DOCSLIB.ORG

Perspective Access Networks

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Perspective Access Networks Perspective Access Networks The Harvard community has made this article openly available. Please share how this access benefits you. Your story matters Citation Goodell, Geoffrey Lewis. 2006. Perspective Access Networks. Harvard Computer Science Group Technical Report TR-12-06. Citable link http://nrs.harvard.edu/urn-3:HUL.InstRepos:34310066 Terms of Use This article was downloaded from Harvard University’s DASH repository, and is made available under the terms and conditions applicable to Other Posted Material, as set forth at http:// nrs.harvard.edu/urn-3:HUL.InstRepos:dash.current.terms-of- use#LAA Perspective Access Networks Geoffrey Lewis Goodell TR-12-06 Computer Science Group Harvard University Cambridge, Massachusetts Perspective Access Networks A dissertation presented by Geoffrey Lewis Goodell to The Division of Engineering and Applied Sciences in partial fulfillment of the requirements for the degree of Doctor of Philosophy in the subject of Computer Science Harvard University Cambridge, Massachusetts July 2006 to my mother, Elaine c 2006 - Geoffrey Lewis Goodell All rights reserved. Thesis advisor Author Mema Roussopoulos Geoffrey Lewis Goodell Perspective Access Networks Abstract Perspective Access Networks provide an infrastructure from which users can spec- ify the location from which they wish to view the Internet. The ability to specify location has become necessary as the Internet has become increasingly inconsistent. An increasing preponderance of middleboxes, location-dependent services, and large- scale content filtering have contributed to this situation. Our work offers the following contributions. First, we propose an infrastructure that routes traffic to a location from which a given resource can be viewed, taking instructions from user-specified attributes describing the desired location. Second, we analyze the tradeoff between the expressivity of user requests and the finite resources available within the network for propagating metadata about available perspectives. Third, we stipulate a set of real scenarios that fall within the limits of what can reasonably be handled by a system appropriately tuned to manage the tradeoff, and we argue that the specific algorithm we propose can handle the scenarios effectively. Contents Title Page . i Abstract . iii Table of Contents . iv List of Figures . viii List of Tables . xiv Acknowledgments . xvi 1 Introduction 1 1.1 Motivation . 4 1.1.1 Fragmentation Defined . 5 1.1.2 Causes of Fragmentation . 8 1.2 End-To-End System Design . 19 1.3 Addressing Fragmentation . 21 1.3.1 Primary Contributions . 23 1.3.2 A “Coreless” Internet . 25 1.3.3 Contrasting PAN and VPN . 26 1.4 High-Level System Overview . 28 1.4.1 Components . 28 1.4.2 Accessing Resources . 29 1.4.3 Directory Functionality . 31 1.5 Design Considerations . 34 1.5.1 Objectives . 35 1.5.2 Tradeoffs . 40 1.6 Outline . 42 2 Related Work 44 2.1 Routing . 46 2.1.1 Interdomain Routing . 46 2.1.2 Overlay Routing . 48 2.2 Indirection . 49 2.2.1 Internet Indirection Infrastructure . 49 iv Contents v 2.2.2 TRIAD . 50 2.3 Interoperating with Middleboxes . 51 2.3.1 Host Identity Protocol . 52 2.3.2 Delegation-Oriented Architecture . 53 2.3.3 Unmanaged Internet Protocol . 55 2.3.4 IPNL . 56 2.4 Decoupling Policy from Mechanism . 57 2.4.1 FARA/NewArch . 57 2.4.2 Platypus . 58 2.5 Anonymity Networks . 60 2.5.1 Tor................................. 61 2.5.2 ANON . 64 2.6 Covert Communication . 65 2.6.1 Psiphon . 65 2.6.2 Infranet . 66 2.7 Embracing Heterogeneity . 66 2.7.1 Semantic-Free Referencing . 67 2.7.2 Plutarch . 69 2.8 Distributed Directories . 69 2.8.1 Domain Name System . 70 2.8.2 Filesharing Networks . 70 2.8.3 Cooperative Web Caching . 71 3 Network Architecture 73 3.1 Design Challenges . 74 3.1.1 Infrastructure Components . 76 3.1.2 Forwarding Traffic . 82 3.1.3 Privacy . 87 3.1.4 Identification of Resources . 90 3.1.5 Separation of Roles . 93 3.1.6 Control Plane . 94 3.2 Deployment Challenges . 96 3.2.1 Resource Discovery . 97 3.2.2 Network Arrangement . 99 3.2.3 Forwarder Discovery . 101 3.2.4 Unidirectional Links . 101 3.2.5 Namespace Collisions . 102 3.3 Managing Perspectives . 103 3.3.1 Defining Perspectives . 104 3.3.2 Selecting Perspectives . 107 3.4 Implementation (Blossom) . 109 3.4.1 Transport Layer Requirements . 110 Contents vi 3.4.2 Integrating Blossom and Tor . 112 3.4.3 Advertising Perspectives . 114 3.4.4 Transport Layer Interface . 117 3.5 Authentication . 121 3.6 Practical Applications . 125 3.6.1 Circuits with Multiple Forwarders . 126 3.6.2 Routing . 129 4 Directory Service 133 4.1 Directory Architecture . 135 4.1.1 Master Records . 136 4.1.2 Directory Records . 137 4.1.3 Forwarder Records . 141 4.1.4 Client Interaction . 143 4.1.5 Directory Protocol . 147 4.2 Design Tradeoffs . 152 4.2.1 Structured versus Unstructured . 153 4.2.2 Propagating Forwarder Information . 154 4.2.3 Responding to Queries . 158 4.2.4 Repeated Queries and Circuit Length . 159 4.3 Configuration . 161 4.3.1 Filtering and Aggregation . 161 4.3.2 Peering Arrangements . 162 4.3.3 Propagation of Perspectives . 167 4.4 Policy Framework . 168 4.4.1 Modifications to RPSL . 169 4.4.2 Examples . 173 4.5 Dynamic Learning . 177 4.5.1 Exponential Problem in Managing Perspectives . 177 4.5.2 Hysteresis Approach . 179 4.5.3 Algorithm . 184 5 Evaluation 190 5.1 Client Performance . 191 5.1.1 Circuit Setup . 192 5.1.2 Data Plane . 197 5.2 Directory Performance . 201 5.2.1 Infrastructure Performance . 201 5.2.2 Traffic Profiles . 208 5.2.3 Comparison to Interdomain Routing . 211 5.3 Deployability and Incentives . 214 5.3.1 Aggregation Strategies . 215 Contents vii 5.3.2 Resource Management Strategies . 221 5.4 Usefulness of Perspective Access Networks . 225 5.4.1 Essential Applications . 225 5.4.2 Security Considerations . 228 5.5 Scalability . 231 5.5.1 Case Study: Political Filtering . 231 5.5.2 Concrete Example . 236 5.6 Determining Attribute Categories . 240 6 Conclusion 244 6.1 Principal Contributions . 245 6.2 Misuse of Location Information . ..
Load more

Recommended publications
  • Threat Modeling and Circumvention of Internet Censorship by David Fifield
    Threat modeling and circumvention of Internet censorship By David Fifield A dissertation submitted in partial satisfaction of the requirements for the degree of Doctor of Philosophy in Computer Science in the Graduate Division of the University of California, Berkeley Committee in charge: Professor J.D. Tygar, Chair Professor Deirdre Mulligan Professor Vern Paxson Fall 2017 1 Abstract Threat modeling and circumvention of Internet censorship by David Fifield Doctor of Philosophy in Computer Science University of California, Berkeley Professor J.D. Tygar, Chair Research on Internet censorship is hampered by poor models of censor behavior. Censor models guide the development of circumvention systems, so it is important to get them right. A censor model should be understood not just as a set of capabilities|such as the ability to monitor network traffic—but as a set of priorities constrained by resource limitations. My research addresses the twin themes of modeling and circumvention. With a grounding in empirical research, I build up an abstract model of the circumvention problem and examine how to adapt it to concrete censorship challenges. I describe the results of experiments on censors that probe their strengths and weaknesses; specifically, on the subject of active probing to discover proxy servers, and on delays in their reaction to changes in circumvention. I present two circumvention designs: domain fronting, which derives its resistance to blocking from the censor's reluctance to block other useful services; and Snowflake, based on quickly changing peer-to-peer proxy servers. I hope to change the perception that the circumvention problem is a cat-and-mouse game that affords only incremental and temporary advancements.
