Context Navigation

Changes between Version 50 and Version 51 of GENIBibliography

Timestamp:: 01/20/17 17:04:20 (7 years ago)
Author:: Mark Berman
Comment:: --

Legend:

: Unmodified
: Added
: Removed
: Modified

GENIBibliography

-                      v50
+                      v51
 <li>
+<b>Bavier, Andy and McGeer, Rick and Ricart, Glenn</b>
+, &quot;PlanetIgnite: A Self-Assembling, Lightweight, Infrastructure-as-a-Service Edge Cloud.&quot;
+28th International Teletraffic Congress (ITC 28), W&#x75;&#x0308;rzburg, Germany, IEEE,
+.
+doi:10.1109/itc-28.2016.125.
+<a href="http://dx.doi.org/10.1109/itc-28.2016.125">http://dx.doi.org/10.1109/itc-28.2016.125</a>
+<br><br><b>Abstract: </b>PlanetIgnite is a general-purpose, Infrastructure-as-a-Service, self-assembling, lightweight edge cloud on virtualized infrastructure with support for single-pane-of-glass distributed application configuration and deployment. This is an entirely new concept. PlanetLab[32], GENI[7], [22], and SAVI[19] are general-purpose IaaS edge clouds, but require top-down installation and dedicated hardware resources at each site and do not offer single- pane-of-glass application deployment. Seattle[11] is a lightweight self-assembling edge cloud that offers single- pane-of-class configuration and control, but developers are restricted to using a subset of Python. PlanetIgnite is a Containers-as-a-Service Edge Cloud which offers Docker Containers to each PlanetIgnite user. A PlanetIgnite node is an off-the-shelf Ubuntu 14.04 Virtual machine with Docker installed, meaning it can be installed on any edge node where a VM with a routable v4 address is available. Adding a PlanetIgnite node to the infrastructure is simple: a site wishing to host a PlanetIgnite node simply downloads the image; on boot, the new PlanetIgnite node registers with the PlanetIgnite portal, which runs a series of acceptance tests. Once complete, the image is registered and the node is added to the set of PlanetIgnite sites.
+</li>
+<br>
+<li>
 <b>Bejerano, Y. and Ferragut, J. and Guo, K. and Gupta, V. and Gutterman, C. and Nandagopal, T. and Zussman, G.</b>
 , &quot;Experimental Evaluation of a Scalable WiFi Multicast Scheme in the ORBIT Testbed.&quot;
 …
 <li>
 <b>Chin, Tommy and Mountrouidou, Xenia and Li, Xiangyang and Xiong, Kaiqi</b>
+, &quot;Selective Packet Inspection to Detect DoS Flooding Using Software Defined Networking (SDN).&quot;
+Distributed Computing Systems Workshops (ICDCSW), 2015 IEEE 35th International Conference on, IEEE,
+.
+doi:10.1109/icdcsw.2015.27.
+<a href="http://dx.doi.org/10.1109/icdcsw.2015.27">http://dx.doi.org/10.1109/icdcsw.2015.27</a>
+<br><br><b>Abstract: </b>Software-defined networking (SDN) and Open Flow have been driving new security applications and services. However, even if some of these studies provide interesting visions of what can be achieved, they stop short of presenting realistic application scenarios and experimental results. In this paper, we discuss a novel attack detection approach that coordinates monitors distributed over a network and controllers centralized on an SDN Open Virtual Switch (OVS), selectively inspecting network packets on demand. With different scale of network views and information availability, these two elements collaboratively detect signature constituents of an attack. Therefore, this approach is able to quickly issue an alert against potential threats followed by careful verification for high accuracy, while balancing the workload on the OVS. We have applied this method for detection and mitigation of TCP SYN flood attacks on Global Environment for Network Innovations (GENI). This realistic experimentation has provided us with insightful findings helpful toward a systematic methodology of SDN-supported attack detection and containment.
+</li>
+<br>
+<li>
+<b>Chin, Tommy and Mountrouidou, Xenia and Li, Xiangyang and Xiong, Kaiqi</b>
 , &quot;An SDN-supported collaborative approach for DDoS flooding detection and containment.&quot;
 Military Communications Conference, MILCOM 2015 - 2015 IEEE, IEEE,
 …
 <a href="http://dx.doi.org/10.1109/milcom.2015.7357519">http://dx.doi.org/10.1109/milcom.2015.7357519</a>
 <br><br><b>Abstract: </b>Software Defined Networking (SDN) has the potential to enable novel security applications that support flexible, on-demand deployment of system elements. It can offer targeted forensic evidence collection and investigation of computer network attacks. Such unique capabilities are instrumental to network intrusion detection that is challenged by large volumes of data and complex network topologies. This paper presents an innovative approach that coordinates distributed network traffic Monitors and attack Correlators supported by Open Virtual Switches (OVS). The Monitors conduct anomaly detection and the Correlators perform deep packet inspection for attack signature recognition. These elements take advantage of complementary views and information availability on both the data and control planes. Moreover, they collaboratively look for network flooding attack signature constituents that possess different characteristics in the level of information abstraction. Therefore, this approach is able to not only quickly raise an alert against potential threats, but also follow it up with careful verification to reduce false alarms. We experiment with this SDN-supported collaborative approach to detect TCP SYN flood attacks on the Global Environment for Network Innovations (GENI), a realistic virtual testbed. The response times and detection accuracy, in the context of a small to medium corporate network, have demonstrated its effectiveness and scalability.
