All-Optical Networks Overview

Questions and Answers

What type of attack aims at degrading or denying services in all-optical networks?

• Cross-Talk Attacks
• Monitoring Attacks
• Tapping Attacks
• Service Disruption Attacks (correct)

Which method is NOT mentioned as a way to perform service disruption attacks?

• Fiber Attacks
• Physical Layer Attacks
• Optical Amplifier Attacks
• Data Injection Attacks (correct)

What is a feature of the unified transport network (UTN)?

• Limited service availability
• Simple optical connections
• Low bandwidth and high latency
• High bandwidth and low latency (correct)

What describes the ability of a system to withstand external perturbations?

Robustness (C)

Which component enables full-service access in All-Optical Networks?

Passive Optical Network (PON) (B)

What type of attack involves an attacker covertly listening in on traffic?

Eavesdropping (A)

Which of the following is used to detect attack signals through power variations?

Power Detection (D)

Which method is used by Software-defined networking (SDN) to control network resources?

Underlay mode (A)

Which attack type involves both eavesdropping and traffic analysis?

Tapping Attacks (D)

What is the possible consequence of a Service Denial attack?

Destruction of files and programs (C)

What is the goal of clearly defining evaluation goals?

It helps in simplifying overall evaluation steps. (B)

Which interface is part of the OS layer providing services for applications?

OS-Application Interface (A)

Which feature of the IP integrated transport network supports network slicing?

Flex-E (A)

Which attack type involves acquiring privileges by pretending to be a trusted entity?

Spoofing (D)

What is a common method for analyzing pilot tones in optical monitoring?

Optical time domain reflectometry (OTDR) (D)

What does Data Delay in network attacks mean?

Intercepting data for later use (A)

What is the primary purpose of robustness metrics in a target system?

To quantify the system's ability to handle erroneous conditions (A)

Which of the following describes the concept of Error Timing?

The precise moment an error is injected and how long it lasts (C)

What differentiates Error Location from Error Type?

Error Location refers to where the error appears instead of where it is injected (A)

Which of the following is NOT a consideration in workload selection?

Affinity for certain user types (C)

What role do Intrusion Response Systems (IRS) play in network security?

They apply countermeasures to counteract security threats (D)

What limitation do traditional firewalls have regarding internal threats?

They can detect only external threats based on signatures. (A)

Which of the following can NOT be classified under common solutions to intrusions?

Antivirus software (D)

Which aspect is typically NOT evaluated when assessing the robustness of a system?

User satisfaction ratings (B)

Flashcards

Service Disruption Attack

An attack that degrades or denies services in an all-optical network (AON).

Fiber Attacks

A method of service disruption by damaging optical fibers.

Optical Amplifier Attacks

Service disruption by exploiting optical amplifiers in an AON.

Tapping Attacks

Attacks including eavesdropping and traffic analysis in an AON.

Robustness

A system's ability to withstand external disturbances.

Evaluation Goals

Clearly defined objectives for evaluating a system.

Target System

The system being evaluated for robustness.

Cross-Talk Attack

Attack at a wavelength switch affecting connections at the same wavelength.

All-Optical Networks (AON)

Fiber optic networks that support various services like premium private lines, data center interconnect, IP links, and mobile fronthaul.

Unified Transport Network (UTN)

A high-bandwidth, low-latency network supporting multiple services.

IP Integrated Transport Network

A network foundation for network slicing using Flex-E and SRv6 features.

Passive Optical Network (PON)

Full-service access network using optical splitters and access points

Traffic Analysis Attack

Attack that gathers information about the nature of network traffic.

Data Delay Attack

Interception and later use of sent data.

Spoofing Attack

Gaining access or privileges by impersonation.

Denial of Service (DoS) Attack

Blocking or disrupting a network's services to users.

What is an Error Model?

A framework for defining and simulating errors that a system might encounter during testing. It helps evaluate a system's robustness under stress.

Error Type vs. Error Location

Error Type describes the specific type of error (e.g., flipping bits in CPU registers). Error Location refers to where the error is injected, not necessarily where the fault appears.

Error Timing

This dimension considers when the error is injected and how long it lasts. It helps understand the impact of errors on different system states.

Workload Selection

Choosing the specific tasks and activities that the system should be performing during testing. It helps simulate real-world scenarios.

Intrusion Detection System (IDS)

A system that automatically detects malicious activities attempting to breach a network or computer system.

Intrusion Response System (IRS)

A system that deploys countermeasures to defend against identified intrusions and secure a computing environment.

What are the main defensive mechanisms against intrusion?

Firewalls, Access Control, and Cryptography are the primary defense against intrusions, safeguarding networks and data.

Limitations of Traditional Firewalls

Traditional firewalls are not effective against internal attacks like flooding, user-to-root attacks, and port scanning, as they only monitor network boundaries.

Study Notes

All-Optical Networks (AON)

• Also known as fiber to the x (FTTx), referring to fiber to the site, building, or home
• Foundation based on full-service areas and unified optical cable networks, coordinating 2B, 2C, and 2H services
• Unified Transport Network (UTN) features high bandwidth, low latency, and multiple services (Data Center Interconnect (DCI), IP links, mobile network fronthaul, etc.)
• IP integrated transport network with Flex-E and IPv6 Segment Routing (SRv6) for network slicing, IP RAN private lines, broadband transport, and mobile backhaul
• Passive Optical Network (PON) enables full-service access, used for PON VPN, Internet private lines, regional networking, and smart homes (widely used in video surveillance, industrial control, public areas, buildings)
• Software-defined networking (SDN) supports intelligent, on-demand bandwidth, cloud, value-added applications, and after-sales services, leveraging operator network control

Network Attacks

• Traffic Analysis Attack: attacker can determine plaintext length by analyzing ciphertext length, eavesdropping or tapping fibers
• Data Delay: attacker intercepts user data for later use
• Spoofing: attempting to acquire privileges, capabilities, trust, and anonymity by pretending to be a more trusted entity; attacks includes masquerading and Trojan horse attacks
• Service Denial: Deprives a user or organization of their expected services, and can destroy programs and files (DoS attack)
• Quality of Service (QoS) Degradation: attacker overpowers legitimate signals to restrict service
• Fiber Attacks: Fiber ideally propagates information at different wavelengths with only frequency-dependent delay and attenuation
• Optical Amplifier Attacks: Critical components for AONs
• Tapping Attacks: includes eavesdropping and traffic analysis attacks
• Cross-Talk Attack: happens at a wavelength switch and only affects connections on the same wavelength
• Monitoring Methods include Power Detection and Optical Spectral Analyzers (OSAs).
• Bit Error Rate Testers (BERTs) compare received patterns with sent patterns
• Pilot Tones signal travel on the same links and nodes as communication payloads; distinguishable from the payload
• Optical time domain reflectometries (OTDRs) analyze a pilot tone's echo to analyze communication signals