Hussein A. Alzoubi, Seungjoon Lee, Michael Rabinovich, Oliver Spatscheck, Jacobus Van Merwe
Because it is an integral part of the Internet routing apparatus, and because it allows multiple instances of the same service to be “naturally ” discovered, IP Anycast has many attractive...
Proactive Surge Protection: A Defense Mechanism for Bandwidth-Based Attacks (2009)
Jerry Chou, Bill Lin, Subhabrata Sen, Oliver Spatscheck
Abstract — Large-scale bandwidth-based distributed denial-of-service (DDoS) attacks can quickly knock out substantial parts of a network before reactive defenses can respond. Even traffic flows...
ABSTRACT Anycast CDNs Revisited (2009)
Hussein A. Alzoubi, Seungjoon Lee, Michael Rabinovich, Oliver Spatscheck, Jacobus Van Merwe
Exploiting Network Structure for Proactive Spam Mitigation (2009)
Shobha Venkataraman, Subhabrata Sen, Oliver Spatscheck, Patrick Haffner, Dawn Song
E-mail has become indispensable in today’s networked society. However, the huge and ever-growing volume of spam has become a serious threat to this important communication medium. It not only...
ABSTRACT Analyzing Large DDoS Attacks Using Multiple Data Sources (2008)
Z. Morley Mao, Vyas Sekar, Rangarajan Vasudevan, Oliver Spatscheck
We present a measurement study analyzing DDoS attacks from multiple data sources, relying on both direct measurements of flow-level information, and more traditional indirect measurements using...
Zhuoqing Morley Mao\lambda, Charles D. Cranor, Fred Douglisy, Michael Rabinovich, Oliver Spatscheck, Jia Wang
Exploiting Network Structure for Proactive Spam Mitigation (2008)
Shobha Venkataraman, Subhabrata Sen, Oliver Spatscheck, Patrick Haffner, Dawn Song
E-mail has become indispensable in today’s networked society. However, the huge and ever-growing volume of spam has become a serious threat to this important communication medium. It not only...
ABSTRACT Minimizing Collateral Damage by Proactive Surge Protection (2008)
Jerry Chou, Bill Lin, Subhabrata Sen, Oliver Spatscheck
Existing mechanisms for defending against distributed denial-ofservice (DDoS) attacks are generally reactive in nature. However, the onset of large-scale bandwidth-based attacks can occur suddenly,...
Towards Real-Time Performance Monitoring for Encrypted Traffic Abstract (2008)
Mehdi Kharrazi, Subhabrata Sen, Oliver Spatscheck
IP networks are increasingly carrying mission-critical applications with robust end-to-end network performance and reliability requirements. Network performance monitoring forms an essential...
Zhuoqing Morley Mao\lambda, Charles D. Cranor, Fred Douglisy, Michael Rabinovich, Oliver Spatscheck, Jia Wang
Michael Stonebraker, Mitch Cherniack, Magdalena Balazinska, Hari Balakrishnan, Michael J. Franklin, Joseph M. Hellerstein, ...
The Bulletin of the Technical Committee on Data Engineering is published quarterly and is distributed to all TC
TPOT: Translucent Proxying of TCP Pablo Rodriguez (2008)
Lambda S, Eep Sibal, Oliver Spatscheck
Abstract Transparent Layer-4 proxies are being widely deployed inthe current Internet to enable a vast variety of applications.
ACM SIGCOMM INTERNET MEASUREMENT WORKSHOP 2001 Characterizing Large DNS Traces Using Graphs (2008)
Charles D. Cranor, Emden Gansner, Er Krishnamurthy, Oliver Spatscheck
The increasing deployment of overlay networks that rely on DNS tricks has led to added interest in examining DNS traffic. In this paper we report on a characterization of DNS traffic gathered over a...
Chuck Cranor, Theodore Johnson, Oliver Spatscheck, Vladislav Shkapenyuk
Managing a large scale network requires a network monitoring infrastructure. However, network monitoring is a difficult application. In response to shortcomings in the readily available tools, we...