-</li>
-<br>
-<li>
-<b>Chin, Tommy and Mountrouidou, Xenia and Li, Xiangyang and Xiong, Kaiqi</b>
-, &quot;Selective Packet Inspection to Detect DoS Flooding Using Software Defined Networking (SDN).&quot;
-Distributed Computing Systems Workshops (ICDCSW), 2015 IEEE 35th International Conference on, IEEE,
-.
-doi:10.1109/icdcsw.2015.27.
-<a href="http://dx.doi.org/10.1109/icdcsw.2015.27">http://dx.doi.org/10.1109/icdcsw.2015.27</a>
-<br><br><b>Abstract: </b>Software-defined networking (SDN) and Open Flow have been driving new security applications and services. However, even if some of these studies provide interesting visions of what can be achieved, they stop short of presenting realistic application scenarios and experimental results. In this paper, we discuss a novel attack detection approach that coordinates monitors distributed over a network and controllers centralized on an SDN Open Virtual Switch (OVS), selectively inspecting network packets on demand. With different scale of network views and information availability, these two elements collaboratively detect signature constituents of an attack. Therefore, this approach is able to quickly issue an alert against potential threats followed by careful verification for high accuracy, while balancing the workload on the OVS. We have applied this method for detection and mitigation of TCP SYN flood attacks on Global Environment for Network Innovations (GENI). This realistic experimentation has provided us with insightful findings helpful toward a systematic methodology of SDN-supported attack detection and containment.
 </li>
 <br>
 …
 <li>
+<b>Fioravanti, Mark E.</b>
+, &quot;Digital Quorum Sensing for Self-Organizing Malware (PhD Thesis).&quot;
+Melbourne, Florida,
+.
+<a href="https://repository.lib.fit.edu/bitstream/handle/11141/1126/FIORAVANTI-DISSERTATION.pdf?sequence=1&#x0026;&#x0023;38;isAllowed=y">https://repository.lib.fit.edu/bitstream/handle/11141/1126/FIORAVANTI-DISSERTATION.pdf?sequence=1&#x0026;&#x0023;38;isAllowed=y</a>
+<br><br><b>Abstract: </b>Malware authors present an interesting problem for the security community as they evolve and adapt to overcome network and host defenses. The determined adversary is a special class of malware author who may attempt to disrupt national interests. These adversaries may seek potentially novel Command and Control (C2) channels to coordinate their activities. Isolated and air-gapped networks pose an interesting challenge that these adversaries must adapt to in order to maintain persistence on these networks. In this work we propose that a determined adversary may seek to implement a digital quorum sensing system inspired by the quorum sensing systems used by some bacteria to coordinate their social behaviors. OBJECTIVES: The primary objective of this research was to characterize a potential digital quorum sensing C2 channel that relies on subtly modifying the global packet distribution on a network. METHODS: A proof of concept was developed and studied to determine if a C2 channel based on quorum sensing is feasible. Based on the results of the proof of concept, a prototype was implemented and studied in a number of different networking environments in order to more fully characterize the signal. The strength of the quorum sensing signal (the independent variable) was adjusted and through a series of statistical tests the statistical significance of the impact on the global packet distribution was determined. RESULTS: Network packet captures were analyzed from several different networks with Friedman tests. When the probability of a delaying packets was approximately in the range of (0.25,0.1) the delay was statistically significant with alpha=0.05 for the global packet distribution but not for the packet counts observed from the individual hosts. Wilcoxon rank-sum tests were used to determine which portions of the data sets contained statistically significant deviations, at a significance level of 95&#x0025; (alpha=0.05). CONCLUSION: Digital quorum sensing could be used as a novel C2 channel providing a determined adversary a unique method of coordinating activities on a network without allowing the network defender to identify the infected hosts. During the experiment it was observed that this signal is easy to disrupt by altering the time synchronization between the hosts on the network.
+</li>
+<br>
+<li>
 <b>Freeman, PeterA</b>
 , &quot;The GENI Vision: Origins, Early History, Possible Futures.&quot;
 …
 <li>
 <b>Griffioen, J. and Fei, Zongming and Nasir, H. and Wu, Xiongqi and Reed, J. and Carpenter, C.</b>
+, &quot;The design of an instrumentation system for federated and virtualized network testbeds.&quot;
+Network Operations and Management Symposium (NOMS), 2012 IEEE, IEEE,
+.
+doi:10.1109/NOMS.2012.6212061.
