Casimer DeCusatis

Marist · School of Computer Science and Mathematics

The growing number and severity of cybersecurity threats, combined with a shortage of skilled security analysts, has led to an increased focus on cybersecurity research and education. In this article, we describe the design and implementation of an education and research Security Operations Center (SOC) to address these issues. The design of a SOC...

We present the design and implementation of a novel cybersecurity architecture for a Linux community public cloud supporting education and research. The approach combines first packet authentication and transport layer access control gateways to block fingerprinting of key network resources. Experimental results are presented for two interconnected...

Cyberinfrastructure is undergoing a radical transformation as traditional enterprise and cloud computing environments hosting dynamic, mobile workloads replace telecommunication data centers. Traditional data center security best practices involving network segmentation are not well suited to these new environments. We discuss a novel network archi...

Data centers house the computational power, storage, networking, and software applications that form the basis of most modern business, academic, and government institutions. This chapter provides an overview of data center fundamentals, with particular emphasis on the role of optical data networking. The chapter begins with an introduction and bri...

Despite the rapid growth of service science, relatively little attention has been paid to the service architecture requirements in software defined radio access networks (SDRAN). In this concept paper, we propose to repurpose cloud computing network services to address issues specific to SDRAN. In particular, a multi-level backhaul slicing approach...

Despite the rapid growth of service science, relatively little attention has been paid to the service architecture requirements in software defined radio access networks (SDRAN). In this concept paper, we propose to repurpose cloud computing network services to address issues specific to SDRAN. In particular, a multi-level backhaul slicing approach...

An experimental setup of 32 honeypots reported 17M login attempts originating from 112 different countries and over 6000 distinct source IP addresses. Due to decoupled control and data plane, Software Defined Networks (SDN) can handle these increasing number of attacks by blocking those network connections at the switch level. However, the challeng...

Despite the rapid growth of service science, relatively little attention has been paid to the service architecture requirements in software defined radio access networks (SDRAN). In this concept paper, we propose to repurpose cloud computing network services to address issues specific to SDRAN. In particular, a multi-level backhaul slicing approach...

As cloud computing data centers grow larger and networking devices proliferate; many complex issues arise in the network management architecture. We propose a framework for multi-layer; multi-vendor optical network management using open standards-based software defined networking (SDN). Experimental results are demonstrated in a test bed consisting...

As cloud computing data centers grow larger and networking devices proliferate, many complex issues arise in the network management architecture. We propose a framework for service offerings in a dynamic cloud network, based on software defined networking principles. The proposed approach also facilitates the use of multi-tenancy applications by pr...

The embodiments herein provide a device and a method for extending the bandwidth of short wavelength and long wavelength fiber optic lengths. The embodiments herein provide for an optical transmitter package device comprising: a laser diode; and a semiconductor optical amplifier connected directly after and in close proximity to the laser diode, wh...

Cloud computing environments face many unique security challenges. Location-based firewalls with static policies require long provisioning times relative to other cloud data center components, and are not well suited to dynamic, virtualized workloads. In this paper, we discuss the use of virtual firewalls facilitated by software defined network ove...

Maintaining bandwidth in links between servers and storage arrays comprising a device. The device establishes the links. The device identifies a first link from the links. The first link has a high response time. The device transmits a plurality of data packets on the first link. Each data packet is associated with a corresponding acknowledgment (A...

Maintaining bandwidth in links between servers and storage arrays comprising a device. The device establishes the links. The device identifies a first link from the links. The first link has a high response time. The device transmits a plurality of data packets on the first link. Each data packet is associated with a corresponding acknowledgment (A...

Data access is facilitated by employing local caches and an adaptive caching strategy. Specific data is stored in each local cache and consistency is maintained between the caches. To maintain consistency, adaptive caching structures are used. The members of an adaptive caching structure are selected based on a sharing context, such as those member...

An improved computer system that can include a controller having a computer processor, the controller to reduce insertion times and/or collisions when interfacing with new components introduced to the controller. The system may also include a collision avoidance apparatus that reduces hashing collisions by using a plurality of tables and a pluralit...

An improved computer system may include a controller including a computer processor. The system may also include a selector apparatus in communication with the controller to choose a table having a higher collision quality index than other tables under consideration by the selector apparatus. The system may further include an exchanger apparatus to...

Software Defined Networking (SDN) is an emerging technology which radically improves cloud computing and other types of data networking. We discuss a new SDN undergraduate education program, developed in collaboration with industry partnerships. Student labs using resources such as GENI, NetFPGA, and the New York State Cloud Computing Center will b...

A redundant power supply configuration for a data center is provided. A method includes receiving instructions to operate power supplies at a high current mode. An individual current for each of the power supplies is calculated to total a high current at the high current mode. The power supplies are operated at the high current mode to provide the...

