ch3.pdf

Full Transcript

CHAPTER 3
Transport
Layer
Residing between the application and network layers, the transport layer is a central
piece of the layered network architecture. It has the critical role of providing com-
munication services directly to the application processes running on different hosts.
The pedagogic approach we take in this chapter is to alternate between discussions of
transport-layer principles and discussions of how these principles are implemented
in existing protocols; as usual, particular emphasis will be given to Internet proto-
cols, in particular the TCP and UDP transport-layer protocols.
We’ll begin by discussing the relationship between the transport and network
layers. This sets the stage for examining the first critical function of the transport
layer—extending the network layer’s delivery service between two end systems to
a delivery service between two application-layer processes running on the end sys-
tems. We’ll illustrate this function in our coverage of the Internet’s connectionless
transport protocol, UDP.
We’ll then return to principles and confront one of the most fundamental prob-
lems in computer networking—how two entities can communicate reliably over a
medium that may lose and corrupt data. Through a series of increasingly complicated
(and realistic!) scenarios, we’ll build up an array of techniques that transport proto-
cols use to solve this problem. We’ll then show how these principles are embodied
in TCP, the Internet’s connection-oriented transport protocol.
We’ll next move on to a second fundamentally important problem in
networking—controlling the transmission rate of transport-layer entities in order to
avoid, or recover from, congestion within the network. We’ll consider the causes
and consequences of congestion, as well as commonly used congestion-control

211
211
211

M03_KURO5469_08_GE_C03.indd 211 08/05/2021 13:57
 212 CHAPTER 3 TRANSPORT LAYER

techniques. After obtaining a solid understanding of the issues behind congestion
control, we’ll study TCP’s approach to congestion control.

3.1 Introduction and Transport-Layer Services
In the previous two chapters, we touched on the role of the transport layer and the
services that it provides. Let’s quickly review what we have already learned about
the transport layer.
A transport-layer protocol provides for logical communication between
application processes running on different hosts. By logical communication, we
mean that from an application’s perspective, it is as if the hosts running the pro-
cesses were directly connected; in reality, the hosts may be on opposite sides of the
planet, connected via numerous routers and a wide range of link types. Application
processes use the logical communication provided by the transport layer to send
messages to each other, free from the worry of the details of the physical infra-
structure used to carry these messages. Figure 3.1 illustrates the notion of logical
communication.
As shown in Figure 3.1, transport-layer protocols are implemented in the end
systems but not in network routers. On the sending side, the transport layer converts
the application-layer messages it receives from a sending application process into
transport-layer packets, known as transport-layer segments in Internet terminology.
This is done by (possibly) breaking the application messages into smaller chunks
and adding a transport-layer header to each chunk to create the transport-layer seg-
ment. The transport layer then passes the segment to the network layer at the send-
ing end system, where the segment is encapsulated within a network-layer packet (a
datagram) and sent to the destination. It’s important to note that network routers act
only on the network-layer fields of the datagram; that is, they do not examine the
fields of the transport-layer segment encapsulated with the datagram. On the receiv-
ing side, the network layer extracts the transport-layer segment from the datagram
and passes the segment up to the transport layer. The transport layer then processes
the received segment, making the data in the segment available to the receiving
application.
More than one transport-layer protocol may be available to network applications.
For example, the Internet has two protocols—TCP and UDP. Each of these protocols
provides a different set of transport-layer services to the invoking application.

3.1.1 Relationship Between Transport and Network Layers
Recall that the transport layer lies just above the network layer in the protocol
stack. Whereas a transport-layer protocol provides logical communication between

M03_KURO5469_08_GE_C03.indd 212 08/05/2021 13:57
 3.1 INTRODUCTION AND TRANSPORT-LAYER SERVICES 213

National or
Global ISP

Mobile Network

Datacenter Network

Application
Transport
Network
Network
Link
Link Network
Physical
Physical Link
Datacenter Network
Physical

Local or
Home Network Regional ISP
Content Provider Network
Network Network Lo
gi
ca
Link Link le Network
nd
Physical Physical -to Link
-e
nd
tr Physical
an
sp
or
t

Application
Enterprise Network Transport
Network
Link
Physical

Figure 3.1 ♦ The transport layer provides logical rather than physical
communication between application processes

M03_KURO5469_08_GE_C03.indd 213 08/05/2021 13:57
 214 CHAPTER 3 TRANSPORT LAYER

processes running on different hosts, a network-layer protocol provides logical-
communication between hosts. This distinction is subtle but important. Let’s exam-
ine this distinction with the aid of a household analogy.
Consider two houses, one on the East Coast and the other on the West Coast,
with each house being home to a dozen kids. The kids in the East Coast household
are cousins of the kids in the West Coast household. The kids in the two households
love to write to each other—each kid writes each cousin every week, with each letter
delivered by the traditional postal service in a separate envelope. Thus, each house-
hold sends 144 letters to the other household every week. (These kids would save a lot
of money if they had e-mail!) In each of the households, there is one kid—Ann in the
West Coast house and Bill in the East Coast house—responsible for mail collection
and mail distribution. Each week Ann visits all her brothers and sisters, collects the
mail, and gives the mail to a postal-service mail carrier, who makes daily visits to
the house. When letters arrive at the West Coast house, Ann also has the job of dis-
tributing the mail to her brothers and sisters. Bill has a similar job on the East Coast.
In this example, the postal service provides logical communication between the
two houses—the postal service moves mail from house to house, not from person to
person. On the other hand, Ann and Bill provide logical communication among the
cousins—Ann and Bill pick up mail from, and deliver mail to, their brothers and sis-
ters. Note that from the cousins’ perspective, Ann and Bill are the mail service, even
though Ann and Bill are only a part (the end-system part) of the end-to-end delivery
process. This household example serves as a nice analogy for explaining how the
transport layer relates to the network layer:

application messages = letters in envelopes
processes = cousins
hosts (also called end systems) = houses
transport-layer protocol = Ann and Bill
network-layer protocol = postal service (including mail carriers)

Continuing with this analogy, note that Ann and Bill do all their work within
their respective homes; they are not involved, for example, in sorting mail in
any intermediate mail center or in moving mail from one mail center to another.
Similarly, transport-layer protocols live in the end systems. Within an end system, a
transport protocol moves messages from application processes to the network edge
(that is, the network layer) and vice versa, but it doesn’t have any say about how the
messages are moved within the network core. In fact, as illustrated in Figure 3.1,
intermediate routers neither act on, nor recognize, any information that the transport
layer may have added to the application messages.
Continuing with our family saga, suppose now that when Ann and Bill go on
vacation, another cousin pair—say, Susan and Harvey—substitute for them and pro-
vide the household-internal collection and delivery of mail. Unfortunately for the
two families, Susan and Harvey do not do the collection and delivery in exactly

