1、 ETSI GS MOI 010 V1.1.1 (2010-05)Group Specification Measurement Ontology for IP traffic (MOI);Report on information models for IP traffic measurementETSI ETSI GS MOI 010 V1.1.1 (2010-05) 2Reference DGS/MOI-0001 Keywords IP, traffic, ontology, information model ETSI 650 Route des Lucioles F-06921 So
2、phia Antipolis Cedex - FRANCE Tel.: +33 4 92 94 42 00 Fax: +33 4 93 65 47 16 Siret N 348 623 562 00017 - NAF 742 C Association but non lucratif enregistre la Sous-Prfecture de Grasse (06) N 7803/88 Important notice Individual copies of the present document can be downloaded from: http:/www.etsi.org
3、The present document may be made available in more than one electronic version or in print. In any case of existing or perceived difference in contents between such versions, the reference version is the Portable Document Format (PDF). In case of dispute, the reference shall be the printing on ETSI
4、printers of the PDF version kept on a specific network drive within ETSI Secretariat. Users of the present document should be aware that the document may be subject to revision or change of status. Information on the current status of this and other ETSI documents is available at http:/portal.etsi.o
5、rg/tb/status/status.asp If you find errors in the present document, please send your comment to one of the following services: http:/portal.etsi.org/chaircor/ETSI_support.asp Copyright Notification No part may be reproduced except as authorized by written permission. The copyright and the foregoing
6、restriction extend to reproduction in all media. European Telecommunications Standards Institute 2010. All rights reserved. DECTTM, PLUGTESTSTM, UMTSTM, TIPHONTM, the TIPHON logo and the ETSI logo are Trade Marks of ETSI registered for the benefit of its Members. 3GPPTM is a Trade Mark of ETSI regis
7、tered for the benefit of its Members and of the 3GPP Organizational Partners. LTE is a Trade Mark of ETSI currently being registered for the benefit of its Members and of the 3GPP Organizational Partners. GSM and the GSM logo are Trade Marks registered and owned by the GSM Association. ETSI ETSI GS
8、MOI 010 V1.1.1 (2010-05) 3Contents Intellectual Property Rights 4g3Foreword . 4g3Introduction 4g31 Scope 5g32 References 5g32.1 Normative references . 5g32.2 Informative references 5g33 Abbreviations . 10g34 Working Groups and Metrics for Network Measurements 10g34.1 Network Data Representation Mode
9、ls from IETF 10g34.1.1 IPFIX (IP Flow Information Export Charter) . 10g34.1.2 PSAMP (Packet Sampling) . 11g34.1.3 BMWG (Benchmarking Methodology) 11g34.1.4 PMOL (Performance Metrics for Other Layers) . 11g34.1.5 CCAMP (Common Control and Measurement Plane) 12g34.1.6 IPPM (IP performance metrics) 12g
10、34.2 Open Grid Forum Network Measurement Working Group 12g34.3 MIBS RMON Working Group . 13g34.4 Internet Measurement Data Catalog (DatCat) 13g34.5 Projects related to Traffic Monitoring and Analysis 14g34.5.1 TRAMMS . 14g34.5.2 EFIPSANS 15g34.5.3 PerfSonar 15g35 Network Monitoring and Personal Data
11、 Protection . 16g35.1 MOMENT Project 17g35.2 PRISM Project 17g36 Specific Information Models of Existing Infrastructures . 18g36.1 Metadata database (MOME) 19g36.2 Aggregated passive trace database (LOBSTER) 20g36.3 Aggregated passive trace database (DIOR) 21g36.4 BGP routing information database (R
12、IPE) . 21g36.5 Periodic active measurement database (ETOMIC) 22g36.6 Large scale topology database (DIMES) 25g36.7 MINER . 26g37 Models for measuring Quality of Experience in Network Services . 28g3Annex A (informative): Authors Essential, or potentially Essential, IPRs notified to ETSI in respect o
