Redundancy for Network Intrusion Prevention Systems (NIPS) - July 2017

Submitted by drwright on Fri, 06/09/2017 - 8:41am

Public Audience
Purpose: To highlight project progress. Information is generally at a higher level which is accessible to the interested public. All information contained in the report (regions 1-3) is a Government Deliverable/CDRL.

PI(s): Mike Reiter

Researchers: Victor Heorhiadi, Sheng Liu

HARD PROBLEM(S) ADDRESSED

Primary: Resilient Architectures

This work is developing an architecture for the scalable enforcement of network security policies that is resilient to traffic changes and traffic rerouting in response to failures.

PUBLICATIONS

Sheng Liu, Michael K. Reiter, Vyas Sekar. 2017. Flow reconnaissance via timing attacks on SDN switches. 37th IEEE International Conference on Distributed Computing Systems.

ACCOMPLISHMENT HIGHLIGHTS

We demonstrated flow-reconnaissance attacks that arise due to timing channels in SDN switches. We published a paper at ICDCS 2017 on this topic.
We reimplemented the SNIPS application (https://cps-vo.org/node/17112) in the SOL framework, demonstrating how a complex security application can be expressed very simply using a framework like SOL with very similar optimality and performance characteristics as our original, hand-tuned implementation.

Groups:

NCSU Science of Security Lablet Research Initiative