Title: Distributed Denial of Service The current state and counter measures Author: Juergen Brendel Company: Esphion Ltd. Speaker Bio: Juergen Brendel is CTO and VP of Engineering at Auckland- based Esphion Ltd., which specialises in tools for the defence against DDoS attacks. Before coming to Esphion, Mr. Brendel was software architect for Resonate, a Silicon Valley Internet traffic management software company, where he was responsible for the low-level networking components of Resonate's products. There he invented and implemented several patented networking technologies in the areas of resource-based load-balancing, RTT optimisation and others. Before coming to Resonate, Mr. Brendel worked as software engineer at nCUBE Corp., developing software for massively parallel super computers. Other, shorter stints include time with Siemens in Canada as well as an Internet e-commerce company in Germany. Abstract The presentation will provide a background about the DDoS threat, provide an overview of the evolution of the more popular tools used for this purpose and discuss future trends in DDoS. It then moves on to highlight some of the means by which DDoS attacks can be detected and how one might defend a site or network against such an attack. Title: NLANR AMP Author: Tony McGregor Company: University of Waikato. Speaker Bio: Tony McGregor is a Senior lecturer in Computer Science at the University of Waikato. His interests include computer networks and operating systems internals. He is leader of the Universities WAND network measurement group and also of the NLANR AMP active measurement group, based at the San Diego Super Computer Centre in California USA. He is a frequent speaker at international conferences, including the keynote speech at the SAINT2002 measurement workshop. Abstract The NLANR AMP project is an active measurement project focused on the US Research and Education networks including Abilene and vBNS. The project has deployed 130 active measurement monitors around the network. There are also a small number of international monitors, including two in New Zealand. The project collects round trip time, loss and topology and will perform throughput tests on demand. Results are presented through web pages and graphical visualisations. Title: Author: David Moore Company: CAIDA Speaker Bio: David Moore is the Co-Director and a PI of CAIDA (the Cooperative Association for Internet Data Analysis). His responsibilities include general management of a staff of 25 employees, including administrative and office staff, programmers, researchers, PhD's, and technical managers, as well as management and oversight of 3 NSF grants, a 2.4 million dollar DARPA grant, membership funds, and gift accounts. David is also the lead technical manager at CAIDA. In this capacity, he has directed research efforts for passive management, including the CoralReef software suite, traffic workload characterization , Internet topology and performance, fragmented IP traffic , denial-of-service attack characterization, and DNS characterization. He also led the development of NetGeo, an automated tool that maps IP addresses, domain names, and Autonomous Systems (AS) numbers to geographic locations. He is a project collaborator for Walrus, a hyperbolic 3-D visualization tool for viewing large (on the order of one million nodes) directed graphs. Abstract David's research interests are high speed network monitoring, denial-of-service attacks and infrastructure security, and Internet traffic characterization. His current research includes tracking and quantifying global DoS attacks using the backscatter analysis technique, developed with Geoff Voelker and Stefan Savage of UCSD. Most recently, David has been applying some of the same measurement techniques using large address spaces to monitor several of this summer's large worms: CodeRed v1 and v2, CodeRed-II, and Nimda. David's work has also been featured with a cover photograph and story in Information Security Magazine (for work with Geoff Voelker and Stefan Savage), in Scientific American, and in numerous newspaper articles and television news programs. An animation of the spread of the CodeRed worm, developed by Jeff Brown and David Moore, appeared on CNN. Title: RPSL Author: Andy Linton Company: APNIC Speaker Bio: Andy has recently been working on contract for APNIC on their pilot RPSL-based services that will eventually replace the current RIPE version 2 servers. He has worked in New Zealand as Chief IP Engineer for Netlink and TelstraSaturn and IP Network Architect for Xtra and in Australia as a Network Engineer for connect.com.au and AARNet. Abstract As Internet backbone connectivity becomes more complex, it becomes more difficult to keep track of peering policies with providers and customers. By specifying routing details using RPSL in the public Internet Routing Registry (IRR) providers can use the information to check consistency and build router configurations. Recent postings on the nznog mailing list illustrate that manual configuration of filter lists may leave something to be desired. This paper will use a case study to examine the benefits of converting from manual configuration of BGP peering policy on routers to using tools such as RtConfig to extract policy information from IRR. Title: Multitenanted VOIP, and the VOIP market in NZ. Author: Roger De Salis Company: Cisco Systems. Speaker Bio: Roger De Salis has worked in the IT industry in NZ for far too long, and is currently an Account Manager with Cisco Systems, specialising in VOIP and Telephony applications using Internet technologies. When not playing with voice, PC's and Cisco hardware, he is trying to figure out interesting ways to divert childrens student loan funds into AVGAS. Abstract Multitenanted VOIP, and the VOIP market in New Zealand. VOIP is emerging very strongly, with the only to be expected technical hurdles being experienced. From a financial perspective, all development on PABX equipment has stopped by all major PABX vendors, and all efforts by the major vendors are about implementing VOIP systems that are compatible with each other. The paper will focus strongly on local initiatives and efforts to help the transition to VOIP, and provide the service layer independent of the transport layer, which is required to allow a voice infrastructure over broadband to emerge. Title: IPv6 for dummies (and not so dummies) Author: Dean Pemberton Company: Juniper Networks. Speaker Bio: Dean Pemberton works for Juniper Networks. He has too many tasks to tie them down to just one job title, but Network Engineer and Juniper Certified Trainer would be a start. Before Juniper Networks he was employed by Lucent Technologies as Senior Network Engineer, and Ascend Communications prior to that. Despite now living in Sydney, Dean maintains a high level of visibility in the New Zealand Internet. Posting far too much to the NZNOG list and working closely