版權(quán)說明:本文檔由用戶提供并上傳,收益歸屬內(nèi)容提供方,若內(nèi)容存在侵權(quán),請進(jìn)行舉報或認(rèn)領(lǐng)
文檔簡介
Introduction1-1Chapter1
IntroductionComputerNetworking:ATopDownApproach
6thedition
JimKurose,KeithRoss
Addison-Wesley
March2012Anoteontheuseofthesepptslides:We’remakingtheseslidesfreelyavailabletoall(faculty,students,readers).They’reinPowerPointformsoyouseetheanimations;andcanadd,modify,anddeleteslides(includingthisone)andslidecontenttosuityourneeds.Theyobviouslyrepresentalotofworkonourpart.Inreturnforuse,weonlyaskthefollowing:Ifyouusetheseslides(e.g.,inaclass)thatyoumentiontheirsource(afterall,we’dlikepeopletouseourbook!)Ifyoupostanyslidesonawwwsite,thatyounotethattheyareadaptedfrom(orperhapsidenticalto)ourslides,andnoteourcopyrightofthismaterial.Thanksandenjoy!JFK/KWRAllmaterialcopyright1996-2012J.FKuroseandK.W.Ross,AllRightsReservedIntroductionChapter1:introductionourgoal:
get“feel”andterminologymoredepth,detaillaterincourseapproach:useInternetasexampleoverview:what’stheInternet?what’saprotocol?networkedge;hosts,accessnet,physicalmedianetworkcore:packet/circuitswitching,Internetstructureperformance:loss,delay,throughputsecurityprotocollayers,servicemodelshistory1-2IntroductionChapter1:roadmap1.1whatistheInternet?1.2networkedge
endsystems,accessnetworks,links1.3networkcorepacketswitching,circuitswitching,networkstructure1.4delay,loss,throughputinnetworks1.5protocollayers,servicemodels1.6networksunderattack:security1.7history1-3IntroductionWhat’stheInternet:“nutsandbolts”viewmillionsofconnectedcomputingdevices:hosts=endsystems
runningnetworkappscommunicationlinksfiber,copper,radio,satellitetransmissionrate:bandwidthPacketswitches:forwardpackets(chunksofdata)routersandswitcheswiredlinkswirelesslinksroutermobilenetworkglobalISPregionalISPhomenetworkinstitutionalnetworksmartphonePCserverwirelesslaptop1-4Introduction“Fun”internetappliancesIPpictureframe/Web-enabledtoaster+weatherforecasterInternetphonesInternetrefrigeratorSlingbox:watch,controlcableTVremotely1-5Tweet-a-watt:monitorenergyuseIntroductionInternet:“networkofnetworks”InterconnectedISPsprotocols
controlsending,receivingofmsgse.g.,TCP,IP,HTTP,Skype,802.11InternetstandardsRFC:RequestforcommentsIETF:InternetEngineeringTaskForceWhat’stheInternet:“nutsandbolts”viewmobilenetworkglobalISPregionalISPhomenetworkinstitutionalnetwork1-6What’stheInternet:aserviceviewInfrastructurethatprovidesservicestoapplications:Web,VoIP,email,games,e-commerce,socialnets,…providesprogramminginterfacetoappshooksthatallowsendingandreceivingappprogramsto“connect”toInternetprovidesserviceoptions,analogoustopostalservicemobilenetworkglobalISPregionalISPhomenetworkinstitutionalnetworkIntroduction1-7IntroductionWhat’saprotocol?humanprotocols:“what’sthetime?”“Ihaveaquestion”introductions…specificmsgssent…specificactionstakenwhenmsgsreceived,orothereventsnetworkprotocols:machinesratherthanhumansallcommunicationactivityinInternetgovernedbyprotocolsprotocolsdefineformat,orderofmsgssentandreceivedamongnetworkentities,andactionstakenonmsgtransmission,receipt
1-8Introductionahumanprotocolandacomputernetworkprotocol:Q:otherhumanprotocols?HiHiGotthetime?2:00TCPconnectionresponseGet/kurose-ross<file>timeTCPconnectionrequestWhat’saprotocol?1-9IntroductionChapter1:roadmap1.1whatistheInternet?1.2networkedge
