An Emulation of GENI Access Control
نویسندگان
چکیده
This paper describes an emulation of a distributed access control system proposed for use in the GENI network testbed. We use our trust management system, CERTDIST, to realize the system policy, and measure its performance by mapping PlanetLab’s centralized access control scheme to GENI’s distributed scheme and then replaying logs of PlanetLab access control activity. Our log analysis indicates that any such system must be resilient to both misconfigurations and attacks, and our emulation results show the effect of caching schemes and certificate expiration intervals in reducing load on servers and improving response time.
منابع مشابه
A Multi-User Exo-GENI Testbed for Wide-Area Monitoring and Control of Power Systems Using Distributed Synchrophasors
In this paper we describe an advanced hardwarein-loop simulation facility for real-time demonstration and validation of power system monitoring and control algorithms, recently constructed at NC State University. This facility integrates a real-time power system emulation lab with the GENI network and its associated cloud testbeds. The dynamic responses from the power system emulator are captur...
متن کاملPrimoGENI for hybrid network simulation and emulation experiments in GENI
The Global Environment for Network Innovations (GENI) is a community-driven research and development effort to build a collaborative and exploratory network experimentation platform—a “virtual laboratory” for the design, implementation and evaluation of future networks. The PrimoGENI project enables real-time network simulation by extending an existing network simulator to become part of the GE...
متن کاملManaging Identity and Authorization for Community Clouds
A community cloud operates to serve multiple organizations who have entered into sharing arrangements with one or more cloud providers. Members of the participating organizations may also collaborate on shared projects, which may lead them to exercise shared control over virtual machines or other cloud-hosted resource instances. Software running in the cloud instances may serve the community me...
متن کاملExperience in Implementing & Deploying a Non-IP Routing Protocol VIRO in GENI
In this paper, we describe our experience in implementing a non-IP routing protocol – Virtual Id Routing (VIRO) – using the OVS-SDN platform in GENI. As a novel, “plug&-play”, routing paradigm for future dynamic networks, VIRO decouples routing/forwarding from addressing by introducing a topology-aware, structured virtual id layer to encode the locations of switches and devices in the physical ...
متن کاملAn Architecture for International Federation of Network Testbeds
Testbeds play a key role in the advancement of network science and the exploration of new network architectures. Because the scale and scope of any individual testbed is necessarily limited, federation is a useful technique for constructing testbeds that serve a wide range of experimenter needs. In a federated testbed, individual facilities maintain local autonomy while cooperating to provide a...
متن کامل