Introduction

• Keith Mitchell (UKNOF)

A day in the life of government cyber security (Main Session)

• Ian Levy (UK Government)

Ian Levy is Technical Director of the UK's National Cyber Security Centre (NCSC). The NCSC's mission is to help ensure that the people, public and private sector organisations and the critical national infrastructure of the UK are safer online. The NCSC seeks to adopt structured consultation with the private sector. Our objectives are to raise awareness of government intent; undertake genuine dialogue that shapes service delivery; demonstrate serious commitment to listen; and develop sustainable engagement channels. This will be done by informing the entire business community and public sector about emerging threats, providing support when attacks happen and educating everyone on how best to stay safe online. (Please note this presentation will not be webcast or recorded)

vSoC: Advanced Virtualised Security Operations Centre for Training and Research (Main Session)

• William Buchanan (Edinburgh Napier University)

Room: Main Auditorium This presentation outlines the creation of a virtualised security operations centre (vSoC) in order to create a virtualised environment which mirrors a real-life networked infrastructure. It integrates logging and intrusion detection systems into a SIEM infrastructure, such as using HPE ArcSight, Splunk and RSA SA. This allows for security analysts to train within a safe environment, while supporting the opportunity for researchers and SMEs to evaluate their methods within a real-life infrastructure. The presentation will also showcase the integration of CTF (Capture The Flag) and Red v Blue activities, and how these are being used to stimulate engagement and provide an enhanced learning environment. Along with this the design will be outlined, including the usage of SDN and Cloud technology to provide the delivery of the training infrastructure.

From the action to the eyeball. Deploy and launch UHD/4K in four months (Main Session)

• Neil McRae (BT)

Room: Main Auditorium Last year BT became the first broadcaster to launch a 4K TV service in Europe (and one of the first globally) This presentation covers the work and challenges required to deliver the end to end solution including cameras, outside broadcasting, studio, set top box and backbone network deployment to enable what was a successful launch of a 4K TV service.

UKNOF Annual Update

• Keith Mitchell (UKNOF)

Room: Main Auditorium UKNOF meetings don't happen without the committed support of many team members, volunteers, sponsors and other supporters. This presentation is our quick annual update on how UKNOF works behind the scenes, some figures and graphs, and what we've been doing to develop our events & evolve the organisation.

Modern Sub-Saturating DDoS Attacks - the Silent Bandwidth Thief (Sponsor Presentation) (Sponsor Presentations)

• Sean Newman (Corero)

Room: Main Auditorium The threat landscape is evolving at an unprecedented rate - attackers are better educated, well-funded, and relentless in the pursuit of their goals. But, some things never change, the bad guys will always take the easiest path to the money. Learn how the latest trend could be negatively impacting your network and its profitability.

DevOps: Is it any use to Network Operations? (Main Session)

• Arthur Clune (University of York)

Room: Main Auditorium There's been a lot of both hype and real progress in the way development and operations interact, grouped under the DevOps banner. Changes have come in tooling, procedures and culture. There's been a lot of hype as well, but in many organisations it's changed the way developers and operations work. This talk will explain the history of this movement and discuss if any of the ideas are of use to network operations.

Oh f$*k I think I'm running a software company (Main Session)

• Colin Silcock (London Internet Exchange Ltd)

Room: Main Auditorium Marc Andreessen famously quipped "Software is eating the world". This is absolutely true of networking companies today with a huge amount of excitement around tooling, automation, APIs and orchestration. Over the past two years LINX have built a software department from scratch and have gone from a fairly vast array of unmanaged scripts to carefully version-controlled code, automated tests and builds, and deployment to infrastructure managed with Ansible. We've learned a lot along the way, and wish to share our experiences, pain points, and plans for the future, including our approach to automating network configuration.

sBGP: A hybrid SDN approach to interdomain routing (Main Session)

• Nicholas Hart (Lancaster University)

Room: Main Auditorium This presentation is based on my PhD thesis topic - ‘sBGP: A hybrid SDN approach to interdomain routing’. It places current SDN research work in the context of today’s challenges in core internet routing, starting with a _very_ quick introduction to the principles of SDN, then briefly introducing some current projects (ONF/Atrium, OpenDaylight) which are aimed at applying SDN principles to BGP/core routing, before moving onto discuss the practical limitations as well as limited ambition of these projects. I then move onto an outline of my proposal, including a discussion of previous work in the field, and an explanation of what I think are the novel aspects of my proposal. Finally, I outline some of the possible benefits of my approach and discuss the crucial practical question of how my work could be applied in large scale production networks. I hope to generate sufficient interest that I may be able to persuade one or more transit network operators to collaborate in my work.

The Top 5 Things You need to keep in Mind when preparing your IPv6 Addressing Plan (Main Session)

• McKillop Veronika (President of UK IPv6 Council)
• Tom Coffeen (Infoblox)

Room: Main Auditorium One of the first steps in an IPv6 deployment project is to obtain an IPv6 prefix for your organisation and create an IPv6 addressing plan. Thanks to the growth of IPv6 deployment globally, there is more experience and new best practices are created that can assist with such a task.

DNSSEC: Is the juice worth the squeeze? (Main Session)

• Paul Ebersman (self)

Room: Main Auditorium DNSSEC is an important piece of securing your internet presence. But getting your zones initially set up and keeping them working can be very challenging. Is it really worth all the hassle? I'll be covering the issues with both signing and validating. I'll also talk about what security this does and doesn't give you, as well as other things, such as DANE, that having DNSSEC signed zones gives you.

Network Monitoring at Facebook Scale (Main Session)

• Richard Sheehan (Facebook)

Room: Main Auditorium Facebook operates one of the largest CLOS based datacenter networks in the world, which means lots of commodity network devices and thousands of potential of ECMP paths from one server to another. This talk will explain how facebook detects loss between servers in our datacenters and how we analyze that loss to try and pin-point specific network links or network devices.

Replacing your 7600s. What to do next? (Main Session)

• Tom Hill (Bytemark Hosting)

Room: Main Auditorium Many networks will have made use of a Cisco 7600 (or 6500) in the last 10-15 years. Now that they really are coming to the end of their useful life, where do we go from here? This is an overview of what Bytemark evaluated, what we've done, and some wisdom we've gleaned along the way. N.B. This an updated talk of the original from IXM7.

WHIX - Collaborative Network Infrastructure on Scotland's West Coast (Main Session)

• William Waites (HUBS / University of Edinburgh)

Room: Main Auditorium Social, economic and political forces mean community networks are generally small. Fortunately on the West Coast of Scotland they are not isolated! A contiguous confederation of tiny ISPs stretches from Mull to Applecross and beyond. Sufficiently many networks exist that creating an IXP is desirable. They are, however, dispersed so such an IXP must be distributed. This talk is about how we built just that, WCIX, a distributed Internet Exchange on Scotland's West Coast.