Fishing for Phishing from the Network Stream (2008)
Ramachandran, Anirudh, Feamster, Nick, Krishnamurthy, Balachander, Spatscheck, Oliver, Van Der Merwe, Jacobus
Phishing is an increasingly prevalent social-engineering attack that attempts identity theft using spoofed Web pages of legitimate organizations. Unfortunately, current phishing detection methods are...
A data streaming algorithm for estimating entropies of od flows (2007)
Haiquan (chuck Zhao, Oliver Spatscheck
Entropy has recently gained considerable significance as an important metric for network measurement. Previous research has shown its utility in clustering traffic and detecting traffic anomalies....
A data streaming algorithm for estimating entropies of od flows (2007)
Haiquan (chuck Zhao, Oliver Spatscheck
Categories and Subject Descriptors
Lei Guo, Enhua Tan, Songqing Chen, Zhen Xiao, Oliver Spatscheck, Xiaodong Zhang
Modern Internet streaming services have utilized various techniques to improve the quality of streaming media delivery. Despite the characterization of media access patterns and user behaviors in...
Primed: community-of-interest-based ddos mitigation (2006)
Patrick Verkaik, Oliver Spatscheck, Alex C. Snoeren
Most existing distributed denial-of-service (DDoS) mitigation proposals are reactive in nature, i.e., they are deployed to limit the damage caused by attacks after they are detected. In contrast, we...
LADS: Large-scale Automated DDoS detection System (2006)
Vyas Sekar, Nick Duffield, Oliver Spatscheck, Hui Zhang
Many Denial of Service attacks use brute-force bandwidth flooding of intended victims. Such volume-based attacks aggregate at a target's access router, suggesting that (i) detection and...
Delving into Internet Streaming Media Delivery: A Quality (2006)
And Resource Utilization, Lei Guo, Enhua Tan, Songqing Chen, Zhen Xiao, Oliver Spatscheck, ...
Modern Internet streaming services have utilized various techniques to improve the quality of streaming media delivery. Despite the characterization of media access patterns and user behaviors in...
Primed: community-of-interest-based ddos mitigation (2006)
Patrick Verkaik, Oliver Spatscheck, Alex C. Snoeren
Most existing distributed denial-of-service (DDoS) mitigation proposals are reactive in nature, i.e., they are deployed to limit the damage caused by attacks after they are detected. In contrast, we...
Analyzing Large DDoS Attacks Using Multiple Data Sources (2006)
Z. Morley Mao, Vyas Sekar, Oliver Spatscheck, Rangarajan Vasudevan
Abstract — We present a measurement study analyzing DDoS attacks from multiple data sources, relying on both direct measurements of flow-level information, and more traditional indirect...
Data Streaming Algorithms for Estimating Entropy of Network Traffic (2006)
Ashwin Lall, Mitsu Ogihara, Chuck Zhao, Jim Xu, Oliver Spatscheck, Jia Wang, ...
• Given n flows of sizes a1,..., an. Let s ≡ ∑ i ai. The empirical entropy is defined as H ≡ − ∑ i ai s log ai
ACAS: Automated construction of application signatures (2005)
Patrick Haffner, Subhabrata Sen, Oliver Spatscheck, Dongmei Wang
An accurate mapping of traffic to applications is important for a broad range of network management and measurement tasks. Internet applications have traditionally been identified using well-known...
A heartbeat mechanism and its application in Gigascope (2005)
Theodore Johnson, S. Muthukrishnan, Vladislav Shkapenyuk, Oliver Spatscheck
Data stream management systems often rely on ordering properties of tuple attributes in order to implement non-blocking operators. However, query operators that work with multiple streams, such as...
ATMEN: A Triggered Network Measurement Infrastructure (2005)
Balachander Krishnamurthy, Harsha V. Madhyastha, Oliver Spatscheck
Web performance measurements and availability tests have been carried out using a variety of infrastructures over the last several years. Disruptions in the Internet can lead to Web sites being...
A Heartbeat Mechanism and its Application in Gigascope (2005)
Theodore Johnson Muthukrishnan, Theodore Johnson, S. Muthukrishnan, Vladislav Shkapenyuk, Oliver Spatscheck
Data stream management systems often rely on ordering properties of tuple attributes in order to implement non-blocking operators. However, query operators that work with multiple streams, such as...
Streams, Security and Scalability (2005)
Theodore Johnson Muthukrishnan, Theodore Johnson, S. Muthukrishnan, Oliver Spatscheck, Divesh Srivastava
Network-based attacks, such as DDoS attacks and worms, are threatening the continued utility of the Internet. As the variety and the sophistication of attacks grow, early detection of potential...
Optimizing Network Performance In Replicated Hosting (2005)
Ningning Hu Oliver, Oliver Spatscheck, Jia Wang, Peter Steenkiste
Most important commercial Web sites maintain multiple replicas of their server infrastructure to increase both reliability and performance. In this paper, we study how many replicas should be used...
ATMEN: a triggered network measurement infrastructure (2005)
Balachander Krishnamurthy, Harsha V. Madhyastha, Oliver Spatscheck
Web performance measurements and availability tests have been carried out using a variety of infrastructures over the last several years. Disruptions in the Internet can lead to Web sites being...
Analysis of communities of interest in data networks (2005)
William Aiello, Charles Kalmanek, Patrick Mcdaniel, Subhabrata Sen, Oliver Spatscheck
Abstract. Communities of interest (COI) have been applied in a variety of environments ranging from characterizing the online buying behavior of individuals to detecting fraud in telephone networks....
Accurate, Scalable In-Network Identification of P2P Traffic Using Application Signatures (2004)
Sen, Subhabrata, Spatscheck, Oliver, Wang, Dongmei
The ability to accurately identify the network traffic associated with different P2P applications is important to a broad range of network operations including application-specific traffic...
Matthew Roughan, Subhabrata Sen, Oliver Spatscheck, Nick Duffield
The ability to provide different Quality of Service (QoS) guarantees to traffic from different applications is a highly desired feature for many IP network operators, particularly for enterprise...
Accurate, Scalable In-Network Identification of P2P Traffic Using Application Signatures (2004)
Subhabrata Sen, Oliver Spatscheck
The ability to accurately identify the network traffic associated with different P2P applications is important to a broad range of network operations including application-specific traffic...
Class-of-Service Mapping for QoS: A statistical (2004)
Matthew Roughan, Subhabrata Sen, Oliver Spatscheck, Nick Duffield
The ability to provide different Quality of Service (QoS) guarantees to traffic from different applications is a highly desired feature for many IP network operators, particularly for enterprise...
Efficient and Robust Streaming Provisioning in VPNs (2003)
Mao, Zhuoqing Morley, Johnson, David, Spatscheck, Oliver, Merwe, Jacobus Van Der, Wang, Jia
Today, most large companies maintain virtual private networks (VPNs) to connect their remote locations into a single secure network. VPNs can be quite large covering more than 1000 locations and in...
Efficient and Robust Streaming Provisioning in VPNs (2003)
Z. Morley Mao, David Johnson, Oliver Spatscheck, Jia Wang
Today most larger companies maintain virtual private networks (VPNs) to connect their remote locations into a single secure network. VPNs can be quite large covering more than 1000 locations and in...
Efficient and Robust Streaming Provisioning in VPNs (2003)
Morley Mao David, David Johnson, Oliver Spatscheck, Jia Wang
Today, most large companies maintain virtual private networks (VPNs) to connect their remote locations into a single secure network. VPNs can be quite large covering more than 1000 locations and in...
Efficient and Robust Streaming Provisioning in VPNs (2003)
Z. Morley Mao, David Johnson, Oliver Spatscheck, Jia Wang
Today, most large companies maintain virtual private networks (VPNs) to connect their remote locations into a single secure network. VPNs can be quite large covering more than 1000 locations and in...
What Does the Mean Mean (2003)
Matthew Roughan, Oliver Spatscheck
roughan,spatsch¢ As the Internet has become a big business, its performance has become an important question. Several companies have started monitoring Internet performance, many ISPs now conduct...
Proceedings Of The, Zhuoqing Morley Mao, Charles D. Cranor, Fred Douglis Ý, Michael Rabinovich, Oliver Spatscheck, ...
Permission is granted for noncommercial reproduction of the work for educational or research purposes.
