Archives: Networking

understand CAP theorem No ratings yet.

The CAP theorem states that a distributed system cannot simultaneously be consistent, available, and partition tolerant No distributed system is safe from network failures, thus network partitioning generally has to be tolerated.[7][8] In the presence of a partition, one is then left with two options: consistency or availability. CAP is often misunderstood as a choice at all times of • Read More »

Raft consensus algorithm on distributed system No ratings yet.

Raft: paxos hard to understand, new consensus algorithm consensus algorithm:  Leader elections, log replicate   This Raft library is stable and feature complete. As of 2016, it is the most widely used Raft library in production, serving tens of thousands clusters each day. It powers distributed systems such as etcd, Kubernetes, Docker Swarm, Cloud Foundry Diego, • Read More »

Kubernetes Quick Start No ratings yet.

Learning curve for Kubernetes (K8s) could be steep. For most users who are already familiar with basic networking, OS/Linux,  docker container technologies etc, the difficulties , I personally think,  is most likely due to its unique concepts, sometime confusing terms. Based on my learning experience, I wrote a book: Kerbernetes Quick start, hopefully can help • Read More »

Janus Video Room plugin (how webrtc sfu works) 5/5 (1)

Repo: code: video sfu code at: plugins/janus_videoroom.c How sub/pub works: in its plugin implementation: plugins/janus_videoroom.c , there is: struct janus_videoroom_publisher { GSList subscribers; / Subscriptions to this publisher (who’s watching this publisher) */ GSList subscriptions; / Subscriptions this publisher has created (who this publisher is watching) */ } for every incoming  rtp from a publisher: • Read More »

srtp and h.235.6 secure rtp 5/5 (1)

SRTP RFCs and h.235 is Not an easy read. Here is my very high level beriefing: AES Encryption (1) AES is the foundation for both srtp and h.235.6 secured rtp AES is symmetric encryption,  it takes those two as input key + IV:  128/192/256-bits length key , ( + optional Initialized vector or counter) src input:    • Read More »

What is bro and how to install bro on debian 8 No ratings yet.

Bro, or sometimes referred to as Bro-IDS is a bit different than Snort and Suricata. In a way Bro is both a signature and anomaly-based IDS. Its analysis engine will convert traffic captured into a series of events. An event could be a user logon to FTP, a connection to a website or practically anything. • Read More »

DTLS, DTLS-SRTP No ratings yet.

DTLS:  Basically DTLS is to construct TLS over datagram (UDP, DCCP, etc.) DTLS is similar to TLS intentionally except that DTLS has to solve two problems: packet lost and reordering. DTLS-SRTP DTLS-SRTP can be viewed in two equivalent ways: as a new key management method for SRTP, and a new RTP-specific data format for DTLS. • Read More »

OpenPGP vs S/MIME No ratings yet.

S/MIME and OpenPGP similarity: both depends on public/private keys to encrypt/authenticate msg ( emails), difference:  how to distribute the public keys. S/MIME is similar to TLS, need to depends on X.509 certificate OpenPGP depends on web of trust to distribute the public key.   references: Please rate this rating

What is the difference between srtp and zrtp No ratings yet.

SRTP sdp msg: v=0 o=jdoe 2890844526 2890842807 IN IP4 s=SDP Seminar i=A Seminar on the session description protocol u= (Jane Doe) c=IN IP4 t=2873397496 2873404696 m=video 51372 RTP/SAVP 31 a=crypto:1 AES_CM_128_HMAC_SHA1_80 inline:d0RmdmcmVCspeEc3QGZiNWpVLFJhQX1cfHAwJSoj|2^20 m=audio 49170 RTP/SAVP 0 a=crypto:1 AES_CM_128_HMAC_SHA1_32 inline:NzB4d1BINUAvLEw6UzF3WSJ+PSdFcGdUJShpX1Zj|2^20 m=application 32416 udp wb a=orient:portrait The crypto line includes the master key and • Read More »