RINSE: The Real-Time Immersive Network Simulation Environment for Network Security Exercises (Extended Version)

The Real-Time Immersive Network Simulation Environment (RINSE) simulator is being developed to support large-scale network security preparedness and training exercises, involving hundreds of players and a modeled network composed of hundreds of local-area networks (LANs). The simulator must be able to present a realistic rendering of network behavior as attacks are launched and players diagnose events and try counter measures to keep network services operating. The authors describe the architecture and function of RINSE and outline how techniques such as multiresolution traffic modeling, multiresolution attack models, and new routing simulation methods are used to address the scalability challenges of this application. They also describe in more detail new work on CPU/memory models necessary for the exercise scenarios and a latency absorption technique that will help when extending the range of client tools usable by the players.

[1]  Donald F. Towsley,et al.  Fixed point approximations for TCP behavior in an AQM network , 2001, SIGMETRICS '01.

[2]  David M. Nicol,et al.  Composite Synchronization in Parallel Discrete-Event Simulation , 2002, IEEE Trans. Parallel Distributed Syst..

[3]  Larry L. Peterson,et al.  The x-Kernel: An Architecture for Implementing Network Protocols , 1991, IEEE Trans. Software Eng..

[4]  George Kesidis,et al.  Feasibility of fluid event-driven simulation for ATM networks , 1996, Proceedings of GLOBECOM'96. 1996 IEEE Global Telecommunications Conference.

[5]  David M. Nicol,et al.  On-demand computation of policy based routes for large-scale network simulation , 2004, Proceedings of the 2004 Winter Simulation Conference, 2004..

[6]  David M. Nicol,et al.  Multiscale Modeling and Simulation of Worm Effects on the Internet Routing Infrastructure , 2003, Computer Performance Evaluation / TOOLS.

[7]  Xenofontas A. Dimitropoulos,et al.  Large-scale simulation models of BGP , 2004, The IEEE Computer Society's 12th Annual International Symposium on Modeling, Analysis, and Simulation of Computer and Telecommunications Systems, 2004. (MASCOTS 2004). Proceedings..

[8]  David M. Nicol,et al.  Simulation of large scale networks I: simulation of large-scale networks using SSF , 2003, WSC '03.

[9]  Mike Hibler,et al.  An integrated experimental environment for distributed systems and networks , 2002, OSDI '02.

[10]  Luigi Rizzo,et al.  Dummynet: a simple approach to the evaluation of network protocols , 1997, CCRV.

[11]  Andrew A. Chien,et al.  Network Emulation Tools for Modeling Grid Behavior , 2003 .

[12]  Amin Vahdat,et al.  Routing in an Internet-scale network emulator , 2004, The IEEE Computer Society's 12th Annual International Symposium on Modeling, Analysis, and Simulation of Computer and Telecommunications Systems, 2004. (MASCOTS 2004). Proceedings..

[13]  Sean W. Smith,et al.  Evaluation of efficient security for BGP route announcements using parallel simulation , 2004, Simul. Model. Pract. Theory.

[14]  Donald F. Towsley,et al.  A study of networks simulation efficiency: fluid simulation vs. packet-level simulation , 2001, Proceedings IEEE INFOCOM 2001. Conference on Computer Communications. Twentieth Annual Joint Conference of the IEEE Computer and Communications Society (Cat. No.01CH37213).

[15]  Donald F. Towsley,et al.  Modeling TCP throughput: a simple model and its empirical validation , 1998, SIGCOMM '98.

[16]  David M. Nicol,et al.  A mixed abstraction level simulation model of large-scale Internet worm infestations , 2002, Proceedings. 10th IEEE International Symposium on Modeling, Analysis and Simulation of Computer and Telecommunications Systems.

[17]  Brian W. Unger,et al.  Towards scalable network emulation , 2001, SPIE ITCom.

[18]  Mineo Takai,et al.  MAYA: Integrating hybrid network modeling to the physical world , 2004, TOMC.

[19]  Kevin R. Fall,et al.  Network emulation in the VINT/NS simulator , 1999, Proceedings IEEE International Symposium on Computers and Communications (Cat. No.PR00250).

[20]  Guanhua Yan,et al.  Simulation of large scale networks using SSF , 2003, Proceedings of the 2003 Winter Simulation Conference, 2003..

[21]  Xenofontas A. Dimitropoulos,et al.  Creating realistic BGP models , 2003, 11th IEEE/ACM International Symposium on Modeling, Analysis and Simulation of Computer Telecommunications Systems, 2003. MASCOTS 2003..

[22]  David M. Nicol,et al.  Simulation of network traffic at coarse time-scales , 2005, Workshop on Principles of Advanced and Distributed Simulation (PADS'05).

[23]  Brian W. Unger,et al.  Towards scalable network emulation , 2003, Comput. Commun..

[24]  Steven McCanne,et al.  The BSD Packet Filter: A New Architecture for User-level Packet Capture , 1993, USENIX Winter.

[25]  David M. Nicol,et al.  Simulating realistic network worm traffic for worm warning system design and testing , 2003, WORM '03.

[26]  Carey L. Williamson,et al.  Hybrid packet/fluid flow network simulation , 2003, Seventeenth Workshop on Parallel and Distributed Simulation, 2003. (PADS 2003). Proceedings..

[27]  John S. Heidemann,et al.  Minimizing routing state for light-weight network simulation , 2001, MASCOTS 2001, Proceedings Ninth International Symposium on Modeling, Analysis and Simulation of Computer and Telecommunication Systems.

[28]  Timothy G. Griffin,et al.  An experimental analysis of BGP convergence time , 2001, Proceedings Ninth International Conference on Network Protocols. ICNP 2001.

[29]  Srikanth Sundaragopalan,et al.  High-fidelity modeling of computer network worms , 2004, 20th Annual Computer Security Applications Conference.

[30]  J.H. Cowie,et al.  Modeling the global Internet , 1999, Comput. Sci. Eng..

[31]  Mostafa H. Ammar,et al.  Stateless routing in network simulations , 2000, Proceedings 8th International Symposium on Modeling, Analysis and Simulation of Computer and Telecommunication Systems (Cat. No.PR00728).

[32]  Fang Hao,et al.  An Internet scale simulation setup for BGP , 2003, CCRV.

[33]  Mani B. Srivastava,et al.  On modeling networks of wireless microsensors , 2001, SIGMETRICS '01.

[34]  David M. Nicol,et al.  Discrete event fluid modeling of background TCP traffic , 2004, TOMC.

[35]  Donald F. Towsley,et al.  Monitoring and early warning for internet worms , 2003, CCS '03.

[36]  Yougu Yuan,et al.  Examining Committee , 2005 .

[37]  Donald F. Towsley,et al.  Fluid Simulation of Large Scale Networks: Issues and Tradeoffs , 1999, PDPTA.

[38]  Andrew S. Tanenbaum,et al.  Modern operating systems, 2nd Edition , 2001 .

[39]  Richard M. Fujimoto,et al.  Integrated fluid and packet network simulations , 2002, Proceedings. 10th IEEE International Symposium on Modeling, Analysis and Simulation of Computer and Telecommunications Systems.

[40]  Hao Wu,et al.  Large-scale network simulation: how big? how fast? , 2003, 11th IEEE/ACM International Symposium on Modeling, Analysis and Simulation of Computer Telecommunications Systems, 2003. MASCOTS 2003..

[41]  Ratul Mahajan,et al.  Measuring ISP topologies with rocketfuel , 2002, TNET.