Martìn Casado

3600 W. Bayshore Rd, Suite 205
Palo Alto, Ca 94303
USA

E-mail: casado@cs.stanford.edu

Affiliations

Andreessen Horowitz
Mural
Nicira/VMWare
Stanford High-Performance Networking research group

Selected Projects and Research

Software Defined Networking: Exploring the broader implications of software defined networking ^{(HotICE 12)}
Network Virtualization: Both virtualization ^{(presto 10)} and slicing ^{(osdi 10)} of the network forwarding path.
Onix: A platform for building distributed network control planes ^{(osdi 10)}.
Software Defined Forwarding : A systems approach to accelerate network forwarding software with a traditional TCAM-based forwarding plane. ^{(HotNets 09)}
NOX : A centralized OpenFlow control platform ^{(CCR
08)}. We've explored that application of NOX to datacenters ^{(HotNets
09)}, as well as security and network management ^{(WREN
09)}.
Open vSwitch : An open source soft switch for virtual environments which supports OpenFlow. ^{(HotNets 10)} ^{(DC
Caves 10)}
OpenFlow : A flow-level interface to the network datapath. The goal is to decouple the control software from the hardware forwarding to allow complex network control function to be implemented as a distributed system. ^{(CCR 08)} [Here is a list of the OpenFlow software projects that I know of]
FML : A high-level (flow-based) variant of datalog for managing network policy. ^{(WREN 09)}
DOEMail : A whitelisting system for e-mail. Used as the platform basis for an user-based study on the effectiveness of whitelisting. ^{(CEAS 08)}
Ethane : A logically-centralized network architecture for managing the security policies of enterprise networks. ^{(SIGCOMM 07)}, ^{(HOTI 07)}, ^{(TON 09)}
SANE : A clean-slate security architecture for enterprise networks. SANE uses encrypted source routes which are delegated by a central reference monitor as a means of enforcing security policy. ^{(Usenix Security 06)}
Illuminati : Effort to use active HTML content to measure network properties behind NATs and Proxies. ^{(NSDI 07)}
Opportunistic traffic measurement : Project which used spurious traffic on the Internet (e.g. scanning from endemic worms) as measurement sources. ^{(HotNets 05)}
Flow-Cookies : (ab)Use of the TCP sequence number to cryptographically indicate that a given packet belongs to a legitimate TCP stream. Allows offloading of the TCP handshake to the network infrastructure where there is greater available bandwidth. ^{(IWQOS 06),} ^{(SRUTI 06)}
VNS : A platform for teaching low-level network programming on real traffic (initiated by the students). VNS simulates multiple complex topologies on which students implement the forwarding elements. ^{(SIGCSE 05),} ^{(ITICSE 05)}

Teaching

CS244 Advanced Topics in Computer Networking , Winter 2009,2010,2011.
CS244a Computer Networking , Winter 2004,2005,2006.
CS344 Advanced Projects in Computer Networking , Spring 2005,2006.
U.S. Cybersecurity, Fall 2006,2007.

Education

PhD Stanford University. (2007) in Computer Science ^{(Dissertation: pdf)}.
MS Stanford University. (2005) in Computer Science.
BS Northern Arizona University. (2000) in Computer Science and Engineering.

[publications] [quotes] [ultra-running]