THINGS I FIND INTERESTING
Network systems
-
Network middleboxes, network function virtualization (NFV)
-
Software-defined networks (SDN) and the interplay of SDN with middleboxes and NFV
-
High performance networking and high performance algorithms for middleboxes
-
Hardware acceleration for network functions (e.g., TCAM, GPU)
-
Security of network functions (not to be confused with "security network functions")
-
Security guarantees for networks
-
Deep packet inspection
Other related topics
-
Algorithmic game theory
-
Computer architecture
-
Distributed algorithms
-
Cryptography and information theoretic security
-
*^Anat Bremler-Barr, Yotam Harchol, David Hay, Yacov Hel-Or, "Encoding Short Ranges in TCAM Without Expansion: Efficient Algorithm and Applications". IEEE/ACM Transactions on Networking, Vol 26, No 2, April 2018
[publisher page] -
*^Yehuda Afek, Anat Bremler-Barr, Yotam Harchol, David Hay, Yaron Koral. "Making DPI Engines Resilient to Algorithmic Complexity Attacks". IEEE/ACM Transactions on Networking, Vol 24, No 6, December 2016.
[publisher page]
Journal Publication
Conference Publications
PUBLICATIONS
-
Yotam Harchol, Aisha Mushtaq, Vivian Fang, James McCauley, Aurojit Panda, Scott Shenker. "Making Edge Computing Resilient". ACM Symposium on Cloud Computing (SoCC), October, 2020.
[soon] -
Yotam Harchol, Dirk Bergemann, Nick Feamster, Eric Friedman, Arvind Krishnamurthy, Aurojit Panda, Sylvia Ratnasamy, Michael Schapira, Scott Shenker. "A Public Option for the Core". ACM Conference on Special Interest Group on Data Communication (SIGCOMM), August, 2020.
[soon] -
James McCauley, Yotam Harchol, Barath Raghavan, Aurojit Panda, Scott Shenker. "Enabling a Permanent Revolution in Internet Architecture". ACM Conference on Special Interest Group on Data Communication (SIGCOMM), August, 2019.
[pdf][14%] -
Yotam Harchol, Aisha Mushtaq, James McCauley, Aurojit Panda, Scott Shenker. "CESSNA: Resilient Edge-Computing". ACM SIGCOMM 2nd Workshop on Mobile Edge Communications (MECOMM@SIGCOMM), August, 2018.
[pdf][video] -
* Yotam Harchol, David Hay, Tal Orenstein. "FTvNF: Fault Tolerant Virtual Network Functions", The 14th ACM/IEEE Symposium on Architectures for Networking and Communications Systems (ANCS), July, 2018.
-
Yotam Harchol, Ittai Abraham, Benny Pinkas. "Distributed SSH Key Management with Proactive RSA Threshold Signatures". The 16th International Conference on Applied Cryptography and Network Security (ACNS), July, 2018.
[pdf][extended version][21%] -
Arjun Singhvi, Sujata Banerjee, Yotam Harchol, Aditya Akella, Mark Peek, Pontus Rydin. "Granular Computing and Network Intensive Applications: Friends or Foes?". ACM Workshop on Hot Topics in Networks (HotNets), December, 2017.
[pdf] [22%] -
*^Anat Bremler-Barr, Yotam Harchol, David Hay, "OpenBox: A Software-Defined Framework for Developing, Deploying, and Managing Network Functions". ACM Conference on Special Interest Group on Data Communication (SIGCOMM), August, 2016.
[pdf][slides] [17%] -
*^Anat Bremler-Barr, Yotam Harchol, David Hay, Yacov Hel-Or, "Encoding Short Ranges in TCAM Without Expansion: Efficient Algorithm and Applications". ACM 28th Symposium on Parallelism in Algorithms and Architectures (SPAA), July, 2016.
[pdf][slides][technical report] -
*^Anat Bremler-Barr, Yotam Harchol, David Hay, "OpenBox: Enabling Innovation in Middlebox Applications". ACM SIGCOMM Workshop on Hot Topics in Middleboxes and Network Function Virtualization (HotMiddleboxes@SIGCOMM), August, 2015.
[pdf][slides] -
*^Anat Bremler-Barr, Yotam Harchol, David Hay, Yacov Hel-Or, "Ultra-Fast Similarity Search Using Ternary Content Addressable Memory". ACM Eleventh International Workshop on Data Management on New Hardware (DaMoN@SIGMOD), June, 2015.
[pdf][slides] -
*^Anat Bremler-Barr, Shimrit Tzur David, Yotam Harchol, David Hay, "Leveraging Traffic Repetitions for High-Speed Deep Packet Inspection". IEEE International Conference on Computer Communications (INFOCOM), April, 2015.
[pdf] [slides] [19%] -
*^Anat Bremler-Barr, Yotam Harchol, David Hay, Yaron Koral, "Deep Packet Inspection as a Service". ACM International Conference on Emerging Networking Experiments and Technologies (CoNEXT), December, 2014.
