Presentation is loading. Please wait.

Presentation is loading. Please wait.

Network Security Highlights Nick Feamster Georgia Tech.

Published byMason Ingram Modified over 11 years ago

Similar presentations

Presentation on theme: "Network Security Highlights Nick Feamster Georgia Tech."— Presentation transcript:

1 Network Security Highlights Nick Feamster Georgia Tech

2 Nick Feamster Research: Network security and operations –Helping network operators run the network better –Helping users help themselves Lab meetings: Fridays at 4:30 p.m. (free lunch) –Informal seminar. Papers on wireless, virtualization, etc. –Come visit us if you want to learn more feamster@cc.gatech.edu feamster@cc.gatech.edu http://www.cc.gatech.edu/~feamster/ Klaus 3348

3 Highlights Spam Filtering High-Speed Traffic monitoring Anti-Censorship Provenance Outsourcing Network Security

4 Spam 75-90% of all email traffic –PDF Spam: ~11% and growing –Content filters cannot catch! Late 2006: there was a significant rise in spammers use of botnets, armies of PCs taken over by malware and turned into spam servers without their owners realizing it. August 2007: Botnet-based spam caused volumes to increase 53% from previous day Source: NetworkWorld, August 2007

5 High-Speed Traffic Monitoring Traffic arrives at high rates –High volume –Some analysis scales with the size of the input Possible approaches –Random packet sampling –Targeted packet sampling

6 Approach Idea: Bias sampling of traffic towards subpopulations based on conditions of traffic Two modules –Counting: Count statistics of each traffic flow –Sampling: Sample packets based on (1) overall target sampling rate (2) input conditions Counting Traffic stream Sampling Input conditions Instantaneous sampling probability Overall sampling rate Traffic subpopulations

7 Applications Detecting portscans Recovering unique conversations Identifying DDoS Attacks Identifying heavy hitters, high-degree nodes, etc.

8 Provenance: Motivation Traffic classification, access control, etc. Today: Coarse and imprecise –IP addresses –Port numbers Instead: Classify traffic based on –Where traffic is coming from –What inputs that traffic has taken

9 Design Trusted tagging component on host Arbiter near network border

10 Anti-Censorship 59+ countries block access to content on the Internet –News, political information, etc. Idea: Use the increasing amount of user-generated content on the Internet (e.g., photo-sharing sites) as the basis for covert channels Some problems: –How do publishers and consumers agree on places to exchange content? –How to design for robustness against blocking? –How to provide deniability for users? –Incentives for participation –System design and implementation

11 Outsourcing Network Security Many security applications require distributed monitoring and inference Combine distributed inference with control (via programmable switches)

12 Current Project: START Redesign

Download ppt "Network Security Highlights Nick Feamster Georgia Tech."

Similar presentations

Wenke Lee and Nick Feamster Georgia Tech Botnet and Spam Detection in High-Speed Networks.

Wenke Lee and Nick Feamster Georgia Tech Botnet and Spam Detection in High-Speed Networks.
Dynamics of Online Scam Hosting Infrastructure

Dynamics of Online Scam Hosting Infrastructure
1 Diagnosing Network Disruptions with Network-wide Analysis Yiyi Huang, Nick Feamster, Anukool Lakhina*, Jim Xu College of Computing, Georgia Tech * Guavus,

1 Diagnosing Network Disruptions with Network-wide Analysis Yiyi Huang, Nick Feamster, Anukool Lakhina*, Jim Xu College of Computing, Georgia Tech * Guavus,
Resonance: Dynamic Access Control in Enterprise Networks Ankur Nayak, Alex Reimers, Nick Feamster, Russ Clark School of Computer Science Georgia Institute.

Resonance: Dynamic Access Control in Enterprise Networks Ankur Nayak, Alex Reimers, Nick Feamster, Russ Clark School of Computer Science Georgia Institute.
11/20/09 ONR MURI Project Kick-Off 1 Network-Level Monitoring for Tracking Botnets Nick Feamster School of Computer Science Georgia Institute of Technology.

