud,” [Last Accessed: October 24th, 2023]. [Online]. Available: https://us.ovhcloud.com
  61. G. Gain, “utnt,” [Last Accessed: May 6th, 2024]. [Online]. Available: https://gitlab.uliege.be/Gaulthier.Gain/utnt
Citations (1)
View on Semantic Scholar

Summary

We haven't generated a summary for this paper yet.

Ai Sparkles Streamline Icon: https://streamlinehq.com Summarize Now