1 / 13

DETER Experiment Support Facilities ("Workbench")

DETER Experiment Support Facilities ("Workbench"). DETER & EMIST Project Staff DETER Workshop 28 September 2005. What is Special About DETER?. DETER testbed uses Utah's Emulab software. DETER is specialized to support security research. Variable isolation for running risky experiments.

wyanet
Download Presentation

DETER Experiment Support Facilities ("Workbench")

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. DETER Experiment Support Facilities("Workbench") DETER & EMIST Project Staff DETER Workshop 28 September 2005 Braden DETER

  2. What is Special About DETER? • DETER testbed uses Utah's Emulab software. • DETER is specialized to support security research. • Variableisolation for running risky experiments. • DETER experiments often push limitson # of nodes, link speeds, … • Narrow user community • DETER/EMIST goal: form a cooperative research community that builds on each other's work. Braden DETER

  3. Experiment Support Facilitiesin DETER • To support the DETER user community, DETER and EMIST projects are building security-specificexperiment support facilities. Braden DETER

  4. Support Facilities • Library of security experiment building blocks • Code: tools • Data: standard topologies & other static info that is experiment-neutral. • Repository of complete experiments • Integrated experimenter environment and interface: Security Experimenters’ Workbench (SEW) Braden DETER

  5. 1. Tools Library • First step: assemble an initial tools library • Topology Generators • Configuration generators • Attack generators • Background traffic generators • Measurement tools • Data analysis tools • Visualization tools Braden DETER

  6. Tools Library -- Examples • Topology Generators • GT-ITM – Georgia Tech • INET – Umich • BRITE – Boston U • Purdue Topology generator tool • (RouteViews + Rocketfuel + policy => config files for Emulab/DETER) • Configuration generators • Purdue tool • ESVT – Penn State (prototype SEW: discussed later) Braden DETER

  7. Tools Library – Examples • Attack generators • TCPopera (UCDavis) • Minos-honeypot (UC Davis) • BGPplay (UCDavis) • SPINES (UCDavis) • Flood – Purdue • Event-based agents (Sparta) • Wormgen (UCDavis) Braden DETER

  8. Tools Library – examples (More complete list in Peng Liu's talk, to follow) Braden DETER

  9. 2. Experiment Repository • "Hello World": Simple complete experiments for new users and students • Generally simple • Plan initial use in USC security classes • Complete complex experiments, for serious users • Purpose 1: Advance science by supporting replication. • Purpose 2: Help experimenters: morph an existing experiment to meet new objectives. Braden DETER

  10. Experiment Scaling • Scaling the size of an experiment to 200 physicaL nodes, or to 1000 virtual nodes, raises practical problems for testbed users. • Need tools for generating configurations and for data analysis/display. • SEW will include a convenient toolkit for this purpose. Braden DETER

  11. 3. Security Experimenters’ Workbench (SEW) • An environment for experiment definition/control/analysis, aimed at security experiments. • A uniform user interface for selecting and configuring a diversity of tools, topologies, instrumentation, and traffic traces. • A work in progress Braden DETER

  12. SEW Functions Envisioned • “Stitch” together existing tools and facilities behind common interface, "on top" of Emulab/DETER, "behind" a GUI. • Generate configuration and event files by "compiling" abstract configuration descriptions with customization rules. • • Active window for controlling experiment execution while capturing the event sequence for later background replay. • • Support variety of post-execution data analysis tools, which “know” the experiment configuration. Braden DETER

  13. Initial Prototype of SEW • ESVT – Experiment Specific’n and Visualiz’nTool • Under development at Penn State • Used in 3 of today's demos. • Peng Liu will describe it. Braden DETER

More Related