News from Justine Sherry's Research Group
August 26, 2022
Algorithmic Complexity Attacks (ACAs) are a powerful class of denial of service attack where a resource-strapped attacker can, using a small amount of attack traffic, nonetheless overload a highly provisioned server. Today at SIGCOMM 2022, Nirav Atre demonstrated a new approach called SurgeProtector that can mathematically guarantee that a system is safe from ACAs. Read a summary of the work from Cylab, dig into the code, or read the research paper to learn more.
August 24, 2022
When wireless networks suffer sudden throughput degradation, queues build up rapidly at APs and degrade applications like video conferencing. Today at SIGCOMM 2022, Zili Meng shows how wireless APs can quickly signal to senders to slow down transmission when throughput degrades; improving tail network latency and making videos play out smoother. You can read about Zili’s system Zhuge here.
August 23, 2022
Systems like SurgeProtector and many others rely on heuristics to predict job sizes in order to implement shortest-job-first scheduling. However, heuristics are not always correct which can lead to error in the systems that use them. Today at SIGCOMM 2022, undergraduate Erica Chiang presented a poster on her work on Robust Heuristics for SurgeProtector and took second place in the SIGCOMM Undergraduate Student Research Competition. Congratulations, Erica! Read more on Erica’s work here.
November 11, 2021
Internet services today are continuously innovating to provide the best performance for their services, including by developing new Congestion Control Algorithms (CCAs). However, these algorithms are often proprietary or unpublished – leaving the Internet community in the dark whether these CCAs are stable, fair, or efficient. Today at HotNets 2021, Margarida Ferreira presents a prototype called Mister880 that allows researchers to reverse engineer deployed CCAs using program synthesis. Read the paper or watch the talk to learn more!
November 04, 2021
One year ago at OSDI 2020, we published Pigasus – an FPGA-based IDS and the first open-source intrusion detection system to scale to 100Gbps with a single server. Today Pigasus is open-sourced, used in research at at least 7 universities, and in engagements with 4 companies. To connect this community and share the latest Pigasus-related updates, we started the Pigasus developers’ meeting which met today for the first time! Sign up to join future meetings at mail.pigasus-ids.org.
November 02, 2021
Congestion Control Algorithms (CCAs) determine important properties like fairness, utilization, and performance stability on the Internet. These properties are well-studied under the assumption that congestion occurs at the `edge’ of the network (such as home network links) – but what happens when congestion occurs in core Internet links as observed in recent studies? Adithya Philip provides some early insights into this question at IMC 2021 today. You can watch his talk or read the paper to learn more!
October 28, 2021
Benjamin Carleton, who interned with our group through the REUSE program last summer, won the SIGOPS Undergraduate Student Research Competition (SRC) at SOSP 2021! Benjamin’s work was mentored by Nirav Atre and focuses on delayed hits in the context of multi-tier caches. He will go on to represent SIGOPS in the ACM-wide SRC.
October 05, 2021
This week, Facebook suffered an all-day outage due to errors in their BGP and DNS configuration. I spoke to Charlotte Hu of Popular Science about what went wrong and why increasing centralization of Internet services makes us more prone to such catastrophic failures. Read more here.
June 03, 2021
Kernel bypass approaches to networking provide very high throughput and low latency, at the cost of ease of administration. Operators lose many debugging, management, and scheduling tools that OS kernels typically offer when packets bypass the kernel altogether. At HotOSXVIII today, Hugo Sadok suggests that we might be able to keep both manageability and high performance by implementing an OS interposition layer on FPGA-based SmartNICs. Read the paper and watch the talk to learn more.
April 12, 2021
When network operators deploy middleboxes like firewalls and proxies, they often do so to comply with regulations and formal policies. But how can a network operator prove to an auditor that their deployment is compliant with these policies? Grace Liu shows how to do this with a system called AuditBox at NSDI 2021 today.
April 02, 2021
Every year the National Science Foundation awards fellowships to around 2000 elite graduate students across all areas of STEM, from physics to mathematics to computer science. This year, Minya Rancic – our former intern through CMU’s REUSE program – was awarded one of these prestigious fellowships. Minya will be joining us at CMU for his PhD this Fall. Congratulations!
February 18, 2021
FPGAs are rapidly expanding their role in datacenters and a wide range of applications today benefit from them. Today, we launch a new research center spanning CMU, UT Austin, and U. Toronto to explore the future of FPGAs in datacenter server architecture and software. Read more here to learn about the Intel/VMware Crossroads 3D-FPGA Academic Research Center and sign up to follow our seminar series!
January 28, 2021
9-year-old Maggie and her mom Abby run a podcast called `Big If True’ where they talk about things that are big. The Internet is pretty big, so I joined them this week to talk about just how big it is!
November 21, 2020
The Internet Engineering Task Force (IETF) defines the standards that shape how the Internet works. Yesterday, Ranysha Ware presented her work on deployability thresholds for new congestion control algorithms to the Internet Research Task Force at the IETF 109 Meeting.
November 06, 2020
Intrusion Detection Systems (IDS) are fundamental components of network security infrastructure. Zhipeng Zhao presented our new IDS, Pigasus, today at OSDI 2020. Pigasus can process 100Gbps using a single server, using 38X less energy and two orders of magnitude fewer CPUs than existing open-source approaches. Pigasus is available on Github. Read the paper here or watch the talk to learn more.
August 13, 2020
Textbooks tell us that requests to a cache result in two possible outcomes: hits and misses. Nirav Atre discusses today at SIGCOMM 2020 that there is actually a third possible outcome: a
August 13, 2020
When network functions share the same server, they achieve slower performance than if they run alone. But why does this happen even when the server is configured to isolate processors and NIC queues? And how can we predict the slowdown? Antonis Manousis explains today at SIGCOMM 2020. You can read the paper here or watch the video to learn more.
August 10, 2020
Rukshani Athapathu, Tooba Bajwa, and Serena Vincent all presented at the N2Women workshop co-hosted with SIGCOMM 2020. Read about Rukshani’s work on Internet fairness here; Tooba’s work on optimal sketching parameters here; and Serena’s work on NADA congestion control here. Talk videos are available at the workshop homepage.
(Keep an eye out – Rukshani and Serena are applying to PhD programs this Fall!)
June 03, 2020
I am honored to be named to DARPA’s ISAT Study Group, which aims to identify new areas of development in computer and communication technologies and to recommend future research directions.
December 14, 2019
I am delighted that Roger Yang, our high school intern, has been accepted to CMU to begin his bachelor’s degree! We will be so lucky to have him with us for the next four years.
November 27, 2019
Ranysha Ware and I were featured in an hourlong interview in the Packet Pushers `Heavy Networking’ podcast. In the interview, Ranysha discusses her research on BBR, deployment of new congestion control algorithms, and how to test whether new algorithms are acceptable to deploy on the Internet. Listen here.
November 18, 2019
When multiple Internet connections share the same link, they compete for resources. Should connections be required to share the link fairly? If the outcomes are unfair, how unfair can they be? Ranysha Ware presented new guidelines for depoying new congestion control algorithms at HotNets 2019. Read more here.
May 10, 2019
My keynote presentation at the Simpósio Brasileiro de Redes de Comunicação e Sistemas Distribuídos is now online. I the talk, I discuss testing and evaluation of fairness for new congestion control algorithms. Watch here in Portuguese.