    [Show full text]
  • Array AG 9.4 CLI Handbook
    Array AG 9.4 CLI Handbook Copyright Statement Copyright Statement Copyright©2000-2018 Array Networks, Inc., 1371 McCarthy Blvd, Milpitas, California 95035, USA. All rights reserved. This document is protected by copyright and distributed under licenses restricting its use, copying, distribution, and compilation. No part of this document can be reproduced in any form by any means without prior written authorization of Array Networks. Documentation is provided “as is” without warranty of any kind, either express or implied, including any kind of implied or express warranty of non-infringement or the implied warranties of merchantability or fitness for a particular purpose. Array Networks reserves the right to change any products described herein at any time, and without notice. Array Networks assumes no responsibility or liability arising from the use of products described herein, except as expressly agreed to in writing by Array Networks. The use and purchase of this product does not convey a license to any patent copyright, or trademark rights, or any other intellectual property rights of Array Networks. Warning: Modifications made to the Array Networks unit, unless expressly approved by Array Networks, could void the user’s authority to operate the equipment. Declaration of Conformity We, Array Networks, Inc., 1371 McCarthy Blvd, Milpitas, CA 95035, 1-866-692-7729; declare under our sole responsibility that the product(s) Array Networks, Array Appliance complies with Part 15 of FCC Rules. Operation is subject to the following two conditions: (1) this device can not cause harmful interference, and (2) this device must accept any interference received, including interference that can cause undesired operation.
    [Show full text]
  • A Privacy Threat for Internet Users in Internet-Censoring Countries
    A Privacy Threat for Internet Users in Internet-censoring Countries Feno Heriniaina R. College of Computer Science, Chongqing University, Chongqing, China Keywords: Censorship, Human Computer Interaction, Privacy, Virtual Private Networks. Abstract: Online surveillance has been increasingly used by different governments to control the spread of information on the Internet. The magnitude of this activity differs widely and is based primarily on the areas that are deemed, by the state, to be critical. Aside from the use of keywords and the complete domain name filtering technologies, Internet censorship can sometimes even use the total blocking of IP addresses to censor content. Despite the advances, in terms of technology used for Internet censorship, there are also different types of circumvention tools that are available to the general public. In this paper, we report the results of our investigation on how migrants who previously had access to the open Internet behave toward Internet censorship when subjected to it. Four hundred and thirty-two (432) international students took part in the study that lasted two years. We identified the most common circumvention tools that are utilized by the foreign students in China. We investigated the usability of these tools and monitored the way in which they are used. We identified a behaviour-based privacy threat that puts the users of circumvention tools at risk while they live in an Internet-censoring country. We also recommend the use of a user-oriented filtering method, which should be considered as part of the censoring system, as it enhances the performance of the screening process and recognizes the real needs of its users.
    [Show full text]
  • Internet Censorship in Thailand: User Practices and Potential Threats
    Internet Censorship in Thailand: User Practices and Potential Threats Genevieve Gebhart∗†1, Anonymous Author 2, Tadayoshi Kohno† ∗Electronic Frontier Foundation †University of Washington [email protected] [email protected] 1 Abstract—The “cat-and-mouse” game of Internet censorship security community has proposed novel circumvention and circumvention cannot be won by capable technology methods in response [10, 25, 38]. alone. Instead, that technology must be available, The goal of circumventing censorship and attaining freer comprehensible, and trustworthy to users. However, the field access to information, however, relies on those largely focuses only on censors and the technical means to circumvent them. Thailand, with its superlatives in Internet circumvention methods being available, comprehensible, use and government information controls, offers a rich case and trustworthy to users. Only by meeting users’ needs can study for exploring users’ assessments of and interactions with circumvention tools realize their full technical capabilities. censorship. We survey 229 and interview 13 Internet users in With this goal in mind, the field lacks sufficient inquiry Thailand, and report on their current practices, experienced into the range of user perceptions of and interactions with and perceived threats, and unresolved problems regarding censorship. How do users assess censored content? What is censorship and digital security. Our findings indicate that the range of their reactions when they encounter existing circumvention tools were adequate for respondents to censorship? How does censorship affect the way they not access blocked information; that respondents relied to some only access but also produce information? extent on risky tool selection and inaccurate assessment of blocked content; and that attempts to take action with In addition to guiding more thorough anti-circumvention sensitive content on social media led to the most concrete strategies, these questions about users and censorship can threats with the least available technical defenses.