with New Zealand carriers and ISPs. Abstract There is a lot of buzz about IPv6 in the industry at the moment. In a recent survey of NZNOG membership it was rated in the top two topics that members wanted to learn about. This session will contain an indepth discussion of the differences between IPv4 and IPv6. It will also explore the features new to IPv6 and how these may be used to allow easy migration from current IPv4 networks. It even solves the mystery of what happened to IPv5. Title: Strategies For Managing Denial Of Service Author: Ian Quinn Company: Juniper Networks. Speaker Bio: Ian Quinn has worked for various network operators, integrators and vendors over the past decade. He works as a Systems Engineer for Juniper networks where he has been involved in the rollout of customer networks over the past 1.5 years. Abstract Strategies For Managing Denial Of Service DoS attacks have continued to present a major issue to IP service providers throughout 2001 and early 2002. This paper covers the DoS problem, along with network design strategies that will assist service providers to lower the operational overhead of managing DoS and increase service levels. The discussion will cover: - An overview of current DoS activity - Current practices to minimise and manage DoS - Approaches to network design to improve management of DoS Title: Multicast Development Author: Greg Shephard Company: Juniper Networks Speaker Bio: Greg is a Consulting Engineer for Juniper Networks, focusing primarily on multicast protocols, performance, customer solutions, and market drivers. Before joining Juniper, Greg worked in multicast development at Cisco Systems, spending most of his time in customer deployment, and also presented the Advanced Multicast Routing tutorial for Cisco Networkers. Until recently he held a faculty position at the University of Oregon's Advanced Networking Technology Center, where he provided multicast direction to the Internet2 community. Greg also sits on the Board of Advisors for Digital Fountain. Abstract Multicast Deployment This session will provide a perspective of multicast deployment overseas, including: - the content and applications that it is supporting - how the 'chicken and the egg' situation (content vs capability) was overcome - common architectures This is intended to help fuel discussion on multicast deployment in NZ. Title: 802.11a Author: Matthew G Brown Company: B & R Holdings Speaker Bio: Matthew G Brown B & R Holdings Abstract I would like to talk about 802.11a & 5.8ghz PTMP networks , Inc linux wireless routers. We don't sell equipment but we do service a lot. Would love to introduce some new concepts to the groups. Title: Providing Outsourced Network Security Solutions Author: Arron Scott Company: Cisco Systems Speaker Bio: Having been involved in Data Communications for 15 years, Arron Scott has spent the last 8 years involved in Internet communications in New Zealand. First as a Network Systems Programmer at the University of Waikato, supporting the New Zealand Internet Exchange, Arron worked on the transitioning of the Internet from an Academic run network to a corporate entity. Arron then spent four years at Telecom New Zealand as Principal IP Technologist responsible for architecture of a number of Telecom's IP platforms, including NetGate. For the last two years Arron has been a Systems Engineer at Cisco, training, presenting, and designing Networks for both the ISP and Enterprise market. Abstract "Providing Outsourced Network Security Solutions" To increase revenue as an Internet Service Provider it is necessary to increase the value you add to customers beyond just delivering Internet access. One primary area of adding value is through the offering of Outsourced Network Security, which may include such features as Firewalling, Mail Filtering, DDoS prevention, and VPN's. This paper intends to look at ways of defining, bundling, and deploying technology to deliver Security services that your marketing people can sell. Title: Residential Ethernet-on-Fibre Author: Colin Goodwin Company: Ericsson NZ Speaker Bio: Colin is the Group Product Manager - Broadband Access, for Ericsson Australia, responsible for Ericsson's DSL and Gigabit Ethernet product lines. Colin has worked all his life in telecommunications, in a broad range of roles ranging from technical development and support, product development and management , and consulting on technical, and financial aspects of telecommunications strategy. He has worked for large corporations such as BHP, Telstra, Data General, UB Networks, and Ericsson, as well as a small Internet startup. He has lived and worked in Australia, France and the USA, and worked into Asia (from India to Korea to New Zealand). Before joining Ericsson, Colin worked for 5 years as a Senior Product Manager for Telstra as the leader of product development on managed router services, VoIP, VPN's, and Satellite and DSL broadband services. Abstract Residential Ethernet-on-Fibre Every telecommunications engineer knows the BEST broadband access .. unquestionably it's fibre-to-the-home. However until recently it's been considered too costly for residential access, and deployment has been limited to a handful of small and expensive demonstrations. Now things have changed and in Sweden (and a number of other countries) the first rollout of large-scale residential fibre-to-the-home is occurring, with many thousands of services now connected. Ericsson has productised their offering, and has begun promoting the solution in New Zealand and Australia. The carefully tuned combination of Ethernet and Fibre elements makes it cost-attractive today, for the existing set of Internet, Pay-TV and telephony services, at normal prices. Colin Goodwin has considerable experience in broadband access, having brought several ADSL and broadband satellite products to market. He is knowledgeable on the commercial factors that deliver a successful product as well as the technology factors. Title: Multicasting - an introduction to the technology and applications. Author: David Robb Company: Telecom New Zealand Speaker Bio: David is currently working as a Senior Systems Specialist at Telecom, previously of IHug fame, where he had been lurking for 5 years or so in various network engineering roles. Abstract Assuming a basic knowledge of IP networking (ie, what IP addresses, routers, and routing protocols are, although detailed knowledge of them isn't needed), this presentation aims to introduce the concepts of multicast (as opposed to unicast or broadcast), a brief overview of the multicast routing protocols (igmp, pim, dvmrp etc) and the conecept of reverse path filtering, and some discussion about applications of multicasting in the corporate/isp/internet environment. Basically it's a "this is why multicast is good, and why you should use it" Hopefully this will lead to an increase of interest in the idea of an NZ Mbone. :)