Netalyzr: Network Measurement as a Network Security Problem

Channel:
Microsoft Research
Subscribers:
344,000
Published on ● Video Link: https://www.youtube.com/watch?v=Ljm7B_Gai6M


Duration: 58:55
313 views
1

Netalyzr, at http://netalyzr.net, is a widely used network measurement and debugging tool, with over 300,000 executions to date. Netalyzr is a signed Java applet coupled to a custom suite of test servers in order to detect and debug problems with DNS, NATs, hidden HTTP proxies, and other issues. Netalyzr has revealed many problems in the Internet landscape, ranging from broken NAT DNS resolvers, hidden caches and malfunctioning proxies, to deliberate ISP manipulations of DNS results, including some ISPs which used DNS to man-in-the-middle search properties like Yahoo, Google, and Bing. Although Netalyzr is a network measurement tool, writing it was a network security process, designed to detect unusual conditions by deliberately bending (or outright breaking) protocol specifications, using unintended features of Java, and a general dose of 'sneaky'. This talk discusses the design of Netalyzr, interesting cases observed during development, and highlights some of the interesting results including HTTP caches, hidden proxies, chronic overbuffering, and DNS misbehaviors, including the infrastructure behind the recently publicised ISP hijacking of search engines using DNS.



Other Videos By Microsoft Research


2016-08-16Invited Demonstrations (Session I; 10 minutes/demonstrator) Charles Parnot
2016-08-16Invited Demonstrations (Session I; 10 minutes/demonstrator) Phil Bourne
2016-08-16Invited Demonstrations (Session I; 10 minutes/demonstrator) Tim Clark
2016-08-16Invited Demonstrations (Session I; 10 minutes/demonstrator) David DeRoure
2016-08-16Invited Demonstrations (Session I; 10 minutes/demonstrator) Rafael Sidi
2016-08-16Andrew Herbert Career Celebration Workshop - You ainΓÇÖt seen nothing yet!
2016-08-16Serendipity and Spam
2016-08-16Graphical Models for Characterizing Context
2016-08-16Structured Prediction Models for High-level Computer Vision Tasks
2016-08-16Andrew Herbert Career Celebration Workshop- WhatΓÇÖs Next?
2016-08-16Netalyzr: Network Measurement as a Network Security Problem
2016-08-16Information-Greedy Global Optimisation
2016-08-16Abstractions in Satisfiability Solvers
2016-08-16Efficient Oblivious Automata Evaluation and Its Application
2016-08-16Andrew Herbert Career Celebration Workshop - Why do humans keep undermining System Research!
2016-08-16The Mathematical Challenge of Large Networks
2016-08-16Modeling Conversations in Social Media
2016-08-16Validation of a Quantum Simulator
2016-08-16Andrew Herbert Career Celebration Workshop - Verifying Cryptographic Code in C
2016-08-16SOLOMON: Seeking the Truth Via Copying Detection
2016-08-16Failure is a Four-Letter Word ΓÇô A Parody in Empirical Research


Tags:
microsoft research