M03_KURO5469_08_GE_C03.indd 214 08/05/2021 13:57
 3.1 INTRODUCTION AND TRANSPORT-LAYER SERVICES 215

the same way as Ann and Bill. Being younger kids, Susan and Harvey pick up and
drop off the mail less frequently and occasionally lose letters (which are sometimes
chewed up by the family dog). Thus, the cousin-pair Susan and Harvey do not pro-
vide the same set of services (that is, the same service model) as Ann and Bill. In
an analogous manner, a computer network may make available multiple transport
protocols, with each protocol offering a different service model to applications.
The possible services that Ann and Bill can provide are clearly constrained by
the possible services that the postal service provides. For example, if the postal ser-
vice doesn’t provide a maximum bound on how long it can take to deliver mail
between the two houses (for example, three days), then there is no way that Ann and
Bill can guarantee a maximum delay for mail delivery between any of the cousin
pairs. In a similar manner, the services that a transport protocol can provide are often
constrained by the service model of the underlying network-layer protocol. If the
network-layer protocol cannot provide delay or bandwidth guarantees for transport-
layer segments sent between hosts, then the transport-layer protocol cannot provide
delay or bandwidth guarantees for application messages sent between processes.
Nevertheless, certain services can be offered by a transport protocol even when
the underlying network protocol doesn’t offer the corresponding service at the net-
work layer. For example, as we’ll see in this chapter, a transport protocol can offer
reliable data transfer service to an application even when the underlying network
protocol is unreliable, that is, even when the network protocol loses, garbles, or
duplicates packets. As another example (which we’ll explore in Chapter 8 when we
discuss network security), a transport protocol can use encryption to guarantee that
application messages are not read by intruders, even when the network layer cannot
guarantee the confidentiality of transport-layer segments.

3.1.2 Overview of the Transport Layer in the Internet
Recall that the Internet makes two distinct transport-layer protocols available to the
application layer. One of these protocols is UDP (User Datagram Protocol), which
provides an unreliable, connectionless service to the invoking application. The sec-
ond of these protocols is TCP (Transmission Control Protocol), which provides a
reliable, connection-oriented service to the invoking application. When designing a
network application, the application developer must specify one of these two trans-
port protocols. As we saw in Section 2.7, the application developer selects between
UDP and TCP when creating sockets.
To simplify terminology, we refer to the transport-layer packet as a segment. We
mention, however, that the Internet literature (for example, the RFCs) also refers to the
transport-layer packet for TCP as a segment but often refers to the packet for UDP as
a datagram. However, this same Internet literature also uses the term datagram for the
network-layer packet! For an introductory book on computer networking such as this,
we believe that it is less confusing to refer to both TCP and UDP packets as segments,
and reserve the term datagram for the network-layer packet.

M03_KURO5469_08_GE_C03.indd 215 08/05/2021 13:57
 216 CHAPTER 3 TRANSPORT LAYER

Before proceeding with our brief introduction of UDP and TCP, it will be useful
to say a few words about the Internet’s network layer. (We’ll learn about the network
layer in detail in Chapters 4 and 5.) The Internet’s network-layer protocol has a
name—IP, for Internet Protocol. IP provides logical communication between hosts.
The IP service model is a best-effort delivery service. This means that IP makes
its “best effort” to deliver segments between communicating hosts, but it makes no
guarantees. In particular, it does not guarantee segment delivery, it does not guaran-
tee orderly delivery of segments, and it does not guarantee the integrity of the data
in the segments. For these reasons, IP is said to be an unreliable service. We also
mention here that every host has at least one network-layer address, a so-called IP
address. We’ll examine IP addressing in detail in Chapter 4; for this chapter we need
only keep in mind that each host has an IP address.
Having taken a glimpse at the IP service model, let’s now summarize the service
models provided by UDP and TCP. The most fundamental responsibility of UDP
and TCP is to extend IP’s delivery service between two end systems to a delivery
service between two processes running on the end systems. Extending host-to-host
delivery to process-to-process delivery is called transport-layer multiplexing and
demultiplexing. We’ll discuss transport-layer multiplexing and demultiplexing in
the next section. UDP and TCP also provide integrity checking by including error-
detection fields in their segments’ headers. These two minimal transport-layer
services—process-to-process data delivery and error checking—are the only two
services that UDP provides! In particular, like IP, UDP is an unreliable service—it
does not guarantee that data sent by one process will arrive intact (or at all!) to the
destination process. UDP is discussed in detail in Section 3.3.
TCP, on the other hand, offers several additional services to applications. First
and foremost, it provides reliable data transfer. Using flow control, sequence
numbers, acknowledgments, and timers (techniques we’ll explore in detail in this
chapter), TCP ensures that data is delivered from sending process to receiving pro-
cess, correctly and in order. TCP thus converts IP’s unreliable service between end
systems into a reliable data transport service between processes. TCP also provides
congestion control. Congestion control is not so much a service provided to the
invoking application as it is a service for the Internet as a whole, a service for the
general good. Loosely speaking, TCP congestion control prevents any one TCP con-
nection from swamping the links and routers between communicating hosts with
an excessive amount of traffic. TCP strives to give each connection traversing a
congested link an equal share of the link bandwidth. This is done by regulating the
rate at which the sending sides of TCP connections can send traffic into the network.
UDP traffic, on the other hand, is unregulated. An application using UDP transport
can send at any rate it pleases, for as long as it pleases.
A protocol that provides reliable data transfer and congestion control is neces-
sarily complex. We’ll need several sections to cover the principles of reliable data
transfer and congestion control, and additional sections to cover the TCP protocol
itself. These topics are investigated in Sections 3.4 through 3.7. The approach taken

M03_KURO5469_08_GE_C03.indd 216 08/05/2021 13:57
 3.2 MULTIPLEXING AND DEMULTIPLEXING 217

in this chapter is to alternate between basic principles and the TCP protocol. For
example, we’ll first discuss reliable data transfer in a general setting and then discuss
how TCP specifically provides reliable data transfer. Similarly, we’ll first discuss
congestion control in a general setting and then discuss how TCP performs conges-
tion control. But before getting into all this good stuff, let’s first look at transport-
layer multiplexing and demultiplexing.