11/20/09 ONR MURI Project Kick-Off 1 Network-Level Monitoring for Tracking Botnets Nick Feamster School of Computer Science Georgia Institute of Technology.
Grand Challenges in Networking Nick Feamster CS 7001.

Grand Challenges in Networking Nick Feamster CS 7001.
Wenke Lee and Nick Feamster Georgia Tech Botnet and Spam Detection in High-Speed Networks.

Wenke Lee and Nick Feamster Georgia Tech Botnet and Spam Detection in High-Speed Networks.
1 OpenFlow Research on the Georgia Tech Campus Network Russ Clark Nick Feamster Students: Yogesh Mundada, Hyojoon Kim, Ankur Nayak, Anirudh Ramachandran,

1 OpenFlow Research on the Georgia Tech Campus Network Russ Clark Nick Feamster Students: Yogesh Mundada, Hyojoon Kim, Ankur Nayak, Anirudh Ramachandran,
Accessibility and Trust Nick Feamster Georgia Tech.

Accessibility and Trust Nick Feamster Georgia Tech.
Packets with Provenance Anirudh, Mukarram, Nick, Kaushik.

Packets with Provenance Anirudh, Mukarram, Nick, Kaushik.
BotMiner: Clustering Analysis of Network Traffic for Protocol- and Structure-Independent Botnet Detection Guofei Gu1,2, Roberto Perdisci3, Junjie Zhang1,

BotMiner: Clustering Analysis of Network Traffic for Protocol- and Structure-Independent Botnet Detection Guofei Gu1,2, Roberto Perdisci3, Junjie Zhang1,
Research Summary Nick Feamster. The Big Picture Improving Internet availability by making networks easier to operate Three approaches –From the ground.

Research Summary Nick Feamster. The Big Picture Improving Internet availability by making networks easier to operate Three approaches –From the ground.
Nick Feamster Research Interest: Networked Systems Arriving January 2006 Likely teaching CS 7260 in Spring 2005 Here off-and-on until then. Email works.

Nick Feamster Research Interest: Networked Systems Arriving January 2006 Likely teaching CS 7260 in Spring 2005 Here off-and-on until then. works.
Campus Testbed for Network Management and Operations Nick Feamster Georgia Tech Joint with Ankur Nayak, Russ Clark, Ron Hutchins, Campus OIT Also input.

Campus Testbed for Network Management and Operations Nick Feamster Georgia Tech Joint with Ankur Nayak, Russ Clark, Ron Hutchins, Campus OIT Also input.
Network-Based Spam Filtering Anirudh Ramachandran Nick Feamster Georgia Tech.

Network-Based Spam Filtering Anirudh Ramachandran Nick Feamster Georgia Tech.
Network-Based Spam Filtering Nick Feamster Georgia Tech Joint work with Anirudh Ramachandran and Santosh Vempala.

Network-Based Spam Filtering Nick Feamster Georgia Tech Joint work with Anirudh Ramachandran and Santosh Vempala.
Course Overview and Introduction CS 3251: Computer Networking I Nick Feamster Spring 2013.

Course Overview and Introduction CS 3251: Computer Networking I Nick Feamster Spring 2013.
Nick Feamster Research: Network security and operations –Helping network operators run the network better –Helping users help themselves Lab meetings:

Nick Feamster Research: Network security and operations –Helping network operators run the network better –Helping users help themselves Lab meetings:
Nick Feamster Research: Network security and operations Teaching CS 7260 in Spring 2007 CS 7001 Mini-projects: –http://www.cc.gatech.edu/~feamster/mini-projects/

Nick Feamster Research: Network security and operations Teaching CS 7260 in Spring 2007 CS 7001 Mini-projects: –
Nick Feamster Research: Network security and operations –Helping network operators run the network better –Helping users help themselves Lab meetings:

Nick Feamster Research: Network security and operations –Helping network operators run the network better –Helping users help themselves Lab meetings:

Similar presentations

Ads by Google