CS522 Semester Projects

Monday 12/4/2006 Presentations

OS hardening, by Michael Baswell, Kunal Bele, Samarpita Hurkute, Te-Sheng (Allen) Liu, and Donovan Thorpe.
Cross Domain Solutions, by Grant Cahill, Michael Baswell, Francisco Torres-Reyes, Chris Cabuzzi, Shawn Stoffer
DDoS Characterization and Defense Initiatives, by Will Lefevers
Spyware, by Charles Short

Wednesday 12/6/2006 Presentation

Security in Network Communications, by Sarah Summers, Suphannee Sae Chai, and Deepti Reddy.
Securing Web Services, by Curt Lee Marjaniemi
Study of P2V and V2P Using Ultimate P2V: Capture Physical Machine Image and Run it as VMWare Virtual Machine, by Saroj Patil.
IMDraw: an Instant message and drawing program, by Kelly Whitacre and Tim Poley.
Web Service Standard and API comparison: Muse vs. JMS, by Candice Sonchar.
Indoor Positioning Using Wireless Sensor Mote, by Jeremy Witmer and Tim Porter.
Application for Position Tracking Using Mobile Sensors, by Michael Rudolph.
Network Security Monitoring, by Beatrice Wilds
802.11g Wireless Security by Usery Gerald.

Virtualization

Investigate xen, a virtual machine monitor, and virutal network interface improvement techniques in usenix best paper.
http://cs.uccs.edu/~cs522/virtualization/USENIX2006BestXenNetworkVirtualizatoin.pdf

Network Measurement

Tradition network measurement techniques focus on the reachability, response time, loss rate, bottleneck and available bandwidht of end-to-end unicast connections. There are still a lot of improvement can be done on bandwidth estimation. Espeically some of the ICMP-based approaches were rendered useless since the routers block them to prevent the DOS attack. New bandwidth estimation techniques need to be developed.
Examples of network measurement software packages:

ping: reachability response time
bprobe: bottleneck bandwidth
cprobe: available bandwidth
pathchar: bottleneck/available bandwidth

Measurement of the network or a set of hosts as a group is a new territory. Related research questions:

How wireless channels impact on the performance of these end-to-end bandwidth measurement techniques?
How to define/estimate the network properties between one node to a group. (e.g. service provided by keynote.com, parallel access for mirror sites)
How to define/estimate the network properties between a pair of nodes via a group of nodes. (related to the mulitpath routing, traffic dispersion).
How to define/estimate the network properties between two groups via a third group. (server location problem: how to find a set of server locations for Content Delivery Networks, or for leaving the cached copies of a specific customer.)

Related liteature:

Available Bandwidth Measurement, Implementation and Experiment

Measurements and Analysis of End-to-End Internet Dynamics - Paxson (1997)
Van Jacobson, “Pathchar,” http://www.caida.org/tools/utilities/others/pathchar/

ftp://ftp.ee.lbl.gov/pathchar

http://www.keynote.com. (see their netowrk measurement data since 9/11/2001).

Network Managment: WBEM/CIMOM/SMI

Web-Based Enterprise Management (WBEM). "This initiative was designed to unify the management of enterprise environments through the development of a set of Internet- and management-standard technologies. With WBEM, companies can develop and deliver a set of standards-based management tools that leverage new and emerging technologies such as the eXtensible Markup Language (XML) and Common Information Model (CIM)." from http://wwws.sun.com/software/solaris/wbem/cover/cover.html
Investigate the resource discovery, disaster recovery, security, load balancing, and customization problems in storage networks.
Design and develop test suites and conformance test program for SMI.
Here are a set of topics suggested by Sarah Jelink:
- 1. Volume Management - this is a well understood and already pretty well
  developed area. I work on a volume manager for Sun, which we use in our SAN's. I
  am not sure this is something we should consider doing since there are numerous
  volume managers out there now. Of course, it also depends on what requirements
  they have of the volume manager. It is possible they want some newer features
  that we could provide.
  2. SAN Management - this area is one that is not well understood nor well
  implemented. Providing the management tools for successful setup and management
  of SAN's is a possibility for some software projects.
  Several subareas under this could be:
  1. Setup, discovery and configuration of the SAN
  2. Capacity planning
  3. Ability to correlate data with regard to faults
  4. Ability to create 'logical' fault isolation groups
  5. CIM/WBEM SAN mgt Interfaces
  6. Performance management
  7. Asset management - the ability to uniquely and unambiguously
  identify each component of the SAN and manage them based on
  this. This includes change management as well.
  8. Policy management to include:
  -Disaster recovery
  -Backup
  -Hierarchical Storage Management
  -Data migration in the case of a failure
  
  9. Event management
  
  3. In the area of security:
  1. Hard zoning - that is enabling only certain hosts and/or users
  to access certain blocks of data in the SAN.
  2. A centralized, trusted zoning manager for the SAN
  3. Other ways to enforce 'zoning' of data, without the use of hard
  zoning techniques
  4. Access control, virus detection and user/group administration
  
  From: sjelinek [mailto:Sarah.Jelinek@sun.com]
  Sent: Monday, September 23, 2002 9:19 AM
  To: stevewise@adelphia.net; Sarah.Jelinek@sun.com; chow@cs.uccs.edu
  Cc: sirubey@excite.com; Sarah.Nelms@sun.com; xiejianhua@hotmail.com
  Subject: RE: WBEM Research Project
  
  Edward and Steve,
  
  There are several areas that could be worked on with regard to WBEM for
  research/thesis topics.
  
  >
  >2. SAN Management - this area is one that is not well understood nor
  >well
  >implemented. Providing the management tools for successful setup and
  >management
  >of SAN's is a possibility for some software projects.
  > Several subareas under this could be:
  > 1. Setup, discovery and configuration of the SAN
  > 2. Capacity planning
  > 3. Ability to correlate data with regard to faults
  > 4. Ability to create 'logical' fault isolation groups
  > 5. CIM/WBEM SAN mgt Interfaces
  
  This would specifically be the implementation of the Bluefin spec that is
  attached. This is a new spec, just recently adopted by SNIA as the 'standard'
  for managing/configuring/monitoring SANs.
  
  > 6. Performance management
  > 7. Asset management - the ability to uniquely and
  >unambiguously
  > identify each component of the SAN and manage them based
  >on
  > this. This includes change management as well.
  > 8. Policy management to include:
  > -Disaster recovery
  > -Backup
  > -Hierarchical Storage Management
  > -Data migration in the case of a failure
  
  Policy management and associated QOS is an area that is not well understood, not
  really implemented in any real way and is an important area that could be worked
  on. It doesn't pertain specifically to CIM/WBEM, but CIM does have the notion of
  a CIM_Service object which could be extended to incorporate this policy
  management area.
  
  Other specific areas for research involving CIM/WBEM are:
  
  1. Building a distributed CIM object manager (CIMOM). Currently, all
  specifications and implementations of the are single host only. Any data
  gathering has to be done on per host basis and then coalesced for a LAN/WAN
  environment. The need for a distributed CIMOM specification and implementation
  is really large.
  
  2. The current WBEM client interface for Solaris is in Java. There is a strong
  need for a client interface that is implemented in C. The Solaris CIMOM is
  written in Java for Solaris 8 and 9 so this would have to be considered in this
  specification and implementation. However, there are C CIMOMs out there now.
  Check out http://sourceforge.net/projects/wbemsource/ for WBEM open source
  projects.
  
  3. All of the ones included in Dr. Chow's original email that I sent to him
  earlier this summer are open for research topics.
  
