TWC: Small: Automatic Detection of Protocol Manipulation Attacks in Large Scale Distributed Systems Implementations

TWC：小型：大规模分布式系统实现中协议操纵攻击的自动检测

• 批准号: 1600280
• 负责人: Cristina Nita-Rotaru
• 金额: $ 8.1万
• 依托单位: Northeastern University
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2015
• 资助国家: 美国
• 起止时间: 2015-10-01 至 2016-08-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=1600280&HistoricalAwards=false
• 关键词: TWC; Small; Automatic; Detection; Protocol

The main research focus of this proposal is to create a platform that allows to automatically find attacks in unmodified binaries of distributed systems. The attacks are conducted through message manipulation by insider attackers and impact primarily performance and availability. The platform combines existent open-source virtualization environments such as KVM, and network simulation and emulation tools such as NS3, to create a realistic environment in which target systems will run. The platform is general, scalable, and can be used for testing a large variety of distributed systems such as intrusion-tolerant and peer-to-peer systems.The platform will improve the trust that distributed systems work according to their intended specifications in spite of faults, misconfigurations, or attacks.The platform can serve as a tool for system developers from industry, government labs, and academia to test their systems. In addition, it can be used for programing exercises for distributed systems and computer security courses at both undergraduate and graduate level.

该提案的主要研究重点是创建一个平台，允许在分布式系统的未修改二进制文件中自动查找攻击。 这些攻击是由内部攻击者通过消息操纵进行的，主要影响性能和可用性。该平台结合了现有的开源虚拟化环境（例如KVM）以及网络模拟和仿真工具（例如NS3），以创建目标系统运行的真实环境。该平台具有通用性、可扩展性，可用于测试各种分布式系统，例如入侵容忍和点对点系统。该平台将提高分布式系统按照其预期规范工作的信任，尽管该平台可以作为工业界、政府实验室和学术界的系统开发人员测试其系统的工具。此外，它还可用于本科生和研究生级别的分布式系统和计算机安全课程的编程练习。