Redundancy for Network Intrusion Prevention Systems (NIPS) - July 2016

Submitted by drwright on Mon, 06/13/2016 - 9:44am

Public Audience
Purpose: To highlight project progress. Information is generally at a higher level which is accessible to the interested public. All information contained in the report (regions 1-3) is a Government Deliverable/CDRL.

PI(s): Mike Reiter

Researchers: Victor Heorhiadi, Jun Jiang

HARD PROBLEM(S) ADDRESSED

Primary: Resilient Architectures

This work is developing an architecture for the scalable enforcement of network security policies that is resilient to traffic changes and traffic rerouting in response to failures.

PUBLICATIONS

Victor Heorhiadi, Shriram Rajagopalan, Hani Jamjoom, Michael K. Reiter, Vyas Sekar. 2016. Gremlin: Systematic resilience testing of microservices. 36th IEEE International Conference on Distributed Computing Systems.

ACCOMPLISHMENT HIGHLIGHTS

We presented our work on SOL, a framework to simplify construction of SDN optimization applications, in an invited talk at the DIMACS Workshop on Algorithms for Software-Defined Networking. We received numerous expressions of interest in the work, most notably from AT&T. We are investigating the possibility of collaborating on related projects of particular interest to them.
Our work published this quarter develops a framework and system for subjecting microservice-based systems to faults and evaluating their reactions to them, in an effort to validate proper implementation of fault-handling patterns. This work performs fault injection and monitoring at the network layer and so complements SOL by providing an active monitoring capability for proper implementation, specifically of fault-handling patterns.

Groups:

NCSU Science of Security Lablet Research Initiative