Monday Meeting Registration
|
Date/Time |
7:30 AM to 5:00 PM
|
Location |
Centennial Foyer |
back to meeting agenda.
|
Monday Breakfast
|
Date/Time |
7:30 AM to 9:45 AM
|
Location |
Capitol Ballroom 1-4 |
Sponsors |
|
back to meeting agenda.
|
Monday Espresso Bar
|
Date/Time |
8:30 AM to 4:30 PM
|
Location |
Centennial Foyer |
back to meeting agenda.
|
Conference Opening
|
Date/Time |
10:00 AM to 10:30 AM
|
Location |
Centennial Ballroom |
Presenters |
- Speaker
- Ryan Donnelly, NANOG Board Chair
- Ryan Donnelly serves as the Senior Director of Network Engineering at salesforce.com. Previously, Ryan served in several leadership roles at Verisign, and has held engineering roles at both UUNET and the University of Wisconsin-Madison. Ryan's principal interests include interconnection, network automation and DNS, among many others. Ryan holds a B.B.A in Information Technology from the University of Wisconsin-Madison.
- Paul E. Szurek, Coresite
- Paul E. Szurek has served as our President and Chief Executive Officer since September 2016 and as a CoreSite director since September 2010. Prior to joining CoreSite as President and Chief Executive Officer, Mr. Szurek served as Chief Financial Officer of Biltmore Farms, LLC, a developer and operator of mixed-use master planned communities, from 2003 to September 2016. Mr. Szurek has previously served as Chief Financial Officer of Security Capital Group Incorporated, a publicly traded real estate investment, development and operating company with extensive REIT engagement, as a director of the Charlotte, North Carolina branch of the Federal Reserve Bank of Richmond and as a director of two publicly traded real estate companies, Regency Centers and Security Capital U.S Realty. Mr. Szurek received a J.D. with honors from Harvard Law School and a B.A. in Government, magna cum laude, from the University of Texas at Austin.
- Bob Leitner, Verizon
- Ryan Woolley, Netflix
- Ryan Woolley is Director of Global Network Architecture at Netflix, where he is responsible for the network architecture and engineering of the Open Connect CDN. He is also a member of the technical committee of Community IX, the operator of FL-IX in south Florida and CIX-ATL in Atlanta. Over the last 20 years, Ryan has been continuously involved in networking, with experience in enterprise, access, content delivery and Internet exchanges. He joined the Program Committee in 2014.
|
Presentation Files |
|
Video Files |
|
back to meeting agenda.
|
Keynote: “Operations first, feature second” Philosophy
|
Date/Time |
10:30 AM to 11:00 AM
recorded
|
Location |
Centennial Ballroom |
Presenters |
- Speaker
- Najam Ahmad, Facebook
|
Abstract |
Recently there was a blog post on Linkedin talking about the skills required to be a successful network engineer in the future. While the skills listed were all relevant and made sense, there was a key element missing – an operational mindset. To be successful at building and managing large scale infrastructure there has to be an operations first mindset to developing technology. It’s not simply about “automating” things or having a dev-ops team. This talk uses Facebook’s disaster recovery efforts as a case study to describe this mindset and approaches to deploying infrastructure that survives disasters without significant human intervention. |
Presentation Files |
|
Video Files |
|
back to meeting agenda.
|
The Full Edward: Meet our new Executive Director: Edward McNair
|
Date/Time |
11:00 AM to 11:45 AM
|
Location |
Centennial Ballroom |
Presenters |
- Moderator
- David Temkin, Netflix
- Dave Temkin is the Vice President of Networks for Netflix. Having been hired to build the Open Connect CDN, he is responsible for all network architecture and strategy as well as the operations of the Netflix network (AS2906). Before Netflix, he was at Yahoo!, where he focused on Layer 4-7 network architecture, having been brought in through the successful acquisition of Right Media where he was the Global Head of Networks.
In his spare time he enjoys travel and philanthropy - both through volunteering at technical organizations such as the Board of NANOG, the Founder of Open-IX, and FL-IX, where he is currently the chairman and cofounder. He as well participates on the board of Children of Bellevue.
- Speaker
- Edward McNair, NANOG
|
Abstract |
It will be my pleasure to introduce our new ED, Edward McNair, to the community. I will start with a 1:1 interview of Edward to help the audience get to know him and then move to audience Q&A.
|
Presentation Files |
|
Video Files |
|
back to meeting agenda.
|
Monday Lunch
|
Date/Time |
12:00 PM to 1:30 PM
|
Location |
Capitol Ballroom 1-4 |
Sponsors |
|
back to meeting agenda.
|
Newcomers Lunch (Invite Only)
|
Date/Time |
12:00 PM to 1:30 PM
|
Location |
Capitol 5-7 |
Sponsors |
|
back to meeting agenda.
|
T-Mobile's journey to IPv6 Only networking
|
Date/Time |
1:30 PM to 2:00 PM
recorded
|
Location |
Centennial Ballroom |
Presenters |
- Speaker
- Stephan Lagerholm
- Stephan Lagerholm - Senior Manager, Systems Design & Strategy, Technology
Stephan Lagerholm is an experienced networking thought leader who designs, builds and operates large and complex networks. He has experience in a wide array of network technologies with a deep expertise in DNS.
