Skip to Content
[CAIDA - Center for Applied Internet Data Analysis logo]
Center for Applied Internet Data Analysis
Cybersecurity: Leveraging the Science and Technology of Internet Mapping for Homeland Security (2008-2011)
Sponsored by:
Department of Homeland Security (DHS)
The CAIDA Cybersecurity Project "Leveraging the Science and Technology of Internet Mapping for Homeland Security" (contract N66001-08-C-2029 with the DHS Science and Technology Directorate) started in March 2008. Our primary objective is to develop technologies and gather data that will increase situational awareness of Internet topology structure, behavior, and vulnerabilities.

This page is the original statement of work for March 2008 through June 2011).

|   Final Report    Statement of Work (2011-2012)    Statement of Work (2008-2011)    Proposal   |

Statement of Work (2008-2011)

In this project, we are applying a decade of experience in Internet topology measurement, analysis, modeling, and visualization capabilities to DHS' immediate cybersecurity needs to understand and protect essential U.S. information infrastructure.

The ultimate deliverables are periodic updates for router-level and AS-level Internet topologies integrated into the dual-layer router+AS-level topologies, and richly annotated with AS business relationships, geographic, latency, etc., attributes. To achieve this main task, the project will also deliver a new Internet topology data acquisition infrastructure and Internet topology data processing, analysis, annotation, and generations software.

Tasks and deliverables for the entire effort are separated into three phases:

Phase I: Applied Research (March 2008 - September 2009)

Task NumberTask Description
Task 1Establish ongoing measurements of IPv4 topology using Archipelago measurement infrastructure. Complete initial deployment and debugging of Archipelago monitors and software. Start an ongoing IPv4 topology data collection. Continue to expand the Archipelago measurement infrastructure.
Task 2Build a router-level graph of the Internet. Evaluate existing Ip-to-router resolution techniques. Select the best tool and collect data for aliases resolution. Derive a router-level graph from Ark data and aliases data.
Task 3Build a dual AS-router level graph of the Internet. Derive an AS-level graph of the Internet from Ark data and BGP data. Develop methodology of merging the router-level and AS-level graphs into a dual topology graph of the Internet. Produce an experimental dual graph of the Internet topology. Validate the resulting graph vs. other internationally recognized sources of Internet topology data. Release software for calculation and comprehensive analysis of topology characteristics.

Phase II: Development (October 2009 - September 2010)

Task NumberTask Description
Task 4Continue to improve the Archipelago measurements. Deploy 15 additional monitors. Prototype IPv6 topology measurements.
Task 5Develop software for automated merging of router-level and AS-level graphs into a dual topology. Develop software for automated construction of router-level topology graphs. Update software for automated constrution of AS-level graphs. Develop software for building dual AS-router level topology graphs.
Task 6Develop software for annotating dual graphs of the Internet. Provide automated annotation of AS-graphs with AS types and business relationships. Compare existing geolocation tools. Develop software for adding geolocation annotations to dual graphs. (optional) Develop software for adding latencies annotations to dual graph.
Task 7Develop visualization methods for annotated dual AS-router Internet topology.

Phase III: Deployment (October 2010 - March 2011)

Task NumberTask Description
Task 8Continue to improve the Archipelago measurements. Implement recommendations for improving Internet topology measurement learned during Phase I and II of the project. Deploy 10 additional monitors.
Task 9Advise sponsors regarding use of data to support understanding of critical infrastructure for national security needs. Enrich our AS-ranking suite using all available measurement data and annotations. Validate our automated annotated dual graphs vs. other topology sources. Implement topology generator using annotated dual graphs methodology. Integrate telco hotel datasets into out data.

Deliverables

#Associated TaskDeliverable DescriptionTypeDue dateStatus
1Task 1Row IPv4 topology data collected on Ark platformdataJul 2008Done
2Task 2Recommendations for best IP aliases resolution techniquesreportOct 2008Done
3Task 2Data for IP-to-router resolutiondataDec 2008Done
4Task 3Ark-based router-level graphdataJan 2009Done (requires password)
5Task 3Ark-based AS-level graphdataJan 2009Done
6Task 3Ark-based dual AS-router topologiesdataJun 2009Done
7Task 3Caveats and recommendations regarding Ark-based topology measurementsreportSep 2009Done
8Task 3Comprehensive software suite for topology characteristicssoftwareDec 2009Done
9Task 4Improve Ark-based topology datadataNov 2009Done
10Task 5Regular updates of router-level graphsdataJan 2010Done
11Task 5Regular updates of annotated AS-level graphsdataJan 2010Done
12Task 5Software for automated merging of router-level and AS-level topologiessoftwareMar 2010Done
13Task 5Regular updates of dual Internet topologiesdataMay 2010Done
14Task 6Recommendations for best geolocation toolsreportDec 2010Done
15Task 6Annotated dual AS-router graphsdataOct 2010Done
16Task 6Preliminary IPv6 topology datadataSep 2010Done
17Task 7Visualization of annotated dual AS-router graphsreportSep 2010Done
18Task 8Improved Internet topology datadataNov 2010Done
19Task 9Generator for annotated dual Internet topologies at the AS-level and router-levelsoftwareJan 2011Done
20Task 9Ark/skitter/DIMES topology comparisons at different levels of granularityreportMar 2011
21Task 9AS-ranking++softwareMar 2011Done
22Task 9Recommendations for the next generation of Internet topology measurement platformsreportMar 2011Done

Related Links

  Last Modified: Wed Nov-6-2013 17:10:53 PST
  Page URL: http://www.caida.org/funding/cybersecurity/sow.xml