Dynamic Early Filtering of Botnet Garbage Traffic (sponsored by NSF), 02/01/2010 - 01/31/2013
Chin-Tser Huang, PI
This project aims to address the above problem by establishing a comprehensive and sustainable architecture that coordinates the routers in the Internet to filter out botnet garbage packets from Internet traffic as early as possible. The architecture comprises four major components: rule generation component, rule dissemination component, rule management component, and rule security component. The objective is to investigate and quantify the tradeoff between the saved bandwidth originally consumed by the garbage traffic and the throughput slowdown introduced by the routers' extra filtering overhead, and find optimal solutions under the tradeoff function. The evaluation plan will use benchmarks developed under various traffic traces and network topologies to evaluate the performance of the developed algorithms and technologies, and derive insights on how far and wide the filtering rules should be disseminated and installed under different attack scenarios in order to optimize the performance.
Chin-Tser Huang, Co-PI at USC
Adaptive and precise intrusion detection techniques (sponsored by DARPA)
Chin-Tser Huang, PI
Multiple Instantiations of Dynamic Firewall Rules in BGP Routers (sponsored by University of South Carolina Research and Productive Scholarship Fund)
Chin-Tser Huang, PI
Security Protocols for Wireless Networks