+<a href="http://dx.doi.org/10.1109/NOMS.2012.6212061">http://dx.doi.org/10.1109/NOMS.2012.6212061</a>
+<br><br><b>Abstract: </b>Much of the GENI effort in developing network testbeds has been focused on building the control frameworks needed to allocate and initialize the network resources that make up an experiment. We argue that building the instrumentation and measurement system to monitor and capture the behavior of the network is just as important and challenging as setting up the network itself, especially in a virtualized and federated environment where getting information from experimental nodes is too complicated and too much to handle for a typical user. In this paper, we describe the design of an instrumentation and measurement infrastructure that allows users to monitor their experiments. The challenge that virtualization and federation of GENI testbeds bring to instrumentation and monitoring is how to hide the details of instrumentation setup from users so that users do not need to be experts in system administration or network management of virtualized and federated systems, but are still able to ” see” what is going on with their experiments. Our instrumentation tool sets up experiment-specific monitoring infrastructure that is tailored to capture, record, and display only information associated with that experiment. Our tools are currently available in GENI, and we present a simple example of how to use them to instrument an experiment.
+</li>
+<br>
+<li>
+<b>Griffioen, J. and Fei, Zongming and Nasir, H. and Wu, Xiongqi and Reed, J. and Carpenter, C.</b>
 , &quot;GENI-Enabled Programming Experiments for Networking Classes.&quot;
 Research and Educational Experiment Workshop (GREE), 2013 Second GENI, IEEE,
 …
 <a href="http://dx.doi.org/10.1109/gree.2013.30">http://dx.doi.org/10.1109/gree.2013.30</a>
 <br><br><b>Abstract: </b>Although GENI has been readily embraced by the research community as a testbed for exploring new network architectures and services, its use as an educational tool has not seen the same level of acceptance and usage. There are multiple reasons for this, not the least of which is a lack of good examples showing how to use GENI in an educational setting. This paper attempts to remedy this by describing our experiences using GENI in our networking classes at the University of Kentucky. Using GENI as the experimental basis for the projects in our classes allowed us to leverage several of its rich set of features including its global span of resources, programmability, virtualization, and instrumentation and measurement tools. In particular, we describe two projects that we have used in our networking classes, and we share some of the experience we gained in the process. As a result, these experiences motivated us to develop and integrate new functions into the GENI desktop in order to make it easier to access and control GENI's various resources and tools.
-</li>
-<br>
-<li>
-<b>Griffioen, J. and Fei, Zongming and Nasir, H. and Wu, Xiongqi and Reed, J. and Carpenter, C.</b>
-, &quot;The design of an instrumentation system for federated and virtualized network testbeds.&quot;
-Network Operations and Management Symposium (NOMS), 2012 IEEE, IEEE,
-.
-doi:10.1109/NOMS.2012.6212061.
-<a href="http://dx.doi.org/10.1109/NOMS.2012.6212061">http://dx.doi.org/10.1109/NOMS.2012.6212061</a>
-<br><br><b>Abstract: </b>Much of the GENI effort in developing network testbeds has been focused on building the control frameworks needed to allocate and initialize the network resources that make up an experiment. We argue that building the instrumentation and measurement system to monitor and capture the behavior of the network is just as important and challenging as setting up the network itself, especially in a virtualized and federated environment where getting information from experimental nodes is too complicated and too much to handle for a typical user. In this paper, we describe the design of an instrumentation and measurement infrastructure that allows users to monitor their experiments. The challenge that virtualization and federation of GENI testbeds bring to instrumentation and monitoring is how to hide the details of instrumentation setup from users so that users do not need to be experts in system administration or network management of virtualized and federated systems, but are still able to ” see” what is going on with their experiments. Our instrumentation tool sets up experiment-specific monitoring infrastructure that is tailored to capture, record, and display only information associated with that experiment. Our tools are currently available in GENI, and we present a simple example of how to use them to instrument an experiment.
 </li>
 <br>
 …
 <li>
+<b>Hemmings, Matthew and Ingalls, Daniel and Krahn, Robert and McGeer, Rick and Ricart, Glenn and Roder, Marko and Stege, Ulrike</b>
+, &quot;LiveTalk: A Framework for Collaborative Browser-Based Replicated-Computation Applications.&quot;
+28th International Teletraffic Congress (ITC 28), W&#x75;&#x0308;rzburg, Germany, IEEE,
+.
+doi:10.1109/itc-28.2016.144.
+<a href="http://dx.doi.org/10.1109/itc-28.2016.144">http://dx.doi.org/10.1109/itc-28.2016.144</a>
+<br><br><b>Abstract: </b>In this paper we describe LiveTalk, a framework for Collaborative Browser-based Replicated-Computation applications. LiveTalk permits multiple users separated across the wide area to interact with separate copies of a single application, sharing a single virtual workspace, using very little network bandwidth. LiveTalk features an integrated, browser-based programming environment with native graphics and live evaluation, an integrated, pluggable web server, and a simple messaging service that serves to coordinate activity on shared application sessions, and provides for multiple, mutually-isolated sessions. The first use case for LiveTalk are collaborative big-data visualizations running on thin-client devices such as cellular phones, tablets, and netbooks. These applications form part of a new class of application where the distributed Cloud is leveraged to provide low latency, and high-bandwidth access to geographically disparate users while maintaining the feel of immediacy associated with local computation. The primary motivation of this work is to permit low latency, collaborative applications to be built quickly and easily, while requiring no setup for use by the end-user.
