Home News & Events Publications Using DETERlab Research Community Testbed Design History and Funding People Publications Made Possible By DETERlab This page summarizes publications about DETER as well as publications that used DETER to validate research they present. Click the links below to jump to: Peer-reviewed publications Non-peer reviewed publications MS and PhD theses   Peer-reviewed publications A Framework for Mitigating Attacks Against Measurement-Based Adaptation Mechanisms in Unstructured Multicast Overlay Networks. A. Walters, D. Zage and C. Nita-Rotaru. In IEEE/ACM Transactions on Networking, Feb. 2009. In Vini Veritas: Realistic and Controlled Network Experimentation, Andy Bavier, Nick Feamster, Mark Huang, Larry Peterson and Jennifer Rexford. In Proceedings of ACM SIGCOMM, 2006. Design, Deployment, and Use of the DETER Testbed, Terry Benzel, Robert Braden, Dongho Kim, Anthony Joseph, Clifford Neuman, Ron Ostrenga, Stephen Schwab, Keith Sklower. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, August 2007. Slides SEER: A Security Experimentation EnviRonment for DETER Stephen Schwab, Brett Wilson, Calvin Ko, and Alefiya Hussain. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, August 2007. A Hypervisor Based Security Testbed Dan Duchamp and Greg DeAngelis. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, August 2007. Automating DDoS Experimentation Jelena Mirkovic, Brett Wilson, Alefiya Hussain, Sonia Fahmy, Peter Reiher, Roshan Thomas and Stephen Schwab. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, August 2007. Evaluation of Collaborative Worm Containments on DETER Testbed L. Li, P. Liu, Y.C. Jhi, and G. Kesidis. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, August 2007. Design and Implementation of an Isolated Sandbox with Mimetic Internet Used to Analyze Malwares Shinsuke Miwa, Toshiyuki Miyachi, Masashi Eto, Masashi Yoshizumi, and Yoichi Shinoda. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, August 2007. Distributed Change-Point Detection of DDoS Attacks: Experimental Results on DETER Testbed Yu Chen, Kai Hwang, Wei-Shinn Ku. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, August 2007. Dependency-based Distributed Intrusion Detection Ji Li, Dah-Yoh Lim, and Karen Sollins. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, August 2007. Stress Testing Cluster Bro Nicholas Weaver and Robin Sommer. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, August 2007. A Plan for Malware Containment in the DETER Testbed Ron Ostrenga and Stephen Schwab, Robert Braden. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, August 2007. A DETER Federation Architecture Ted Faber, John Wroclawski, and Kevin Lahey. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, August 2007. Very Large Scale Cooperative Experiments in Emulab-Derived Systems Keith Sklower and Anthony D. Joseph. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, August 2007. Emulating an Embedded Firewall Clifford Neuman and Deepak Dayama. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, August 2007. Experience with DETER: A Testbed for Security Research, Terry Benzel, Robert Braden, Dongho Kim, Clifford Neuman, Anthony Joseph, Keith Sklower, Ron Ostrenga and Stephen Schwab. In Proceedings of Tridentcom (International Conference on Testbeds and Research Infrastructures for the Development of Networks & Communities), March 2006. Cyber defense technology networking and evaluation, R. Bajcsy, T. Benzel, M. Bishop, B. Braden, C. Brodley, S. Fahmy, S. Floyd, W. Hardaker, A. Joseph, G. Kesidis, K. Levitt, B. Lindell, P. Liu, D. Miller, R. Mundy, C. Neuman, R. Ostrenga, V. Paxson, P. Porras, C. Rosenberg, J. D. Tygar, S. Sastry, D. Sterne, S. F. Wu. In Communications of the ACM, Special issue on Emerging Technologies for Homeland Security, Vol. 47, Issue 3, pp 58-61, March 2004. Methodologies and Metrics for the Testing and Analysis of Distributed Denial of Service Attacks and Defenses, S. Schwab, B. Wilson, R. Thomas. In Proceedings of MILCOM, October 2005. A hybrid quarantine defense, P. Porras, L. Biesemeister, K. Levitt, J. Rowe, K. Skinner, A. Ting, In Proceedings of ACM WORM, Washington, DC, Oct. 29, 2004. Combining visual and automated data mining for near-real-time anomaly detection and analysis in BGP, S.T. Teoh, K. Zhang, S.-M. Tseng, K.