endsystems,accessnetworks,links1.3networkcorepacketswitching,circuitswitching,networkstructure1.4delay,loss,throughputinnetworks1.5protocollayers,servicemodels1.6networksunderattack:security1.7history1-10IntroductionAcloserlookatnetworkstructure:networkedge:hosts:clientsandserversserversoftenindatacentersaccessnetworks,physicalmedia:wired,wirelesscommunicationlinks
networkcore:interconnectedroutersnetworkofnetworksmobilenetworkglobalISPregionalISPhomenetworkinstitutionalnetwork1-11IntroductionAccessnetworksandphysicalmediaQ:Howtoconnectendsystemstoedgerouter?residentialaccessnetsinstitutionalaccessnetworks(school,company)mobileaccessnetworkskeepinmind:bandwidth(bitspersecond)ofaccessnetwork?sharedordedicated?1-12IntroductionAccessnet:digitalsubscriberline(DSL)centralofficeISPtelephonenetworkDSLAMvoice,datatransmittedatdifferentfrequenciesoverdedicatedlinetocentralofficeuseexistingtelephonelinetocentralofficeDSLAMdataoverDSLphonelinegoestoInternetvoiceoverDSLphonelinegoestotelephonenet<2.5Mbpsupstreamtransmissionrate(typically<1Mbps)<24Mbpsdownstreamtransmissionrate(typically<10Mbps)DSLmodemsplitterDSLaccessmultiplexer1-13IntroductionAccessnet:cablenetworkcablemodemsplitter…cableheadendChannelsVIDEOVIDEOVIDEOVIDEOVIDEOVIDEODATADATACONTROL123456789frequencydivisionmultiplexing:differentchannelstransmittedindifferentfrequencybands1-14Introductiondata,TVtransmittedatdifferentfrequenciesoversharedcabledistributionnetworkcablemodemsplitter…cableheadendCMTSISPcablemodemterminationsystemHFC:hybridfibercoaxasymmetric:upto30Mbpsdownstreamtransmissionrate,2Mbpsupstreamtransmissionratenetworkofcable,fiberattacheshomestoISProuterhomesshareaccessnetwork
tocableheadendunlikeDSL,whichhasdedicatedaccesstocentralofficeAccessnet:cablenetwork1-15IntroductionAccessnet:homenetworkto/fromheadendorcentralofficecableorDSLmodemrouter,firewall,NATwiredEthernet(100Mbps)wirelessaccesspoint(54Mbps)wirelessdevicesoftencombinedinsinglebox1-16IntroductionEnterpriseaccessnetworks(Ethernet)typicallyusedincompanies,universities,etc10Mbps,100Mbps,1Gbps,10Gbpstransmissionratestoday,endsystemstypicallyconnectintoEthernetswitchEthernetswitchinstitutionalmail,webserversinstitutionalrouterinstitutionallinktoISP(Internet)1-17IntroductionWirelessaccessnetworkssharedwirelessaccessnetworkconnectsendsystemtorouterviabasestationaka“accesspoint”wirelessLANs:withinbuilding(100ft)802.11b/g(WiFi):11,54Mbpstransmissionratewide-areawirelessaccessprovidedbytelco(cellular)operator,10’skmbetween1and10Mbps3G,4G:LTEtoInternettoInternet1-18Host:sendspacketsofdatahostsendingfunction:takesapplicationmessagebreaksintosmallerchunks,knownaspackets,oflengthLbitstransmitspacketintoaccessnetworkattransmissionrateRlinktransmissionrate,akalinkcapacity,akalinkbandwidthR:linktransmissionratehost12twopackets,LbitseachpackettransmissiondelaytimeneededtotransmitL-bitpacketintolinkL(bits)R(bits/sec)==1-19IntroductionPhysicalmediabit:
propagatesbetween
transmitter/receiverpairsphysicallink:whatliesbetweentransmitter&receiverguidedmedia:signalspropagateinsolidmedia:copper,fiber,coaxunguidedmedia:
