8/9/05 1 Cyber Defense Technology Experimental Cyber Defense Technology Experimental Research (DETER) Research (DETER) and and Evaluation Methods for Internet Security Evaluation Methods for Internet Security Technology (EMIST) Technology (EMIST) Terry V. Benzel Terry V. Benzel Information Sciences Institute Information Sciences Institute University of Southern California University of Southern California
10
Embed
Cyber Defense Technology Experimental and Evaluation Methods
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
andandEvaluation Methods for Internet SecurityEvaluation Methods for Internet Security
Technology (EMIST)Technology (EMIST)
Terry V. BenzelTerry V. BenzelInformation Sciences InstituteInformation Sciences Institute
University of Southern CaliforniaUniversity of Southern California
8/9/05 2
DETER + EMIST:DETER + EMIST:BackgroundBackground
• Inadequate wide scale deployment of securitytechnologies– Despite 10+ years investment in network security
research
• Lack of experimental infrastructure– Testing and validation in small to medium-scale
private research labs– Missing objective test data, traffic and metrics
8/9/05 3
DETER+EMIST VisionDETER+EMIST Vision
... to provide the scientific knowledge requiredto enable the development of solutions tocyber security problems of nationalimportance
Through the creation of an experimentalinfrastructure network -- networks, tools,methodologies, and supporting processes --to support national-scale experimentation onresearch and advanced development ofsecurity technologies.
8/9/05 4
Long Term ObjectivesLong Term Objectives
Create reusable library of test technology for conducting realistic,rigorous, reproducible, impartial tests
–For assessing attack impact and defense effectiveness–Test data, test configurations, analysis software, and experiment
automation toolsProvide usage examples and methodological guidance
–Recommendations for selecting (or developing) tests andinterpreting results
–Test cases and results, possibly including benchmarksFacilitate testing of prototypes during development and commercial
products during evaluation
8/9/05 5
DETER Architectural PlanDETER Architectural Plan
• Construct homogeneous emulation clustersbased upon University of Utah’s Emulab