+</li>
+<br>
+<li>
 <b>Herron, Jon-Paul</b>
 , &quot;GENI Meta-Operations Center.&quot;
 …
 <li>
 <b>Krishnappa, Dilip K. and Lyons, Eric and Irwin, David and Zink, Michael</b>
-, &quot;Performance of GENI Cloud Testbeds for Real Time Scientific Application.&quot;
-First GENI Research and Educational Experiment Workshop (GREE 2012), Los Angeles,
-.
-<br><br><b>Abstract: </b>Dedicating high end servers for short-term execution of scientific applications such as weather forecasting wastes resources. Cloud platforms IaaS model seems well suited for applications which are executed on an irregular basis and for short duration. In this paper, we evaluate the performance of research testbed cloud platforms such as GENICloud and ORCA cloud clusters for our real-time scientific application of short-term weather forecasting called Nowcasting. In this paper, we evaluate the network capabilities of these research cloud testbeds for our real-time application of weather forecasting. In addition, we evaluate the computation time of executing Nowcasting on each cloud platform for weather data collected from real weather events. We also evaluate the total time taken to generate and transmit short-term forecast images to end users with live data from our own radar on campus. We also compare the performance of each of these clusters for Nowcasting with commercial cloud services such as Amazon's EC2. The results obtained from our measurement show that cloud testbeds are suitable for real-time application experiments to be carried out on a cloud platform.
-</li>
-<br>
-<li>
-<b>Krishnappa, Dilip K. and Lyons, Eric and Irwin, David and Zink, Michael</b>
 , &quot;Network capabilities of cloud services for a real time scientific application.&quot;
 th Annual IEEE Conference on Local Computer Networks, Clearwater Beach, FL, USA, IEEE,
 …
 <br>
+<li>
+<b>Krishnappa, Dilip K. and Lyons, Eric and Irwin, David and Zink, Michael</b>
+, &quot;Performance of GENI Cloud Testbeds for Real Time Scientific Application.&quot;
+First GENI Research and Educational Experiment Workshop (GREE 2012), Los Angeles,
+.
+<br><br><b>Abstract: </b>Dedicating high end servers for short-term execution of scientific applications such as weather forecasting wastes resources. Cloud platforms IaaS model seems well suited for applications which are executed on an irregular basis and for short duration. In this paper, we evaluate the performance of research testbed cloud platforms such as GENICloud and ORCA cloud clusters for our real-time scientific application of short-term weather forecasting called Nowcasting. In this paper, we evaluate the network capabilities of these research cloud testbeds for our real-time application of weather forecasting. In addition, we evaluate the computation time of executing Nowcasting on each cloud platform for weather data collected from real weather events. We also evaluate the total time taken to generate and transmit short-term forecast images to end users with live data from our own radar on campus. We also compare the performance of each of these clusters for Nowcasting with commercial cloud services such as Amazon's EC2. The results obtained from our measurement show that cloud testbeds are suitable for real-time application experiments to be carried out on a cloud platform.
+</li>
+<br>
 …
 <b>Lara, Adrian and Mukherjee, Shreyasee and Ramamurthy, Byrav and Raychaudhuri, Dipankar and Ramakrishnan, K. K.</b>
 , &quot;Inter-Domain Routing with Cut-Through Switching for the MobilityFirst Future Internet Architecture.&quot;
 EEE International Conference on Communications (ICC 2016), Kuala Lumpur,
 .
+IEEE International Conference on Communications (ICC 2016), Kuala Lumpur,
+.
+doi:10.1109/ICC.2016.7510715.
+<a href="http://dx.doi.org/10.1109/ICC.2016.7510715">http://dx.doi.org/10.1109/ICC.2016.7510715</a>
 <br><br><b>Abstract: </b>Future Internet projects such as MobilityFirst and Named Data Networking have proposed novel mechanisms to replace the Internet Protocol to better support content delivery and mobility. However, the problem of efficient data transfer across the network core has not been adequately investigated. We tackle the challenge of inter-domain cut-through switching using software-defined networking (SDN). First, we propose and solve an optimization problem that minimizes the total transfer time using inter-domain tunnels. Second, we propose an SDN-based routing framework for the MobilityFirst architecture capable of dynamically creating such tunnels. The main novelty of this framework is to name tunnels as network objects to simplify how tunnels are created and maintained. To validate our framework, we implement on the GENI (Global Environment for Network Innovations) testbed a prototype for the MobilityFirst architecture. Our experiments with the optimization problem show that the inter-domain latency between controllers plays a key role on how tunnels are setup. Furthermore, our implementation experiments show that the control plane delay can be reduced by 75&#x0025; when using inter- domain tunnels. Finally, we show how our framework needs fewer messages than current protocols such as label distribution protocol (LDP) to setup intra-domain and inter-domain tunnels.
 </li>
 …
 <li>
 <b>Mambretti, Joe and Chen, Jim and Yeh, Fei</b>
+, &quot;Next Generation Virtual Network Architecture for Multi-tenant Distributed Clouds: Challenges and Emerging Techniques.&quot;
+Proceedings of the 4th Workshop on Distributed Cloud Computing, Chicago, Illinois, ACM, New York, NY, USA,
+.
+doi:10.1145/2955193.2955194.
