Automating DDoS experimentation

Authors:
Jelena Mirkovic;Brett Wilson;Alefiya Hussain;Sonia Fahmy;Peter Reiher;Roshan Thomas;Stephen Schwab
Affiliations:
University of Delaware, Newark, DE;SPARTA, Inc., El Segundo, CA;SPARTA, Inc., El Segundo, CA;Purdue University, West Lafayette, IN;UCLA, Los Angeles, CA;SPARTA, Inc., Centreville, VA;SPARTA, Inc., El Segundo, CA
Venue:
DETER Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test on DETER Community Workshop on Cyber Security Experimentation and Test 2007
Year:
2007

Citing 11
Cited 2

The click modular router

ACM Transactions on Computer Systems (TOCS)
Top-Down Network Design

Top-Down Network Design
Measuring ISP topologies with rocketfuel

Proceedings of the 2002 conference on Applications, technologies, architectures, and protocols for computer communications
Low-rate TCP-targeted denial of service attacks: the shrew vs. the mice and elephants

Proceedings of the 2003 conference on Applications, technologies, architectures, and protocols for computer communications
Harpoon: a flow-level traffic generator for router and network tests

Proceedings of the joint international conference on Measurement and modeling of computer systems
D-ward: source-end defense against distributed denial-of-service attacks

D-ward: source-end defense against distributed denial-of-service attacks
A framework for malicious workload generation

Proceedings of the 4th ACM SIGCOMM conference on Internet measurement
Testing network-based intrusion detection signatures using mutant exploits

Proceedings of the 11th ACM conference on Computer and communications security
Optimal Routing Design (Networking Technology)

Optimal Routing Design (Networking Technology)
Towards user-centric metrics for denial-of-service measurement

Proceedings of the 2007 workshop on Experimental computer science
How to model an internetwork

INFOCOM'96 Proceedings of the Fifteenth annual joint conference of the IEEE computer and communications societies conference on The conference on computer communications - Volume 2

SWOON: a testbed for secure wireless overlay networks

CSET'08 Proceedings of the conference on Cyber security experimentation and test
Classification of UDP traffic for DDoS detection

LEET'12 Proceedings of the 5th USENIX conference on Large-Scale Exploits and Emergent Threats

Quantified Score

Hi-index	0.00

Visualization

Abstract

While the DETER testbed provides a safe environment and basic tools for security experimentation, researchers face a significant challenge in assembling the testbed pieces and tools into realistic and complete experimental scenarios. In this paper, we describe our work on automating experimentation for distributed denial-of-service attacks. We developed the following automation tools: (1) the Experimenter's Workbench that provides a graphical user interface, tools for topology, traffic and monitoring setup and tools for statistics collection, visualization and processing, (2) a DDoS benchmark suite that contains a set of diverse and comprehensive attack scenarios, (3) the Experiment Generator that combines chosen AS-level and edge-level topologies, legitimate traffic and a set of attacks into DETER-compatible scripts. Jointly, these tools facilitate easy experimentation even for novice users.