3.2 Multiplexing and Demultiplexing
In this section, we discuss transport-layer multiplexing and demultiplexing, that
is, extending the host-to-host delivery service provided by the network layer to a
process-to-process delivery service for applications running on the hosts. In order to
keep the discussion concrete, we’ll discuss this basic transport-layer service in the
context of the Internet. We emphasize, however, that a multiplexing/demultiplexing
service is needed for all computer networks.
At the destination host, the transport layer receives segments from the network
layer just below. The transport layer has the responsibility of delivering the data in
these segments to the appropriate application process running in the host. Let’s take
a look at an example. Suppose you are sitting in front of your computer, and you are
downloading Web pages while running one FTP session and two Telnet sessions.
You therefore have four network application processes running—two Telnet pro-
cesses, one FTP process, and one HTTP process. When the transport layer in your
computer receives data from the network layer below, it needs to direct the received
data to one of these four processes. Let’s now examine how this is done.
First recall from Section 2.7 that a process (as part of a network application)
can have one or more sockets, doors through which data passes from the network to
the process and through which data passes from the process to the network. Thus,
as shown in Figure 3.2, the transport layer in the receiving host does not actually
deliver data directly to a process, but instead to an intermediary socket. Because at
any given time there can be more than one socket in the receiving host, each socket
has a unique identifier. The format of the identifier depends on whether the socket is
a UDP or a TCP socket, as we’ll discuss shortly.
Now let’s consider how a receiving host directs an incoming transport-layer
segment to the appropriate socket. Each transport-layer segment has a set of fields in
the segment for this purpose. At the receiving end, the transport layer examines these
fields to identify the receiving socket and then directs the segment to that socket.
This job of delivering the data in a transport-layer segment to the correct socket is
called demultiplexing. The job of gathering data chunks at the source host from
different sockets, encapsulating each data chunk with header information (that will
later be used in demultiplexing) to create segments, and passing the segments to the
network layer is called multiplexing. Note that the transport layer in the middle host

M03_KURO5469_08_GE_C03.indd 217 08/05/2021 13:57
 218 CHAPTER 3 TRANSPORT LAYER

Application P3 P1 Application P2 P4 Application

Transport Transport Transport
Network Network Network
Data link Data link Data link
Physical Physical Physical

Key:

Process Socket

Figure 3.2 ♦ Transport-layer multiplexing and demultiplexing

in Figure 3.2 must demultiplex segments arriving from the network layer below to
either process P1 or P2 above; this is done by directing the arriving segment’s data
to!the corresponding process’s socket. The transport layer in the middle host must
also gather outgoing data from these sockets, form transport-layer segments, and
pass these segments down to the network layer. Although we have introduced mul-
tiplexing and demultiplexing in the context of the Internet transport protocols, it’s
important to realize that they are concerns whenever a single protocol at one layer (at
the transport layer or elsewhere) is used by multiple protocols at the next higher layer.
To illustrate the demultiplexing job, recall the household analogy in the previous
section. Each of the kids is identified by his or her name. When Bill receives a batch
of mail from the mail carrier, he performs a demultiplexing operation by observing
to whom the letters are addressed and then hand delivering the mail to his brothers
and sisters. Ann performs a multiplexing operation when she collects letters from her
brothers and sisters and gives the collected mail to the mail person.
Now that we understand the roles of transport-layer multiplexing and demulti-
plexing, let us examine how it is actually done in a host. From the discussion above,
we know that transport-layer multiplexing requires (1) that sockets have unique
identifiers, and (2) that each segment have special fields that indicate the socket to
which the segment is to be delivered. These special fields, illustrated in Figure 3.3,
are the source port number field and the destination port number field. (The UDP
and TCP segments have other fields as well, as discussed in the subsequent sections
of this chapter.) Each port number is a 16-bit number, ranging from 0 to 65535.
The port numbers ranging from 0 to 1023 are called well-known port numbers
and are restricted, which means that they are reserved for use by well-known

M03_KURO5469_08_GE_C03.indd 218 08/05/2021 13:57
 3.2 MULTIPLEXING AND DEMULTIPLEXING 219

32 bits

Source port # Dest. port #

Other header fields

Application
data
(message)

Figure 3.3 ♦ Source and destination port-number fields in a transport-layer
segment

application protocols such as HTTP (which uses port number 80) and FTP (which
uses port number 21). The list of well-known port numbers is given in RFC 1700
and is updated at http://www.iana.org [RFC 3232]. When we develop a new appli-
cation (such as the simple application developed in Section 2.7), we must assign the
application a port number.
It should now be clear how the transport layer could implement the demultiplex-
ing service: Each socket in the host could be assigned a port number, and when
a segment arrives at the host, the transport layer examines the destination port
number in the segment and directs the segment to the corresponding socket. The
segment’s data then passes through the socket into the attached process. As we’ll
see, this is basically how UDP does it. However, we’ll also see that multiplexing/
demultiplexing in TCP is yet more subtle.

Connectionless Multiplexing and Demultiplexing
Recall from Section 2.7.1 that the Python program running in a host can create a
UDP socket with the line

clientSocket = socket(AF_INET, SOCK_DGRAM)

When a UDP socket is created in this manner, the transport layer automatically
assigns a port number to the socket. In particular, the transport layer assigns a port
number in the range 1024 to 65535 that is currently not being used by any other UDP
port in the host. Alternatively, we can add a line into our Python program after we
create the socket to associate a specific port number (say, 19157) to this UDP socket
via the socket bind() method:

clientSocket.bind((’’, 19157))

M03_KURO5469_08_GE_C03.indd 219 08/05/2021 13:57
 220 CHAPTER 3 TRANSPORT LAYER

If the application developer writing the code were implementing the server side of
a “well-known protocol,” then the developer would have to assign the correspond-
ing well-known port number. Typically, the client side of the application lets the
transport layer automatically (and transparently) assign the port number, whereas the
server side of the application assigns a specific port number.
With port numbers assigned to UDP sockets, we can now precisely describe
UDP multiplexing/demultiplexing. Suppose a process in Host A, with UDP port
19157, wants to send a chunk of application data to a process with UDP port 46428 in
Host B. The transport layer in Host A creates a transport-layer segment that includes
the application data, the source port number (19157), the destination port number
(46428), and two other values (which will be discussed later, but are unimportant for
the current discussion). The transport layer then passes the resulting segment to the
network layer. The network layer encapsulates the segment in an IP datagram and
makes a best-effort attempt to deliver the segment to the receiving host. If the seg-
ment arrives at the receiving Host B, the transport layer at the receiving host exam-
ines the destination port number in the segment (46428) and delivers the segment
to its socket identified by port 46428. Note that Host B could be running multiple
processes, each with its own UDP socket and associated port number. As UDP seg-
ments arrive from the network, Host B directs (demultiplexes) each segment to the
appropriate socket by examining the segment’s destination port number.
It is important to note that a UDP socket is fully identified by a two-tuple consist-
ing of a destination IP address and a destination port number. As a consequence, if
two UDP segments have different source IP addresses and/or source port numbers, but
have the same destination IP address and destination port number, then the two seg-
ments will be directed to the same destination process via the same destination socket.
You may be wondering now, what is the purpose of the source port number?
As shown in Figure 3.4, in the A-to-B segment the source port number serves as
part of a “return address”—when B wants to send a segment back to A, the destina-
tion port in the B-to-A segment will take its value from the source port value of the
A-to-B segment. (The complete return address is A’s IP address and the source port
number.) As an example, recall the UDP server program studied in Section 2.7. In
UDPServer.py, the server uses the recvfrom() method to extract the client-
side (source) port number from the segment it receives from the client; it then sends
a new segment to the client, with the extracted source port number serving as the
destination port number in this new segment.