+<a href="http://dx.doi.org/10.1145/2955193.2955194">http://dx.doi.org/10.1145/2955193.2955194</a>
+<br><br><b>Abstract: </b>Providing services for multiple tenants within a single or federated distributed cloud environment requires a variety of special considerations related to network design, provisioning, and operations. Especially important are multiple topics concerning the implementation of multiple parallel programmable virtual networks for large numbers of tenants, who require autonomous management, control, and data planes. This paper provides an overview of some of the challenges that arise from developing and implementing parallel programmable virtual networks, describes experiences with several experimental techniques for addressing those challenges based on large scale distributed testbeds, and presents the results of the experiments that were conducted. Distributed environments used include a distributed cloud testbed, the Chameleon Cloud, sponsored by the National Science Foundation's NSFCloud program, the NSF's Global Environment for Network Innovations (GENI), an international distributed OpenFlow testbed, and the Open Science Data Cloud.
+</li>
+<br>
+<li>
+<b>Mambretti, Joe and Chen, Jim and Yeh, Fei</b>
 , &quot;Software-Defined Network Exchanges (SDXs): Architecture, services, capabilities, and foundation technologies.&quot;
 Teletraffic Congress (ITC), 2014 26th International, IEEE,
 …
 <a href="http://dx.doi.org/10.1109/itc.2014.6932970">http://dx.doi.org/10.1109/itc.2014.6932970</a>
 <br><br><b>Abstract: </b>Software Defined Networks (SDNs), primarily based on OpenFlow, are being deployed in single domain networks around the world. The popularity of SDNs has given rise to multiple considerations about designing, implementing, and operating Software-Defined Network Exchanges (SDXs), to enable SDNs to interconnect SDN islands and to extend SDNs across multiple domains. These goals can be accomplished only by developing new techniques that extend the single domain orientation of current SDN/OpenFlow approaches to include capabilities for multidomain control, including those for resource discovery, signaling, and dynamic provisioning. Several networking research communities have begun to investigate these concepts. Early architectural models of SDXs have been designed and implemented as prototypes. These SDXs are being used to conduct experiments and to demonstrate the potentials of SDXs.
-</li>
-<br>
-<li>
-<b>Mambretti, Joe and Chen, Jim and Yeh, Fei</b>
-, &quot;Next Generation Virtual Network Architecture for Multi-tenant Distributed Clouds: Challenges and Emerging Techniques.&quot;
-Proceedings of the 4th Workshop on Distributed Cloud Computing, Chicago, Illinois, ACM, New York, NY, USA,
-.
-doi:10.1145/2955193.2955194.
-<a href="http://dx.doi.org/10.1145/2955193.2955194">http://dx.doi.org/10.1145/2955193.2955194</a>
-<br><br><b>Abstract: </b>Providing services for multiple tenants within a single or federated distributed cloud environment requires a variety of special considerations related to network design, provisioning, and operations. Especially important are multiple topics concerning the implementation of multiple parallel programmable virtual networks for large numbers of tenants, who require autonomous management, control, and data planes. This paper provides an overview of some of the challenges that arise from developing and implementing parallel programmable virtual networks, describes experiences with several experimental techniques for addressing those challenges based on large scale distributed testbeds, and presents the results of the experiments that were conducted. Distributed environments used include a distributed cloud testbed, the Chameleon Cloud, sponsored by the National Science Foundation's NSFCloud program, the NSF's Global Environment for Network Innovations (GENI), an international distributed OpenFlow testbed, and the Open Science Data Cloud.
 </li>
 <br>
 …
 <li>
 <b>Ozcelik, Ilker and Brooks, Richard R.</b>
+, &quot;Performance Analysis of DDoS Detection Methods on Real Network.&quot;
+First GENI Research and Educational Experiment Workshop (GREE 2012), Los Angeles,
+.
+<br><br><b>Abstract: </b>Distributed Denial of Service (DDoS) attacks are major security threats to the Internet. The distributed structure of these attacks makes it difficult to distinguish between legitimate and attack traffic, making detection difficult. In addition to this challenge, researchers also have to study and find countermeasures against these attacks without using an operational network for testing, since attacks on operational networks inconvenience users. In this paper, we propose a method to perform DDoS analysis on real hardware using real traffic without jeopardizing the original network. We implement our experiments on the Geni testbed using Openflow. We present results from DDoS detection methods using operational traffic.
+</li>
+<br>
+<li>
+<b>Ozcelik, Ilker and Brooks, Richard R.</b>
 , &quot;Operational System Testing for Designed in Security.&quot;
 Proceedings of the Eighth Annual Cyber Security and Information Intelligence Research Workshop, Oak Ridge, Tennessee, ACM, New York, NY, USA,
 …
 <br>
-<li>
-<b>Ozcelik, Ilker and Brooks, Richard R.</b>
-, &quot;Performance Analysis of DDoS Detection Methods on Real Network.&quot;
-First GENI Research and Educational Experiment Workshop (GREE 2012), Los Angeles,
-.
