Martìn Casado

Affiliations

• Andreessen Horowitz
• Mural
• Nicira/VMWare
• Stanford High-Performance Networking research group

Notable Awards

• ACM Grace Murray Hopper Award (2012)
• NEC C&C Award (2014)
• SIGCOMM Test of Time Award (2017)
• Jacqueline Kennedy Onassis Award (2021)
• SIGOPS Hall of Fame Award (2021)
• NSDI Test of Time Award 2025)

Selected Projects and Research

• Software Defined Networking: Exploring the broader implications of software defined networking ^{(HotICE 12)}
• Network Virtualization: Both virtualization ^{(presto 10)} and slicing ^{(osdi 10)} of the network forwarding path.
• Onix: A platform for building distributed network control planes ^{(osdi 10)}.
• Software Defined Forwarding : A systems approach to accelerate network forwarding software with a traditional TCAM-based forwarding plane. ^{(HotNets 09)}
• NOX : A centralized OpenFlow control platform ^{(CCR 08)}. We've explored that application of NOX to datacenters ^{(HotNets 09)}, as well as security and network management ^{(WREN 09)}.
• Open vSwitch : An open source soft switch for virtual environments which supports OpenFlow. ^{(HotNets 10) (DC Caves 10)}
• OpenFlow : A flow-level interface to the network datapath. The goal is to decouple the control software from the hardware forwarding to allow complex network control function to be implemented as a distributed system. ^{(CCR 08)} [Here is a list of the OpenFlow software projects that I know of]
• FML : A high-level (flow-based) variant of datalog for managing network policy. ^{(WREN 09)}
• DOEMail : A whitelisting system for e-mail. Used as the platform basis for an user-based study on the effectiveness of whitelisting. ^{(CEAS 08)}
• Ethane : A logically-centralized network architecture for managing the security policies of enterprise networks. ^{(SIGCOMM 07)}, ^{(HOTI 07)}, ^{(TON 09)}
• SANE : A clean-slate security architecture for enterprise networks. SANE uses encrypted source routes which are delegated by a central reference monitor as a means of enforcing security policy. ^{(Usenix Security 06)}
• Illuminati : Effort to use active HTML content to measure network properties behind NATs and Proxies. ^{(NSDI 07)}
• Opportunistic traffic measurement : Project which used spurious traffic on the Internet (e.g. scanning from endemic worms) as measurement sources. ^{(HotNets 05)}
• Flow-Cookies : (ab)Use of the TCP sequence number to cryptographically indicate that a given packet belongs to a legitimate TCP stream. Allows offloading of the TCP handshake to the network infrastructure where there is greater available bandwidth. ^{(IWQOS 06), (SRUTI 06)}
• VNS : A platform for teaching low-level network programming on real traffic (initiated by the students). VNS simulates multiple complex topologies on which students implement the forwarding elements. ^{(SIGCSE 05), (ITICSE 05)}

Teaching

• CS244 Advanced Topics in Computer Networking , Winter 2009,2010,2011.
• CS244a Computer Networking , Winter 2004,2005,2006.
• CS344 Advanced Projects in Computer Networking , Spring 2005,2006.
• U.S. Cybersecurity, Fall 2006,2007.

Education

• PhD Stanford University. (2007) in Computer Science ^{(Dissertation: pdf)}.
• MS Stanford University. (2005) in Computer Science.
• BS Northern Arizona University. (2000) in Computer Science and Engineering.

---

[publications] [quotes] [ultra-running]