signalspropagatefreely,e.g.,radiotwistedpair(TP)twoinsulatedcopperwiresCategory5:100Mbps,1GpbsEthernetCategory6:10Gbps1-20IntroductionPhysicalmedia:coax,fibercoaxialcable:twoconcentriccopperconductorsbidirectionalbroadband:multiplechannelsoncableHFCfiberopticcable:glassfibercarryinglightpulses,eachpulseabithigh-speedoperation:high-speedpoint-to-pointtransmission(e.g.,10’s-100’sGpbstransmissionrate)lowerrorrate:repeatersspacedfarapartimmunetoelectromagneticnoise1-21IntroductionPhysicalmedia:radiosignalcarriedinelectromagneticspectrumnophysical“wire”bidirectionalpropagationenvironmenteffects:reflectionobstructionbyobjectsinterferenceradiolinktypes:terrestrialmicrowavee.g.upto45MbpschannelsLAN(e.g.,WiFi)11Mbps,54Mbpswide-area(e.g.,cellular)3Gcellular:~fewMbpssatelliteKbpsto45Mbpschannel(ormultiplesmallerchannels)270msecend-enddelaygeosynchronousversuslowaltitude1-22IntroductionChapter1:roadmap1.1whatistheInternet?1.2networkedge
endsystems,accessnetworks,links1.3networkcorepacketswitching,circuitswitching,networkstructure1.4delay,loss,throughputinnetworks1.5protocollayers,servicemodels1.6networksunderattack:security1.7history1-23Introductionmeshofinterconnectedrouterspacket-switching:hostsbreakapplication-layermessagesintopacketsforwardpackets
fromoneroutertothenext,acrosslinksonpathfromsourcetodestinationeachpackettransmittedatfulllinkcapacityThenetworkcore1-24IntroductionPacket-switching:store-and-forwardtakesL/Rsecondstotransmit(pushout)L-bitpacketintolinkatRbpsstoreandforward:
entirepacketmustarriveatrouterbeforeitcanbetransmittedonnextlinkone-hopnumericalexample:L=7.5MbitsR=1.5Mbpsone-hoptransmissiondelay=5secmoreondelayshortly…1-25sourceRbpsdestination123LbitsperpacketRbpsend-enddelay=2L/R(assumingzeropropagationdelay)IntroductionPacketSwitching:queueingdelay,lossABCR=100Mb/sR=1.5Mb/sDEqueueofpacketswaitingforoutputlink1-26queuingandloss:Ifarrivalrate(inbits)tolinkexceedstransmissionrateoflinkforaperiodoftime:packetswillqueue,waittobetransmittedonlinkpacketscanbedropped(lost)ifmemory(buffer)fillsupNetworkLayer4-27Twokeynetwork-corefunctionsforwarding:
movepacketsfromrouter’sinputtoappropriaterouteroutputrouting:
determinessource-destinationroutetakenbypacketsroutingalgorithmsroutingalgorithmlocalforwardingtableheadervalueoutputlink010001010111100132211230111destaddressinarrivingpacket’sheaderIntroductionAlternativecore:circuitswitchingend-endresourcesallocatedto,reservedfor“call”betweensource&dest:Indiagram,eachlinkhasfourcircuits.callgets2ndcircuitintoplinkand1stcircuitinrightlink.dedicatedresources:nosharingcircuit-like(guaranteed)performancecircuitsegmentidleifnotusedbycall(nosharing)Commonlyusedintraditionaltelephonenetworks1-28IntroductionCircuitswitching:FDMversusTDMFDMfrequencytimeTDMfrequencytime4usersExample:1-29IntroductionPacketswitchingversuscircuitswitchingexample:1Mb/slinkeachuser:100kb/swhen“active”active10%oftimecircuit-switching:
10userspacketswitching:
with35users,probability>10activeatsametimeislessthan.0004*packetswitchingallowsmoreuserstousenetwork!N