Experimental results are presented from an SDN/NFV testbed with automated, dynamically provisioned, 125 km optical WAN. Live VM migration for NFV video serving is demonstrated, along with Layer 0-3 orchestration using Open Daylight, OpenFlow, and DOVE.

Software defined networking (SDN) represents a new approach in which the decision-making process of the network is moved from distributed network devices to a logically centralized controller, implemented as software running on commodity servers. This enables more automation and optimization of the network and, when combined with software defined c...

In this invited tutorial paper, we review the changing nature of data center networks and the role played by optoelectronics in future network designs. Conventional network protocols will be reviewed, including Ethernet, Fibre Channel, and InfiniBand, and requirements for WAN connectivity between data centers. The transition to converged networks b...

An interface coupled to a virtual network operations center and coupled to a data communications network having at least one optical channel. Equipment on the data communications network is identified by the interface wherein the interface coordinates and correlates communications between the I/O interfaces of a server coupled to the network so tha...

All modern data centers require some form of data backup or replication to protect the data from natural or man-made disasters and provide business continuity. Companies rely on their information systems to run daily operations. If a system becomes unavailable, company operations may be impaired or stopped completely. If critical data remains inacc...

This chapter will examine the technical requirements for designing fiber optic data communication systems. We begin with an introduction to basic link budget design techniques, suitable for practitioners such as network designers, followed by a more detailed review of optical link design considerations. Optical link design concepts discussed includ...

While the modern data center still contains a mixture of different application-specific networks and protocols, various types of Ethernet have emerged as the preferred approach for many data networking problems. With the addition of new industry standard extensions that permit lossless transmission, converged enhanced Ethernet (also known as lossle...

This chapter discusses the networking requirements for a new class of integrated data center appiances that have emerged within the past few years. Conventional data centers employ a combination of servers, storage, networking, software applications, and services, which are usually combined for the first time at the customer site, and which frequen...

In recent years, there have been many fundamental changes in the architecture of modern data centers. New applications have emerged, including cloud computing, big data analytics, real-time stock trading, and more. Workloads have evolved from a predominantly static environment into one that changes over time in response to user demands, often as pa...

In recent years, there have been many new approaches to data networking protocols, both industry standard and vendor proprietary. In this chapter, we will begin with an overview of conventional networking protocols, such as the Spanning Tree Protocol and multichassis link aggregation, and network design approaches like equal cost multipath spine-le...

A system is provided. The system includes a computing device by which first and second commands are inputted, first and second resources disposed in communication with the computing device to be receptive of the first command and responsive to the first command with first and second energy demands in first and second response times, respectively an...

A method for encryption key management including accepting authenticated unencrypted data into a processor of a server computing device that is configured as a private key secure processor vault, the operation of which is isolated from other components of the server computing device thereby preventing unauthorized access to the processor and the da...

A virtual network operating center (VNOC) automatically and in real time obtains and validates the configuration of a data communications network, such as a wavelength division multiplexed network. The VNOC acquires network configuration data using SNMP commands and server configuration information from the hardware management console. The VNOC col...

A method for data security policy enforcement including inspecting incoming and outgoing data packets from a server computing device for attributes in accordance with a data security policy, processing the data packets in accordance with the security policy based on the inspected attributes, and routing the data packets in accordance with the secur...

A datacenter schedules and executes requests to conserve energy. The datacenter uses an event-based opportunistic approach to schedule and run the requests, which provides energy efficiency. The requests are hierarchically batched and sent to the datacenter for scheduling and execution. They are selectively sent over low power links and selectively...

Network infrastructures for modern telecommunications and cloud service providers face a unique series of challenges. These services require networks which can respond dynamically to changes in workload or traffic profiles, and automate cloud network provisioning and commissioning,. This enables cost effective service offerings and also provides ne...

A method, system, and computer program product for staged user identifier deletion are provided. The method includes checking a status of a user identifier in response to a triggering event. In response to determining that the status of the user identifier indicates a marked for deletion status, a notification action is performed. The method also i...

Traditional telecom applications spend more at the link end points to maximize spectral efficiency of long-distance fiber links - see for example recent R&D on coherent transmission devices ; For datacom, spectral efficiency tends to be traded for lower power, cheaper transceiver cost and a network fabric with abundant path diversity. ; Within the...

The 4th edition of this popular Handbook continues to provide an easy-to-use guide to the many exciting new developments in the field of optical fiber data communications. With 90% new content, this edition contains all new material describing the transformation of the modern data communications network, both within the data center and over extende...

Cloud computing and other highly virtualized data center applications have placed many new and unique requirements on the data center network infrastructure. Conventional network protocols and architectures such as Spanning Tree Protocol and multichassis link aggregation can limit the scale, latency, throughput, and virtual machine mobility for lar...