Connection-Oriented Multiplexing and Demultiplexing
In order to understand TCP demultiplexing, we have to take a close look at TCP
sockets and TCP connection establishment. One subtle difference between a
TCP socket and a UDP socket is that a TCP socket is identified by a four-tuple:
(source IP address, source port number, destination IP address, destination port
number). Thus, when a TCP segment arrives from the network to a host, the host
uses all four values to direct (demultiplex) the segment to the appropriate socket.

M03_KURO5469_08_GE_C03.indd 220 08/05/2021 13:57
 3.2 MULTIPLEXING AND DEMULTIPLEXING 221

Client process
Socket
Host A Server B

source port: dest. port:
19157 46428

source port: dest. port:
46428 19157

Figure 3.4 ♦ The inversion of source and destination port numbers

In particular, and in contrast with UDP, two arriving TCP segments with differ-
ent source IP addresses or source port numbers will (with the exception of a TCP
segment carrying the original connection-establishment request) be directed to two
different sockets. To gain further insight, let’s reconsider the TCP client-server pro-
gramming example in Section 2.7.2:

The TCP server application has a “welcoming socket,” that waits for connection-
establishment requests from TCP clients (see Figure 2.29) on port number 12000.
The TCP client creates a socket and sends a connection establishment request
segment with the lines:

clientSocket = socket(AF_INET, SOCK_STREAM)
clientSocket.connect((serverName,12000))

A connection-establishment request is nothing more than a TCP segment with
destination port number 12000 and a special connection-establishment bit set in
the TCP header (discussed in Section 3.5). The segment also includes a source
port number that was chosen by the client.
When the host operating system of the computer running the server process
receives the incoming connection-request segment with destination port 12000,
it locates the server process that is waiting to accept a connection on port number
12000. The server process then creates a new socket:
connectionSocket, addr = serverSocket.accept()

M03_KURO5469_08_GE_C03.indd 221 08/05/2021 13:57
 222 CHAPTER 3 TRANSPORT LAYER

Also, the transport layer at the server notes the following four values in the con-
nection-request segment: (1) the source port number in the segment, (2) the IP
address of the source host, (3) the destination port number in the segment, and
(4) its own IP address. The newly created connection socket is identified by these
four values; all subsequently arriving segments whose source port, source IP
address, destination port, and destination IP address match these four values will
be demultiplexed to this socket. With the TCP connection now in place, the client
and server can now send data to each other.

The server host may support many simultaneous TCP connection sockets, with
each socket attached to a process, and with each socket identified by its own four-
tuple. When a TCP segment arrives at the host, all four fields (source IP address,
source port, destination IP address, destination port) are used to direct (demultiplex)
the segment to the appropriate socket.

FOCUS ON SECURITY
PORT SCANNING
We’ve seen that a server process waits patiently on an open port for contact by a
remote client. Some ports are reserved for well-known applications (e.g., Web, FTP,
DNS, and SMTP servers); other ports are used by convention by popular applications
(e.g., the Microsoft Windows SQL server listens for requests on UDP port 1434). Thus,
if we determine that a port is open on a host, we may be able to map that port to a
specific application running on the host. This is very useful for system administrators,
who are often interested in knowing which network applications are running on the
hosts in their networks. But attackers, in order to “case the joint,” also want to know
which ports are open on target hosts. If a host is found to be running an application
with a known security flaw (e.g., a SQL server listening on port 1434 was subject to
a buffer overflow, allowing a remote user to execute arbitrary code on the vulnerable
host, a flaw exploited by the Slammer worm [CERT 2003–04]), then that host is ripe
for attack.
Determining which applications are listening on which ports is a relatively easy
task. Indeed there are a number of public domain programs, called port scanners,
that do just that. Perhaps the most widely used of these is nmap, freely available at
http://nmap.org and included in most Linux distributions. For TCP, nmap sequentially
scans ports, looking for ports that are accepting TCP connections. For UDP, nmap
again sequentially scans ports, looking for UDP ports that respond to transmitted UDP
segments. In both cases, nmap returns a list of open, closed, or unreachable ports.
A host running nmap can attempt to scan any target host anywhere in the Internet.
We’ll revisit nmap in Section 3.5.6, when we discuss TCP connection management.

M03_KURO5469_08_GE_C03.indd 222 08/05/2021 13:57
 3.2 MULTIPLEXING AND DEMULTIPLEXING 223

Web client Web Per-connection
host C server B HTTP
processes

Transport-
source port: dest. port: source port: dest. port: layer
7532 80 26145 80
demultiplexing
source IP: dest. IP: source IP: dest. IP:
C B C B

Web client
host A

source port: dest. port:
26145 80
source IP: dest. IP:
A B

Figure 3.5 ♦ Two clients, using the same destination port number (80) to
communicate with the same Web server application

The situation is illustrated in Figure 3.5, in which Host C initiates two HTTP
sessions to server B, and Host A initiates one HTTP session to B. Hosts A and C
and server B each have their own unique IP address—A, C, and B, respectively.
Host C assigns two different source port numbers (26145 and 7532) to its two HTTP
connections. Because Host A is choosing source port numbers independently of C,
it might also assign a source port of 26145 to its HTTP connection. But this is not
a problem—server B will still be able to correctly demultiplex the two connections
having the same source port number, since the two connections have different source
IP addresses.

Web Servers and TCP
Before closing this discussion, it’s instructive to say a few additional words about
Web servers and how they use port numbers. Consider a host running a Web server,
such as an Apache Web server, on port 80. When clients (for example, browsers)
send segments to the server, all segments will have destination port 80. In particular,
both the initial connection-establishment segments and the segments carrying HTTP

M03_KURO5469_08_GE_C03.indd 223 08/05/2021 13:57
 224 CHAPTER 3 TRANSPORT LAYER

request messages will have destination port 80. As we have just described, the server
distinguishes the segments from the different clients using source IP addresses and
source port numbers.
Figure 3.5 shows a Web server that spawns a new process for each connec-
tion. As shown in Figure 3.5, each of these processes has its own connection socket
through which HTTP requests arrive and HTTP responses are sent. We mention,
however, that there is not always a one-to-one correspondence between connection
sockets and processes. In fact, today’s high-performing Web servers often use only
one process, and create a new thread with a new connection socket for each new
client connection. (A thread can be viewed as a lightweight subprocess.) If you did
the first programming assignment in Chapter 2, you built a Web server that does just
this. For such a server, at any given time there may be many connection sockets (with
different identifiers) attached to the same process.
If the client and server are using persistent HTTP, then throughout the duration
of the persistent connection the client and server exchange HTTP messages via the
same server socket. However, if the client and server use non-persistent HTTP, then
a new TCP connection is created and closed for every request/response, and hence
a new socket is created and later closed for every request/response. This frequent
creating and closing of sockets can severely impact the performance of a busy Web
server (although a number of operating system tricks can be used to mitigate the
problem). Readers interested in the operating system issues surrounding persistent
and non-persistent HTTP are encouraged to see [Nielsen 1997; Nahum 2002].
Now that we’ve discussed transport-layer multiplexing and demultiplexing, let’s
move on and discuss one of the Internet’s transport protocols, UDP. In the next sec-
tion, we’ll see that UDP adds little more to the network-layer protocol than a multi-
plexing/demultiplexing service.

