resilient space-based software defined networks
TRANSCRIPT
Integrity « Service « Excellence
Resilient Space-based Software Defined
Networks
James LykeAir Force Research Laboratory
27 June 2017
2
FutureSpaceCommunications(FSC)
• Vision• Give warfighters resilient and ambient connectivity
(enabled with space technology)
• HowCommunicationsShouldWork• “Always on” – there when you need it• “Path agnostic” – exploit any all links and pathways• “Automagic” – sort connectivity autonomously for
human /machine clients, apps• Secure – in a fluent, natural way – make and break
virtual networks on demand cryptographically solid isolation (“polychromatic” – multi-level security) and cyber-secure (minimize attack surfaces)
• Invisible – Low probability of intercept (LPI) –elastically trade bandwidth and non-detection
Goal:Ambientconnectivity
3
DesiredUseCases
ground(inter)networks
payloadmissiondata
Tacticalcommaugmentation
Opportunisticrelay
Missionwithcomm relay
4
AchievingAmbientConnectivity
•Self-formingnetworks(topologyagnostic)
•Everyplatformcanbeacontributingnode
•Everyphysicallayer(rf,optical)canbeacontributinglink
•Everynodeispotentiallyanopportunisticrelay(withconfigurable“optin/out”settings)
•Networksessionsarevirtualizedovertheactualphysicalnetworkon-demand
5
Scale-freenetwork
Scale-freenetworks(e.g.Power-Lawdistribution)• Fewsuper-bigpipes• Lotsoflittlepipes• VulnerabletoattacksonbiggestpipesRandomnetworks(e.g.Erdos-Renya)• Egalitarian,uniformnode-degreehubs(mayrelaxthisconstraint)• Noperseweakestlinks• Nodesandedgesconnectedwithhighprobability(percolation)
Randomnetwork
ATaleofTwoGraphModels
Recommendedreading:A.Lazlo-Barabasi,Linked
6
Resilienceand“GNATS”
•OnepathtoachievingresilienceistoexploittheErdos-Renya randomgraphbyenrichingspacewithasmanyspacecraftaspossible(cubesats,bigsats,..)
•Theconceptofaflexible,self-hostingnetworkhubwitharbitrarymixtureofphysicallayerswetermaGlobalNetworkAccessTerminal(GNAT)
•AsatellitewithaGNATisaGNATsatellite(GNATS)•Liketheannoyinginsects,“gnats”areeasytokillindividually,buthardasanensemble– resilience!
7
SoftwareDefinedNetworksinContestedEnvironments
•Buildinganetworkofconnectedlinksisonething,harnessingiteffectivelyisanother
•Considerconceptsfromsoftware-definednetworks(SDN)andnetworkfunctionalvirtualization(NFV)withacoupleoftwists:– Heterogeneousnodesandedges– Designforresiliencytofailures
NetworkGraphs– SupplyandDemand
• Real-worldconnectivityisasupplygraph
• Wecreateasetofvirtualnetworksondemand(demandgraph)
• They“seemreal”ineverysignificantway– HavedefinedQualityof
Service(QoS)– Cryptographicallyisolated
(seemair-gapped)• Theyworkonlysolongas
the“real-world”networkshaveadequateconnectivityandQoS
A
D
BC
E
F
G
A C
FG E A B
Virtualnetworks
Real-worldnetwork
9
Contestedenvironment
• Oneormorelinksmightbreakduetojamming,weather,orviolationofQoS(notenoughbandwidth)
• Example,welostS-bandlinkanditwastheonlyconnection,soallVNsinvolvingthatlinkarebroken
A
D
BC
E
F
G
A C
FG E A B
Virtualnetworks
Real-worldnetwork
10
WhatisDifferentinSDNsforContestedEnvironments
• farmoredynamic:complexevolvinggeometricrelationships,linksmaybeattackedorimpaired,nodesmaybedestroyed,
• disparate/heterogeneousnodeandlink(wired,RF,optical)structure;
• flexibleanddistributedprovisioning(itmaybenecessarytoallowhierarchicaldelegationofprovisioningandcontrolpolicies,processes);
• diverseQoS withafocusonthebesteffortcanbeprovidedinacontestedarea(fromdisruptiontoleranttoreal-time)
• QoE (QualityofExperience)fortheuser’smissionplanninginacontestedarea;
• egalitarian(mostly)networknodes(notnecessarilydistinguishedmasters)
11
Contestedenvironmentexample2
• Ka-bandbroke(A<->B)buttheopticallinkdidn’t
• Therefore,theVNscanmaintainconnectivity
• Callthisidea“SDNincontestedenvironments”
• Seekthepuristrepresentationofnetworksintermsofflows,data(dataforwarding)plane,controlplane,managementplane
A
D
BC
E
F
G
A C
FG E A B
Virtualnetworks
Real-worldnetwork
RevisitingOpenSystemsInterconnectModel
Physical
DataLink
Network
Transport
Session
Presentation
Application
ProvisioningFacilityProvisioning/
Managementplane
ApplicationProgrammingInterface
WaveformLayerCP
NetworkLayerCP
AppA
WaveformLayerCP
AppB AppX
Software-DefinedVirtualNetwork(SVDN)
SVDN
13
DesiredUseCases“SmartphonesforSpace”
ground(inter)networks
payloadmissiondata
Tacticalcommaugmentation
Opportunisticrelay
Missionwithcomm relay
**
GlobalNetworkAccessTerminal(GNAT)
14
GNAT:ASmartphoneforSpace
• Wehavesmartphones• Spacecraftdonot• Thephonestheyhaveareverylimited• Wecanchangethat
ExampleRealWorldSmartphone- SamsungGalaxyS5
GNAT/Smart-PhoneAbstraction(InformationConvergenceDevice)
Router/Backplane
Informationprocessing
Communicationmodems(physicallayerdevices)
APossible“GNATRoadmap”Cubesat /nanosatVNX,half-heightVNX
ConventionalspacecraftOpenVPX/SpaceVPX
Gen0 Gen1 Gen2 Gen3
Photonicbackplane
Feature Gen0 Gen1 Gen2 Gen3BackPlane Custom/OEM SpaceVPX(SVPX) SVPX Photonic/SVPXCube ---- "SpaceVNX" Half-heightVNX Half-heightVNXI/O 100MbE,SpW 1GbE,SRIO 1/10/40GbE 1GbE+optical
18
A testbed for GNATSThe “RESINATE” testbed at Kirtland AFB, NM
Site2
Site1
Site3 Site4Site5
Site6
Site7
SandiaCrest• Phy0• Phy14400MHz• Phy2optical
SiteY1
Examplerandominstrumentatrandomlocation
Cosmiac• Phy0• Phy14400MHz• Phy2optical• Possiblesitefor
space-facingoptical*
• PossiblesiteforS-bandspace-facing*
B595(GPS/AGT?)• Phy0• Phy14400MHz• Phy2optical
B570roof• Phy0• Phy14400MHz• Phy2optical
B425• Phy0• Phy1
4400MHz• Control
center• Possible
crosslinknetworkemulator
Manzano• Phy0• Phy14400MHz• Phy2optical• Possiblesitefor
space-facingoptical
• PossiblesiteforS-bandspace-facingB472roof
• Phy0• Phy14400MHz
ControlPlane Dashboard
Phy1– 4400/4500MHzPhy2-- OpticalPhy3– S-band
Phy0– Controlplane
**
Emulatednodes
**
Crosslinkinhouse networkfarm
19
Reconfigurability,AdaptiveHierarchy,andtheRoleofCognitivex
20
WhatareReconfigurableSystems
• Involvesanabilitytoalterstructureand/orfunctionundersoftwarecontrol
• Software-definedhardware
• Functionalreconfigurabilityvs.Physicalreconfigurability
?
21
Whyhavereconfigurability?