13、f ETSI standards“, which is available from the ETSI Secretariat. Latest updates are available on the ETSI Web server (http:/webapp.etsi.org/IPR/home.asp). Pursuant to the ETSI IPR Policy, no investigation, including IPR searches, has been carried out by ETSI. No guarantee can be given as to the exis
14、tence of other IPRs not referenced in ETSI SR 000 314 (or the updates on the ETSI Web server) which are, or may be, or may become, essential to the present document. Foreword This Group Specification (GS) has been produced by ETSI Industry Specification (ISG) Measurement Ontology for IP traffic (MOI
15、). Introduction A number of different models, information schemas and best-pratices have recently been proposed in order to cope with a lack of de-facto standards for interoperability and the extreme heterogeneity of tools operational modes and repositories internal organization of data that one can
16、 observe, as of now, in the Traffic Measurement and Analysis domain. To accomplish any standardization goal in the TMA field, a detailed analysis of such proposals, and of existing information models for IP traffic measurement is mandatory. A further step is then needed in order to unify the existin
17、g models into a set of well-defined ontological models, which will fully describe the domain of Internet traffic measurements and will tackle the most problematic aspects such as legally-compliant privacy protection and support for widely accepted QoS/QoE parameters. ETSI ETSI GS MOI 010 V1.1.1 (201
18、0-05) 51 Scope The present document constitutes an analysis of information models for IP traffic measurement. This will include the basic definitions and state-of-the-art study, as well as the main guidelines to specify a complete set of vocabulary of classes and relations to describe Internet measu
19、rements, supporting QoS parameters and offering privacy protection, by studying existing schemas that are currently used to describe such information. The present document is to give an initial focus and guide the process of the MOI ISG. The focus is on the key QoS parameters and the key approaches
20、in privacy protection when manipulating, analysing and distributing IP traffic measurements. 2 References References are either specific (identified by date of publication and/or edition number or version number) or non-specific. For specific references, only the cited version applies. For non-speci
21、fic references, the latest version of the reference document (including any amendments) applies. Referenced documents which are not found to be publicly available in the expected location might be found at http:/docbox.etsi.org/Reference. NOTE: While any hyperlinks included in this clause were valid
22、 at the time of publication ETSI cannot guarantee their long term validity. 2.1 Normative references The following referenced documents are necessary for the application of the present document. Not applicable 2.2 Informative references The following referenced documents are not necessary for the ap
23、plication of the present document but they assist the user with regard to a particular subject area. i.1 “IP Flow Information Export (ipfix)“. NOTE: See http:/www.ietf.org/dyn/wg/charter/ipfix-charter.html. i.2 “IP Flow Anonymisation Support“, IETF Internet Draft , November 2009, E. Boschi and B. Tr
24、ammel. NOTE: See http:/tools.ietf.org/html/draft-ietf-ipfix-anon-03. i.3 “Packet Sampling (psamp)“ (concluded WG). NOTE: See http:/www.ietf.org/dyn/wg/charter/psamp-charter.html. i.4 “Benchmarking Methodology (bmwg)“. NOTE: See http:/www.ietf.org/dyn/wg/charter/bmwg-charter.html. i.5 “Performance Me
25、trics for Other Layers (pmol)“. NOTE: See http:/www.ietf.org/dyn/wg/charter/pmol-charter.html. i.6 “Common Control and Measurement Plane (ccamp)“. NOTE: See http:/www.ietf.org/dyn/wg/charter/ccamp-charter.html. ETSI ETSI GS MOI 010 V1.1.1 (2010-05) 6i.7 “IP Performance Metrics (ippm)“. NOTE: See htt
