Login       -       Change Password       -       Recent Changes       -       Search:

InterStream Overview

InterStream FAQ

Working Groups


Technology and Standards

WiKi Help

edit SideBar

Secure Mediation Controller

InterStream provides a Secure Mediation Controller (SMC) for micro/advanced-TCA network equipment platforms and, under open source license, for proprietary network equipment platforms to mediate bottlenecks. These mediation controllers are stateless, as opposed to stateful, in design. The SMC implements a secure active queue management algorithm (AQM) designed for ISTP's TCP implementation and other mediation technology enabling network operators to establish their own mediation policies. Ordinary "best effort" Internet service typically relies on TCP reducing round trip times (RTTs) to increase bandwidth share. With InterStream's technology, bandwidth share remains equally partitioned between best effort flows. Therfore, RTT gamesmanship (see Mathis) leveraging edge-based Content Delivery Networks and Cloud Services no longer will obtain "best of better than best effort" bandwidth.

InterStream is pursuing an "brand within the brand" strategy for SMC deployment. The SMC, as it is integrated into micro- and advanced-TCA platforms can be viewed as a general purpose "bandwidth spigot", or idealized stage of service, that is managed via the media grid management portal. In essence, the management portal acts as a network management system for management of peering agreements and application bandwidth allocation. ISPs and network operators can use the system to manage external agreements and how they impact bandwidth allocation inside their network via those mediation policies.

The SMC provides the following key services for ISPs and the industry:

Segments traffic into queues which are appropriate for each service level offered by the InterStreamSM ISP. Provides transit key authentication services that can be managed via the Media Grid Management Portal and Association's PKI. Isolates sustained transfer downloads (such as FTP transfers and peer-to-peer) from ordinary web surfing traffic.

By embedding the SMC into open hardware platforms such as the micro- and advanced-TCA, or licensing the technology for their proprietary platforms from Cambix, network equipment manufacturers may use the facilities provided to build a flexible and open system for mediating network bottlenecks. The SMC has four primary components:

  1. Secure Application Module - A module embedded within the hardware computing system which stores private keys for the ISTK management system.
  2. Stage of Service Implementation(s) - Hardware and Open Source Software components which enable router and switch manufacturers to develop and deploy secure mediation technology within their Aggregation or Edge Services Routers (ASRs/ESRs). This includes a new set of Active Queue Management algorithms which may be deployed using hardware or software implementations.
  3. An SDK and Toolkit - Network equipment manufacturers may integrate and enhance their existing DiffServ implementations with the SMC hardware and software library.
  4. A Secure BIOS Implementation - The micro/advanced-TCA and PC BIOS insures trusted and secure implementation of SMC libraries.

These components are being integrated by network equipment manufacturers to be deployed in the InterStream Pilot & Roll-Out.

Note: For existing edge and aggregation service router solutions already deployed in customer networks, retrofit kits may be developed under NRE in conjunction with Cambix and made available to network operators.

Edit - History - Print - Recent Changes - Search
Page last modified on June 04, 2013, at 11:31 AM PST