-L. Ma and S. F. Wu, In Proceedings of ACM VizSEC/CMSEC-04, Washington, DC, Oct. 29, 2004. Preliminary results using scale-down to explore worm dynamics, Nicholas Weaver, Ihab Hamadeh, George Kesidis and Vern Paxson. In Proceedings of the 2004 ACM workshop on Rapid malcode, pp. 65-72, 2004. Emulation versus Simulation: A Case Study of TCP-Targeted Denial of Service Attacks, Roman Chertov, Sonia Fahmy and Ness Shroff. In Proceedings of Tridentcom (International Conference on Testbeds and Research Infrastructures for the Development of Networks & Communities), March 2006. Coupled Kermack-McKendrick Models for Randomly Scanning and Bandwidth-Saturating Interent Worms, G. Kesidis, I. Hamadeh and S. Jiwasurat, Lecture Notes In Computer Science, Volume 3375/2005, pp 101-109. Emulation of Single Packet UDP Scanning Worms in Large Enterprises , Lunquan Li, Soranun Jiwasurat, Peng Liu and George Kesidis. In Proceedings of the 19 International Teletraffic Congress (ITC), August 2005. Emulating sequential scanning worms on the DETER testbed, Lunquan Li, Soranun Jiwasurat, Peng Liu, George Kesidis and Clifford Neuman. In Proceedings of Tridentcom (International Conference on Testbeds and Research Infrastructures for the Development of Networks & Communities), March 2006. A Dynamic Countermeasure Method for Large-Scale Network Attacks, Zhaoyu Liu and Roopesh Uppala. In Proceedings of 2nd IEEE International Symposium on Dependable, Autonomic and Secure Computing (DASC'06), pp. 163-170, 2006. When is Service Really Denied? A User-Centric DoS Metric, Jelena Mirkovic, Alefiya Hussain, Brett Willson, Sonia Fahmy, Wei-Min Yao, Peter Reiher, Stephen Schwab and Roshan Thomas. In Proceedings of the 2007 ACM SIGMETRICS International Conference on Measurement and Modeling of Computer Systems, pp 357-358, 2007. Modeling and Automated Containment of Worms, S. Sellke, N.B. Shroff and S. Bagchi, In Proceedings of the International Conference on Dependable Systems and Networks (DSN), Yokohama, Japan, June 28-July 1, 2005. Visual toolkit for network security experiment specification and data analysis, L. Li, P. Liu and G. Kesidis. In Proceedings of the 3rd International Workshop on Visualization for Computer Security, pp. 7-14, 2006. Benchmarks for DDoS Defense Evaluation, Jelena Mirkovic, Erinc Arikan, Songjie Wei, Sonia Fahmy, Roshan Thomas and Peter Reiher. In Proceedings of MILCOM, October 2006. Measuring Denial of Service, Jelena Mirkovic, Peter Reiher, Sonia Fahmy, Roshan Thomas, Alefiya Hussain, Stephen Schwab and Calvin Ko. In Proceedings of the 2nd ACM Workshop on Quality of Protection, pp. 53-58, 2006. Collaborative Detection of DDoS Attacks over Multiple Network Domains, Chen Yu, Hwang Kai and Ku. Wei-Shinn. In IEEE Transactions on Parallel and Distributed Systems, June 2007. Increasing TCP Throughput with an Enhanced Internet Control Plane, Andy Bavier, Larry Peterson, Jack Brassil, Rick McGeer, David Reed, Puneet Sharma, Praveen Yalagandula, Alex Henderson, Larry Roberts, Stephen Schwab, Roshan Thomas, Eric Wu, Brian Mark, Ben Zhao, Anthony Joseph. In Proceedings of MILCOM, October 2006. Towards User-Centric Metrics for Denial-of-Service Measurement, Jelena Mirkovic, Alefiya Hussain, Brett Wilson, Sonia Fahmy, Peter Reiher, Roshan Thomas, Wei-Min Yao, Stephen Schwab. In Proceedings of the 2007 Workshop on Experimental Computer Science, 2007. Performing BGP Experiments on a Semi-realistic Internet Testbed Environment, Ke Zhang, Soon-Tee Teoh, Shih-Ming Tseng, Rattapon Limprasittipom, Kwan-Liu Ma, S. Felix Wu and Chen-Nee Chuah. In Second International Workshop on Security in Distributed Computing Systems (SDCS), pp. 130-136, 2005. Mitigating Attacks Against Measurement-Based Adaptation Mechanisms in Unstructured Multicast Overlay Networks, AAron Walters, Kevin Bauer and Cristina Nita-Rotaru. In The 14th IEEE International Conference on Network Protocols (ICNP), 2006. DDoS Benchmarks and Experimenter's Workbench for the DETER Testbed, Jelena Mirkovic, Songjie Wei, Alefiya Hussain, Brett Wilson, Roshan Thomas, Stephen Schwab, Sonia Fahmy, Roman Chertov, Peter Reiher. In Proceedings of Tridentcom (International Conference on Testbeds and Research Infrastructures for the Development of Networks & Communities), May 2007. CLID: A general approach to validate security policies in a dynamic network, Yanyan Yang, C. Martel, S. F. Wu. In 10th IFIP/IEEE International Symposium on Integrated Network Management, May 2007. Collaborative detection and filtering of shrew DDoS attacks using spectral analysis, Yu Chen and Kai Hwang. In Journal of Parallel and Distributed Computing, Vol 66, Issue 9, pp. 1137-1151, June 2006. Very Fast Containment of Scanning Worms, Revisited, Nicholas Weaver, Stuart Staniford and Vern Paxson. In Malware Detection, Springer Verlag, Vol. 27, pp 113-145, 2007. The Shunt: An FPGA-Based Accelerator for Network Intrusion Prevention, Nicholas Weaver, Vern Paxson and Jose M. Gonzalez. In ACM/SIGDA International Symposium on Field Programmable Gate Arrays (FPGA), February 2007. Non-peer reviewed publications DDoS Experiment Methodology, Alefiya Hussain, Stephen Schwab, Roshan Thomas, Sonia Fahmy and Jelena Mirkovic. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. Benchmarks for DDoS Defense Evaluation, Jelena Mirkovic, Erinc Arikan, Songjie Wei, Sonia Fahmy, Roshan Thomas and Peter Reiher. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. Towards Systematic IDS Evaluation, Calvin Ko, Alefiya Hussain, Stephen Schwab, Roshan Thomas and Brett Wilson. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. Measuring Impact of DoS Attacks, Jelena Mirkovic, Sonia Fahmy, Peter Reiher, Roshan Thomas, Alefiya Hussain, Steven Schwab and Calvin Ko. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. High Fidelity Denial of Service (DoS) Experimentation, Roman Chertov, Sonia Fahmy and Ness B. Shroff. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. Preliminary BGP Multiple-Origin Autonomous Systems (MOAS) Experiments on the DETER Testbed, Glenn Carl, George Kesidis, Shashi Phoha and Bharat Madan. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. BGPRV: A Library for Fast and Efficient Routing Data Manipulation, Kevin Butlter, Patrick D. McDaniel and Sophie Y. Qiu In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. ELISHA: A Visual and Interactive Tool for BGP Anomaly Detection and Analysis, Shih-Ming Tseng, S. Felix Wu, Kwan-Liu Ma, Chen-Nee Chuah, Soon-Tee Teoh, Ke Zhang and Xiaoliang Leon Zhao. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. Testing Large Scale BGP Security in Replayable Network Environments, Kevin Butler and Patrick McDaniel. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. Formally Specifying Design Goals of Worm Defense Strategies, Linda Briesemeister and Phillip A. Porras. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. Evaluation of a Collaborative End-Host Worm Defense System, Senthil Cheetancheri, Karl Levitt, Jeff Rowe, John Mark Agosta, Denver Dash and Eve Schoole. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. Scanning worm emulation on the DETER testbed, Lunquan Li, George Kesidis and Peng Liu. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. Application of DETER in Large-Scale Cyber Security Exercises, Ron Ostrenga and Paul Walczak. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. Running Live Self-Propagating Malware on the DETER Testbed, Cliff Neuman, Chinmay Shah and Kevin Lahey. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. Research Acceleration for Multiprocessing (RAMP), Anthony Joseph. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. Stress-Testing a Gbps Intrusion Prevention Device on DETER, Nicholas Weaver and Vern Paxson. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. Security Experimenters Workbench, Stephen Schwab and Terry Benzel. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. Topology Generation, Instrumentation, and Experimental Control Tools for Emulation Testbeds, Roman Chertov, Sonia Fahmy, Pankaj Kumar, David Bettis, Abdallah Khreishah and Ness B. Shroff. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. Multidimensional Flow Mining for Digesting, Visualization, Anomaly Detection, and Signature Extraction, Jisheng Wang, David J. Miller and George Kesidis. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. Programmatically Generating Topologies and Configurations, Wesley Griffin and Ron Ostrenga. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. An Integrated Experiment Specification and Visualization Tool for Testbed Emulation, Lunquan Li, Peng Liu and George Kesidis. In Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test, June 2006. Agent Organization and Request Propagation in the Knowledge Plane, Ji Li and Karen Sollins, MIT CSAIL Techical Report, MIT-CSAIL-TR-2007-039, July 2007. MS and PhD Theses Mitigating Attacks Against Measurement-Based Adaptation Mechanisms in Overlay Networks,, Aaron Walters, MS Thesis, Purdue University, West Lafayette, IN, May 2006. Co-ordinated Port Scans: A Model, A Detector and an Evaluation Methodology, Carrie Gates, PhD Thesis, Dalhausie University, February 2006. Attack Profiling for DDoS Benchmarks, Erinc Arikan, MS Thesis, University of Delaware, August 2006.
	hosted by USC Viterbi School of Engineering Information Sciences Institute