QUIC offers security and privacy for modern web traffic by closely integrating encryption into its transport functionality. In this process, it hides transport layer information often used for network monitoring, thus obsoleting traditional measurement concepts. To still enable passive RTT estimations, QUIC introduces a dedicated measurement bit - the spin bit. While simple in its design, tracking the spin bit at line-rate can become challenging for software-based solutions. Dedicated hardware trackers are also unsuitable as the spin bit is not invariant and can change in the future. Thus, this paper investigates whether P4-programmable hardware, such as the Intel Tofino, can effectively track the spin bit at line-rate. We find that the core functionality of the spin bit can be realized easily, and our prototype has an accuracy close to software-based trackers. Our prototype further protects against faulty measurements caused by reordering and prepares the data according to the needs of network operators, e.g., by classifying samples into pre-defined RTT classes. Still, distinct concepts in QUIC, such as its connection ID, are challenging with current hardware capabilities.
翻译:QUIC 将加密紧密整合到其传输功能中,为现代网络交通提供安全和隐私。 在此过程中, QUIC 隐藏通常用于网络监测的运输层信息, 从而取代传统测量概念 。 为了仍然能够进行被动的 RTT 估计, QUIC 引入了一个专门的测量位 - 旋转位 。 虽然在设计上简单, 跟踪线速中的旋转位对于软件解决方案来说会变得很困难 。 专用的硬件跟踪器也不合适, 因为旋转位不会变化, 将来也会改变 。 因此, 本文调查 P4 可编程的硬件, 如 Intel Tofino 是否能在线性标本上有效跟踪旋转位 。 我们发现旋转位的核心功能可以很容易实现, 我们的原型与基于软件的跟踪器有精确性。 我们的原型在根据网络操作者的需求重新排序和编制数据时, 例如, 将样本分类成预定义的 RTTT 类 。 然而, QIIC 中的独特概念, 如连接 ID 与当前硬件能力 具有挑战性 。
相关内容
微信扫码咨询专知VIP会员