Stephan is currently employed at T-Mobile where he leads a team of network, OpenStack and DNS architects. Previously, he managed the team responsible for DNS at Microsoft, as well as held senior leadership positions at Secure64 Software Corporation.
In 2008 Stephan co-founded the Texas IPv6 Task Force with Stan Barber, and he served on the board until 2014. Stephan holds a Master of Computer Science degree from Uppsala University, Sweden.
|
Abstract |
Over the last 10 years, T-Mobile have had a strategy of removing our dependency of IPv4. In the spring of 2017 we finally flipped the switch and turned off IPv4 for over 10 million handsets. As of March 2018 we only have a single digit % of our users relying on IPv4.
We have in other words reached the utopia of making our customer experience independent of IP transport protocol. To achieve this we are using DNS64 and related technologies. Stephan will share some of T-Mobile’s experience with DNS64 and give some advice on how to find and handle broken applications and websites.
Talk outline:
• Background T-Mobile’s journey towards IPv6 only
• Background, RFC6147, RFC6877 and RFC7050
• Selection algorithm and happy eyeballs (RFC6555, RFC8305)
• Common failure scenarios for IPv6 only hosts
• RFC compliance and how popular DNS64 resolvers react to various common DNS misconfigurations
• Conclusion and learnings |
Presentation Files |
|
Video Files |
|
back to meeting agenda.
|
Preventing (Network) Time Travel with Chronos
|
Date/Time |
2:00 PM to 2:30 PM
|
Location |
Centennial Ballroom |
Presenters |
- Speaker
- Omer Deutsch
- Danny Dolev
- Neta Rozen Schiff, Hebrew University of Jerulsalem
- Neta Rozen Schiff is a postdoctoral fellow in the computer science department at the Hebrew University of Jerusalem, working with Prof. David Hay and Prof. Michael Schapira. Neta holds a B.Sc and M.Sc in Math from Bar-Ilan University and a Ph.D from the Technion. In addition to her studies, Neta spent several years in the industry as a software engineer and as a operations researcher. Her research interests include network optimization and control algorithms, computer networks security and software defined networks.
- Michael Schapira
|
Abstract |
The Network Time Protocol (NTP) synchronizes time across computer systems over the Internet. Unfortunately, NTP is highly vulnerable to “time shifting attacks”, in which the attacker’s goal is to shift forward/backward the local time at an NTP client. NTP’s security vulnerabilities have severe implications for time-sensitive applications and for security mechanisms, including TLS certificates, DNS and DNSSEC, RPKI, Kerberos, BitCoin, and beyond. While technically NTP supports cryptographic authentication, it is very rarely used in practice and, worse yet, timeshifting attacks on NTP are possible even if all NTP communications are encrypted and authenticated.
We present Chronos, a new NTP client that achieves good synchronization even in the presence of powerful attackers who are in direct control of a large number of NTP servers. Importantly, Chronos is backwards compatible with legacy NTP and involves no changes whatsoever to NTP servers. Chronos leverages ideas from distributed computing literature on clock synchronization in the presence of adversarial (Byzantine) behavior. A Chronos client iteratively “crowdsources” time queries across multiple NTP servers and applies a provably secure algorithm for eliminating “suspicious” responses and averaging over the remaining responses. Chronos is carefully engineered to minimize communication overhead so as to avoid overloading NTP servers.
We evaluate Chronos’ security and network efficiency guarantees via a combination of theoretical analyses and experiments with a prototype implementation. Our results indicate that to succeed in shifting time at a Chronos client by over 100ms from the UTC, even a powerful man-in-the-middle attacker requires over 20 years of effort in expectation. |
Presentation Files |
|
Video Files |
|
back to meeting agenda.
|
Public Speaking Forum
|
Date/Time |
2:00 PM to 3:00 PM
|
Location |
Capitol 5 |
Presenters |
- Speaker
- Christina Chu, NTT America
- Christina serves as the Director of IP Strategic Planning in NTT America, Inc. She has over 20 years of experience in the Internet industry and is passionate in building communities. She has served four years in the NANOG Program Committee. She currently serves the Global Peering Forum board. Having participated in Toastmasters provides her firsthand experience the benefit of constant practice in improving one’s public speaking skills. She would love to help NANOG put together this public speaking program to nurture the community’s interest in presenting on stage.