26、p:/www.ietf.org/dyn/wg/charter/ippm-charter.html. i.8 “Relax-NG“. NOTE: See http:/en.wikipedia.org/wiki/RELAX_NG. i.9 Revision 387. NOTE: See http:/anonsvn.internet2.edu/svn/nmwg/. i.10 “Internet Measurement Data Catalog“. NOTE: See http:/www.datcat.org/. i.11 “Traffic Measurements and Models in Mul
27、ti-Service Networks (2007 - 2009). Winner of the Celtic gold award 2009“. NOTE: See http:/projects.celtic-initiative.org/tramms/. i.12 “What is perfSONAR?“. NOTE: See http:/ i.13 P. Ohm, D. Sicker, and D. Grunwald: “Legal issues surrounding monitoring during network research“, in Proceedings of the
28、7th ACM SIGCOMM Conference on Internet Measurement (IMC “07), San Diego, USA, October 24 - 26, 2007, pp. 141 - 148. i.14 M. Barbaro and T. Zeller Jr.: “A face is exposed for AOL searcher No. 4417749“, The New York Times, August 9, 2006. i.15 G. D. Bissias, M. Liberatore, D. Jensen, and B. N. Levine:
29、 “Privacy vulnerabilities in encrypted HTTP streams“, in Proceedings of the 5th Workshop on Privacy Enhancing Technologies (PET 2005), Cavtat, Croatia, May 30 - June 1, 2005. i.16 S. Bellovin: “A technique for counting NATted hosts“, in Proceedings of the 2nd ACM SIGCOMM Workshop on Internet Measure
30、ment (IMW 02), Marseille, France, 6 - 8 November 2002, pp. 267 - 272. i.17 D. Koukis, S. Antonatos, D. Antoniades, P. Trimintzios, and E.P. Markatos: “A generic anonymization framework for network traffic“, in Proceedings of the 2006 IEEE International Conference on Communications (IEEE ICC 2006), I
31、stanbul, Turkey, June 11 - 15, 2006. i.18 R. Pang, M. Allman, V. Paxson, and J. Lee: “The devil and packet trace anonymization“, ACM SIGCOMM Computer Communication Review, Vol. 36, No. 1, pp. 29 - 38, January 2006. i.19 Y. Lindell and B. Pinkas: “Privacy preserving data mining. In Advances in Crypto
32、logy - CRYPTO 00“, volume 1880 of Lecture Notes in Computer Science, pages 36-54. Springer-Verlag, 2000. i.20 Privacy Preserving Data Mining Bibliography. NOTE: See http:/www.cs.umbc.edu/kunliu1/research/privacy_review.html. i.21 References to Privacy-Preserving Data Mining Literature. NOTE: See htt
33、p:/privacy.cs.cmu.edu/dataprivacy/papers/ppdm/. i.22 Privacy Preserving Data Mining Publications. NOTE: See http:/www.cs.ualberta.ca/%7Eoliveira/psdm/pub-by-year.html. i.23 R. Canetti, Y. Ishai, R. Kumar, M. K. Reiter, R. Rubinfeld, and R. N. Wright: “Selective private function evaluation with appli
34、cations to private statistics“, Proc. of the 20th ACM Symposium on Principles of Distributed Computing (PODC), 2001. ETSI ETSI GS MOI 010 V1.1.1 (2010-05) 7i.24 Matthew Roughan and Yin Zhang: “Secure distributed data-mining and its application to large-scale network measurements“, ACM SIGCOMM Comput
35、er Communication Review, Volume 36, Issue 1 (January 2006). i.25 Mitra, P., Pan, C., Liu, P., and Atluri, V. 2006: “Privacy-preserving semantic interoperation and access control of heterogeneous databases“, in Proceedings of the 2006 ACM Symposium on information, Computer and Communications Security
36、 (Taipei, Taiwan, March 21 - 24, 2006). ASIACCS 06. ACM, New York, NY, 66-77. i.26 T. Finin, A. Joshi, L. Kagal, J. Niu, R. Sandhu, W. Winsborough and B. Thuraisingham: “ROWLBAC: representing Role Based Access Control in OWL“, in Proceedings of the 13th ACM Symposium on Access Control Models and Tec
37、hnologies (SACMAT08), Estes Park, CO, USA, June 11 - 13, 2008. i.27 A. Noorollahi Ravari, M. Amini, R. Jalili: “A Semantic Aware Access Control Model with Real Time Constraints on History of Accesses“, in Proceedings of the 3rd International Workshop on Secure Information Systems (SIS08), Wisla, Pol