  4. Figuring out how to make the WBEM/CIM infrastructure be able to reside in an
  embedded device, or run at boot time for an OS. One of the biggest problems
  currently with the existing WBEM/CIM implementations is that they are too big.
  This renders it pretty much useless at boot time for most OSs and certainly
  prohibits its use in embedded or RT OS environments.
Related literature:
- Web-Based Enterprise Management http://wwws.sun.com/software/solaris/wbem/cover/cover.html
- CIMOM: Common Information Model Object Manager http://www.snia.org/tech_activities/cim/cim_om/
- SMI Storage Management Initiative http://www.snia.org/tech_activities/bluefin/.

Parallel Access for Mirror Sites

Recent work by Rodriguez, Kirpal, and Biersack studied how to retrieve documents from mirror sites in parallel to reduce the download time and to improve the reliability. The proposed approach utilizes the HTTP1.1 byte range header to retrieve specific data in a mirror server site. This project investigates how the techniques can be improved by

selecting a subset of mirror sites with faster download times.
dynamically adjusting the byte ranges among the parallel access sessions based on session performance.

We will use the mirror sites of some popular software packages such redhat 7.1 for practice.
One group can focus on how to measure the available bandwidth and server performance of a mirror site. Study the tools such as pathchar or cprobe, for measuring the available bandwidth. Create new tools or techniques for such measurement.
The other group will develop efficient code that given a set of mirror sites, download the document in parallel.
Related liteature:

Parallel-Access for Mirror Sites in the Internet

http://www.ieee-infocom.org/2000/papers/65.ps

Accessing Multiple Mirror Sites in Parallel: Using Tornado Codes to Speed Up Downloads

http://www.ieee-infocom.org/1999/papers/02d_01.pdf.

Multipath Routing (Traffic Dispersion)

The existing routing in Internet typically provide single route between two end points. This project investigates how to set up multiple paths (spatially distinct, parallel connectoins) between two end points.
One approach is to select a set of connection-proxy servers, where large available bandwidth exists over the indirect routes through these connection-proxy servers.
The related research questions are:

How to find such set of connection-proxy servers with aggregate bandwidth greater than certain number.
Server location problem: Where in Internet is the best n locations for such connection servers, given a set of end user locations?
Given a set of connection-proxy servers, decide which minimum subnet for achieving certain available aggregate bandwdith.
How to design and implement such network service? (user space or kernel space)
What is a good API for connections with multipath routing?

Each of the above questions can be chosen as a semester project.
Note that the scheduling or dispersion mechanism of packets over these parallel connections will be similar to that of the client in the prevous "parallel access for mirror sites".
One simple design is to allow the client to send a query message to the connection server, and the connection server will measure the available bandwidth to the destination, and report it back to the client. The client then ranks the connection servers based on their available bandwidth to the destination and chooses the subset. Next the client will send a connection request with the IP address and port number of the destination to the connetion server. The connection server establishes two connections, one to the client; the other to the desitnation server. When a data packet arrives from one connection end point, it simply resend it over the other connection.
We can choose web, ftp, or stream (rtp) services as test cases to see how the underlying multipath routing can support those upper application network services.
Related literature:

E. Gustafsson, G. Karlsson, "A Literature Survey on Traffic Dispersion," IEEE Network, Vol. 11, No. 2, March/April 1997.
MDVA: A Distance-Vector Multipath Routing Protocol

Content Switch and Network Processor

This project deals with the design and implementation of advanced switches, where the routing is based on

headers/content of incoming packets,
server load,
load balancing algorithms,
bandwidth management (both for inbound and outbound, but especially for the outbound )
policy on firewall, security, and QoS.

The semester projects can be focus on one of the following areas:

porting LCS0.2 which is based on Linux kernel 2.2.16-3 to 2.4
implementing email load balancing (incoming POP/IMAP or outgoing SMTP).
implementing spam mail/virus removal.
the specification, verification, consistency checking of the content switching rules,
the efficient algorithms for the search of the content switching rules,
the accurate and efficient server load/bandwidth measurement, and
the efficient load balancing systems.