-<br><br><b>Abstract: </b>Distributed Denial of Service (DDoS) attacks are major security threats to the Internet. The distributed structure of these attacks makes it difficult to distinguish between legitimate and attack traffic, making detection difficult. In addition to this challenge, researchers also have to study and find countermeasures against these attacks without using an operational network for testing, since attacks on operational networks inconvenience users. In this paper, we propose a method to perform DDoS analysis on real hardware using real traffic without jeopardizing the original network. We implement our experiments on the Geni testbed using Openflow. We present results from DDoS detection methods using operational traffic.
-</li>
-<br>
 …
 <li>
+<b>Shamim, Sumaira and Fei, Zongming</b>
+, &quot;Evaluating a QoS aware path selection service using the GENI network.&quot;
+IEEE International Conference on Ubiquitous Wireless Broadband (ICUWB), Nanjing, China, IEEE,
+.
+doi:10.1109/icuwb.2016.7790581.
+<a href="http://dx.doi.org/10.1109/icuwb.2016.7790581">http://dx.doi.org/10.1109/icuwb.2016.7790581</a>
+<br><br><b>Abstract: </b>Smart homes, cars, offices and schools can significantly improve the quality of our life. The traditional networks are not sufficient to provide the service needed for these future smart management systems due to their lack of flexibility. This paper proposes an application-aware service that can select and set an alternative forwarding path based on the measurement of the Quality of Service of paths in the software defined networks. The proposed service is evaluated by developing experiments using the GENI network. The results demonstrate that our service can make routing decisions based on the application requirement and measurement about the current state of the network, and greatly improve the routing performance over the default method used in existing networks.
+</li>
+<br>
+<li>
 <b>Sharma, Navin and Gummeson, Jeremy and Irwin, David and Shenoy, Prashant</b>
 , &quot;Cloudy Computing: Leveraging Weather Forecasts in Energy Harvesting Sensor Systems.&quot;
 …
 <li>
 <b>Van Vorst, N. and Erazo, M. and Liu, J.</b>
+, &quot;PrimoGENI for hybrid network simulation and emulation experiments in GENI.&quot;
+Journal of Simulation,
+.
+doi:10.1057/jos.2012.5.
+<a href="http://dx.doi.org/10.1057/jos.2012.5">http://dx.doi.org/10.1057/jos.2012.5</a>
+<br><br><b>Abstract: </b>The Global Environment for Network Innovations (GENI) is a community-driven research and development effort to build a collaborative and exploratory network experimentation platform—a 'virtual laboratory' for the design, implementation, and evaluation of future networks. The PrimoGENI project enables real-time network simulation by extending an existing network simulator to become part of the GENI federation to support large-scale experiments involving physical, simulated, and emulated network entities. In this paper, we describe a novel design of PrimoGENI, which aims at supporting realistic, scalable, and flexible network experiments with real-time simulation and emulation capabilities. We present a flexible emulation infrastructure that allows both remote client machines, local cluster nodes running virtual machines, and external networks to seamlessly interoperate with the simulated network running within a designated 'slice' of resources. We present the results of our preliminary validation and performance studies to demonstrate the capabilities as well as limitations of our approach.
+</li>
+<br>
+<li>
+<b>Van Vorst, N. and Erazo, M. and Liu, J.</b>
 , &quot;PrimoGENI: Integrating Real-Time Network Simulation and Emulation in GENI.&quot;
 Principles of Advanced and Distributed Simulation (PADS), 2011 IEEE Workshop on, Nice, France, IEEE,
 …
 <a href="http://dx.doi.org/10.1109/pads.2011.5936747">http://dx.doi.org/10.1109/pads.2011.5936747</a>
 <br><br><b>Abstract: </b>The Global Environment for Network Innovations (GENI) is a community-driven research and development effort to build a collaborative and exploratory network experimentation platform -- a &#x76;&#x0308;irtual laboratory'' for the design, implementation and evaluation of future networks. The PrimoGENI project enables real-time network simulation by extending an existing network simulator to become part of the GENI federation to support large-scale experiments involving physical, simulated and emulated network entities. In this paper, we describe a novel design of PrimoGENI, which aims at supporting realistic, scalable, and flexible network experiments with real-time simulation and emulation capabilities. We present a flexible emulation infrastructure that allows both remote client machines and local cluster nodes running virtual machines to seamlessly interoperate with the simulated network running within a designated &#x73;&#x0308;lice'' of resources. We show the results of our preliminary validation and performance studies to demonstrate the capabilities and limitations of our approach.
-</li>
-<br>
-<li>
-<b>Van Vorst, N. and Erazo, M. and Liu, J.</b>
-, &quot;PrimoGENI for hybrid network simulation and emulation experiments in GENI.&quot;
-Journal of Simulation,
-.
-doi:10.1057/jos.2012.5.
-<a href="http://dx.doi.org/10.1057/jos.2012.5">http://dx.doi.org/10.1057/jos.2012.5</a>
-<br><br><b>Abstract: </b>The Global Environment for Network Innovations (GENI) is a community-driven research and development effort to build a collaborative and exploratory network experimentation platform—a 'virtual laboratory' for the design, implementation, and evaluation of future networks. The PrimoGENI project enables real-time network simulation by extending an existing network simulator to become part of the GENI federation to support large-scale experiments involving physical, simulated, and emulated network entities. In this paper, we describe a novel design of PrimoGENI, which aims at supporting realistic, scalable, and flexible network experiments with real-time simulation and emulation capabilities. We present a flexible emulation infrastructure that allows both remote client machines, local cluster nodes running virtual machines, and external networks to seamlessly interoperate with the simulated network running within a designated 'slice' of resources. We present the results of our preliminary validation and performance studies to demonstrate the capabilities as well as limitations of our approach.
