Skip to Content
[CAIDA - Center for Applied Internet Data Analysis logo]
Center for Applied Internet Data Analysis > funding : c4 : sow.xml
Internet Mapping: Cartographic Capabilities for Critical Cyberinfrastructure
Sponsored by:
Department of Homeland Security (DHS)
We will integrate strategic Internet measurement and data analysis capabilities to provide comprehensive annotated Internet topology maps that will improve our ability to identify, monitor, and model critical cyberinfrastructure.

Funding source: DHS S&T contract N66001-12-C-0130. Period of performance (extended by 10 months due to funding delays): September 28, 2012 - January 27, 2016 (base), January 28, 2016 - July 27, 2016 (optional).

|   Final Report    Statement of Work     Proposal   |

Statement of Work

The proposed effort shall develop new technologies and analysis capabilities spanning multiple research domains of the Internet measurement field to execute timely delivery of rich cybersecurity-relevant annotated maps of critical Internet resources.

Tasks and deliverables for the entire effort are separated into three phases, with monthly deliverables throughout the course of the project:

Phase I: Applied Research (18 months, October 2012 - March 2014; 10 month extension until January 2015)

Collect raw IPv4 and IPv6 topology data using Ark; submit technical and financial status reportmonthlyCDRL A001IPv4, IPv6
Task 1: Improve completeness of macroscopic Internet maps
1.1Install monitoring infrastructure (8-10 monitors/year) in underserved regionsOct 2012 - Jan 2015done
1.2Investigate more efficient and scalable probing techniquesMar 2013done
1.3Incorporate additional IP address lists into our alias resolution processMar 2013data, paper
1.4Derive an experimental Internet topology (traceroute-based) augmented with additional reachability dataNov 2014data, paper
1.5Evaluate the experimental traceroute-based Internet topologyJan 2015CDRL A003done
Task 2: Increase accuracy of macroscopic Internet maps
2.1Investigate the impact of false link inferences on the router-level graphJun 2013done
2.2Investigate the impact of false link inferences on the PoP/city-level graphJun 2013done
2.3Investigate the impact of false link inferences on the AS-level graphJun 2013done
2.4Investigate approaches to identify AS peering linksSep 2013done
2.5Design user-friendly interactive validation functionality for AS meta-data and traceroute-based topology inferencesDec 2013done
Task 3: Increase the richness of macroscopic Internet maps
3.1Add annotations for intermediate (PoP/city-level) infrastructure inferencesJul 2013done
3.2Deploy beta-version of interactive intermediate (PoP/city-level) map validation functionality for testing and feedbackDec 2013CDRL A002done
3.3Add economic AS annotationsAug 2013done

Phase II: Development (12 months, April 2014 - March 2015; postponed to February 2015 - January 2016)

Collect raw IPv4 and IPv6 topology data using Ark; submit technical and financial status reportmonthlyCDRL A001IPv4, IPv6
Task 1: Create a new series of Internet Topology Data Kits (ITDK)
1.1Install new and upgrade obsolete Ark monitors (8-10 monitors/year)done
1.2Conduct large scale alias resolution probing runs every 3-6 monthsJune 2015,
Dec 2015
1.3Analyze data, derive topology graphs at various levels of granularity and make data availableJul 2015,
Jan 2016
CDRL A004done
1.4Update ITDK data and algorithms descriptions as necessaryJan 2016done
Task 2: Develop a scalable and user-friendly interactive interface to database of topology measurements
2.1Develop graphical user interface (GUI) for interactive validation and corrections of AS meta-dataMarch 2015done
2.2Develop graphical user interface (GUI) for interactive validation and corrections of PoP/city-level mapMarch 2015done
2.3Develop taxonomy to reveal insights into business structure of ISPsJun 2015done
2.4Develop software to reveal insight into the business relationships of ISPsJun 2015done
2.5Develop software to reveal insight into the geographic coverage of ISPsJun 2015done
2.6Develop interface to request specific historical or recent measurement dataSep 2015done
2.7Enable queries regarding observable performance changes and trends across specific regions of the worldJan 2016CDRL A005tool, video
Task 3: Implement on-demand topology measurement tools
3.1Refine functionality for selective real-time Ark probingSep 2015done
3.2Develop interface to select probing destinations by country, AS, BGP prefix, or organizationNov 2015done
3.3Create AS-traceroute measurement toolJun 2016CDRL A006tool, paper
Submit final reportJan 2016CDRL A002done

Phase III: Deployment (6 months) - optional

Collect raw IPv4 and IPv6 topology data using Ark; submit technical and financial stat us reportmonthlyCDRL B001IPv4, IPv6
Task 1: Continue to expand Ark measurement platform
1.1Deploy remaining monitors (new locations or upgrades)ongoingdone
1.2Re-assess optimal configuration for team probingdone
Task 2: Demonstrate capabilities of the platform and technologies developed during the base performance period
2.1Test "topo-on-demand" measurements in a typical operational environmentongoingdone
2.2Test querying of historical topology measurements in a typical operational environmentdone
2.3Integrate diverse types and sources of data into a coherent representation of macroscopic Internet topology at multiple granularities (AS Rank)CDRL B002done
Submit final reportCDRL B003done

Acknowledgement of awarding agency's support

The work was funded by the Department of Homeland Security (DHS) Science and Technology Directorate, Cyber Security Division (DHS S&T/CSD) Broad Agency Announcement 11-02 and SPAWAR Systems Center Pacific via contract number N66001-12-C-0130, and by Defence Research and Development Canada (DRDC) pursuant to an Agreement between the U.S. and Canadian governments for Cooperation in Science and Technology for Critical Infrastructure Protection and Border Security. The work represents the position of the authors and not necessarily that of DHS or DRDC.

  Last Modified: Mon Nov-21-2016 17:51:19 PST
  Page URL: