Visible to the public A Hypothesis Testing Framework for Network Security - January 2017Conflict Detection Enabled

Submitted by awhitesell on Tue, 01/10/2017 - 3:43pm

Public Audience
Purpose: To highlight project progress. Information is generally at a higher level which is accessible to the interested public. All information contained in the report (regions 1-3) is a Government Deliverable/CDRL.

PI(s): P. Brighten Godfrey

Co-PI(s): Matthew Caesar, David Nicol, William Sanders, and Kevin Jin (Illinois Institute of Technology)

HARD PROBLEM(S) ADDRESSED
This refers to Hard Problems, released November 2012.

This project covers four hard problems:

  • Scalability and composability
  • Policy-governed secure collaboration
  • Predictive security metrics
  • Resilient architectures

PUBLICATIONS
Papers published in this quarter as a result of this research. Include title, author(s), venue published/presented, and a short description or abstract. Identify which hard problem(s) the publication addressed. Papers that have not yet been published should be reported in region 2 below.

  • Jiaqi Yan and Dong Jin. "A Lightweight Container-based Virtual Time System for Software-defined Network Emulation," Journal of Simulation, November 2016.
  • Xin Liu and Dong Jin. "ConVenus: Congestion Verification of Network Updates in Software-defined Networks." Winter Simulation Conference (WSC), Washington, DC, December 11-14, 2016.
  • Ning Liu, Adnan Haider, Dong Jin and Xian-He Sun. "A Modeling and Simulation of Extreme-Scale Fat-Tree Networks for HPC Systems and Data Centers," ACM Transactions on Modeling and Computer Simulation (TOMACS), to appear.

ACCOMPLISHMENT HIGHLIGHTS

In the current quarter, our project progress is centered on addressing two SoS lablet hard problems: scalability and resilient architecture including

  • Develop effective simulation and emulation methodologies and tools
    • Improved temporal synchronization for higher fidelity
    • Developed DSSNet, a testing and evaluation platform for studying network security in electricity power grid environment
    • DSSNet being put in open source
    • Published one journal paper, and submitted one journal paper
  • Developed technology to verify network flow congestion to detect cyber threats and human errors, ConVenus
    • Achieved millisecond-level verification speed
    • Addressing network timing uncertainty
    • ConVenus being put in open source
    • Published one conference paper
  • Investigating infrastructure-level and application-level approach to apply software-defined networking technologies to make industrial control systems more cyber secure and resilient
    • Developing hardware-in-the-loop SDN simulation testbed
    • Submitted one journal paper and one conference paper
  • In addition, Co-PI Dong (Kevin) Jin received Air Force Office of Scientific Research (AFOSR), Young Investigator Program (YIP) Award, and Junior Faculty Research Award at Illinois Institute of Technology (Dec 2016).
Groups: