home
contact
Postel Center
publications
activities
projects
  Current
  Past
projects
USC
personal page

Current projects :

  • ANONSEC
    Developing extensions of exisiting Internet security that reduces a-priori configuration and reliance on pre-deployed infrastructure, providing DDOS protection. This work focuses on providing anonymous interactions, e.g., DDOS protection without authoritative knowledge of endpoint identity. The work is being done in the IETF Better Than Nothing Security (BTNS) WG, and is part of the TC-Arch effort at ISI.
     
  • Triage
    Examining ways to reduce the cost of using IPsec, notably to avoid DOS attacks that overload CPU resources at receivers. TRIAGE focuses on layered defenses of variable cost and efficacy. This work is part of the Optiputer project.
     
  • FastSec
    Developing extensions of exisiting Internet security that supports high throughput, low latency security. This work is part of the Optiputer project.
     
  • NetFS
    Developing a file system model for configuring hosts and routers, to provide partitioned permission to configuring subsets of network interfaces, routes, etc. on a device. This allows multiple distinct virtual networks to control parts of a device, i.e., NetFS is to X-Bone VPNs as memory protection is to Virtual Memory.

Past Projects

  • DynaBone
    • Provided layers of overlays to enable spread-spectrum defenses from network attacks.
     
  • X-Bone
    Securely deploys independent concurrent overlay networks, the tunnels of which support IPsec, providing secure partitioning of virtual networks. This is a virtual network equivalent of virtual memory.
     
  • IIPtran
    Determined how to support dynamic routing in the presence of IPsec, notably pioneering the technique of combining IPsec transport mode with separate IP-IP encapsulation tunnels, as contrasted to IPsec tunnel mode. Developed as part of the X-Bone project.
     
  • MD5 Performance Analysis
    Analyzed the current performance of MD5, and determined the performance limits of the algorithm, whether in hardware or software. A previous version of this work appeared as RFC-1810. Developed during the ATOMIC-2 project.
     
 

 

 

Copyright © 2003-2006 The University of Southern California. All RIGHTS RESERVED.
All trademarks mentioned herein belong to their respective owners.

Last modified Friday, April 14, 2006 4:06 PM

 
in cooperation with the Postel Center
 
and the Center for Computer Systems Security
 
USC Home Page ISI Home Page