How to Query Network Traffic Data Using Data Streams (2002)
Chuck Cranor, Theodore Johnson, Oliver Spatscheck
In this paper, we show how ad-hoc queries can be made in real time on network traffic data using a data stream model. We define a rich class of ordering properties and use them to label the...
Zhuoqing Morley Mao, Charles D. Cranor, Fred Douglis, Oliver Spatscheck, Jia Wang
Content Distribution Networks (CDNs) attempt to improve Web performance by delivering Web content to end-users from servers located at the edge of the network. An important factor contributing to the...
Zhuoqing Morley Mao, Charles D. Cranor, Fred Douglis, Michael Rabinovich, Oliver Spatscheck, Jia Wang
Content Distribution Networks (CDNs) attempt to improve Web performance by delivering Web content to end-users from servers located at the edge of the network. An important factor contributing to the...
Zhuoqing Morley Mao, Charles D. Cranor, Fred Douglis, Michael Rabinovich, Oliver Spatscheck, Jia Wang
Content Distribution Networks (CDNs) attempt to improve Web performance by delivering Web content to end-users from servers located at the edge of the network. An important factor contributing to the...
Ros Biliris, Chuck Cranor, Fred Douglis, Michael Rabinovich, Eep Sibal, Oliver Spatscheck, ...
Content distribution networks (CDNs) increase the capacity of individual Web sites and attempt to deliver content from caches that are located "closer " to end-users than the origin...
Ros Biliris, Chuck Cranor, Fred Douglis, Michael Rabinovich, Eep Sibal, Oliver Spatscheck, ...
Content distribution networks (CDNs) increase the capacity of individual Web sites and attempt to deliver content from caches that are located “closer ” to end-users than the origin servers that...
Characterizing Large DNS Traces Using Graphs (2001)
Charles D. Cranor, Emden Gansner, Er Krishnamurthy, Oliver Spatscheck
The increasing deployment of overlay networks that rely on DNS tricks has led to added interest in examining DNS traffic. In this paper we report on a characterization of DNS traffic gathered over a...
Ros Biliris, Chuck Cranor, Fred Douglis, Michael Rabinovich, Eep Sibal, Oliver Spatscheck, ...
Content distribution networks (CDNs) increase the capacity of individual Web sites and attempt to deliver content from caches that are located “closer ” to end-users than the origin servers that...
Optimizing TCP forwarder performance (2000)
Oliver Spatscheck, Jrgen S. Hansen, John H. Hartman, Larry L. Peterson
A TCP forwarder is a network node that establishes and forwards data between a pair of TCP connections. An example of a TCP forwarder is a firewall that places a proxy between a TCP connection to an...
Optimizing TCP forwarder performance (2000)
Oliver Spatscheck, Jrgen S. Hansen, John H. Hartman, Larry L. Peterson
Abstract--- A TCP forwarder is a network node that establishes and forwards data between a pair of TCP connections. An example of a TCP forwarder is a firewall that places a proxy between a TCP...
TPOT: Translucent Proxying of TCP (2000)
Pablo Rodriguez, Sandeep Sibal, Eep Sibal, Oliver Spatscheck
Transparent Layer-4 proxies are being widely deployed in the current Internet to enable a vast variety of applications. These include Web proxy caching, transcoding, service differentiation, and load...
TPOT: Translucent Proxying of TCP (2000)
Pablo Rodriguez, Sandeep Sibal, Eep Sibal, Oliver Spatscheck
Transparent proxies are being widely deployed in the current Internet to enable a vast variety of applications. These include Web proxy caching, transcoding, service differentiation and load...
Experiences building a communication-oriented JavaOS (2000)
John Hartman, Larry Peterson, Andy Bavier, Peter Bigot, Patrick Bridges, Brady Montz, ...
Window Toolkit (AWT) provides all the widgets one expects from a graphical user interface: windows and dialogs, buttons, scrollbars, text areas, and canvases for drawing. Unfortunately, the Scout API...
Optimizing TCP forwarder performance (2000)
Oliver Spatscheck, Jcrgen S. Hansen, Student Member, John H. Hartman, Larry L. Peterson, Senior Member
Abstract--A TCP forwarder is a network node that establishes and forwards data between a pair of TCP connections. An example of a TCP forwarder is a firewall that places a proxy between a TCP...
