MAMI: Measurement and Architecture for a Middleboxed Internet
A central tussle in today’s Internet is that between the desire for privacy, which requires strong encryption to protect, and the need to efficiently manage network traffic. Current approaches to traffic management typically require access to plaintext and application payload, which is fundamentally incompatible with the privacy goal.
The MAMI project aims to rearchitect the Internet to allow explicit cooperation between endpoints and middleboxes, restoring the promise and innovation potential of the original end-to-end architecture of the Internet while enabling appropriate in-network services to ease management and scalability of ever more demanding applications. To ensure the applicability of the protocol, it will develop it on a background of middlebox behaviour models, derived from large-scale measurements of middleboxes in the public Internet conducted on top of the MONROE testbed. After evaluating the fitness of proposed MCP by assessing its applicability to a set of real-world use cases for transport layer evolution, it will focus on incremental deployability in the presence of both cooperative and uncooperative middleboxes by experimentation in the Internet utilising the facilities provided by MONROE.
The MAMI project has three main goals:
1. Large-scale measurements of deployed middleboxes
The MAMI project will perform Internet measurements using existing large-scale measurement platforms such as RIPE ATLAS, CAIDA Ark and the MONROE FIRE+ testbed, as well as design and develop measurement techniques and tools to detect and monitor middlebox behavior. Further, MAMI will implement of a measurement observatory to collect measurement results and make them accessible to others.
2. An architecture for middlebox cooperation
Based on understanding derived from analysing middlebox characteristics, MAMI will develop an architecture providing a shim layer that contains the Middlebox Cooperation Protocol (MCP), which allows transport and application protocols to selectively expose semantic information to middleboxes while maintaining protocol level details inside an encrypted encapsulation protocol. Further, MAMI will investigate approaches to maintain connectivity even if the MCP is not supported on a certain path as well as the integration of encryption or partial encryption methods into the proposed architecture. Together with the MCP, this will provide a flexible transport framework that can be used by emerging applications.
3. Experimental evaluation of use case applicability and deployability
MAMI will develop a classification scheme and models of middlebox behavior as detected by Internet measurement. This analysis of the middlebox behavior not only be used to improve measurement techniques but will also provide the basic for performance evaluation of and experimentation with the proposed MAMI architecture and respective protocol mechanisms.
This project is receiving funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement No 688421. (ICT-12-2015 - Integrating experiments and facilities in FIRE+)
- ETH Zürich (Switzerland)
- Simula (Norway)
- Telefonica I+D (Spain)
- Université de Liège (Belgium)
- University of Aberdeen (United Kingdom)
- Zurich University of Applied Sciences/ZHAW (Switzerland)
- Alcatel-Lucent (United Kingdom)
ETH Zürich (Switzerland)