We are interested in exploring the use of Intel IXP Network processor as a prototyping system to verify some of our ideas. Related topics include:

Apply Realtime UML for the specification of the content switch architecture designs,
Map the high level UML models into that of the IXP NP code, and
Develop a customized intermediate programming language (realtime Java or C++) for supporting the development of IXP NP programs.
Porting specific protocols to run on IXP NP microengine or its StrongArm Core.

This involves with the study of a specific network protocol, (IP, TCP, UDP, ICMP,...), software from NET4.0 source for Linux, and the study of IXP NP microengine instruction/architecture. We have obtained a software developmenet environment for IXP NP from Intel. It is running on NT.

Intel donated SSL accelerators and XML directors. We are interested in utilizing these network deivices in the design of parallel secure content switching systems.
Some students are currently developing a content switch based on the Linux Virtual Server (LVS).One possible project is to investigate the use of NetFilter facility provided by Linux 2.4 kernel.
Related liteature:

http://cs.uccs.edu/~chow/pub/contentsw/ contains the related literature and presentation.

Integration of Intrusion Detection and Handling

We have developed an Autonomous Anti-DDOS (A2D2) testbed for developing efficient network security technqiues. Existing intrusion detection software packages such snort and firewall are not well integrated. We are interested in developing better techniques that can tolerate network intrusion and systems that are easy to configure/manage.

OpenCA and Enterprise-wide Security Project

"Some ideas that come to mind are something like the OpenCA project to develop a open foundation like what Verisign does, the ECC-IAIK from the Univeristy of Darmstadt looks good, and coming up with a product like SiteMinder is good idea. SiteMinder is an Enterprise wide Security project." suggested by Rich Helton, an outstanding graduate of ours and the author of "Java Security Solutions".

Detect and Prevent Rogue Wireless Traffic

Wireless packets can be captured and replayed. It results in congestion and failure of wireless networks. This project will explore the techniques for detecting and preventing such attack. Promising new techniques include itrace and terminal node. This project will design and analyze such techniques using simulation or emulating in a network testbed.
itrace was proposed to track the DDOS attack.
Related literature:

Explore the system bottlenecks with the proposed web services and .NET technology.

Learn about the new Microsoft .NET tehcnology, which utilizes XML, SOAP, and UDDI (Universal Description, Discovery and Integration (UDDI).
Analyze the potential bottlenecks in such systems and propose solutions to such problems.
We have set up two win2000 machines (wind and wait) with MS Studio .NET and some training materials.
One possible related project is to see if the .NET technology can be used to realize the parallel access of mirror sites or to facilitate the use of the multipath routing.

SAN-Clustering-Load Balancing

In clustinging or load balancing a server farm, one fundamental problem is the support of consistency of the web documents or files in real physical server. One way is through efficient distribute file systems, such as coda and gfs.
This project will investigate these file systems or NFS/CIFS new suport, and their relationship with Storage Area Networks.
Check out http://www.snia.org/English/Resources/Books.html
CODA can be found at: http://www.coda.cs.cmu.edu/
GFS can be found at http://www.globalfilesystem.org/

WAN Load Balancing

Design/simulate an efficient distributed coordinate protocol to be run by the load balancing agents for achieving better web access in the wide area network with multiple mirror servers.
Web traffic analysis and modeling. One important web system design and planning task is to analyze the traffic and their access patterns so that we can use that in forecast the future traffic patterns and volume. Given the log of access records for some web servers, analyze the traffic statistics, model it as some distribution.
Study efficient web server load metric. Modify Apache web server for reporting this new metric. Explore the use of multicasting in server push.
Design a shared passive server performance information system where machines in a LAN can share information on the performance of remote servers.

Traffic (Bandwidth) Monitoring, Control and Management

On a PC or workstation, how to measure and control the outgoing bandwidth. Today when we run ftp with telnet or realtime multimedia session, ftp may consume all the bandwidth and make other sessions useless. Explore the network architecture/interface on Win98, NT, or Linux PC for implementing the traffic monitoring, control and management functions. Related work: OS scheduling, enhanced multiple queues between IP and transport layers.
On a router (emulated by a LinuxPC with multiple LAN interface), study how to measure, control, and management sessions to Internet. Related work: regulate the flow control window sizes of TCP session, RSVP, QoS routing, and differential services.