3.3 Connectionless Transport: UDP
In this section, we’ll take a close look at UDP, how it works, and what it does.
We encourage you to refer back to Section 2.1, which includes an overview of the
UDP service model, and to Section 2.7.1, which discusses socket programming using
UDP.
To motivate our discussion about UDP, suppose you were interested in design-
ing a no-frills, bare-bones transport protocol. How might you go about doing this?
You might first consider using a vacuous transport protocol. In particular, on the
sending side, you might consider taking the messages from the application process
and passing them directly to the network layer; and on the receiving side, you might
consider taking the messages arriving from the network layer and passing them
directly to the application process. But as we learned in the previous section, we have

M03_KURO5469_08_GE_C03.indd 224 08/05/2021 13:57
 3.3 CONNECTIONLESS TRANSPORT: UDP 225

to do a little more than nothing! At the very least, the transport layer has to provide a
multiplexing/demultiplexing service in order to pass data between the network layer
and the correct application-level process.
UDP, defined in [RFC 768], does just about as little as a transport protocol can do.
Aside from the multiplexing/demultiplexing function and some light error checking, it
adds nothing to IP. In fact, if the application developer chooses UDP instead of TCP,
then the application is almost directly talking with IP. UDP takes messages from the
application process, attaches source and destination port number fields for the multi-
plexing/demultiplexing service, adds two other small fields, and passes the resulting
segment to the network layer. The network layer encapsulates the transport-layer seg-
ment into an IP datagram and then makes a best-effort attempt to deliver the segment
to the receiving host. If the segment arrives at the receiving host, UDP uses the destina-
tion port number to deliver the segment’s data to the correct application process. Note
that with UDP there is no handshaking between sending and receiving transport-layer
entities before sending a segment. For this reason, UDP is said to be connectionless.
DNS is an example of an application-layer protocol that typically uses UDP.
When the DNS application in a host wants to make a query, it constructs a DNS query
message and passes the message to UDP. Without performing any handshaking with
the UDP entity running on the destination end system, the host-side UDP adds header
fields to the message and passes the resulting segment to the network layer. The net-
work layer encapsulates the UDP segment into a datagram and sends the datagram to
a name server. The DNS application at the querying host then waits for a reply to its
query. If it doesn’t receive a reply (possibly because the underlying network lost the
query or the reply), it might try resending the query, try sending the query to another
name server, or inform the invoking application that it can’t get a reply.
Now you might be wondering why an application developer would ever choose
to build an application over UDP rather than over TCP. Isn’t TCP always preferable,
since TCP provides a reliable data transfer service, while UDP does not? The answer
is no, as some applications are better suited for UDP for the following reasons:

Finer application-level control over what data is sent, and when. Under UDP, as
soon as an application process passes data to UDP, UDP will package the data
inside a UDP segment and immediately pass the segment to the network layer.
TCP, on the other hand, has a congestion-control mechanism that throttles the
transport-layer TCP sender when one or more links between the source and des-
tination hosts become excessively congested. TCP will also continue to resend a
segment until the receipt of the segment has been acknowledged by the destina-
tion, regardless of how long reliable delivery takes. Since real-time applications
often require a minimum sending rate, do not want to overly delay segment trans-
mission, and can tolerate some data loss, TCP’s service model is not particularly
well matched to these applications’ needs. As discussed below, these applications
can use UDP and implement, as part of the application, any additional functional-
ity that is needed beyond UDP’s no-frills segment-delivery service.

M03_KURO5469_08_GE_C03.indd 225 08/05/2021 13:57
 226 CHAPTER 3 TRANSPORT LAYER

No connection establishment. As we’ll discuss later, TCP uses a three-way hand-
shake before it starts to transfer data. UDP just blasts away without any formal
preliminaries. Thus UDP does not introduce any delay to establish a connection.
This is probably the principal reason why DNS runs over UDP rather than TCP—
DNS would be much slower if it ran over TCP. HTTP uses TCP rather than UDP,
since reliability is critical for Web pages with text. But, as we briefly discussed
in Section 2.2, the TCP connection-establishment delay in HTTP is an important
contributor to the delays associated with downloading Web documents. Indeed,
the QUIC protocol (Quick UDP Internet Connection, [IETF QUIC 2020]), used
in Google’s Chrome browser, uses UDP as its underlying transport protocol and
implements reliability in an application-layer protocol on top of UDP. We’ll take
a closer look at QUIC in Section 3.8.
No connection state. TCP maintains connection state in the end systems. This
connection state includes receive and send buffers, congestion-control param-
eters, and sequence and acknowledgment number parameters. We will see in
Section 3.5 that this state information is needed to implement TCP’s reliable data
transfer service and to provide congestion control. UDP, on the other hand, does
not maintain connection state and does not track any of these parameters. For this
reason, a server devoted to a particular application can typically support many
more active clients when the application runs over UDP rather than TCP.
Small packet header overhead. The TCP segment has 20 bytes of header over-
head in every segment, whereas UDP has only 8 bytes of overhead.

Figure 3.6 lists popular Internet applications and the transport protocols that
they use. As we expect, e-mail, remote terminal access, and file transfer run over
TCP—all these applications need the reliable data transfer service of TCP. We
learned in Chapter 2 that early versions of HTTP ran over TCP but that more recent
versions of HTTP run over UDP, providing their own error control and congestion
control (among other services) at the application layer. Nevertheless, many important
applications run over UDP rather than TCP. For example, UDP is used to carry network
management (SNMP; see Section 5.7) data. UDP is preferred to TCP in this case,
since network management applications must often run when the network is in a
stressed state—precisely when reliable, congestion-controlled data transfer is diffi-
cult to achieve. Also, as we mentioned earlier, DNS runs over UDP, thereby avoiding
TCP’s connection-establishment delays.
As shown in Figure 3.6, both UDP and TCP are sometimes used today with
multimedia applications, such as Internet phone, real-time video conferencing, and
streaming of stored audio and video. We just mention now that all of these applica-
tions can tolerate a small amount of packet loss, so that reliable data transfer is not
absolutely critical for the application’s success. Furthermore, real-time applications,
like Internet phone and video conferencing, react very poorly to TCP’s congestion
control. For these reasons, developers of multimedia applications may choose to run
their applications over UDP instead of TCP. When packet loss rates are low, and

