论文信息 - Simulation framework for cyber terrors and defense

Simulation framework for cyber terrors and defense

It is almost impossible to see how worm viruses like CodeRed or Bagle influence real networks and how effectively the defense techniques work. In the cases, simulation is a reasonable and useful alternative. In this paper, we propose a network and security simulation framework built on SSFNet and SSF. The proposed framework allows to model very large networks in an easy way and to run Java applets that mimic real cyber terrors. The framework also allows simulating security policies of firewalls and intrusion detection systems. In order to check the usability and the feasibility of the proposed framework, we per-form a simulation with Java applets, called actors, that mimic worm viruses and are spread on a modeled network with 1,750 computers. We analyze and compare the behaviors of worms on the network with or without firewalls.

Seung-Kyu Park | Gihyun Jung | Kyunghee Choi | Jae-Hyuk Lee

[1] Luis Gravano,et al. The Stanford Digital Library metadata architecture , 1997, International Journal on Digital Libraries.

[2] Andrew P. Moore,et al. Attack Modeling for Information Security and Survivability , 2001 .

[3] Markus Schumacher,et al. Collaborative attack modeling , 2002, SAC '02.

[4] Boleslaw K. Szymanski,et al. Time-network partitioning for large-scale parallel network simulation under ssfnet , 2002 .

[5] Wei T. Yue,et al. Agent-based simulation approach to information warfare in the SEAS environment , 2000, Proceedings of the 33rd Annual Hawaii International Conference on System Sciences.

[6] Somesh Jha,et al. Two formal analyses of attack graphs , 2002, Proceedings 15th IEEE Computer Security Foundations Workshop. CSFW-15.

[7] Donald Welch,et al. A Framework for an Information Warfare Simulation , 2001 .

[8] Igor V. Kotenko,et al. Multi-agent technologies for computer network security: attack simulation, intrusion detection and intrusion detection learning , 2003, Comput. Syst. Sci. Eng..

[9] Cynthia A. Phillips,et al. A graph-based system for network-vulnerability analysis , 1998, NSPW '98.