SCION
Scalability, Control, and Isolation On Next-generation networks
Started at CyLab CMU 2011
https://www.cs.cmu.edu/~xia/resources/Documents/SCION-august-2011.pdf
Xin Zhang, Hsu-Chun Hsiao, Geoff Hasker, Haowen Chan, Adrian Perrig, David Andersen
🕸️ Topology
Swiss, Korea(KREONET), …
https://www.scionlab.org/topology.png
👤 Person
Prof. Dr. Adrian Perrig (ETH)
Dr. Jong Hoon Kwon (권종훈) (ETH) ⭐
- PhD at CCSLab, Korea Univ
- Currently at ETH, Swiss
- Pubs/RG / Pubs/GS / Linkedin
- Install SCION two servers KREONET (Daejeon, Seoul) KREONET, 5 VM on KREONET2 at 2016
Prof. Dr. Heejo Lee (이희조) (KU)
- Visiting professor at CyLab/CMU at 2010
- Pubs
Prof. Dr. Minsuk Kang (강민석) (KAIST)
- Ph.D. at CMU, 2016
- Assistant professor at NUS, Singapore, 2016
- https://sites.google.com/view/kaist-netsp
- Blockchain on SCION
Dr. Juhee Ki (기주희) (IITP)
- ITU-T SG17 (정보보호) Rapporteur
🏛 Labs
CyLab, CMU, USA
Network Security Group, ETH, Swiss
🏢 Company
- ANAPAYA(Swiss)
- IoT Cube(Korea, 이희조) - Asia Partner of ANAPAYA
🖥️ Resources
https://scion-architecture.net
(2019) https://scion-architecture.net/pages/scion_day/
(2022) https://scion-architecture.net/pages/scion_day_2022/
https://scion-architecture.net/pages/publications/
https://scied.scion-architecture.net
https://github.com/scionproto
https://github.com/netsec-ethz
https://scion-architecture.net/pdf/SCION-book.pdf
https://github.com/netsec-ethz/scion
https://scion-architecture.net/pages/education/sigcomm-workshop-tasks_-_scionlab-tutorials.pdf
👁️ Notice
Hercules (100Gbps multi-path transmission)
The Hercules file transfer system demonstrates that high-speed file transfers are possible with SCION. This video shows an early demonstration. In collaboration between ETH and SWITCH, we could achieve machine-to-machine file transfers of close to 100 Gbps from Bern to Lugano across the SWITCH network.
https://scied.scion-architecture.net/hercules/
LightningFilter (100Gbps filter)
LightningFilter: Traffic Filtering at 100 Gbps, 2019, Benjamin Rothenberger
https://github.com/netsec-ethz/lightning-filter
NDSS2021 Paper
Mondrian: Comprehensive Inter-domain Network Zoning Architecture, NDSS2021
https://www.ndss-symposium.org/ndss-paper/mondrian-comprehensive-inter-domain-network-zoning-architecture/
Jonghoon Kwon, Claude Hähni, Patrick Bamert (Zürcher Kantonalbank), Adrian Perrig
SBAS
Secure Backbone AS
Creating a Secure Underlay for the Internet
https://sbas.netsec.ethz.ch
https://sbas.netsec.ethz.ch/s/2022_sec_sbas.pdf
SCION Lab to Production in KREONET
SCION Lab in KREONET
(Interesting in Commercial) LG U+, Samsung Research
Lab→Production, Performance ↑
SSFN (Secure Swiss Finance Network)
Digital finance: areas of action 2022+ by Federal Council, Swiss
https://www.newsd.admin.ch/newsd/message/attachments/70126.pdf
Links
⭐ https://codilime.com/blog/scion-vs-traditional-internet/
⭐ https://www.anapaya.net/blog/scion-vs.-segment-routing
⭐ 오버뷰가 잘 쓰여 있음 https://scion.docs.anapaya.net
https://scion-architecture.net
https://github.com/netsec-ethz
2021, Building a SCION enabled Home Router
OpenWRT + SCION
https://web.chaehni.ch/networks/scion-home-router/
Notes
Source routing / Segment Routing / SCION 차이점 정립 필요
DNS 쿼리 처럼, DST 주소를 쿼리하면 PATH 를 리턴하는 엔티티가 있음
비콘을 뿌려서 각 구간의 레이턴시를 가지고 있음 > 컨트롤러는 패킷 보내기 전에 특정 경로의 End to End 레이턴시를 추측할 수 있음
Sender가 패킷을 보낼 때, 미리 경로정보를 모두 알고 있음
패킷에 경로를 담아 SCION 인프라에 보냄
Hercules 는 MPTCP는 아님
경로가 3개라면 3개의 스트림을 생성하고, 각 스트림은 하나의 패스에 할당, 그리고 데이터를 청킹해서 각 스트림에 보내고 리시버 단에서 조립함