2nd International Summer School on Network and Service Management (ISSNSM 2008)

The 2nd summer school on network and service management takes place June 2-6 2008 in Zurich, Switzerland. This school combines class room lectures with hands on lab sessions and primarily targets PhD. students working in the area of network and service management. It is organized by Burkhard Stiller and David Hausheer (EMANICS members).

June 2-6, 2008, University of Zurich, Switzerland

Scope

The EMANICS summer school will provide advanced classes on a comprehensive suite of advanced topics in network management. The courses will be accompanied with practical hands-on labs in order to combine the theoretical background with some operational experience. The instructors are well known members of the academic and industrial community.

Overview

Courses and associated practical labs will be organized by instructors who are well known experts. The courses introduce technologies, which are later further studied by the students in a series of exercises of lab experiments.

• Security
  • Hacking Web2 - Radu State

• Virtualization and Simulations
  • Simulating Networks with Network Simulator 2 (ns-2) - Frank Eyermann
  • Using Xen Virtualization in Research Projects - Kyrre Begnum
  • Distributed Test-Lab: EMANICSLab - Cristian Morariu, David Hausheer

• Network Monitoring and Management
  • Managing Information from your Network - Bruno Klauser
  • Do you know SNMP? - Aiko Pras
  • Nagios - Laurent Andrey and Remi Badonnel
  • Introduction to NETCONF and YANG - Juergen Schoenwaelder

The labs will assume working experience with Unix/Linux systems and there might be further lab specific prerequisites. Participants are expected to bring personal notebooks (preferably with a CD-ROM) and they are expected to know how to install software and how to administrate their system. More details will be provided by each lab instructor.

Abstracts

Hacking Web2

The objective of this tutorial is to give a hands-on experience to web server security assessment. It will provide the necessary background material to learn how web servers are exploited by blackhats. The coverage of the class includes web server reconnaissance, application level vulnerabilities, web client level abuse and phishing methods. More than 80% of the current intrusions are caused by mis-configured or vulnerable web applications, since web traffic is typically allowed by most firewalls. Therefore, providing adequate security solutions for web applications and servers is an essential building block for an overall enterprise level security architecture. The class will include a special section on mitigation techniques and counter-hacking approaches.

Simulating Networks with Network Simulator 2 (ns-2)

Network Simulator 2 (ns-2) is an open source simulator for different kinds of networks. The simulator is widely used in industry and research. Because of its open and extendable nature a lot of devices, protocols and applications are already implemented - number increasing. This tutorial gives a first insight into working with ns-2. In the first half of the tutorial the structure of ns-2 is shown and in lab courses some less complex examples are performed and analyzed. A special focus is put on monitoring of queues and queuing disciplines. In the afternoon LANs and routing protocols are simulated. Stochastic elements of simulations are looked into. The tutorial will close with some simulations of wireless networks.

Using Xen Virtualization in Research Projects

This tutorial is targeted at researchers who want to utilize virtualization for their experiments and test labs. Xen is a popular open source virtualization technology used widely in the industry today. It provides good performance even with many virtual machines running on the same hardware. Its ease of specialization makes Xen suitable for repeatable scenarios where virtual machines are set up in specialized configurations and network topologies. We will start with some background on the Xen virtualization platform, but will quickly focus on getting practical experience and to learn how to design and set up virtual machines. Networking and virtual machine management will be covered as well as performance tuning and troubleshooting.

Distributed Test-Lab: EMANICSLab

This tutorial will introduce the basic concepts of virtual distributed test-labs like PlanetLab or EmanicsLab and give a hands-on training about how to use them for research activities. First, the underlying idea and principles of PlanetLab are presented and an overview on its services and tools is given. Furthermore, EmanicsLab, a small-scale test-lab which is based on the same technology as PlanetLab is introduced and discussed. In particular, the monitoring and management capabilities of EmanicsLab will be shown. Finally, a set of practical exercises will be carried out based on a simple service which will be deployed on EmanicsLab.

Managing Information from your Network

On what network and traffic data does your planning and engineering rely? Can you validate your design assumptions? Does your network meet the expectations and requirements implied by business critical services? If so: can you prove it? Today's network elements provide a plethora of Device Manageability Instrumentation capabilities suitable to answer the need for service relevant information all along a service life cycle:

• service planning
• deployment and activation
• testing and verification
• ongoing service assurance
• troubleshooting and optimization

This session discusses technology fundamentals as well as the choice, design and use of appropriate practices through a combination of presentation and hands-on exercises.