M03_KURO5469_08_GE_C03.indd 226 08/05/2021 13:57
 3.3 CONNECTIONLESS TRANSPORT: UDP 227

Application-Layer Underlying Transport
Application Protocol Protocol

Electronic mail SMTP TCP
Remote terminal access Telnet TCP
Secure remote terminal access SSH TCP
Web HTTP, HTTP/3 TCP (for HTTP), UDP (for HTTP/3)
File transfer FTP TCP
Remote file server NFS Typically UDP
Streaming multimedia DASH TCP
Internet telephony typically proprietary UDP or TCP
Network management SNMP Typically UDP
Name translation DNS Typically UDP

Figure 3.6 ♦ Popular Internet applications and their underlying transport
protocols

with some organizations blocking UDP traffic for security reasons (see Chapter 8),
TCP becomes an increasingly attractive protocol for streaming media transport.
Although commonly done today, running multimedia applications over UDP
needs to be done with care. As we mentioned above, UDP has no congestion control.
But congestion control is needed to prevent the network from entering a congested
state in which very little useful work is done. If everyone were to start streaming
high-bit-rate video without using any congestion control, there would be so much
packet overflow at routers that very few UDP packets would successfully traverse the
source-to-destination path. Moreover, the high loss rates induced by the uncontrolled
UDP senders would cause the TCP senders (which, as we’ll see, do decrease their
sending rates in the face of congestion) to dramatically decrease their rates. Thus, the
lack of congestion control in UDP can result in high loss rates between a UDP sender
and receiver, and the crowding out of TCP sessions. Many researchers have proposed
new mechanisms to force all sources, including UDP sources, to perform adaptive
congestion control [Mahdavi 1997; Floyd 2000; Kohler 2006: RFC 4340].
Before discussing the UDP segment structure, we mention that it is possible
for an application to have reliable data transfer when using UDP. This can be done
if reliability is built into the application itself (for example, by adding acknowl-
edgment and retransmission mechanisms, such as those we’ll study in the next
section). We mentioned earlier that the QUIC protocol implements reliability
in an application-layer protocol on top of UDP. But this is a nontrivial task that
would keep an application developer busy debugging for a long time. Neverthe-
less, building reliability directly into the application allows the application to “have

M03_KURO5469_08_GE_C03.indd 227 08/05/2021 13:57
 228 CHAPTER 3 TRANSPORT LAYER

its cake and eat it too.” That is, application processes can communicate reliably
without being subjected to the transmission-rate constraints imposed by TCP’s
congestion-control mechanism.

3.3.1 UDP Segment Structure
The UDP segment structure, shown in Figure 3.7, is defined in RFC 768. The applica-
tion data occupies the data field of the UDP segment. For example, for DNS, the data
field contains either a query message or a response message. For a streaming audio
application, audio samples fill the data field. The UDP header has only four fields,
each consisting of two bytes. As discussed in the previous section, the port numbers
allow the destination host to pass the application data to the correct process run-
ning on the destination end system (that is, to perform the demultiplexing function).
The length field specifies the number of bytes in the UDP segment (header plus
data). An explicit length value is needed since the size of the data field may differ
from one UDP segment to the next. The checksum is used by the receiving host to
check whether errors have been introduced into the segment. In truth, the check-
sum is also calculated over a few of the fields in the IP header in addition to the
UDP segment. But we ignore this detail in order to see the forest through the trees.
We’ll discuss the checksum calculation below. Basic principles of error detection are
described in Section 6.2. The length field specifies the length of the UDP segment,
including the header, in bytes.

3.3.2 UDP Checksum
The UDP checksum provides for error detection. That is, the checksum is used to
determine whether bits within the UDP segment have been altered (for example, by
noise in the links or while stored in a router) as it moved from source to destination.

32 bits

Source port # Dest. port #

Length Checksum

Application
data
(message)

Figure 3.7 ♦ UDP segment structure

M03_KURO5469_08_GE_C03.indd 228 08/05/2021 13:58
 3.3 CONNECTIONLESS TRANSPORT: UDP 229

UDP at the sender side performs the 1s complement of the sum of all the 16-bit
words in the segment, with any overflow encountered during the sum being wrapped
around. This result is put in the checksum field of the UDP segment. Here we give
a simple example of the checksum calculation. You can find details about efficient
implementation of the calculation in RFC 1071 and performance over real data in
[Stone 1998; Stone 2000]. As an example, suppose that we have the following three
16-bit words:

0110011001100000
0101010101010101
1000111100001100

The sum of first two of these 16-bit words is

0110011001100000
0101010101010101
1011101110110101

Adding the third word to the above sum gives

1011101110110101
1000111100001100
0100101011000010

Note that this last addition had overflow, which was wrapped around. The 1s
complement is obtained by converting all the 0s to 1s and converting all the 1s to
0s. Thus, the 1s complement of the sum 0100101011000010 is 1011010100111101,
which becomes the checksum. At the receiver, all four 16-bit words are added,
including the checksum. If no errors are introduced into the packet, then clearly the
sum at the receiver will be 1111111111111111. If one of the bits is a 0, then we know
that errors have been introduced into the packet.
You may wonder why UDP provides a checksum in the first place, as many
link-layer protocols (including the popular Ethernet protocol) also provide error
checking. The reason is that there is no guarantee that all the links between source
and destination provide error checking; that is, one of the links may use a link-layer
protocol that does not provide error checking. Furthermore, even if segments are
correctly transferred across a link, it’s possible that bit errors could be introduced
when a segment is stored in a router’s memory. Given that neither link-by-link reli-
ability nor in-memory error detection is guaranteed, UDP must provide error detec-
tion at the transport layer, on an end-end basis, if the end-end data transfer service
is to provide error detection. This is an example of the celebrated end-end principle
in system design [Saltzer 1984], which states that since certain functionality (error
detection, in this case) must be implemented on an end-end basis: “functions placed

M03_KURO5469_08_GE_C03.indd 229 08/05/2021 13:58
 230 CHAPTER 3 TRANSPORT LAYER

at the lower levels may be redundant or of little value when compared to the cost of
providing them at the higher level.”
Because IP is supposed to run over just about any layer-2 protocol, it is useful
for the transport layer to provide error checking as a safety measure. Although UDP
provides error checking, it does not do anything to recover from an error. Some
implementations of UDP simply discard the damaged segment; others pass the dam-
aged segment to the application with a warning.
That wraps up our discussion of UDP. We will soon see that TCP offers reli-
able data transfer to its applications as well as other services that UDP doesn’t offer.
Naturally, TCP is also more complex than UDP. Before discussing TCP, however,
it will be useful to step back and first discuss the underlying principles of reliable
data transfer.

3.4 Principles of Reliable Data Transfer
In this section, we consider the problem of reliable data transfer in a general context.
This is appropriate since the problem of implementing reliable data transfer occurs
not only at the transport layer, but also at the link layer and the application layer
as well. The general problem is thus of central importance to networking. Indeed,
if one had to identify a “top-ten” list of fundamentally important problems in all
of networking, this would be a candidate to lead the list. In the next section, we’ll
examine TCP and show, in particular, that TCP exploits many of the principles that
we are about to describe.
Figure 3.8 illustrates the framework for our study of reliable data transfer. The
service abstraction provided to the upper-layer entities is that of a reliable channel
through which data can be transferred. With a reliable channel, no transferred data
bits are corrupted (flipped from 0 to 1, or vice versa) or lost, and all are delivered in
the order in which they were sent. This is precisely the service model offered by TCP
to the Internet applications that invoke it.
It is the responsibility of a reliable data transfer protocol to implement this
service abstraction. This task is made difficult by the fact that the layer below the
reliable data transfer protocol may be unreliable. For example, TCP is a reliable data
transfer protocol that is implemented on top of an unreliable (IP) end-to-end network
layer. More generally, the layer beneath the two reliably communicating end points
might consist of a single physical link (as in the case of a link-level data transfer
protocol) or a global internetwork (as in the case of a transport-level protocol). For
our purposes, however, we can view this lower layer simply as an unreliable point-
to-point channel.
In this section, we will incrementally develop the sender and receiver sides of
a reliable data transfer protocol, considering increasingly complex models of the
underlying channel. For example, we’ll consider what protocol mechanisms are

M03_KURO5469_08_GE_C03.indd 230 08/05/2021 13:58
 3.4 PRINCIPLES OF RELIABLE DATA TRANSFER 231

Sending Receiver
Application process process
layer

rdt_send() deliver_data()

Reliable data Reliable data
Transport
transfer protocol transfer protocol
layer
(sending side) (receiving side)
Reliable channel
udt_send() rdt_rcv()

Network
layer
Unreliable channel

a. Provided service b. Service implementation

Key:
Data Packet

Figure 3.8 ♦ Reliable data transfer: Service model and service
implementation

needed when the underlying channel can corrupt bits or lose entire packets. One
assumption we’ll adopt throughout our discussion here is that packets will be deliv-
ered in the order in which they were sent, with some packets possibly being lost;
that is, the underlying channel will not reorder packets. Figure 3.8(b) illustrates the
interfaces for our data transfer protocol. The sending side of the data transfer proto-
col will be invoked from above by a call to rdt_send(). It will pass the data to be
delivered to the upper layer at the receiving side. (Here rdt stands for reliable data
transfer protocol and _send indicates that the sending side of rdt is being called.
The first step in developing any protocol is to choose a good name!) On the receiving
side, rdt_rcv() will be called when a packet arrives from the receiving side of the
channel. When the rdt protocol wants to deliver data to the upper layer, it will do so
by calling deliver_data(). In the following, we use the terminology “packet”
rather than transport-layer “segment.” Because the theory developed in this section

M03_KURO5469_08_GE_C03.indd 231 08/05/2021 13:58
 232 CHAPTER 3 TRANSPORT LAYER

applies to computer networks in general and not just to the Internet transport layer,
the generic term “packet” is perhaps more appropriate here.
In this section, we consider only the case of unidirectional data transfer, that is,
data transfer from the sending to the receiving side. The case of reliable bidirectional
(that is, full-duplex) data transfer is conceptually no more difficult but considerably
more tedious to explain. Although we consider only unidirectional data transfer, it is
important to note that the sending and receiving sides of our protocol will nonetheless
need to transmit packets in both directions, as indicated in Figure 3.8. We will see
shortly that, in addition to exchanging packets containing the data to be transferred,
the sending and receiving sides of rdt will also need to exchange control packets
back and forth. Both the send and receive sides of rdt send packets to the other side
by a call to udt_send() (where udt stands for unreliable data transfer).

3.4.1 Building a Reliable Data Transfer Protocol
We now step through a series of protocols, each one becoming more complex, arriv-
ing at a flawless, reliable data transfer protocol.

Reliable Data Transfer over a Perfectly Reliable Channel: rdt1.0
We first consider the simplest case, in which the underlying channel is completely
reliable. The protocol itself, which we’ll call rdt1.0, is trivial. The finite-state
machine (FSM) definitions for the rdt1.0 sender and receiver are shown in
Figure 3.9. The FSM in Figure 3.9(a) defines the operation of the sender, while
the FSM in Figure 3.9(b) defines the operation of the receiver. It is important to
note that there are separate FSMs for the sender and for the receiver. The sender
and receiver FSMs in Figure 3.9 each have just one state. The arrows in the FSM
description indicate the transition of the protocol from one state to another. (Since
each FSM in Figure 3.9 has just one state, a transition is necessarily from the one
state back to itself; we’ll see more complicated state diagrams shortly.) The event
causing the transition is shown above the horizontal line labeling the transition, and
the actions taken when the event occurs are shown below the horizontal line. When
no action is taken on an event, or no event occurs and an action is taken, we’ll use
the symbol Λ below or above the horizontal, respectively, to explicitly denote the
lack of an action or event. The initial state of the FSM is indicated by the dashed
arrow. Although the FSMs in Figure 3.9 have but one state, the FSMs we will see
shortly have multiple states, so it will be important to identify the initial state of
each FSM.
The sending side of rdt simply accepts data from the upper layer via the
rdt_send(data) event, creates a packet containing the data (via the action
make_pkt(data)) and sends the packet into the channel. In practice, the
rdt_send(data) event would result from a procedure call (for example, to
rdt_send()) by the upper-layer application.

M03_KURO5469_08_GE_C03.indd 232 08/05/2021 13:58
 3.4 PRINCIPLES OF RELIABLE DATA TRANSFER 233

rdt_send(data)
Wait for
call from packet=make_pkt(data)
above udt_send(packet)

a. rdt1.0: sending side

rdt_rcv(packet)
Wait for
call from extract(packet,data)
below deliver_data(data)

b. rdt1.0: receiving side

Figure 3.9 ♦ rdt1.0—A protocol for a completely reliable channel

On the receiving side, rdt receives a packet from the underlying channel via
the rdt_rcv(packet) event, removes the data from the packet (via the action
extract (packet, data)) and passes the data up to the upper layer (via
the action deliver_data(data)). In practice, the rdt_rcv(packet) event
would result from a procedure call (for example, to rdt_rcv()) from the lower-
layer protocol.
In this simple protocol, there is no difference between a unit of data and a packet.
Also, all packet flow is from the sender to receiver; with a perfectly reliable chan-
nel there is no need for the receiver side to provide any feedback to the sender since
nothing can go wrong! Note that we have also assumed that the receiver is able to
receive data as fast as the sender happens to send data. Thus, there is no need for the
receiver to ask the sender to slow down!