One of the prevalent trends in emerging large scale multi-tenant datacenters is network virtualization using overlays. Here we investigate application performance degradation in such an overlay applied to commodity 10 Gigabit Ethernet networks. We have adopted partition/aggregate as a representative commercial workload that today is deployed on bar...

Firms producing multi-technology, multi-component systems are increasingly outsourcing selected components to achieve both reduced cost and enhanced innovation benefits. Given typical interdependence between innovation at the system and component levels, an important challenge for the system firm is to align innovation trajectories, priorities and...

Advantages of optical networking for highly virtualized data centers are discussed, including lower power, improved scalability and port density, and tighter I/O integration with processors. Use cases include enterprise infrastructure underlying software-defined networking, supercomputing, and multi-site backup applications.

In order to fully realize the potential of Cloud and High Performance Computing (HPC) applications, significant improvement is required in the cost/performance of data center networks. While recent industry standards such as Quantized Congestion Notification (QCN) for Converged Enhanced Ethernet (CEE) have begun to address this issue, there are sti...

The most comprehensive and up-to-date optics resource available Prepared under the auspices of the Optical Society of America, the five carefully architected and cross-referenced volumes of the Handbook of Optics, Third Edition, contain everything a student, scientist, or engineer requires to actively work in the field. From the design of complex o...

The performance, reliability, and functionality of a large server are greatly influenced by the design characteristics of its I/O subsystem. The critical components of the IBM System z10™ I/O subsystem have, therefore, been significantly improved in terms of performance, capability, and cost. The first-order network has been redesigned from the lon...

This chapter focuses on applications for optical communication within a single computing system or a computing cluster. The boundaries of such networks are not clearly defined, and the optical interconnects are not standardized with the same rigor as other local area or metropolitan area networks. Optical communications are well known for communica...

This chapter provides an overview of optical link budgets and design rules. There are many different applications for fiber-optic communication systems, each with its unique performance requirements. Telecommunication and data communication systems appear to have much in common, as both use digital encoding of data streams. Both types can share a c...

This chapter describes different types of fiber-optic cables developed for a wide range of applications: enhanced distance, optical amplification, attenuation, dispersion, and polarization management. The fabrication of conventional low-loss silica fiber-optic cables involves precision control of the glass composition within several parts per milli...

The chapter discusses small form factor fiber-optic interfaces. Conventional duplex fiber-optic connectors, such as the SC Duplex, achieve the required alignment tolerances by threading each optical fiber through a precision ceramic ferrule. Various types of next-generation small form factor (SFF) optical interfaces are proposed for inclusion in de...

This chapter discusses Ethernet protocols, both classic versions and more recent updates targeted for data center applications. Ethernet includes a large family of frame-based networking protocols that operate over different types of media at different data rates. Many modifications have been proposed to enhance the robustness of the protocol for m...

Economic forces such as the growing service economy and commoditization of traditional value chains have led many organizations to pursue breakthrough innovations as part of their business strategy. There has been an increased interest in collaboration and teamwork as catalysts of innovation, often without a clear understanding of the different kin...

This chapter provides a tutorial on storage area networks (SANs), including a description of SAN networking protocols, topologies, and design considerations. Additional topics to be discussed include SAN management, virtualization, multiprotocol routing, fabrics and intra-switch links. SAN's extension over long distances (hundreds or thousands of k...

The third edition of this Handbook provides a comprehensive, easy to use guide to the field of optical fiber data communications. Written by experts in the industry from major companies such as IBM, Cisco and Nortel, the Handbook is a key reference for optical fiber technology, networking, protocols, applications, manufacturing, and future directio...

Although there has been a decrease in telecom research since 2000, significant optical engineering advances continue to provide important contributions to wide-bandwidth communications.

Optical communication systems based on dense wavelength division multiplexing (DWDM) would benefit from the ability to adjust the operating wavelength of a laser transmitter. Previous attempts, including thermal adjustment, etalon based wavelength locking, and various types of optical frequency and phase locked loops such as the Pound-Drever-Hall t...

This chapter provides a brief overview of a source, a fiber, and a receiver that are the basic components of optic system and describes how they work together. All types of fiber optic systems require a light source; for applications such as medical imaging or architectural lighting, this source can be any type of conventional light bulb. The optic...

This chapter examines the technical requirements for designing fiber optic communication systems. It defines some figures of merit to characterize the system performance. Several possible figures of merit are used to characterize the performance of an optical communication system. Different figures of merit may be more suitable for different applic...

There have been several international standards adopted for optical communications. One of the main goals of a standardization effort is to create a minimal set of requirements that will achieve a maximum amount of interoperability. To encourage innovation, it is important that the minimum standards not be overly restrictive; there are often multip...

The need for improved security has been widely recognized in the information technology industry, particularly for enterprise storage area networks (SANs). However, until recently there has been relatively little development of threat models which specifically address the unique requirements of these networks. In this paper, we present a method for...