|
Abstract |
Public Speaking Forum provides a positive and supportive environment in a small group for participants to improve self-confidence and skills in public speaking through practice and peer feedback. In the pilot, we will offer fifteen seats in a group with eight 3-min speaking slots. Space is limited. Sign up is required. First come first served. If you sign up for a speaking slot, please prepare for a 3 mins speech with a topic of your choice. You can sign up for a speaking slot at https://www.nanog.org/meetings/nanog73/psf |
back to meeting agenda.
|
Memcached amplification: lessons learned
|
Date/Time |
2:30 PM to 3:00 PM
|
Location |
Centennial Ballroom |
Presenters |
- Speaker
- Artyom Gavrichenkov, Qrator Labs CZ
- CTO at Qrator Labs, a DDoS mitigation and network monitoring company. Graduated from Moscow State University, faculty of Computational Mathematics and Cybernetics; has been working in the area of IT networking and monitoring for a decade. Has previously been presenting at numerous conferences, including BlackHat USA, RIPE Meeting, APNIC/APRICOT, and ICANN EE DNS Forum.
|
Abstract |
In November 2017, researchers have found a new class of amplification DDoS attacks: the memcached amplification. Soon after the discovery, at the beginning of March 2018 those attacks were already in the wild, with a bandwidth close to 1,7 Gbps.
What we're going to discuss is an analysis of the threat structure, causes and consequences, and what we're able to do to prevent such issues from happening next time. |
Presentation Files |
|
back to meeting agenda.
|
SNMP is dead
|
Date/Time |
3:00 PM to 3:30 PM
|
Location |
Centennial Ballroom |
Presenters |
- Speaker
- Carl Lebsack, Google
- Carl is a Software Engineer and Technical Lead for network streaming telemetry infrastructure at Google and a member of the OpenConfig project. Previously he worked in the Microarchitecture Research Lab at Intel, the High Performance Computer Benchmarking Center at IBM and the Radio Base Station Group at Motorola. He holds BS and MS degrees in Computer Engineering from the Illinois Institute of Technology and a PhD in Computer Engineering from Iowa State University. His first exposure to computer networking was a 1200 baud modem on a Commodore 64 which he still owns.
- Rob Shakir, Google
- Rob works in Google’s Network Architecture team where he focuses on the software surrounding the network - particularly, defining interfaces to network devices suitable for the needs of modern network operations, and evolving on/off-box control planes. Prior to Google, Rob contributed to the engineering and architecture teams running a number of global networks, including BT’s private and Internet backbones, Cable&Wireless’ L2/L3VPN network, and running an SRE team for a unified communications provider. Rob contributes to open source projects and standards bodies - co-leading the OpenConfig project, and co-chairing the SPRING (segment routing) working group in the IETF.
|
Abstract |
Modern networks have significantly outpaced the monitoring capabilities of SNMP and command-line scraping. Over the last three years we at Google have been working with members of the networking industry via the OpenConfig.net effort to redefine network monitoring. We have now deployed Streaming Telemetry in production to monitor devices from multiple vendors. We will talk about the experience and highlight the open source components we are providing to the community to accelerate industry-wide adoption. |
Presentation Files |
|
Video Files |
|
back to meeting agenda.
|
Monday PM Break
|
Date/Time |
3:30 PM to 4:00 PM
|
Location |
Centennial Foyer |
Sponsors |
|
back to meeting agenda.
|
Segment Routing: the stuff marketing doesn’t talk about
|
Date/Time |
4:00 PM to 4:30 PM
|
Location |
Centennial Ballroom |
Presenters |
- Speaker
- steve ulrich, arista networks
- steve ulrich is a networking dork in the cloud service provider group at juniper networks where for the past 4 years he has spent his days (and nights) working with customers to deploy new (and sometimes not so new) networking technologies and platforms. prior to juniper he spent 13 years as yet another networking dork for cisco systems working in the web services and service provider groups doing many of the same things.
|
Abstract |
Over the past few years, Segment Routing has received a considerable amount of attention for enabling a range of novel new network capabilities. While Segment Routing holds considerable promise in terms of network simplification and enabling new modes of operation there are a number of architectural and deployment considerations which have received little attention in the excitement to discuss what can be. This presentation is a brief discussion of some of the practical considerations in enabling Segment Routing in production networks and some of the challenges to be addressed and potential solutions. Topics include RSVP-SR coexistence and migration, label space/stack management, new traffic engineering and diagnostic considerations. |
Presentation Files |
|
Video Files |
|
back to meeting agenda.
|
Peering Coordination Forum
|
Date/Time |
5:00 PM to 6:30 PM
|
Location |
Capitol Ballroom 1-4 |
Sponsors |
|
back to meeting agenda.
|
Monday Evening Social Event
|
Date/Time |
7:00 PM to 10:00 PM
|
Location |
Blue Moon Brewery |
Abstract |
Time: 7:00pm - 10:00pm
Location: Blue Moon Brewery
Address: 3750 Chestnut Pl. Denver, CO 80216
Transportation will be provided
**NANOG Badge required for entry** |
Sponsors |
|
back to meeting agenda.
|