Reliable Data Transfer over a Channel with Bit Errors: rdt2.0
A more realistic model of the underlying channel is one in which bits in a packet may
be corrupted. Such bit errors typically occur in the physical components of a network
as a packet is transmitted, propagates, or is buffered. We’ll continue to assume for
the moment that all transmitted packets are received (although their bits may be cor-
rupted) in the order in which they were sent.
Before developing a protocol for reliably communicating over such a channel,
first consider how people might deal with such a situation. Consider how you yourself

M03_KURO5469_08_GE_C03.indd 233 08/05/2021 13:58
 234 CHAPTER 3 TRANSPORT LAYER

might dictate a long message over the phone. In a typical scenario, the message taker
might say “OK” after each sentence has been heard, understood, and recorded. If the
message taker hears a garbled sentence, you’re asked to repeat the garbled sentence.
This message-dictation protocol uses both positive acknowledgments (“OK”) and
negative acknowledgments (“Please repeat that.”). These control messages allow
the receiver to let the sender know what has been received correctly, and what has
been received in error and thus requires repeating. In a computer network setting,
reliable data transfer protocols based on such retransmission are known as ARQ
(Automatic Repeat reQuest) protocols.
Fundamentally, three additional protocol capabilities are required in ARQ pro-
tocols to handle the presence of bit errors:

Error detection. First, a mechanism is needed to allow the receiver to detect when
bit errors have occurred. Recall from the previous section that UDP uses the Inter-
net checksum field for exactly this purpose. In Chapter 6, we’ll examine error-
detection and -correction techniques in greater detail; these techniques allow the
receiver to detect and possibly correct packet bit errors. For now, we need only
know that these techniques require that extra bits (beyond the bits of original data
to be transferred) be sent from the sender to the receiver; these bits will be gath-
ered into the packet checksum field of the rdt2.0 data packet.
Receiver feedback. Since the sender and receiver are typically executing on dif-
ferent end systems, possibly separated by thousands of miles, the only way for
the sender to learn of the receiver’s view of the world (in this case, whether or not
a packet was received correctly) is for the receiver to provide explicit feedback
to the sender. The positive (ACK) and negative (NAK) acknowledgment replies
in the message-dictation scenario are examples of such feedback. Our rdt2.0
protocol will similarly send ACK and NAK packets back from the receiver to
the sender. In principle, these packets need only be one bit long; for example, a 0
value could indicate a NAK and a value of 1 could indicate an ACK.
Retransmission. A packet that is received in error at the receiver will be retrans-
mitted by the sender.

Figure 3.10 shows the FSM representation of rdt2.0, a data transfer
protocol employing error detection, positive acknowledgments, and negative
acknowledgments.
The send side of rdt2.0 has two states. In the leftmost state, the send-side
protocol is waiting for data to be passed down from the upper layer. When the
rdt_send(data) event occurs, the sender will create a packet (sndpkt) con-
taining the data to be sent, along with a packet checksum (for example, as discussed
in Section 3.3.2 for the case of a UDP segment), and then send the packet via the
udt_send(sndpkt) operation. In the rightmost state, the sender protocol is wait-
ing for an ACK or a NAK packet from the receiver. If an ACK packet is received

M03_KURO5469_08_GE_C03.indd 234 08/05/2021 13:58
 3.4 PRINCIPLES OF RELIABLE DATA TRANSFER 235

rdt_send(data)

sndpkt=make_pkt(data,checksum)
udt_send(sndpkt)

Wait for Wait for rdt_rcv(rcvpkt) && isNAK(rcvpkt)
call from ACK or udt_send(sndpkt)
above NAK

rdt_rcv(rcvpkt) && isACK(rcvpkt)
L

a. rdt2.0: sending side

rdt_rcv(rcvpkt) && corrupt(rcvpkt)

sndpkt=make_pkt(NAK)
udt_send(sndpkt)

Wait for
call from
below

rdt_rcv(rcvpkt) && notcorrupt(rcvpkt)

extract(rcvpkt,data)
deliver_data(data)
sndpkt=make_pkt(ACK)
udt_send(sndpkt)

b. rdt2.0: receiving side

Figure 3.10 ♦ rdt2.0—A protocol for a channel with bit errors

(the notation rdt_rcv(rcvpkt) && isACK(rcvpkt) in Figure 3.10 cor-
responds to this event), the sender knows that the most recently transmitted packet
has been received correctly and thus the protocol returns to the state of waiting for
data from the upper layer. If a NAK is received, the protocol retransmits the last
packet and waits for an ACK or NAK to be returned by the receiver in response to
the retransmitted data packet. It is important to note that when the sender is in the
wait-for-ACK-or-NAK state, it cannot get more data from the upper layer; that is, the
rdt_send() event can not occur; that will happen only after the sender receives
an ACK and leaves this state. Thus, the sender will not send a new piece of data until
it is sure that the receiver has correctly received the current packet. Because of this
behavior, protocols such as rdt2.0 are known as stop-and-wait protocols.

M03_KURO5469_08_GE_C03.indd 235 08/05/2021 13:58
 236 CHAPTER 3 TRANSPORT LAYER

The receiver-side FSM for rdt2.0 still has a single state. On packet arrival,
the receiver replies with either an ACK or a NAK, depending on whether or not the
received packet is corrupted. In Figure 3.10, the notation rdt_rcv(rcvpkt) &&
corrupt(rcvpkt) corresponds to the event in which a packet is received and is
found to be in error.
Protocol rdt2.0 may look as if it works but, unfortunately, it has a fatal flaw.
In particular, we haven’t accounted for the possibility that the ACK or NAK packet
could be corrupted! (Before proceeding on, you should think about how this prob-
lem may be fixed.) Unfortunately, our slight oversight is not as innocuous as it may
seem. Minimally, we will need to add checksum bits to ACK/NAK packets in order
to detect such errors. The more difficult question is how the protocol should recover
from errors in ACK or NAK packets. The difficulty here is that if an ACK or NAK
is corrupted, the sender has no way of knowing whether or not the receiver has cor-
rectly received the last piece of transmitted data.

Consider three possibilities for handling corrupted ACKs or NAKs:
For the first possibility, consider what a human might do in the message-dictation
scenario. If the speaker didn’t understand the “OK” or “Please repeat that” reply
from the receiver, the speaker would probably ask, “What did you say?” (thus
introducing a new type of sender-to-receiver packet to our protocol). The receiver
would then repeat the reply. But what if the speaker’s “What did you say?” is cor-
rupted? The receiver, having no idea whether the garbled sentence was part of the
dictation or a request to repeat the last reply, would probably then respond with
“What did you say?” And then, of course, that response might be garbled. Clearly,
we’re heading down a difficult path.
A second alternative is to add enough checksum bits to allow