Test Performance

Performance Testing News UK
RSS

Archive for the ‘Network Testing’ Category

A short description of NTLM

Posted by performance tester on November 25th, 2009 No Comments

NTLM is a security protocol used in Microsoft Networks. It is the main approach used by Microsoft to implement single sign-on. It is also used for HTTP authentication and also in Exchange, as well as CIFS/SMB, Telnet and SIP.

NTLM uses a challenge response authentication mechanism, in which users are able to establish their identity without the use of a password. This is generally handled by a certificate that the user already had in their poccession. It includes three exchanges, in general known as Type1 (negotiation), Type2 (challenge) and Type3 (authentication). The exchanges work on the following basis.
The client generates and sends a Type 1 communication to the server. This contains a feature supported by the client and requested of from the server.
The server responds with a Type 2 communication. This contains the features decided to be supported by the server. More notably however, it contains a challenge generated by the server.
The client responds to the challenge with a Type 3 communication. This contains a number of pieces of data about the client, including the domain and users name of the client user along with the secret key. This secret key that has been sent should match the secret key that is held by the server.

Finally Digital signatures can be managed. This means that the signed message has not been intercepted and means the sender is privy to the shared secret. This could be a Radius client interating along with Active Directory whereby the shared secret is manually set within each configuration by the administrator. The keys used in signing and sealing are established as a by-product of the NTLM authentication process. Signing functionality is performed by the addition of a Message Authentication Code (MAC) to any message. This is checked by the server who can now be certain that the message integrity is safe. The signature is generated using the secret key, known by both the sender and receiver. The MAC can only be checked by any party holding the key.

Sealing is carried out by a different function, which adds encryption to a message to put a stop to it from being viewed by another party in transit. There are several encryption protocols used throughout signing and sealing, plus more are appearing frequently. As well as providing message integrity, communication discretion is ensured by the use of sealing. Under SSPI (Security Support Provider Interface) sealing (and signing) is at all times performed in combination with the same key. This encryption allows that a message cannot be intercepted or tampered with whatsoever. (Unless of course you are employed for the FBI).

NTLM is a popular authentication protocol. While there are other authentication protocols that are used, the straightforwardness of use and it’s integration with Microsoft leaves it as nearly all administrators number 1 choice.

Posted in Network Testing, Non Functional Testing, Security Testing, Software Testing

How to resolve Performance concerns with your hosted Web-site

Posted by performance tester on November 23rd, 2009 No Comments

How to verify the performance of your hosted website.

The trouble with using a data centre is the service provider does not always respond to queries. I was in recent times asked by a client look at an issue concerning a hosted website.

The problem was a website which was running slow. I wanted to know what they had changed recently thinking that something they had done may have caused a problem. They told me that they hadn’t made any alterations of late, it had simply started to perform poorly suddenly. They did state that some time back they had made performance improvements on their website by by installing compression and by making any images on the site more efficient. They had checked the performance after these changes and the website was running well and had been for quite some time now. The reduced performance had started a couple of days earlier and they were certain the performance problem was due to the data centre where the website was hosted.

A study was started to see what was occurring. The opening thing I did was to execute a ping. This can be initiated from the command window (from the start windows prompt, type ‘cmd’ and enter. The command itself is simply “ping www.testingperformance.org” This generates 4 requests to the website each with a packet size of just 32 bytes. It’s pretty small, and the response should give you a good idea of latency. Of the 4 hits, twice out of 4 the replys timed and the remaining 2 took over half a second. That is not very quick. There are a variety of options with ping. “Ping -l 200 www.testingperformance.org” will ping the website with 200 bytes. While this is still very slow, it can be increased quite simply to 100Kb which is more realistic of a big web page.

As I was in Britain and the website was located in the North America, I wondered if the latency could be owing to the distance across the Atlantic. To answer that query, I ran a trace route. The format of the command is “tracert www.testingperformance.org” This should demonstrate the various hops that are made when accessing from a workstation or laptop to a server or website. What I could see was that the last 2 or 3 jumps (out of about 20 jumps) were extremely sluggish. It was possible that these hops were in the data centre itself.

I conveyed this information to the data centre and said, look, here is substantiation, are these hops with reduced reply times caused by your equipment? The data centre people in due course contacted me back and stated, they could not tell a lie, the answer was no, it was not them. Well I knew it wasn’t me, and I knew it was not my ISP, and the data centre said it wasn’t them, but I didn’t believe them.