users1MbpslinkQ:howdidwegetvalue0.0004?Q:whathappensif>35users?…..1-30*CheckouttheonlineinteractiveexercisesformoreexamplesIntroductiongreatforburstydataresourcesharingsimpler,nocallsetupexcessivecongestionpossible:packetdelayandlossprotocolsneededforreliabledatatransfer,congestioncontrolQ:Howtoprovidecircuit-likebehavior?bandwidthguaranteesneededforaudio/videoappsstillanunsolvedproblem(chapter7)ispacketswitchinga“slamdunkwinner?”Q:humananalogiesofreservedresources(circuitswitching)versuson-demandallocation(packet-switching)?Packetswitchingversuscircuitswitching1-31Internetstructure:networkofnetworksEndsystemsconnecttoInternetviaaccessISPs(InternetServiceProviders)Residential,companyanduniversityISPsAccessISPsinturnmustbeinterconnected.SothatanytwohostscansendpacketstoeachotherResultingnetworkofnetworksisverycomplexEvolutionwasdrivenbyeconomicsandnationalpoliciesLet’stakeastepwiseapproachtodescribecurrentInternetstructureInternetstructure:networkofnetworksQuestion:givenmillionsofaccessISPs,howtoconnectthemtogether?accessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnet………………Internetstructure:networkofnetworksOption:connecteachaccessISPtoeveryotheraccessISP?accessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnet……………………………connectingeachaccessISPtoeachotherdirectlydoesn’tscale:O(N2)connections.Internetstructure:networkofnetworksaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnet………………Option:connecteachaccessISPtoaglobaltransitISP?CustomerandproviderISPshaveeconomicagreement.global
ISPInternetstructure:networkofnetworksaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnet………………ButifoneglobalISPisviablebusiness,therewillbecompetitors….ISPBISPAISPCInternetstructure:networkofnetworksaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnet………………ButifoneglobalISPisviablebusiness,therewillbecompetitors….whichmustbeinterconnectedISPBISPAISPCIXPIXPpeeringlinkInternetexchangepointInternetstructure:networkofnetworksaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnet…………………andregionalnetworksmayarisetoconnectaccessnetstoISPSISPBISPAISPCIXPIXPregionalnetInternetstructure:networkofnetworksaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnetaccessnet…………………andcontentprovidernetworks(e.g.,Google,Microsoft,Akamai)mayruntheirownnetwork,tobringservices,contentclosetoendusersISPBISPAISPBIXPIXPregionalnetContentprovidernetworkIntroductionInternetstructure:networkofnetworksatcenter:small#ofwell-connectedlargenetworks“tier-1”commercialISPs
(e.g.,Level3,Sprint,AT&T,NTT),national&internationalcoveragecontentprovidernetwork(e.g,Google):privatenetworkthatconnectsitdatacenterstoInternet,oftenbypassingtier-1,regionalISPs1-40accessISPaccessISPaccessISPaccessISPaccessISPaccessISPaccessISPaccessISPRegionalISPRegionalISPIXPIXPTier1ISPTier1ISPGoogleIXPIntroductionTier-1ISP:e.g.,Sprint…to/fromcustomerspeeringto/frombackbone…………POP:point-of-presence1-41IntroductionChapter1:roadmap1.1whatistheInternet?1.2networkedge
endsystems,accessnetworks,links1.3networkcore
packetswitching,circuitswitching,networkstructure1.4delay,loss,throughputinnetworks1.5protocollayers,servicemodels1.6networksunderattack:security1.7history1-42IntroductionHowdolossanddelayoccur?packetsqueueinrouterbuffers
