Abstract

In this paper we present tools and methods to integrate attack measurements from the Internet with controlled experimentation on a network testbed. We show that this approach provides greater fidelity than synthetic models. We compare the statistical properties of real-world attacks with synthetically generated constant bit rate attacks on the testbed. Our results indicate that trace replay provides fine time-scale details that may be absent in constant bit rate attacks. Additionally, we demonstrate the effectiveness of our approach to study new and emerging attacks. We replay an Internet attack captured by the LANDER system on the DETERLab testbed within two hours.

Metadata

publication

2013 IEEE International Conference on Technologies for Homeland Security …, 2013

year

2013

publication date

2013/11/12

authors

Alefiya Hussain, Yuri Pradkin, John Heidemann

link

https://ieeexplore.ieee.org/abstract/document/6699022/

resource_link

https://ant.isi.edu/~johnh/PAPERS/Hussain13a.pdf

conference

2013 IEEE International Conference on Technologies for Homeland Security (HST)

pages

322-327

publisher

IEEE