We describe a novel type of failure mechanism for arrays of vertical cavity surface emitting lasers, such as those used in parallel optical interconnects for clustered computer systems. Conventional failure mechanisms related to electrostatic discharge (ESD) during laser manufacturing will cause multiple lasers in an array to fail at once, shortly...

In this paper, we report computer simulations of photonic crystal fibers and attempts to minimize their polarization mode dispersion. This is expected to improve performance of quantum cryptography systems.

This book is a MUST for everyone in and around the optics community! Fiber Optic Essentials provides professionals and students new to the field of fiber optics with a high-level knowledge of principles, theories and applications. This primer can also be used as a succinct overview of optics for those with some engineering and physics background. I...

In recent years, there has been an increasing interest in the design and development of optical waveguides for computer backplanes and intra-card communications. The transition from high speed copper interconnects to optical links is driven by those applications which can most benefit from a greatly increased bandwidth-distance product; this includ...

With the advent of new regulations governing the protection and recovery of sensitive business data, including the Sarbanes-Oxley Act, there has been a renewed interest in business continuity and disaster recovery applications for metropolitan area networks. Specifically, there has been a need for more efficient bandwidth utilization and lower cost...

The need for improved security has been widely recognized in the information technology industry. However, the increased overhead associated with most data encryption schemes has not been fully quantified for either current generation enterprise servers or future systems. In this paper, the author reported on an enterprise storage area network test...

The fiber optic cable infrastructure currently used by many large data centers is over 10 years old, and may soon require upgrading in order to support higher-data-rate services. Legacy multimode optical fiber is typically low bandwidth, and will only support limited distances at data rates exceeding 1 Gb/s. In this article we investigate various m...

There is an emerging need in the computing industry for higher bandwidth, longer distance, and increased density interconnections within clusters of high performance enterprise-class computer systems. Many of these servers share a common set of high level requirements which lend themselves to the use of parallel optical interconnects to either supp...

A new computer simulation and modeling tool for metropolitan area optical data communication networks is presented. This model addresses the unique requirements of virtual private networks for enterprise data centers, which may include a mixture of protocols including ESCON, FICON, fibre channel, Ethernet, and other links interconnected over dark f...

Recently, there has been increased interest in the use of optical networks for disaster recovery of large computer systems by extending storage area networks (SANs) over hundreds of kilometers or more. These optical datacom networks, which incorporate wavelength division multiplexing (WDM), have several unique requirements. The purpose of this work...

This paper presents the results of an independent comparison of security and intrusion detection features implemented in fibre channel fabric switches. These switches are a key element in optical storage area networks. Using an enterprise testbed with mainframe servers and multiterabyte storage, we evaluate four major switch platforms and compare t...

Fiber optic data communication networks face unique requirements for applications such as disaster recovery of multiterabyte and petabyte databases. We present experimental results from several enterprise computing testbeds that evaluate dense wavelength-division multiplexing (DWDM) performance in metropolitan area datacom networks. Many networking...

We have developed simulation tools for configuration of datacom networks over wavelength division multiplexing networks. Various network topologies are compared to optimize link budgets and performance of latency sensitive protocols while preserving high availability redundant path routing. This modeling is validated against an enterprise network t...

A recent practical experience and emerging concepts in the protection of enterprise optical networks, such as those used by Fortune 500 companies worldwide is reviewed. Critical elements of data integrity are reviewed, including the cryptographic coprocessor features on mainframe enterprise-class servers, security issues on Fibre Channel networks w...

We examine the status of enterprise-class server clusters and the communication issues that need to be addressed in future systems. With increasing system performance, new approaches beyond traditional copper-only communication solutions have to be examined. Parallel optics is an attractive solution to overcome copper's shortcomings, but traditiona...

There is an emerging need in the computing industry for higher bandwidth. longer distance, and increased density interconnections within clusters of high performance, enterprise-class computer systems. Many of these servers share a common set of high level requirements which lend themselves to the use of parallel optical interconnects to either sup...

This chapter illustrates the performance requirements of a fiber link and presents some design trade-offs involved in link planning and implementation. It emphasizes on the performance of point-to-point data links. These data links are the most common building blocks of data communication networks. These are used to build up more complex logical to...

Advanced enterprise servers require dense packaging of their fiber optic input/output (I/O) interconnections. This can be accomplished using small-form-factor (SFF) optical connectors and transceivers such as the MT-RJ and LC. Previously, we presented a performance comparison between some of the major types of multimode SFF connectors; at the time,...

A complimentary approach to SANs known as network attached storage (NAS) relies on IP protocols like Gigabit Ethernet to interconnect application servers with storage appliances. NAS does not segregate storage traffic from other types of IP data, and is typically optimized for smaller data packet transfers, using file protocols rather than block pr...