 </li>
 <br>
 …
 <li>
+<b>Bavier, Andy and McGeer, Rick and Ricart, Glenn</b>
+, &quot;PlanetIgnite: A Self-Assembling, Lightweight, Infrastructure-as-a-Service Edge Cloud.&quot
+28th International Teletraffic Congress (ITC 28), W&#x75;&#x0308;rzburg, Germany, IEEE,
+.
+doi:10.1109/itc-28.2016.125.
+</li>
+<br>
+<li>
 <b>Bejerano, Y. and Ferragut, J. and Guo, K. and Gupta, V. and Gutterman, C. and Nandagopal, T. and Zussman, G.</b>
 , &quot;Experimental Evaluation of a Scalable WiFi Multicast Scheme in the ORBIT Testbed.&quot
 …
 <li>
 <b>Chin, Tommy and Mountrouidou, Xenia and Li, Xiangyang and Xiong, Kaiqi</b>
+, &quot;Selective Packet Inspection to Detect DoS Flooding Using Software Defined Networking (SDN).&quot
+Distributed Computing Systems Workshops (ICDCSW), 2015 IEEE 35th International Conference on, IEEE,
+.
+doi:10.1109/icdcsw.2015.27.
+</li>
+<br>
+<li>
+<b>Chin, Tommy and Mountrouidou, Xenia and Li, Xiangyang and Xiong, Kaiqi</b>
 , &quot;An SDN-supported collaborative approach for DDoS flooding detection and containment.&quot
 Military Communications Conference, MILCOM 2015 - 2015 IEEE, IEEE,
 .
 doi:10.1109/milcom.2015.7357519.
-</li>
-<br>
-<li>
-<b>Chin, Tommy and Mountrouidou, Xenia and Li, Xiangyang and Xiong, Kaiqi</b>
-, &quot;Selective Packet Inspection to Detect DoS Flooding Using Software Defined Networking (SDN).&quot
-Distributed Computing Systems Workshops (ICDCSW), 2015 IEEE 35th International Conference on, IEEE,
-.
-doi:10.1109/icdcsw.2015.27.
 </li>
 <br>
 …
 <li>
+<b>Fioravanti, Mark E.</b>
+, &quot;Digital Quorum Sensing for Self-Organizing Malware (PhD Thesis).&quot
+Melbourne, Florida,
+.
+</li>
+<br>
+<li>
 <b>Freeman, PeterA</b>
 , &quot;The GENI Vision: Origins, Early History, Possible Futures.&quot
 …
 <li>
 <b>Griffioen, J. and Fei, Zongming and Nasir, H. and Wu, Xiongqi and Reed, J. and Carpenter, C.</b>
+, &quot;The design of an instrumentation system for federated and virtualized network testbeds.&quot
+Network Operations and Management Symposium (NOMS), 2012 IEEE, IEEE,
+.
+doi:10.1109/NOMS.2012.6212061.
+</li>
+<br>
+<li>
+<b>Griffioen, J. and Fei, Zongming and Nasir, H. and Wu, Xiongqi and Reed, J. and Carpenter, C.</b>
 , &quot;GENI-Enabled Programming Experiments for Networking Classes.&quot
 Research and Educational Experiment Workshop (GREE), 2013 Second GENI, IEEE,
 .
 doi:10.1109/gree.2013.30.
-</li>
-<br>
-<li>
-<b>Griffioen, J. and Fei, Zongming and Nasir, H. and Wu, Xiongqi and Reed, J. and Carpenter, C.</b>
-, &quot;The design of an instrumentation system for federated and virtualized network testbeds.&quot
-Network Operations and Management Symposium (NOMS), 2012 IEEE, IEEE,
-.
-doi:10.1109/NOMS.2012.6212061.
 </li>
 <br>
 …
 <li>
+<b>Hemmings, Matthew and Ingalls, Daniel and Krahn, Robert and McGeer, Rick and Ricart, Glenn and Roder, Marko and Stege, Ulrike</b>
+, &quot;LiveTalk: A Framework for Collaborative Browser-Based Replicated-Computation Applications.&quot
+28th International Teletraffic Congress (ITC 28), W&#x75;&#x0308;rzburg, Germany, IEEE,
+.
+doi:10.1109/itc-28.2016.144.
+</li>
+<br>
+<li>
 <b>Herron, Jon-Paul</b>
 , &quot;GENI Meta-Operations Center.&quot
 …
 <li>
 <b>Krishnappa, Dilip K. and Lyons, Eric and Irwin, David and Zink, Michael</b>
+, &quot;Network capabilities of cloud services for a real time scientific application.&quot
+th Annual IEEE Conference on Local Computer Networks, Clearwater Beach, FL, USA, IEEE,
+.
+doi:10.1109/lcn.2012.6423665.