Scouring the net, I located some tools I considered should help, one was named IWEB. I downloaded the tool and it checked the homepage on my website for an interval of time. The results showed response times varying between 2 seconds and 25 seconds. I sent this data back to the hosting centre and asked them to make a statement.

“Oh yeah,” they said, “oh there has been a issue with {one of the} sites on our hardware, it has been receiving lots of hits recently.” “hang on a second,” they said. Half an hour later, my clients site was delivering 1 – 2 second response times again. The assumption was we had been moved to a better performing server. Well, I guess we were ok, but there remains around 90 – 100 websites still hosted on the hardware with performance issues? It wasn’t that we complained, it was showing the evidence which managed to settle the issue for us, thanks to IWEB.

Posted in Firewall Testing, Network Testing, Non Functional Testing, Test Tools, Website Testing

Active Directory and CIFS

Posted by performance tester on November 22nd, 2009 No Comments

From none:

CIFS is an acronym which stands for Common Internet File System. It is based on Server Message Block protocol which has been around since the mid 80’s and enables a standard method for sharing files on networks. CIFS runs on TCP/IP and utilises the DNS. For resources on a network to be locatable, a means must exist whereby the resources can easily be found.A great example of this is a list of printers which a user can access. Microsofts Active Directory can be used, and responds to requests with a list of currently available devices and services that the user is able to access.

Active Directory provides advantages such as controlling and managing security necessities and single-sign-on authentication for users.

Posted in Firewall Testing, Network Testing, Non Functional Testing

Cloud-bursting – getting first-rate performance form the cloud

Posted by performance tester on November 17th, 2009 No Comments

From Computer World:

Cloud computing normally describes implementation of dynamically and often virtualised resources as a service across the Internet . Cloudbursting is one of the terms connected with cloud computing at the moment.
Using cloud computing models for any application and associated traffic could be costly, and using it for handling the spikes in a company’s usage patterns might also be laden with issues because of the time required to get the system set-up and seeded with the data. Ramping up in the cloud is difficult since it might take minutes to fire up more hosts but a company’s peak requirement may perhaps last less time than that.

Posted in Automated Testing, Network Testing, Non Functional Testing, Performance Modelling, Performance Testing, Website Testing

The DFS

Posted by performance tester on November 16th, 2009 No Comments

From Microsoft:

Shared files are usually distributed across networks, administrators face concerns as they struggle to keep users connected to shared data. The Distributed File System (Dfs) in the Microsoft Windows® 2000 operating system provides a method for administrators to generate logical data structures without needing to worry where the physical data resides Fault tolerance of network storage resources is also possible using Dfs.
The DFS might be used to construct a hierarchical view of file shares and servers on the network. You don’t need to think about using particular machine names for file sets, the user will only need to remember one name; which will be the ‘key’ to a list of shares found on servers in the network. Think of it as the home of every file share with links that point to one or more servers that actually host those shares. DFS has the capability of routing clients to the closest available file server by using site metrics. Installation might be on a cluster for improved performance and reliability. The organisations most likely to profit from the use of DFS are medium to large – for small companies it is simply not worth using as an ordinary file server would be completely fine.

Posted in Network Testing

Thinking of moving – StreetStats lets you check the internet speed of the locality first

Posted by performance tester on November 14th, 2009 No Comments

From Telegraph:

StreetStats shows performance testing results of internet connections within an area. The StreetStats website will note and chart the connection speeds achieved by users residing on the same street. The performance testing service, StreetStats, from broadband comparison site Top 10 Broadband, collects performance test data from users to build an dynamic Google map. Web users can focus in on their postcode to compare the performance data of their broadband service with the connection speeds their neighbours are receiving. More than 170,000 speed test results have been added so far, and the company behind the scheme hopes to have recorded the speeds of two million subscribers by the end of the year.A survey by Top 10 Broadband found that 4 out of 10 people would not move to a house or locality with a poor broadband service. The survey showed that six out of ten people would be “annoyed and envious” to learn that a neighbour achieved faster internet performance speeds than themselves.

Posted in Network Testing, Performance Testing, Website Testing

Powered by WordPress | Log in | Entries (RSS) | Comments (RSS) | ilookgood! theme by iwritealot!