[pdf] [slides] [19%] -
*ªYehuda Afek, Anat Bremler-Barr, Yotam Harchol, David Hay, Yaron Koral, "MCA^2: Multi-Core Architecture for Mitigating Complexity Attacks". ACM/IEEE Symposium on Architectures for Networking and Communications Systems (ANCS), October, 2012.
[pdf] [slides] [28%] -
*^Anat Bremler-Barr, Yotam Harchol, David Hay, "Space-time tradeoffs in software-based Deep Packet Inspection". IEEE International Conference on High Performance Switching and Routing (HPSR), July, 2011.
[pdf] [slides]
* Authors are ordered alphabetically
^ Yotam Harchol is the main author
ª Yotam Harchol is the main author along with another student
Ph.D. Dissertation
-
Yotam Harchol, "A Software-Defined Framework for Improved Performance and Security of Network Functions". Ph.D. Dissertation, December, 2016.
[pdf]
My Ph.D. dissertation won the Hans Wiener Prize for excellent Ph.D. dissertation
TALKS
Talks / Invited Talks (Partial list)
-
CESSNA: Resilient Edge Computing
Invited talk at KTH, Stockholm, Sweden (August 27, 2018)
Invited talk at ETH, Zurich, Switzerland (August 29, 2018)
Invited talk at EPFL, Lausanne, Switzerland (August 31, 2018) -
SDN, NFV, and Network Security
Invited tutorial at the 2nd Hebrew University Networking Summer, Hebrew University, Jerusalem, Israel, June 2017 -
Reusing Network Services Logic to Improve Network Performance
Invited talk at DIMACS workshop on Data Center Networking, Rutgers University, NJ, USA, June 2017
[video] -
Virtual Threshold Security
At Israeli Networking Day, Cisco Israel, Netanya, Israel, March 2017 -
Making Network Functions Software-Defined
Invited talk at Stanford University, NetSeminar, Stanford, CA, USA, November 2016
[slides][video] -
Encoding Short Ranges in TCAM Without Expansion: Efficient Algorithm and Applications
At Israeli Networking Day, Tel Aviv University, Tel Aviv, Israel, June 2016
[slides] -
OpenBox: A Software-Defined Framework for Developing, Deploying, and Managing Network Functions
Invited talk at I-CORE Annual Workshop, Networking Track, Weizmann Institute, Rehovot, Israel, April 2016
[slides] -
OpenBox: A Software-Defined Framework for Developing, Deploying, and Managing Network Functions
Highlight paper at ACM SYSTOR 2016, Haifa, Israel, June 2016
[slides]
RESEARCH STUDENTS
-
Aisha Mushtaq (Ph.D. student, UC Berkeley, co-advised with Prof. Scott Shenker)
Aisha and I (and others) work on edge computing, with focus on consistency and fault tolerance issues in stateful edge computing.
We have co-authored a paper in MECOMM@SIGCOMM 2018 workshop as well as a few other papers that are under submission. -
James McCauley (Ph.D. student, UC Berkeley, co-advised with Prof. Scott Shenker)
James and I (and others) worked together on backward compatible ways to enable permanent evolution of internet architecture. We have co-authored a paper in SIGCOMM 2019: "Enabling a Permanent Evolution in Internet Architecture". James is also collaborating with Aisha and I on some of the edge computing projects. -
Roy Franco (M.Sc. student, IDC Herzliya, co-advised with Prof. Anat Bremler-Barr)
Roy designed and developed an interactive dashboard for OpenBox controllers (will soon be available online). -
Arjun Singhvi (Ph.D. student, UW Madison, co-advised with Sujata Bunergee)
Arjun and I (and others) worked on evaluating serverless platforms for packet processing applications, while he was an intern at VMware Research. We co-authored a paper in HotNets 2017: "Granular Computing and Network Intensive Applications: Friends or Foes?". -
Shay Vargaftik (Ph.D. student, Technion, co-advised with Ittai Abraham)
Shay and I worked on various aspects of the SSH and TLS protocols with regard to middleboxes and deep packet inspection of encrypted traffic, while Shay was an intern at VMware Research. -
Tal Orenstein (M.Sc student - Research Track, The Hebrew University of Jerusalem, co-advised with Prof. David Hay)
Tal did two projects with me: -
Asher Gruber (M.Sc. student, IDC Herzliya, co-advised with Prof. Anat Bremler-Barr)
Asher integrated Snort with our Deep Packet Inspection as a Service framework, so that Snort could use matches reported by an external DPI service instead of using its own DPI engine [code][report] -
Pavel Lazar (M.Sc. student, IDC Herzliya, co-advised with Prof. Anat Bremler-Barr)
Pavel designed and implemented the software data plane instance of OpenBox (as appears in my SIGCOMM'16 paper on OpenBox) [code][report] -
Dan Shmidt (M.Sc. student, IDC Herzliya, co-advised with Prof. Anat Bremler-Barr)
Dan implemented most parts of the Moonlight controller for OpenBox [code][report] -
Lior Barak (M.Sc. student, IDC Herzliya, co-advised with Prof. Anat Bremler-Barr)
Lior implemented the DPI controller from my CoNEXT'14 Deep Packet Inspection as a Service paper, using the OpenDayLight OpenFlow controller [code][report]