    [Show full text]
  • The Tor Project
    The Tor Project Our mission is to be the global resource for technology, advocacy, research and education in the ongoing pursuit of freedom of speech, privacy rights online, and censorship circumvention. 1 ● Online Anonymity – Open Source – Open Network ● Community of researchers, developers, users and relay operators. ● U.S. 50 !c)!#" non$ profit or&anization 2 Estimated 2,000,000 to 8,000,000 daily Tor users 3 Threat model: what can the attacker do? Alice Anonymity network Bob watch Alice! watch (or be!) Bob! Control part of the network! 4 Anonymity isn't encryption: Encryption just protects contents. “Hi, Bob!” “Hi, Bob!” Alice <gibberish> attacker Bob 5 6 Anonymity serves different interests for different user groups. Anonymity “It's privacy!” Private citizens 7 Anonymity serves different interests for different user groups. Anonymity Businesses “It's network security!” “It's privacy!” Private citizens 8 Anonymity serves different interests for different user groups. “It's traffic-analysis resistance!” Governments Anonymity Businesses “It's network security!” “It's privacy!” Private citizens 9 Anonymity serves different interests for different user groups. Human rights “It's reachability!” “It's traffic-analysis activists resistance!” Governments Anonymity Businesses “It's network security!” “It's privacy!” Private citizens 10 The simplest designs use a single relay to hide connections. Alice1 Bob1 E(B ob3 ” ,“X “Y ”) Relay Alice2 E(Bob1, “Y”) “Z” Bob2 ”) “X , “Z ” ob2 Alice3 E(B Bob3 (example: some commercial proxy providers) 11 But a central relay is a single point of failure. Alice1 Bob1 E(B ob3 ” ,“X “Y ”) Evil Alice2 E(Bob1, “Y”) Relay “Z” Bob2 ”) “X , “Z ” ob2 Alice3 E(B Bob3 12 ..
    [Show full text]
  • Marionette: a Programmable Network Traffic Obfuscation System Kevin P
    Marionette: A Programmable Network Traffic Obfuscation System Kevin P. Dyer, Portland State University; Scott E. Coull, RedJack LLC.; Thomas Shrimpton, Portland State University https://www.usenix.org/conference/usenixsecurity15/technical-sessions/presentation/dyer This paper is included in the Proceedings of the 24th USENIX Security Symposium August 12–14, 2015 • Washington, D.C. ISBN 978-1-939133-11-3 Open access to the Proceedings of the 24th USENIX Security Symposium is sponsored by USENIX Marionette: A Programmable Network-Traffic Obfuscation System Kevin P. Dyer Scott E. Coull Thomas Shrimpton Portland State University RedJack, LLC. Portland State University [email protected] [email protected] [email protected] Abstract recently, the application layer. The latter looks for spe- cific features of packet payloads that act as a signature Recently, a number of obfuscation systems have been for the application-layer protocol being transported. developed to aid in censorship circumvention scenarios where encrypted network traffic is filtered. In this pa- To combat application-layer filtering, several sys- per, we present Marionette, the first programmable net- tems have been proposed to obfuscate packet payloads, work traffic obfuscation system capable of simultane- and generally hide the true protocol being transported. ously controlling encrypted traffic features at a variety Broadly speaking, these methods fall into one of three of levels, including ciphertext formats, stateful protocol categories: those that use encryption to fully random-
    [Show full text]
  • Application Signature Database Release Notes V 4.12.41
    Application Signature Version: 4.12.41 Application Signature Database Release Notes Version 4.12.41 th -----------------------------------------------------------------------------------------------------------------------------Database Release Notes Date: 19 August,--------------- 2015 Release Information Upgrade Applicable on Application Signature Release Version 4.12.40 CR200i, CR250i, CR300i, CR500i-4P, CR500i-6P, CR500i-8P, CR500ia, CR500ia-RP, CR500ia1F, CR500ia10F, CR750ia, CR750ia1F, CR750ia10F, CR1000i-11P, CR1000i-12P, CR1000ia, CR1000ia10F, CR1500i-11P, CR1500i-12P, CR1500ia, CR1500ia10F Cyberoam Appliance Models CR25iNG, CR25iNG-6P, CR35iNG, CR50iNG, CR100iNG, CR200iNG/XP, CR300iNG/XP, CR500iNG- XP, CR750iNG-XP, CR2500iNG, CR25wiNG, CR25wiNG-6P, CR35wiNG CRiV1C, CRiV2C, CRiV4C, CRiV8C, CRiV12C Upgrade Information Upgrade type: Automatic Compatibility Annotations: None Introduction The Release Note document for Application Filter Database version 4.12.41 includes support for both, the new and the updated Application Signatures. The following sections describe the release in detail. New Application Signatures The Cyberoam Application Filter controls the application traffic depending on the policy configured, by matching them with the Application Signatures. Application Signatures optimize the detection performance and reduces the false alarms. Report false positives at [email protected], along with the application details. The table below provides details of signatures included in this release. Page 1 of 5 Document Version