+</li>
+<br>
+<li>
+<b>Krishnappa, Dilip K. and Lyons, Eric and Irwin, David and Zink, Michael</b>
 , &quot;Performance of GENI Cloud Testbeds for Real Time Scientific Application.&quot
 First GENI Research and Educational Experiment Workshop (GREE 2012), Los Angeles,
 .
-</li>
-<br>
-<li>
-<b>Krishnappa, Dilip K. and Lyons, Eric and Irwin, David and Zink, Michael</b>
-, &quot;Network capabilities of cloud services for a real time scientific application.&quot
-th Annual IEEE Conference on Local Computer Networks, Clearwater Beach, FL, USA, IEEE,
-.
-doi:10.1109/lcn.2012.6423665.
 </li>
 <br>
 …
 <b>Lara, Adrian and Mukherjee, Shreyasee and Ramamurthy, Byrav and Raychaudhuri, Dipankar and Ramakrishnan, K. K.</b>
 , &quot;Inter-Domain Routing with Cut-Through Switching for the MobilityFirst Future Internet Architecture.&quot
 EEE International Conference on Communications (ICC 2016), Kuala Lumpur,
 .
+IEEE International Conference on Communications (ICC 2016), Kuala Lumpur,
+.
+doi:10.1109/ICC.2016.7510715.
 </li>
 <br>
 …
 <li>
 <b>Mambretti, Joe and Chen, Jim and Yeh, Fei</b>
+, &quot;Next Generation Virtual Network Architecture for Multi-tenant Distributed Clouds: Challenges and Emerging Techniques.&quot
+Proceedings of the 4th Workshop on Distributed Cloud Computing, Chicago, Illinois, ACM, New York, NY, USA,
+.
+doi:10.1145/2955193.2955194.
+</li>
+<br>
+<li>
+<b>Mambretti, Joe and Chen, Jim and Yeh, Fei</b>
 , &quot;Software-Defined Network Exchanges (SDXs): Architecture, services, capabilities, and foundation technologies.&quot
 Teletraffic Congress (ITC), 2014 26th International, IEEE,
 .
 doi:10.1109/itc.2014.6932970.
-</li>
-<br>
-<li>
-<b>Mambretti, Joe and Chen, Jim and Yeh, Fei</b>
-, &quot;Next Generation Virtual Network Architecture for Multi-tenant Distributed Clouds: Challenges and Emerging Techniques.&quot
-Proceedings of the 4th Workshop on Distributed Cloud Computing, Chicago, Illinois, ACM, New York, NY, USA,
-.
-doi:10.1145/2955193.2955194.
 </li>
 <br>
 …
 <li>
 <b>Ozcelik, Ilker and Brooks, Richard R.</b>
+, &quot;Performance Analysis of DDoS Detection Methods on Real Network.&quot
+First GENI Research and Educational Experiment Workshop (GREE 2012), Los Angeles,
+.
+</li>
+<br>
+<li>
+<b>Ozcelik, Ilker and Brooks, Richard R.</b>
 , &quot;Operational System Testing for Designed in Security.&quot
 Proceedings of the Eighth Annual Cyber Security and Information Intelligence Research Workshop, Oak Ridge, Tennessee, ACM, New York, NY, USA,
 …
 <br>
-<li>
-<b>Ozcelik, Ilker and Brooks, Richard R.</b>
-, &quot;Performance Analysis of DDoS Detection Methods on Real Network.&quot
-First GENI Research and Educational Experiment Workshop (GREE 2012), Los Angeles,
-.
-</li>
-<br>
 …
 <li>
+<b>Shamim, Sumaira and Fei, Zongming</b>
+, &quot;Evaluating a QoS aware path selection service using the GENI network.&quot
+IEEE International Conference on Ubiquitous Wireless Broadband (ICUWB), Nanjing, China, IEEE,
+.
+doi:10.1109/icuwb.2016.7790581.
+</li>
+<br>
+<li>
 <b>Sharma, Navin and Gummeson, Jeremy and Irwin, David and Shenoy, Prashant</b>
 , &quot;Cloudy Computing: Leveraging Weather Forecasts in Energy Harvesting Sensor Systems.&quot
 …
 <li>
 <b>Van Vorst, N. and Erazo, M. and Liu, J.</b>
+, &quot;PrimoGENI for hybrid network simulation and emulation experiments in GENI.&quot
+Journal of Simulation,
+.
+doi:10.1057/jos.2012.5.
+</li>
+<br>
+<li>
+<b>Van Vorst, N. and Erazo, M. and Liu, J.</b>
 , &quot;PrimoGENI: Integrating Real-Time Network Simulation and Emulation in GENI.&quot
 Principles of Advanced and Distributed Simulation (PADS), 2011 IEEE Workshop on, Nice, France, IEEE,
 .
 doi:10.1109/pads.2011.5936747.
-</li>
-<br>
-<li>
-<b>Van Vorst, N. and Erazo, M. and Liu, J.</b>
-, &quot;PrimoGENI for hybrid network simulation and emulation experiments in GENI.&quot
-Journal of Simulation,
-.
-doi:10.1057/jos.2012.5.
 </li>
 <br>