In collaboration with the Euro-NF NoE [ENF], ResumeNet organized a network resilience PhD Course on September 26-28, 2011 at ETH Zurich (Switzerland). The three day event covered widespread network resilience aspects, including exercises. 16 students from six countries attended the course; their feedback was very positive and encouraging. As a result, ResumeNet provides for download a set of slides designed to help others to integrate network resilience into their courses.
The series of eight lectures and exercises, conducted by international teachers, surveyed fundamental and applied aspects of network resilience, and identified novel opportunities and research directions in this area. The school also provided the participants a great opportunity to meet other students working in the field, to establish contacts that may lead to research collaborations in the future. The intended audience was graduate students, PhD students and young researchers from universities and industrial laboratories around Europe. The lectures were complemented with a highly appreciated guest lecture "Best current practices" by Simon Leinen from the Swiss academic network provider SWITCH. Note that the slides of the guest lecture are not part of the slide set offered to the community.
The course was kindly sponsored by Euro-NF which provided funding for lunches and a reception at a local hotel allowing lively interaction between students and teachers. Euro-NF also supported the traveling for students from partners associated to Euro-NF.
This effort was led by Dr. C. Rohner (U. of Uppsala) with help from some ResumeNet partners.
We are providing for download the course material (slides presented in the course) under the following licence: tbd
Title: Resilience principles and related disciplines
Author(s): Prof. J.P.G. Sterbenz, U. of Kansas
This module covers the basic principles of network resilience, including definitions of fundamental approaches to resilience, such as diversity and redundancy. Furthermore, it places resilience with context of related disciplines, such as survivability and fault tolerance, for example. The aim is to give the student a foundation in resilience topics that were built on in the rest of the course.
Title: Resilience metrics
Author(s): Prof. J.P.G. Sterbenz, U. of Kansas
Appropriate metrics are fundamental to understanding the resilience of a given network deployment. They form an essential part of off-line decision processes, such as risk assessment and whether to invest in new infrastructure for resilience, and on-line processes that monitor the health of a network and the supported services. This modules presentes a survey of resilience metrics. It is then continued by investigating approaches to measuring and evaluating network resilience, which is a multi-level issue, i.e., the behaviour of metrics at different layers is often correlated.
Title: Modeling the network operation under challenges and assessing its resilience
Author(s): Dr. M. Karaliopoulos, U. of Athens
This module attempts to survey of theoretical methods and tools that are used for the analytical assessment of networks' resilience. It first covers classical reliability and performability analysis techniques addressing hardware/software failures and network performance, iterated over fundamental tools such as Markovian models and Petri Nets that dominate this area, and outlines approaches to the assessment of resilience in more novel network paradigms such as the wireless mesh and delay tolerant networks.
Title: Resilient routing
Author(s): Dr. C. Rohner, U. of Uppsala
Resilient routing protocols aim at maintaining connectivity in the case of various types of failures. The approaches are manifold, reaching from making the protocol itself more robust, maintaining alternative paths to switch to, or introducing redundancy. We study a few protocols and their evaluation to get an understanding of the different approaches and what performance properties are important.
Title: Detecting and preventing malicious network activities
Author(s): P. Szalachowski, Warsaw University of Technology
This module covers some automated and adaptive methods for recognizing a possible network attack. These methods include modern firewalls, intrusion detection and prevention systems, reputations systems and authenticity verification. Furthermore, general principles of building effective detection/prevention systems are discussed. Next, the architecture of the complete security system are presented.
Title: Challenges in the current Internet & building resilient services
Author(s): Dr. Ali Fessi, Munich U. of Technology
A taxonomy for challenges in the current Internet is provided (in cooperation with Prof. James Sterbenz). Moreover, mechanisms for building resilient network services are presented. Basic resilience metrics, such as service availability and reliability, are the starting point and can be considered as requirements for resilient services. Then, a variety of mechanisms is presented to fulfill these requirements, starting from simple setups with a master and a backup server, to highly distributed Peer-to-Peer (P2P) networks. Further mechanisms are discussed such as overload protection, protection against Denial-of-Service attacks, integrity protection with DNSSEC, BGP security, etc.
Download (challenges): PDF
Download (services): PDF
Title: Virtualization and resilience
Author(s): A. Fischer, U. of Passau
Virtualization has become popular as a method to consolidate resources and introduced an additional level of flexibility. This module discusses the relationship of virtualization and resilience from two different perspectives. On the one hand, virtualization can be used as a mechanism to achieve or increase resilience. On the other hand, the resilience of virtualization itself is investigated.