    [Show full text]
  • Practical Countermeasures Against Network Censorship
    Practical Countermeasures against Network Censorship by Sergey Frolov B.S.I.T., Lobachevsky State University, 2015 M.S.C.S., University of Colorado, 2017 A thesis submitted to the Faculty of the Graduate School of the University of Colorado in partial fulfillment of the requirements for the degree of Doctor of Philosophy Department of Computer Science 2020 Committee Members: Eric Wustrow, Chair Prof. Sangtae Ha Prof. Nolen Scaife Prof. John Black Prof. Eric Keller Dr. David Fifield ii Frolov, Sergey (Ph.D., Computer Science) Practical Countermeasures against Network Censorship Thesis directed by Prof. Eric Wustrow Governments around the world threaten free communication on the Internet by building increasingly complex systems to carry out Network Censorship. Network Censorship undermines citizens’ ability to access websites and services of their preference, damages freedom of the press and self-expression, and threatens public safety, motivating the development of censorship circumvention tools. Inevitably, censors respond by detecting and blocking those tools, using a wide range of techniques including Enumeration Attacks, Deep Packet Inspection, Traffic Fingerprinting, and Active Probing. In this dissertation, I study some of the most common attacks, actually adopted by censors in practice, and propose novel attacks to assist in the development of defenses against them. I describe practical countermeasures against those attacks, which often rely on empiric measurements of real-world data to maximize their efficiency. This dissertation also reports how this work has been successfully deployed to several popular censorship circumvention tools to help censored Internet users break free of the repressive information control. iii Acknowledgements I am thankful to many engineers and researchers from various organizations I had a pleasure to work with, including Google, Tor Project, Psiphon, Lantern, and several universities.
    [Show full text]
  • 3 Censorship Resistance Through the Airport and Hand Delivering It to the User
    Edinburgh Research Explorer SoK: Making Sense of Censorship Resistance Systems Citation for published version: Khattak, S, Elahi, MT, Simon, L, Swanson, CM, Murdoch, SJ & Goldberg, I 2016, 'SoK: Making Sense of Censorship Resistance Systems', Water Treatment Technology, vol. 2016, no. 4, pp. 37-61. https://doi.org/10.1515/popets-2016-0028 Digital Object Identifier (DOI): 10.1515/popets-2016-0028 Link: Link to publication record in Edinburgh Research Explorer Document Version: Publisher's PDF, also known as Version of record Published In: Water Treatment Technology General rights Copyright for the publications made accessible via the Edinburgh Research Explorer is retained by the author(s) and / or other copyright owners and it is a condition of accessing these publications that users recognise and abide by the legal requirements associated with these rights. Take down policy The University of Edinburgh has made every reasonable effort to ensure that Edinburgh Research Explorer content complies with UK legislation. If you believe that the public display of this file breaches copyright please contact [email protected] providing details, and we will remove access to the work immediately and investigate your claim. Download date: 28. Sep. 2021 Proceedings on Privacy Enhancing Technologies ; 2016 (4):37–61 Sheharbano Khattak*, Tariq Elahi*, Laurent Simon, Colleen M. Swanson, Steven J. Murdoch, and Ian Goldberg SoK: Making Sense of Censorship Resistance Systems Abstract: An increasing number of countries implement ample, recent history suggests that the events of the Arab Internet censorship at different scales and for a variety of Spring were in part spurred by the ability of revolutionaries to reasons.