• Flexibility
• x – ondemand(developmentspeed)• Reduceinventory(replacen partswith1)• Fieldupdates(features,bugfixes)• Resiliency(workaroundfaults,self-heal)• Adaptive,dynamicreconfiguration(time-sharesilicon)
22
TheComputer…
23
TheFieldProgrammableGateArray(FPGA)
Design capture Synthesis Program
Device
Uncommitted “blank” function
• Ahandfuloflogical“truthtables”
Past -1977 Today
n Billionsoftransistorsn Millionsoflogical“truthtables”
25
Computers
DigitalsystemsAnalogsystems
FPGAs
Programmable
Analogarrays
Programmable
microwave
configurablepower
Programmablepathways
Programmablemechanisms,materials
GeneralReconfigurableSystemsthermal
26
ReconfigurableRF
BasedonPhysicalAlteration
27
OpticalReconfigurableChannelProcessor(ORC-P)
ReconfigurableLaserCommunicationsandPhotonicNetworks
Aperture/
Telescop
e
Core#1
Core#2
Core#n
RXchannels
TXchannels
FIXEDDIGITALLASERCOMMTRANSCEIVER
RECONFIGURABLELASERCOMMTRANSCEIVER
ANALOGLASERCOM
TRANSCEIVER
PHOT
ONICDATABA
CKPLAN
E
RECONFIGURABLEPHOTONICPROCESSOR
OPTICALTIMETRANSFERMODULE
CHANNELPROCESSOROPTIONS
ControlPlaneProcessor(managesindividualCOREsandCORE-to-COREinteractions)
• Work(underARAP)towardsa“photonicsoftwaredefinedradio”withreconfigurablenetworks
• Agilelytunablebeamandwavelength
• Reconfigurablewaveform/protocol
28
Incr
easi
ng a
dapt
iven
ess
AdaptiveHierarchy
Fixed Systems
Programmable Systems
Configurable Systems
Self-configuringSystems
Autonomous Systems
29
30
Incr
easi
ng a
dapt
iven
ess
AutonomyHierarchy
Fixed Systems
Programmable Systems
Configurable Systems
Self-configuringSystems
Autonomous Systems
31
32
Incr
easi
ng a
dapt
iven
ess
AutonomyHierarchy
Fixed Systems
Programmable Systems
Configurable Systems
Self-configuringSystems
Autonomous Systems ?
33
CognitiveEnginesPossibleFrameworks
• Mostsoftwareradiosaren’t(setatfactory)
• Havesoftware,butcan’tchange
• APIsestablishthecentralmechanismforcognition
• APIsarenon-uniqueandnotmutuallyexclusive(RESTcanco-existwithlibrariesandmanuallyturnedknobs)
Reconfigurablesystem(hasknobsthataresoft-defined)
Howknobsarephysicallyaccessed
Mechanically/Manually
TightlycoupledApplicationProgrammingInterfaces(APIs)
Reconfigurability
AdaptiveApproach
Manually(humans
turnknobs)
AdHoc/Intellectualpropertyblocks(pre-determinedwaveforms)
Middleware(DDS,CORBA,…) REST Library
Apps/AppFrameworks
Factoryset(not
adaptive)PortabilityPOSSIBLE
PortabilitygenerallynotPOSSIBLECognitive
Engine
34
Distributedcognitiveengine
• Cognitivecommunicationsisacross-layerproblem– Apoint-to-pointlinkmightapply
cognitivemorphing(frequencyhopping)
– Asetofnetworknodesmightapplycognitivenetwork
• Assuch,wemustconsidernotonlyhowtodesignportablecognitiveenginesbuthowto– Maketheminteroperable– Allowelasticitytopush-down
(delegate)ruleswhenpossible
CognitiveEngine
CognitiveEngine
CognitiveEngine
CognitiveEngine
CognitiveEngine
CooperativeMorphing
Possibleprovisioningsystem Cognitive
Engine
35
CooperativeMorphingConcept
•Promotesthecreationofsingle-purpose(disposable)waveforms
{λ1,α1}
ex.max(BW)experimentsubjecttoparametricwaveform
variation(0<r<1)
Hypothesis 1
{λ2,α2}Hypothesis 2
{λ3,α3}Hypothesis 3
36
Summary•Ambientconnectivityistheaspirationofcommunicationsresearch•Patternsofcommunicationsshouldbeondemand•“Software-definednetworksincontestedenvironments”isthevonNeumann-esque questforreliablenetworkswithunreliablelinksandnodes(cyber-resilientwithpoly-chromaticsecurity)
•Weneedeveryplatformtohave/beasmartphone– EveryplatformisaGNAT,someless/morecapablethanothers– GNATsseekeachtobuildopportunisticnetworks
•BesidesbuildingtheGNAT-SDNinfrastructure,the“smartphones”canbeextendedtoinformationconvergence,EMconvergencehubs
•GNATnetworksaregreattestbedsforcognitiveengines– Reconfigurability andadaptivenessarenotthesameconcepts– Considerationofcooperating/cross-layercognitiveengines