Do you know SNMP?

The goal of this tutorial is to make Ph.D. students aware of common mistakes made in SNMP related papers. Before the tutorial, each student should follow three online tutorials: Structure of Management Information (SMI), Introduction to MIBs and MIB-II. These tutorials can be downloaded as Podcast from http://www.simpleweb.org/tutorials/video/.

The tutorial will start with a short examine, to identify what students already know / learned from the tutorials. After that, there will be four lab sessions; one on defining a new MIB module, one on finding the right MIB data, one on using SNMP and one on ASN.1 decoding. In these lab sessions students will work with MIB validating tools, real MIB data and an SNMP agent simulator. After the tutorial students will better understand the status and usage of SNMP, and avoid many of the common mistakes.

Nagios

Nagios is an open source software product for monitoring hosts, networks and services. Widely deployed by network administrators in companies and organizations, this tool provides an easy and extensible way of checking the operational status of network elements, and detecting a large variety of failures in real time, such as host resource overload and network service breakdown. This tutorial aims at giving an overview of Nagios multiple features and putting them into practice through a set of lab exercises. We first introduce the key concepts of Nagios and the underlying functional architecture. In particular, we describe how Nagios determines status information about hosts and services using periodic checks. We show how this information can be sent to administrative contacts through an advanced notification scheme, or can be directly accessed through the web interface. We then point out the configuration parameters, the implementation of checks and the various ways of executing them. Finally, we summarize the benefits and limits of Nagios.

Introduction to NETCONF and YANG

The tutorial introduces the NETCONF protocol (RFC 4741, RFC 4742)and the YANG data modeling language. The NETCONF protocol provides mechanisms to install, manipulate, and delete the configuration of network devices. The protocol uses a remote procedure call (RPC) paradigm and allows new protocol operations to be added. YANG is a proposed data modeling language for NETCONF developed by a small design team in 2007. It has recently been selected as the basis of an IETF standardization effort. Students will learn fundamental concepts of NETCONF and YANG and they will gain practical experience by interacting with NETCONF implementations during the lab sessions and using YANG tools to validate self-written data models.

Instructors

Radu State

Radu State holds a Ph.D from INRIA and a Master of Science in Engineering from the Johns Hopkins University (USA). He is a researcher in network security and network management with more than 60 papers published in international conferences and journals. He is member in the technical program committees of IEEE/IFIP Integrated Management, IEEE/IFIP Network Operations and Management and IEEE/IFIP DSOM. He lecturers at major conferences on topics related to security and network management and control. His activities range from network security assessment, software security to VoIP intrusion detection and assessment.

Frank Eyermann

Frank Eyermann is a Ph.D. student at the Universität der Bundeswehr, Munich, Germany. His field of research are auditing of network services, network security and management of networks and systems. Before he was a chief programmer at the Germany Airforce Command and Control Information System Programming Center in Birkenfeld, Germany and a system administrator at the same location. He was Local Organizing Co-Chair at the 10th IFIP/IEEE Symposium on Integrated Management 2007 (IM2007) and is in the TPC of several conferences.

Kyrre Begnum

Kyrre is an Assistant Professor at Oslo University College in Oslo, Norway. He holds a MSc in computer science from the University of Oslo. His main field of research is system administration with focus on the management of virtual machines. In addition to his work at OUC, Kyrre has been active teaching tutorials on virtualization and his own tool, MLN, for administration of large numbers of virtual machines.

David Hausheer

Dr. David Hausheer is a senior researcher and lecturer in the Department of Informatics (IFI) at the University of Zurich, focusing on management of Grid and P2P services. He holds a PhD in communication systems and a diploma degree in electrical engineering from ETH Zurich. He has been involved in the EU projects M3I, MMAPPS, Akogrimo, EMANICS, Cost 290, EC-GIN, and SmoothIT. Moreover, he is a co-applicant of the SNF project DaSAHIT and the Cisco project SCRIPT. Furthermore, he served as PC co-chair for IEEE BoD 2006 and BoD 2008, Tutorial co-chair for ACM AIMS 2007, TPC co-chair for AIMS 2008, and TPC member for AIMS 2007, ICC 2007, P2P 2008, and GridNets 2008. He has co-authored more than 25 peer-reviewed publications (e.g., IFIP/IEEE IM, IFIP Networking, IEEE P2P, IEEE ICC) and acted as a reviewer for more than 30 journals, conferences, and workshops (e.g., IEEE Multimedia, Computer Communications, JNSM, Globecom, IEEE/IFIP NOMS, DSOM, MMNS).