38、and, 20 - 22 October 2008. i.28 G. V. Lioudakis, E. A. Koutsoloukas, N. Dellas, G. M. Kapitsaki, D. I. Kaklamani, I. S. Venieris: “A Semantic Framework for Privacy-Aware Access Control“, in Proceedings of the 3rd International Workshop on Secure Information Systems (SIS08), Wisla, Poland, 20 - 22 Oc
39、tober 2008. i.29 Organization for the Advancement of Structured Information Standards (OASIS): “OASIS eXtensible Access Control Markup Language (XACML) TC“, 2004. NOTE: See http:/www.oasis-open.org/committees/xacml/. i.30 T. Moses: “OASIS Privacy Policy Profile of XACML v2.0“, OASIS Standard, Februa
40、ry 2005. i.31 FP7 ICT project PRISM (PRIvacy-aware Secure Monitoring). NOTE: See http:/fp7-prism.eu/. i.32 FP7 ICT project MOMENT (Monitoring and Measurement in the Next Generation Technologies). NOTE: See http:/fp7-moment.eu/. i.33 A. Salvador, J. E. Lpez de Vergara, G. Tropea, N. Blefari-Melazzi,
41、. Ferreiro, . Katsu: “A Semantically Distributed Approach to Map IP Traffic Measurements to a Standardized Ontology“, International Journal of Computer Networks General aspects of Quality of Service (QoS) and Network Performance (NP)“. i.51 ITU-T Recommendation E.800: “Terms and Definitions Related
42、to Quality of Service and Network Performance Including Dependability“. i.52 ITU-T Recommendation X.641: “Quality of Service: Framework“, Geneva, Switzerland, December 1997. i.53 ITU-R Recommendation BT.500-11: “Methodology for the subjective assessment of the quality of television pictures“. i.54 R
43、ubino, G. and Varela M.: “A new approach for the prediction of end-to-end performance of multimedia streams“, First International Conference on the Quantitative Evaluation of Systems, 2004. QEST 2004. Proceedings. September 2004. i.55 Rodrguez-Bocca, P., Cancela, H., and Rubino, G. 2007. Video quali
44、ty assurance in multi-source streaming techniques. In Proceedings of the 4th international IFIP/ACM Latin American Conference on Networking (San Jos, Costa Rica, October 10 - 11, 2007). LANC 07. ACM, New York, NY, 83-93. ETSI ETSI GS MOI 010 V1.1.1 (2010-05) 9i.56 Alfonso Snchez-Macin, Jorge E. Lpez
45、 de Vergara, Encarna Pastor, Luis Bellido: “A System for Monitoring, Assessing and Certifying Quality of Service in Telematic Services“. Knowledge-Based Systems, Vol. 21, Issue 2, March 2008, Elsevier, ISSN 0950-7051. i.57 Alfonso Snchez-Macin, David Lpez Berzosa, Jorge E Lpez de Vergara, Encarna Pa
46、stor Martn: “A Framework for the Automatic Calculation of Quality of Experience in Telematic Services“, Proceedings of the 13th HP-OVUA Workshop, Cte dAzur, France, 21-24 May 2006. ISBN 3000187804. i.58 EFIPSANS project. NOTE: See http:/www.efipsans.org/. i.59 R. Chaparadza: “Requirements for a Gene
47、ric Autonomic Network Architecture Suitable Requirements for Autonomic Behavior Specifications of Decision-Making-Elements for Diverse Networking Environments“, International Engineering Consortium (IEC) Annual Review in Communications, vol. 61, December 2008. i.60 R. Natale: “Converting SNMP MIBs t
48、o SOA/Web Services Management Artifact; draft-natale-snmp-mibs-to-ontology-00“, IETF Network Working Group Internet-Draft, August 2007. NOTE: See http:/tools.ietf.org/html/draft-natale-snmp-mibs-to-ontology-00. i.61 Kun Liu, Hillol Kargupta, Jessica Ryan: “Random Projection-Based Multiplicative Data
49、 Perturbation for Privacy Preserving Distributed Data Mining“, IEEE Transactions on Knowledge and Data Engineering, vol. 18, no. 1, pp. 92-106, Jan., 2006. i.62 S. Agrawal and J.R. Haritsa: “A Framework for High-Accuracy Privacy-Preserving Mining“, Proc. 21st Intl Conf. Data Eng. (ICDE05), pp. 193-204, Apr. 2005. i.63 IETF RFC 3577: “Introduction to the Remote Monitoring (RMON) Family of MIB Modules“. i.64 IETF RFC 28