"Replay of Malicious Traffic in Network Testbeds" in IEEE Conference on Technologies for Homeland Security (HST)

The paper “Replay of Malicious Traffic in Network Testbeds” (by Alefiya Hussain, Yuri Pradkin, and John Heidemann) will appear in the 13th IEEE Conference on Technologies for Homeland Security (HST) in Waltham, Mass. in Nov. 2013. 

From the paper’s abstract:

In this paper we present tools and methods to integrate attack measurements from the Internet with controlled experimentation on a network testbed. We show that this approach provides greater fidelity than synthetic models. Screenshot of MAGI tool We compare the statistical properties of real-world attacks with synthetically generated constant bit rate attacks on the testbed. Our results indicate that trace replay provides fine time-scale details that may be absent in constant bit rate attacks. Additionally, we demonstrate the effectiveness of our approach to study new and emerging attacks. We replay an Internet attack captured by the LANDER system on the DETERLab testbed within two hours.

Data and tools from the paper are available at:  http://montage.deterlab.net/magi/hst2013tools

Also read the LANDER Blog entry at  http://ant.isi.edu/blog/?p=411

Click here to go directly to the paper on slideshare.