packetarrivalratetolink(temporarily)exceedsoutputlinkcapacitypacketsqueue,waitforturnABpacketbeingtransmitted(delay)packetsqueueing
(delay)free(available)buffers:arrivingpacketsdropped(loss)ifnofreebuffers1-43IntroductionFoursourcesofpacketdelaydproc:nodalprocessing
checkbiterrorsdetermineoutputlinktypically<msecABpropagationtransmissionnodalprocessingqueueing
dqueue:queueingdelaytimewaitingatoutputlinkfortransmissiondependsoncongestionlevelofrouterdnodal=dproc+dqueue+dtrans+dprop1-44Introductiondtrans:transmissiondelay:L:packetlength(bits)R:linkbandwidth(bps)dtrans
=L/Rdprop:propagationdelay:d:lengthofphysicallinks:propagationspeedinmedium(~2x108m/sec)dprop=d/sdtransanddpropverydifferentFoursourcesofpacketdelaypropagationnodalprocessingqueueingdnodal=dproc+dqueue+dtrans+dprop1-45ABtransmission*CheckouttheJpdelayIntroductionCaravananalogycars“propagate”at
100km/hrtollboothtakes12sectoservicecar(bittransmissiontime)car~bit;caravan~packetQ:Howlonguntilcaravanislinedupbefore2ndtollbooth?timeto“push”entirecaravanthroughtollboothontohighway=12*10=120sectimeforlastcartopropagatefrom1stto2ndtollboth:100km/(100km/hr)=1hrA:62minutestollboothtollboothten-carcaravan100km100km1-46IntroductionCaravananalogy(more)supposecarsnow“propagate”at1000km/hrandsupposetollboothnowtakesonemintoserviceacarQ:Willcarsarriveto2ndboothbeforeallcarsservicedatfirstbooth?A:Yes!after7min,1stcararrivesatsecondbooth;threecarsstillat1stbooth.tollboothtollboothten-carcaravan100km100km1-47IntroductionR:linkbandwidth(bps)L:packetlength(bits)a:averagepacketarrivalratetrafficintensity=La/RLa/R~0:avg.queueingdelaysmallLa/R->1:avg.queueingdelaylargeLa/R>1:more“work”arrivingthancanbeserviced,averagedelayinfinite!averagequeueingdelayLa/R~0Queueingdelay(revisited)La/R->11-48*CheckouttheJavaappletforaninteractiveanimationonqueuingandlossIntroduction“Real”Internetdelaysandrouteswhatdo“real”Internetdelay&losslooklike?tracerouteprogram:providesdelaymeasurementfromsourcetorouteralongend-endInternetpathtowardsdestination.Foralli:sendsthreepacketsthatwillreachrouterionpathtowardsdestinationrouteriwillreturnpacketstosendersendertimesintervalbetweentransmissionandreply.3probes3probes3probes1-49Introduction“Real”Internetdelays,routes1cs-gw(54)1ms1ms2ms2(45)1ms1ms2ms3(30)6ms5ms5ms4(29)16ms11ms13ms5(36)21ms18ms18ms6()22ms18ms22ms7(6)22ms22ms22ms853(53)104ms109ms106ms9(29)109ms102ms104ms10(0)113ms121ms114ms11(4)112ms114ms112ms12nio-n2.cssi.renater.fr(3)111ms114ms116ms13nice.cssi.renater.fr(02)123ms125ms124ms14r3t2-nice.cssi.renater.fr(10)126ms126ms124ms15(4)135ms128ms133ms165(5)126ms128ms126ms17***18***19fantasia.eurecom.fr(42)132ms128ms136
mstraceroute:towww.eurecom.fr3delaymeasurementsfromto*meansnoresponse(probelost,routernotreplying)trans-oceaniclink1-50*DosometraceroutesfromexoticcountriesatIntroductionPacketlossqueue(akabuffer)precedinglinkinbufferhasfinitecapacitypacketarrivingtofullqueuedropped(akalost)lostpacketmayberetransmittedbypreviousnode,bysourceendsystem,ornotatallABpacketbeingtransmittedpacketarrivingtofullbufferislostbuffer(waitingarea)1-51*CheckouttheJavaappletforaninteractiveanimationonqueuingandlossIntroductionThroughputthroughput:rate(bits/timeunit)atwhichbitstransferredbetweensender/receiverinstantaneous:rateatgivenpointintimeaverage:rateoverlongerperiodoftimeserver,withfileofFbitstosendtoclientlinkcapacityRs