Cristian Morariu

Cristian Morariu received his Masters Degree from Technical University of Cluj-Napoca, Romania in June 2004. His major at the Faculty of Automation and Computer Science, was performed in Computer Science. While holding an ERASMUS scholarship he developed his Master Thesis at the Swiss Federal Institute of Technology (ETHZ), Laboratory of Software Technology. Since September 2004 he is a junior researcher at the University of Zurich, Department of Informatics, Communication Systems Group. His work experiences includes besides being an instructor on laboratory demonstrators and the Cisco Certified Networking Associate (CCNA) Program he managed Unix systems and networks. The areas of work include the theory of operation, design principles, and troubleshooting of protocols, such as TCP/IP, IP routing (BGP, OSPF, RIP), multicast, and data link layer protocols. In detail he knows about Ethernet, Fast Ethernet, PPP, Frame Relay. Additionally, he has many practical experiences with network management systems, network security, AAA Architectures, and QoS mechanisms.

Bruno Klauser

Bruno Klauser works at Cisco as a Consulting Engineer for Network Management and OSS in the European Foundation Technologies Tieam, based out of Zurich, Switzerland. Within this field he's focussing on Operations of MPLS Core and MPLS-based services, on aspects of mobile SP Management and on application of Device Manageability Instrumentation. Bruno is a member of the IEEE and co-organizer of workshops related to his focus areas. Prior to joining Cisco in 2000, Bruno has worked as Software Engineer, Software Architect and Project Manager in SP network management projects and network management software development teams. He holds a diploma in Software Egineering from University of Applied Sciences Brugg/Windisch, Switzerland and is currently enrolled in a Master of Advanced Studies curriculum in Human Computer Interaction Design. Bruno is married and father of a boy born in 2001 and a girl born in 2004.

Aiko Pras

Aiko Pras (a.pras@utwente.nl) is Associate Professor in the Departments of Electrical Engineering and Computer Science at the University of Twente, the Netherlands and member of the Design and Analysis of Communication Systems Group. He received a PhD degree for his thesis titled "Network Management Architectures". His research interests include network management technologies, Web services, network measurements and accounting. He is chairing the IFIP Working Group 6.6 on "Management of Networks and Distributed Systems", and is Research Leader in the European Network of Excellence on "Management of the Internet and Complex Services" (EMANICS). He has also been contributing to research and standardization activities as a member of the Internet Research Task Force (IRTF) Network Management Research Group (NMRG). Dr Pras has been the technical program co-chair of the Ninth IFIP/IEEE Integrated Management Symposium (IM 2005), and is Steering Committee member of the IFIP/IEEE NOMS and IM Symposia (NISC).

Laurent Andrey

Laurent Andrey is an Associate Professor at Nancy-University (Nancy, France) where he teaches basics of Networking. He is also with the MADYNES team of INRIA where his recent interests in research are around performances of network management protocols and frameworks.

Remi Badonnel

Remi Badonnel is an Associate Professor in the Engineering School of Computer Science (ESIAL) of the University of Nancy, France. He is a permanent member of the MADYNES research team at LORIA - INRIA Nancy Grand Est, working on network and service management. He received a PhD degree (2006) in Computer Science and a Master of Science (2003) in Engineering from Henri-Poincare University, Nancy. He works on designing, implementing and validating management models and algorithms for dynamic networks and services. His research interests include Self-Management, Change Management, Service Delivery, Security and Defence Techniques.

Jürgen Schönwälder

Dr. Jürgen Schönwälder is Associate Professor of Computer Science at Jacobs University Bremen, leading the research group on computer networks and distributed systems. He received his diploma in computer science in 1990 and his doctoral degree in 1996 from the Technical University Braunschweig, Germany. His research interests are network management, distributed systems, wireless sensor networks, and network security. He is an active member of the Internet Engineering Task Force (IETF) where he has edited more than 20 network management related specifications and standards. He is the initiator and chair of the Network Management Research Group (NMRG) of the Internet Research Task Force (IRTF) and a regular program committee member of more than a dozen IEEE/IFIP workshops and conferences. He is a member of the editorial board of the IEEE Transactions on Network and Service Management and the Springer Journal of Network and Systems Management. He served as a guest co-editor of special issues of the IEEE Communications Magazine, the IEEE Journal on Selected Areas in Communications, and the Springer Journal of Network and Systems Management. He has been technical program co-chair of IM 2003 and DSOM 2005. In 2007, he organized the first International Summer School on Network and Service Management (ISSNSM 2007) and a Dagstuhl seminar on Autonomic Management of Networks and Services. In 2008, he organizes the 2nd conference on Autonomous Infrastructures, Management and Security (AIMS 2008).