Policy-based Networking/Directory Enabling Networks

This project is related to the content switch project. It can be considered a subset of the content switch project. Here the specific issues are

How to specify network access policy?

e.g., Who or what application has the higher priority, more bandwidth, more storage.

Are these policy rules complete, consistent, no conflict?
How to enforce them with underlying network resources?
Related work:

Multiprotocol Label Switching:

http://www.ietf.org/html.charters/mpls-charter.html

Policy-based networking

http://www.3com.com/technology/twareabw/tware_overview/twover01.html

Directory Enabling Networks (DEN)

http://www.universe.digex.net/~murchiso/den/

http://www.cisco.com/warp/public/734/den/literature.shtml

Smart Objects

Similar to SUN's Jini project which wraps Java with layer of networking code. But here we wrap Java with a constraint layer where one can specify the relationship or constraints of the current objects with other objects in the systems (distributed systems). Constraints explicitly indicate how the object should react when the constraints have been violated. For examples, reboot, move to different machines for execution, establish to a similar server when the server crashes. In other words, the set of cooperating smart objects will enforce the constraints through the notification mechanism very much like the delegation event model which is used in Java GUI. This smart object concept can be applied to

system configuration problem where the installation of one application often results in errors/crashes in other applications.
self-configuration system such as network of cache/conference servers where they can be relocated to better locations to speed the web system throughput.
policy-based networking where a policy rule can be a smart object which can interact with other rules. The goal is to allow efficient sharing of the network resource.
Mobile computing where smart applications in a notebook with wireless PC card can adjust itself to the current wireless network environment.

The related of research topics are:

How to specify the constraint (design the syntax and their semantics)
How to enforce the constraints and detect conflicts in the set of constraints.
How to implement these smart objects. Pick one of the above applications.

Design and Simulation of Wireless Networks

We have developed tools and efficient algorithms for

the antenna placement in the wireless networks based on GIS terrain data, and
the mobile traffic data simulation based on GIS terrain and highway data.

We are interested in the efficient wireless network resource management based on these additional data, for example,

efficient handover procedures.
efficient connection management protocol for wireless networks where there exist multiple access/content servers.

Network Design and Planning

Design software tools for network design and evolution.
We have designed java-based tool for detecting network/system bottleneck.
We are interested in capturing existing network behavior, analyzing and predict network performance through simulation, and suggest network configurations.
Given the traffic demands and assumed network equipment information, design and configure a web delivery system with multiple server farms.

The Use of OPNET Modeler and IT DecisionGuru in Network/Protocol Research.

OPNET has donated their Modeler and IT DecisionGuru packages for our network/protocol research. It can be used in construction and evaluating designs in the above projects.

More to come...

F2004 Semester Projects

Monday 12/6/2004

Turbo Code, by Michelle Stoll
Simple Network Management Protocol (SNMP) - Agents, by Jeramie Reese.
Multi-Path Routing: A packet by packet multi-path routing approach, by Dennis Ippoliti.

Wednesday 12/8/2004

Sharing Updates over a P2P Network, by Max Pande
VoIP Using SIP/RTP, by George Fu
Securing Wireless Ad Hoc Sensor Networks, by Frank Gearhart
Development of a Mica2 Mote Sensor Network, by Cliff Macklin and Bill Ehrbar.
Wireless Application Protocol and the Wireless Transport Layer Security, by Mark Shaw.
Quality of Service Differentiation, by Humzah Jaffar.
Secure Notepad, by Ankur Deshmukh and P. Jaya Sunderam.
Java State Exploration Tool, by Mike Lawson
OpenCA, by Maria
Security-Enhanced Linux, by Joseph A. LaConte.
Web Services, by Sujeeth Narayan and Ankur Patwa

F2003 Student Semester Projects

Monday 12/8/2003

Analyzing VOIP using Agilent Technologies Advisor Software Edition (J1955A), by Sherry Adair, Hakan Evecek, Elizabeth Gates.
VOIP Gateway/Gatekeeper Design Requirements, Ricardo Estevez.