bits/seclinkcapacityRc
bits/secserversendsbits(fluid)intopipepipethatcancarryfluidatrateRs
bits/sec)pipethatcancarryfluidatrateRc
bits/sec)1-52IntroductionThroughput(more)Rs<Rc
Whatisaverageend-endthroughput?Rs
bits/secRc
bits/secRs>Rc
Whatisaverageend-endthroughput?linkonend-endpaththatconstrainsend-endthroughputbottlenecklinkRs
bits/secRc
bits/sec1-53IntroductionThroughput:Internetscenario10connections(fairly)sharebackbonebottlenecklinkR
bits/secRsRsRsRcRcRcRper-connectionend-endthroughput:min(Rc,Rs,R/10)inpractice:RcorRsisoftenbottleneck1-54IntroductionChapter1:roadmap1.1whatistheInternet?1.2networkedge
endsystems,accessnetworks,links1.3networkcore
packetswitching,circuitswitching,networkstructure1.4delay,loss,throughputinnetworks1.5protocollayers,servicemodels1.6networksunderattack:security1.7history1-55IntroductionProtocol“l(fā)ayers”Networksarecomplex,withmany“pieces”:hostsrouterslinksofvariousmediaapplicationsprotocolshardware,softwareQuestion:
isthereanyhopeoforganizingstructureofnetwork?….oratleastourdiscussionofnetworks?1-56IntroductionOrganizationofairtravelaseriesofstepsticket(purchase)baggage(check)gates(load)runwaytakeoffairplaneroutingticket(complain)baggage(claim)gates(unload)runwaylandingairplaneroutingairplanerouting1-57Introductionticket(purchase)baggage(check)gates(load)runway(takeoff)airplaneroutingdepartureairportarrivalairportintermediateair-trafficcontrolcentersairplaneroutingairplaneroutingticket(complain)baggage(claimgates(unload)runway(land)airplaneroutingticketbaggagegatetakeoff/landingairplaneroutingLayeringofairlinefunctionalitylayers:
eachlayerimplementsaserviceviaitsowninternal-layeractionsrelyingonservicesprovidedbylayerbelow1-58IntroductionWhylayering?dealingwithcomplexsystems:explicitstructureallowsidentification,relationshipofcomplexsystem’spieceslayeredreferencemodelfordiscussionmodularizationeasesmaintenance,updatingofsystemchangeofimplementationoflayer’sservicetransparenttorestofsysteme.g.,changeingateproceduredoesn’taffectrestofsystemlayeringconsideredharmful?1-59IntroductionInternetprotocolstackapplication:supportingnetworkapplicationsFTP,SMTP,HTTPtransport:process-processdatatransferTCP,UDPnetwork:routingofdatagramsfromsourcetodestinationIP,routingprotocolslink:datatransferbetweenneighboringnetworkelementsEthernet,802.111(WiFi),PPPphysical:bits“onthewire”applicationtransportnetworklinkphysical1-60IntroductionISO/OSIreferencemodelpresentation:allowapplicationstointerpretmeaningofdata,e.g.,encryption,compression,machine-specificconventionssession:synchronization,checkpointing,recoveryofdataexchangeInternetstack“missing”theselayers!theseservices,ifneeded,mustbeimplementedinapplicationneeded?applicationpresentationsessiontransportnetworklinkphysical1-61IntroductionsourceapplicationtransportnetworklinkphysicalHtHnMsegmentHtdatagramdestinationapplicationtransportnetworklinkphysicalHtHnHlMHtHnMHtMMnetworklinkphysicallinkphysicalHtHnHlMHtHnMHtHnMHtHnHlMrouterswitchEncapsulationmessageMHtMHnframe1-62IntroductionChapter1:roadmap1.1whatistheInternet?1.2networkedge