Optimizing TCP forwarder performance (2000)
Oliver Spatscheck, Jørgen S. Hansen, John H. Hartman, Larry L. Peterson
¢¡¤£¦¥¨§�©��� ¥ — A TCP forwarder is a network node that establishes and forwards data between a pair of TCP connections. An example of a TCP forwarder is a firewall that places a...
Joust: A platform for communications-oriented liquid software (1999)
John H. Hartman, Larry L. Peterson, Andy Bavier, Peter A. Bigot, Patrick Bridges, Brady Montz, ...
Joust is a software platform for liquid software---code that flows easily from machine to machine. Liquid software makes it easier to maintain, debug, update, and customize networked systems. One of...
Defending Against Denial of Service Attacks in Scout (1999)
Oliver Spatscheck, Oliver Spatscheck, Larry L. Peterson, Larry L. Peterson
We describe a two-dimensional architecture for defending against denial of service attacks. In one dimension, the architecture accounts for all resources consumed by each I/O path in the system; this...
Defending Against Denial of Service Attacks in Scout (1999)
Oliver Spatscheck, Larry L. Peterson
We describe a two-dimensional architecture for defending against denial of service attacks. In one dimension, the architecture accounts for all resources consumed by each I/O path in the system; this...
Defending Against Denial of Service Attacks in Scout (1999)
Oliver Spatscheck, Larry L. Peterson
We describe a two-dimensional architecture for defending against denial of service attacks. In one dimension, the architecture accounts for all resources consumed by each I/O path in the system; this...
Defending Against Denial of Service Attacks in Scout (1999)
Oliver Spatscheck, Larry L. Peterson
We describe a two-dimensional architecture for defending against denial of service attacks. In one dimension, the architecture accounts for all resources consumed by each I/O path in the system; this...
Optimizing TCP Forwarder Performance (1998)
Oliver Spatscheck, Jørgen S. Hansen, J��rgen S. Hansen, John H. Hartman, Larry L. Peterson
A TCP forwarder is a network node that establishes and forwards data between a pair of TCP connections. For example, a firewall that places a proxy between a TCP connection to an external host and a...
Joust: A Platform for Liquid Software (1998)
John H. Hartman, Larry L. Peterson, Andy Bavier, Peter A. Bigot, Patrick Bridges, Brady Montz, ...
Mobile code makes it easier to maintain, debug, update, and customize a system. Active networks are one of the most interesting applications of mobile code: code is injected into the nodes of a...
Escort: Securing Scout paths (1997)
Oliver Spatscheck, Larry Peterson
Scout is a communication-orientedoperating system that can be specialized for different information appliances. It uses paths as an explicit jirst class object to describe the flow of information...
Escort: Securing Scout paths (1997)
Oliver Spatscheck, Oliver Spatscheck, Ph. D, Director Larry, L. Peterson
It is becoming increasingly common to find special-purpose communication devices---Information Appliances---attached to the Internet. Information appliances include network-attached disks, cameras,...
Escort: A Path-Based OS Security Architecture (1997)
Oliver Spatscheck, Larry L. Peterson
Escort is the security architecture for Scout, a configurable operating system designed for network appliances. Scout is unique in that it is designed around paths---a communication-centric...
Joust: A Platform for Communication-Oriented Liquid Software (1997)
John H. Hartman, Larry L. Peterson, Andy Bavier, Peter A. Bigot, Patrick Bridges, Brady Montz, ...
Joust is a software platform for liquid software---code that flows easily from machine to machine. Liquid software makes it easier to maintain, debug, update, and customize networked systems. One of...
Escort: A Path-Based OS Security Architecture (1997)
Oliver Spatscheck, Larry L. Peterson
Escort is the security architecture for Scout, a configurable operating system designed for network appliances. Scout is unique in that it is designed around paths---a communication-centric...
Covert Channel Elimination Protocols (1996)
Nick Ogurtsov, Hilarie Orman, Richard Schroeppel, Sean O'Malley, Oliver Spatscheck
With the increasing growth of electronic communications, it is becoming important to provide a mechanism for enforcing various security policies on network communications. This paper discusses our...