Wednesday 12/10/2003

.Intrusion Detection System, by Sai Nandoor, Balaji Badam, Priyadarshini Selvam
Egress traffic shaping on Linux using Hierarchical Token Bucket (HTB), by Brad Baker.
Computer Virus Information/Propgation Research System, by Eric Miller and Brian Schill.
Available Bandwidth Measurement and the Obstacles to Overcome Accurate Measurement, by Scott Goold.
Multipath Routing, by Beaux Sharifi.

F2001 Student Semester Projects

Parallel Access for Mirror Sites, Grace Li and Jing Yang.
Network measurement issues in selecting mirro sites for parallel download, Sonali Patanka
Multipath routing protocol, Sridevi Bellary
Algorithms for computing optimal multipath connections, Jing Wu.
Detect and Prevent Rogue Wireless Traffic, Vincent Merlin (can add another team member to work on CMU Wireless and Mobiity Extensions to ns-2 simulation package

for evaluating wireless network security techniques against DDOS and Rogue wireless traffic.

http://www.monarch.cs.cmu.edu/cmu-ns.html)

Multipath routing protocol for wirelss ad-hoc networks. Need someone to sign up for this project.

http://www.ececs.uc.edu/~mmarina/aodv/

Bottlenecks in MS .NET technologies, Dave Brinksman.
Generating dynamic web pages on cache servers using MS Studio .NET, Aparna Yeddula.
Support web services with Perl/SOAP, Litis Abraham.
Acceleration of SSL Encryption Technology with a Distributed System, Aaron Budjen,

http://cs.uccs.edu/~abudjen/project.html

How to stop unwanted email, Jeff Rupp.
API for Multipath Routing, Aparna Srikantaswamy
High available web load balancing, SAMATHA SUDARSHANAM
Security and Privay Issue related to Content Switch/Network Processor (Intel IPX), Brian Panaccione.
SAN-Clustering-Load Balancing and examining GFS, Su Li.
Wireless network programming toolkit and multimedia messaging services, Tim Biles and Mark Blomquist
Server location problems, Where in Internet is the best n locations

for such connection servers, given a set of end user locations? Padmaja Adipudi

F2000 Student Semester Projects

Storage Networks and Distributed File Systems

Load Balancing and Simulation

Content Switch

Network Technolgoy

Bandwidth Control/Scheduling

Protocol Priorities: Why the Nice Solution May Not Be So Nice, by Douglas M. Clapp

Network Design and Measurement

F2002 Student Semester Projects

Monday 12/9/2002

IQ-VW: Improving QoS of VoIP over WLAN, by Mona Habib and Nirmala Bulusu
SANPLAN: Storage Area Network Preparation, Location, Activation, and Normalization, by Thao Pyon and James Horton
WBEM Automatic Processor Report (WAPR), by Stephen D. Wise.
A Study in JMS (Java Messaging Service), by Chad Beaudin.
Distributed Java Communications Benchmark, by Eric Lind .
Comparison of .NET and Java Web Services, by QinQin Jiang
A study of Microsoft .Net Framework with an emphasis on Online Gaming, by Ed Mucker
Using Multiple Gateways to Foil DDOS Attack, by David Wilkinson
Implementing SSL applications Using Java's JSSE, by Sid Rubey

Wednesday 12/11/2002

Multi .NET Routing, by Francisco Torres and Kevin Gigax
Conversion of Setool to Java, by Richard Sherman and Stephanie Taylor
Study of A2D2 Autonomous Anti-DDoS testbed and explore improvement for Snort plugin, by Sunil Bhave.