endsystems,accessnetworks,links1.3networkcorepacketswitching,circuitswitching,networkstructure1.4delay,loss,throughputinnetworks1.5protocollayers,servicemodels1.6networksunderattack:security1.7history1-63IntroductionNetworksecurityfieldofnetworksecurity:howbadguyscanattackcomputernetworkshowwecandefendnetworksagainstattackshowtodesignarchitecturesthatareimmunetoattacksInternetnotoriginallydesignedwith(much)securityinmindoriginalvision:
“agroupofmutuallytrustingusersattachedtoatransparentnetwork”
Internetprotocoldesignersplaying“catch-up”securityconsiderationsinalllayers!1-64IntroductionBadguys:putmalwareintohostsviaInternetmalwarecangetinhostfrom:virus:self-replicatinginfectionbyreceiving/executingobject(e.g.,e-mailattachment)worm:self-replicatinginfectionbypassivelyreceivingobjectthatgetsitselfexecutedspywaremalwarecanrecordkeystrokes,websitesvisited,uploadinfotocollectionsiteinfectedhostcanbeenrolledinbotnet,usedforspam.DDoSattacks1-65IntroductiontargetDenialofService(DoS):attackersmakeresources(server,bandwidth)unavailabletolegitimatetrafficbyoverwhelmingresourcewithbogustraffic1.selecttarget2.breakintohostsaroundthenetwork(seebotnet)3.sendpacketstotargetfromcompromisedhostsBadguys:attackserver,networkinfrastructure1-66IntroductionBadguyscansniffpacketspacket“sniffing”:
broadcastmedia(sharedethernet,wireless)promiscuousnetworkinterfacereads/recordsallpackets(e.g.,includingpasswords!)passingbyABCsrc:Bdest:Apayloadwiresharksoftwareusedforend-of-chapterlabsisa(free)packet-sniffer1-67IntroductionBadguyscanusefakeaddressesIPspoofing:
sendpacketwithfalsesourceaddressABCsrc:Bdest:Apayload1-68…lotsmoreonsecurity(throughout,Chapter8)IntroductionChapter1:roadmap1.1whatistheInternet?1.2networkedge
endsystems,accessnetworks,links1.3networkcore
packetswitching,circuitswitching,networkstructure1.4delay,loss,throughputinnetworks1.5protocoll
溫馨提示
- 1. 本站所有資源如無特殊說明,都需要本地電腦安裝OFFICE2007和PDF閱讀器。圖紙軟件為CAD,CAXA,PROE,UG,SolidWorks等.壓縮文件請下載最新的WinRAR軟件解壓。
- 2. 本站的文檔不包含任何第三方提供的附件圖紙等,如果需要附件,請聯(lián)系上傳者。文件的所有權(quán)益歸上傳用戶所有。
- 3. 本站RAR壓縮包中若帶圖紙,網(wǎng)頁內(nèi)容里面會有圖紙預(yù)覽,若沒有圖紙預(yù)覽就沒有圖紙。
- 4. 未經(jīng)權(quán)益所有人同意不得將文件中的內(nèi)容挪作商業(yè)或盈利用途。
- 5. 人人文庫網(wǎng)僅提供信息存儲空間,僅對用戶上傳內(nèi)容的表現(xiàn)方式做保護處理,對用戶上傳分享的文檔內(nèi)容本身不做任何修改或編輯,并不能對任何下載內(nèi)容負(fù)責(zé)。
- 6. 下載文件中如有侵權(quán)或不適當(dāng)內(nèi)容,請與我們聯(lián)系,我們立即糾正。
- 7. 本站不保證下載資源的準(zhǔn)確性、安全性和完整性, 同時也不承擔(dān)用戶因使用這些下載資源對自己和他人造成任何形式的傷害或損失。
最新文檔
- 養(yǎng)老院環(huán)境衛(wèi)生管理制度
- 主題班會課件:憤怒情緒的調(diào)控
- 《用法律保護自己》課件
- 《OGNL與標(biāo)簽庫》課件
- 教育局聘任小學(xué)校長協(xié)議書(2篇)
- 2024年版財產(chǎn)分割協(xié)議:離婚雙方適用2篇
- 2024年度塔吊司機承包勞務(wù)合作協(xié)議書3篇
- 2024年版標(biāo)準(zhǔn)化建筑工程協(xié)議范本版
- 2025年陽泉道路運輸從業(yè)人員資格考試內(nèi)容有哪些
- 2025年拉薩貨運從業(yè)資格證模擬考試保過版
- 會計師事務(wù)所的年度工作總結(jié)
- 六年級數(shù)學(xué)上冊期末考試題(A4打印版)
- 2024年中考作文十二大高頻熱點主題9-家國情懷(素材)
- 中國裝備智慧樹知到期末考試答案章節(jié)答案2024年上海電機學(xué)院
- 2022-2023學(xué)年山東省菏澤市單縣人教PEP版四年級上冊期末考試英語試卷
- 停車場管理系統(tǒng)之車位引導(dǎo)系統(tǒng)設(shè)計-畢業(yè)設(shè)計論文
- 多圖中華民族共同體概論課件第十三講先鋒隊與中華民族獨立解放(1919-1949)根據(jù)高等教育出版社教材制作
- 當(dāng)死亡化作生命
- 第17課 第二次世界大戰(zhàn)與戰(zhàn)后國際秩序的形成說課課件-2023-2024學(xué)年統(tǒng)編版(2019)高中歷史必修中外歷史綱要下冊
- 附近有吃飯地方嗎
- 運動之于學(xué)習(xí)之道
評論
0/150
提交評論