| | 1 | [[PageOutline]] |
| | 2 | |
| | 3 | = ExptsSecurity Project Status Report = |
| | 4 | |
| | 5 | '''Period: GEC12 (Nov) 2011''' [[BR]] |
| | 6 | |
| | 7 | == I. Major accomplishments == |
| | 8 | |
| | 9 | === A. Milestones achieved === |
| | 10 | |
| | 11 | We delivered the report as stated in the Milestone ExptsSec: |
| | 12 | S3.d in September 2011. We also presented in GEC12 as part of |
| | 13 | the project highlights in software track according to the Y3 |
| | 14 | Milestone(a). The report and the presentation summarized the |
| | 15 | experiments to explore vulnerabilities of ProtoGENI and the |
| | 16 | related suggestions. According to Y3 Milestone(a), the GEC12 |
| | 17 | presentation (see the attached GEC12 presentation) includes the |
| | 18 | findings and suggestions that summarize our Y2 project |
| | 19 | activities. In addition, we presented a demo in GEC12 that |
| | 20 | shows ARP related security issue with ProtoGENI. [[BR]] |
| | 21 | |
| | 22 | |
| | 23 | === B. Deliverables made === |
| | 24 | |
| | 25 | (1) Report for the Milestone ExptsSec: S3.d. |
| | 26 | http://groups.geni.net/geni/attachment/wiki/ExptsSecurityAnalysis/ExptsSec-milestone-s3d-a.pdf |
| | 27 | [[BR]] |
| | 28 | |
| | 29 | (2) GEC12 presentation, |
| | 30 | http://groups.geni.net/geni/attachment/wiki/ExptsSecurityAnalysis/GEC12-exptsSeca.pdf |
| | 31 | [[BR]] |
| | 32 | |
| | 33 | |
| | 34 | (3) Dawei Li, Xiaoyan Hong, "ARP security in ProtoGENI", The |
| | 35 | demo will show ARP attacks and its harm to ProtoGENI (on |
| | 36 | reserved nodes), and show potential defenses. [[BR]] |
| | 37 | |
| | 38 | |
| | 39 | == II. Description of work performed during last quarter == |
| | 40 | |
| | 41 | === A. Activities and findings === |
| | 42 | |
| | 43 | |
| | 44 | Major activities are the experiments in the following areas: |
| | 45 | vulnerabilities in different layers of the GENI/ProtoGENI |
| | 46 | security model, analysis on authentication and authorization, |
| | 47 | DOS attacks. Our findings are made as deliverables through a |
| | 48 | report, a presentation at GEC12 and a demo at GEC12. [[BR]] |
| | 49 | |
| | 50 | |
| | 51 | We participated in GEC12 in Nov 2011. We presented a summary of |
| | 52 | Y2 findings and suggestions and discussed our work with |
| | 53 | ProtoGENI team and Dr Vicraj Thomas, and obtained great |
| | 54 | feedback from them. We present a demo. We also attended related |
| | 55 | tracks and sessions. [[BR]] |
| | 56 | |
| | 57 | |
| | 58 | === B. Project participants === |
| | 59 | |
| | 60 | Xiaoyan Hong (PI) [[BR]] Fei Hu (Co-PI) [[BR]] Yang Xiao |
| | 61 | (Co-PI) [[BR]] Bo Fu (Graduate student) [[BR]] Jingcheng Gao |
| | 62 | (Graduate student) [[BR]] Bo Gu (Graduate student) [[BR]] |
| | 63 | Mohammed Hoque (Graduate student) [[BR]] Dawei Li (Graduate |
| | 64 | student) [[BR]] Darwin Witt (Undergraduate student) [[BR]] |
| | 65 | Jason Bowman (Undergraduate student) [[BR]] |
| | 66 | |
| | 67 | |
| | 68 | === C. Publications (individual and organizational) === |
| | 69 | |
| | 70 | |
| | 71 | === D. Outreach activities === |
| | 72 | |
| | 73 | We introduced GENI/ProtoGENI and our project to an |
| | 74 | undergraduate group, who receive NSF scholarship through SSTEM |
| | 75 | program, in their regular meeting. We also use ProtoGENI in a |
| | 76 | course project of a graduate course in the Fall 2011. |
| | 77 | |
| | 78 | |
| | 79 | === E. Collaborations === |
| | 80 | |
| | 81 | We participated in Cluter C conference-calls. [[BR]] |
| | 82 | |
| | 83 | |
| | 84 | === F. Other Contributions === |