    [Show full text]
  • Massbrowser: Unblocking the Web for the Masses, by the Masses
    MassBrowser: Unblocking the Web for the Masses, By the Masses Milad Nasr∗, Anonymous,∗ and Amir Houmansadr University of Massachusetts Amherst fmilad,[email protected] Project Website: https://massbrowser.cs.umass.edu/ Abstract 1 Introduction The Internet plays a crucial role in today's social Existing censorship circumvention systems fail to of- and political movements by facilitating the free cir- fer reliable circumvention without sacrificing their culation of speech, information, and ideas; democ- users' QoS, or undertaking high costs of opera- racy and human rights throughout the world crit- tion. We design a new circumvention system, called ically depend on preserving and bolstering the In- MassBrowser, with the objective of addressing such ternet's openness. Consequently, repressive regimes, practical weaknesses of existing designs. Our sys- totalitarian governments, and corrupt corporations tem is based on a new design principle, called \the regulate, monitor, and restrict the access to the In- separation of properties," that states that circum- ternet, which is broadly known as Internet censor- vention systems should be tailored for circumven- ship. The techniques commonly used to enforce cen- tion as opposed to offering additional properties like sorship include IP address blocking, DNS hijacking, anonymity. We combine various state-of-the-art cir- and TCP content filtering [14, 35, 37, 56] to block cumvention techniques to make MassBrowser signif- access to certain destinations or to prevent certain icantly resistant to blocking, while keeping its cost forms of content from being transmitted. To en- of operation small ($0.001 per censored client per sure compliance and to detect undercover politi- month).
    [Show full text]
  • Incentivizing Censorship Measurements Via Circumvention
    Incentivizing Censorship Measurements via Circumvention Aqib Nisar, Aqsa Kashaf, Ihsan Ayyub Qazi, Zartash Afzal Uzmi∗ LUMS, Pakistan ABSTRACT 1 INTRODUCTION We present C-Saw, a system that measures Internet censor- Internet censorship has become increasingly pervasive with ship by offering data-driven censorship circumvention to nearly 70 countries restricting Internet access to their citi- users. The adaptive circumvention capability of C-Saw in- zens [38]. It can have a substantial impact on various stake- centivizes users to opt-in by offering small page load times holders in the Internet ecosystem (e.g., users, content providers, (PLTs). As users crowdsource, the measurement data gets and ISPs) [43] and thus, has drawn considerable interest from richer, offering greater insights into censorship mechanisms systems researchers towards building censorship measure- over a wider region, and in turn leading to even better cir- ment systems [26, 27, 37, 48–50]—that aim to ascertain what cumvention capabilities. C-Saw incorporates user consent in is blocked, where it is blocked, how it is blocked, and when its design by measuring only those URLs that a user actually it is blocked?—as well as circumvention systems that aim to visits. Using a cross-platform implementation of C-Saw, we bypass censorship [10, 19, 20, 29, 35]. show that it is effective at collecting and disseminating cen- Unfortunately, existing censorship measurement and cir- sorship measurements, selecting circumvention approaches, cumvention systems are designed independently, which re- and optimizing user experience. C-Saw improves the average sults in their individual designs to have limited capabili- PLT by up to 48% and 63% over Lantern and Tor, respectively.
    [Show full text]
  • Empowering Bystanders to Facilitate Internet Censorship Measurement and Circumvention
    EMPOWERING BYSTANDERS TO FACILITATE INTERNET CENSORSHIP MEASUREMENT AND CIRCUMVENTION A Thesis Presented to The Academic Faculty by Samuel Read Burnett In Partial Fulfillment of the Requirements for the Degree Doctor of Philosophy in the School of Computer Science Georgia Institute of Technology August 2014 Copyright c 2014 by Samuel Read Burnett EMPOWERING BYSTANDERS TO FACILITATE INTERNET CENSORSHIP MEASUREMENT AND CIRCUMVENTION Approved by: Professor Nick Feamster, Advisor Professor Phillipa Gill School of Computer Science Department of Computer Science Georgia Institute of Technology Stonybrook University Professor Mustaque Ahamad Professor Wenke Lee School of Computer Science School of Computer Science Georgia Institute of Technology Georgia Institute of Technology Professor Mostafa Ammar Date Approved: 16 May 2014 School of Computer Science Georgia Institute of Technology ACKNOWLEDGEMENTS Many people have contributed to this thesis, either through direct collaboration, feedback, and inspiration, or by providing a supportive environment which made my life as a graduate student much more enjoyable and productive. My doctoral advisor, Nick Feamster, has had a tremendous impact on my life over the past six years. He very much leads by example, and his boundless energy, enthusiasm, and optimism has inspired both me and my fellow students. Nick has exemplified all of the characteristics of a good mentor: he helped me select a research topic that both fits my interests and is very relevant to the academic community; he developed contacts with key figures in research and industry, both ensuring my work always has an audience and boosting my career prospects; he guided me through the often frustrating process of writing research papers, submitting them for publication, and presenting them for an audience; and he ensured I never had to worry about funding.
    [Show full text]