Location

University of Zurich
Department of Informatics (IFI), CSG BIN
Room 1.D.06/07
Binzmühlestrasse 14
CH-8050 Zürich
Switzerland

For directions to the workshop location and information about hotels check out the local travel information.

Schedule

The overall schedule for the week is shown below. The summer school will start on Monday morning and close on Friday afternoon.

• Monday
  • 08:30 - 09:00 Welcome and registration
  • 09:00 - 17:00 Hacking Web2 (Exercises)
• Tuesday
  • 09:00 - 17:00 Simulating Networks with Network Simulator 2 (ns-2) (Exercises)
• Wednesday
  • 09:00 - 15:00 Using Xen Virtualization in Research Projects
  • 15:30 - 17:00 Distributed Test-lab: EMANICSLab (Exercises)
• Thursday
  • 09:00 - 12:30 Do you know SNMP?
  • 14:00 - 17:00 Introduction to NETCONF and YANG (Exercises: NETCONF, YANG)
• Friday
  • 09:00 - 12:30 An Introduction to Monitoring with Nagios
  • 14:00 - 17:00 Managing Information from your Network

Registration

The number of students that can participate is limited to 30. It is, therefore, important to register early. Preference will be given to PhD students.

• Registration fee:
  • Early bird rate (until May 15st): 170.- Euro
  • Normal rate (after May 15st): 200.- Euro

To register, you have to send an email to Cristian Morariu. Once accepted, you will receive a confirmation email. The registration has to be payed upon your arrival at the registration desk - cash only!

Local Infrastructure and Social Event

• WLAN access will be provided on site, together with the necessary directions.
• Coffee/tea breaks will be held locally. Lunches will be taken in the University Mensa, which can be reached inside the building in about 2 minutes.
• The social event will be held outside the University premises and we do require to run a joint tram/bus ride. Thus, timing is CRUCIAL and essential for all participants. Time to leave for social event: 18.05 hours sharp from CSG@IFI at the end of the first workshop day. To ease your travel on that Monday June 2, 2008, please buy that morning if you need to come to our location by public transport, e.g. tram, bus, or S-Bahn a 24 hour ticket of zone 10 (see local travel information).

Chairs

• Burkhard Stiller, University of Zurich and ETH Zurich
• David Hausheer, University of Zurich

Local and Lab Chairs

• Cristian Morariu
• Peter Racz

Registered Participants

• Iris Hochstatter, UniBwM, Munchen
• Iván Díaz Álvarez, Universidade da Coruña, Spain
• Thomas Bocek, University of Zurich, Switzerland
• Amruth Kumar Juturu, University of Zurich, Switzerland
• Aiko Pras, University of Twente, Netherlands
• Thomas M. Knoll, Chemnitz University, Germany
• Anna Sperotto, University of Twente, Netherlands
• Fabio Hecht, University of Zurich, Switzerland
• Tiago Fioreze, University of Twente, Netherlands
• Feng Liu, LMU, Germany
• Samah Bel Haj Saad, UniBwM, Germany
• Alexandre Veloso de Matos, CISUC Department at University of Coimbra, Portugal
• Kashif Munir, Institute of Computer Science, University of Innsbruck, Austria
• Lothar Braun, TU Munich, Germany
• Robert Wójcik, AGH University of Science and Technology, Kraków, Poland
• Jerzy Domzal, AGH University of Science and Technology, Kraków, Poland
• Nikolaos Leonitiou, University of Patras, Greece
• Walter Fuertes, Universidad Autónoma de Madrid España.
• Lisandro Zambenedetti Granville, University of Twente
• Florin Smaranda, University of Pitesti, Romania
• Cristian Stefan, University of Pitesti, Romania
• Marcin Niemiec, AGH University of Science and Technology, Kraków, Poland
• Clarissa Marquezan, NEC Europe Network Laboratories
• Tom Leclerc, LORIA, Nancy