Deceber 13, 2007
  1. DETER tools page - there is a new page with collection of tools for experiment setup and control. Here is the path to the page:
    1. Log on as a user to DETER
    2. Click on Internal Documentation
    3. Click on DETER User Info
    4. Username: deter, Pass: bed4sec (this second login should soon be removed)
    5. Click on Tools link
    The page lists tools developed and maintained by DETER/EMIST (green color), tools developed but no longer maintaned by DETER/EMIST (yellow color) and third party tools (blue color). There are traffic generators, experiment control and visualization tools, simulators, traffic analyzers and benchmarks. We hope to extend and improve this page with user help so let us know if you find any tools useful, if you think of improvements to tools or the page, or if you want a tool you developed added to this page.
  2. SEER tool, developed by SPARTA, Inc., is an experimenters workbench that provides an integrated environment for network security experiment design and control. It includes agents for traffic generation, attack generation, traffic collection and analysis. There is also a GUI to help run the experiment from your desktop and visualize traffic on the nodes. It is fairly easy to learn how to use SEER. It provides a GUI as a great entry point for novice users - experiments can be set up, run and their effect visualized using an intuitive point-and-click interface. SEER's scripting languge, based on Perl, is a powerfull tool for repetitive, large-scale, flexible experimentation. SEER traffic generators currently support various legitimate traffic types, and a variety of DoS attacks. SPARTA's in the process of adding controls for other types of security experiments (e.g., worms, DNS attacks, routing attacks) to SEER. SEER can be downloaded from: http:// seer.isi.deterlab.net. This page also contains tutorial on how to use SEER. From our personal experience it's an easy tool to master and it greatly simplifies traffic generation in experiments.
  3. There are four Juniper routers in DETER that can be used in experiments by specifying "juniper" as hw type for a node in your NS file. Once the experiment has been swapped in, user has ssh access to routers and can change routing and firewall configuration. A short example of how to set up a topology with Juniper routers is at: http:// www.isi.edu/deter/protected/examples/juniper.html.
  4. Secure 64 is a startup company that developed from scratch a secure OS kernel with minimal functionality but high assurance against tempering and exploits. On top of this secure OS they have installed DNSSEC application. We have one machine with their OS and DNSSEC in DETER that we plan to make available to users. If you are working on DNS security or if you are looking to develop novel applications on top of a secure OS, this would be a good experimental platform for you. We are looking for interested users before we make this machine available to experimenters. Contact us at deter-testbed@isi.edu! and we'll pass your contact to Kennen Technologies!
  5. We are working on federated experiments - large-scale experiments including nodes from multiple testbeds, e.g., from DETER, Wail and Emulab. We have managed to run several large federated experiments so far. A user needs to specify which nodes should be allocated to which testbed during experiment setup. After allocation node access is transparent to users, which means that no modification to experimental code is needed and scripts that worked on non-federated experiments should also work on federated ones. We are currently working on providing visualization support to federated experiments via DETER GUI. We are also looking for users that would help drive our work by being early testers of our federation technology. If you have a federated experiment in mind and are willing to work with us please contact us at deter-testbed@isi.edu!.