On February 26-28th, 2020, CAIDA hosted the AIMS-KISMET workshop, effectively the second in the series of KISMET workshops. For details on KISMET, see the OKN-KISMET proposal. This AIMS-KISMET workshop is by invitation only, held at the University of California San Diego in La Jolla, CA.
Place: Auditorium B210E/B211E Meeting Room,
San Diego Supercomputer Center, UC San Diego Campus, La Jolla, CA
At our first workshop in December 2019, we heard about datasets that might be useful to explore ways to improve the security of the Internet.
In this workshop, we are adding a different exercise to the agenda: we are posing some possible scenarios for the future of the Internet, and we will ask attendees to break into smaller groups to discuss these scenarios. Some scenarios might change security properties of the Internet, others relate to more general trends for the future of the Internet. How might these trends might lead to a more secure future?
These scenarios might not come to pass. Groups should feel free to pose alternative futures that might arise instead. But for each outcomes, what are implications for Internet security, stability and governance? How might these ideas be shaped or modified to have the best chance of success?
For all discussions, a key high-level question is whether there is data of any sort that might shed light on the scenario: the probability of its happening and the implications if it did.
Topics of Interest
- Clarifying research agendas to study abuse of routing and naming systems as described in Dec 2019 WIE-KISMET workshop report
- OKN support for parameterizing baseline interdomain topology structure, dynamics, trust hierarchies
- connectivity of and around current MANRS participants
- identifying more vulnerable regions of topology
- measurement of compliance
- measurement of benefits/costs
- OKN support for parameterizing baseline DNS structure, dynamics,
- Conceptualizing and constructing annotated maps of namespaces
- including zone creation, expiration and configuration patterns that may represent security or resilience
- Anonymous reporting system that indicates how many recursive resolvers are blocking what
- Mapping money flows in DNS ecosystem
- Measurement and modeling of collateral damage of blocking, using logs of queries to recursive resolvers.
- Mapping out domains of power in name resolution
- Supporting data
- what additional data needed, e.g., geolocation, metadata, extension of existing measurement platforms?
- Tools, platforms, analytic capabilities that would facilitate community use of proposed OKN
- Positioning knowledge network to serve emerging data science trends (ML, AI)
- Required/desired institutional, community, and government support
The format of this workshop will be different than previous AIMS and different from the previous KISMET workshop. This workshop will be structured with panels, lightning talks, and breakout sessions. Lightning talks will be ten minutes each.
- kc claffy (CAIDA/UC San Diego)
- David Clark (MIT)
We have reached our target capacity for this workshop. Registration for AIMS-KISMET 2020 is closed, and we will not be accepting any more registrants.
We have organized the workshop as a series of panels. The idea behind the panels is that each panelist will speak for a short period (5-7 minutes), followed by discussion among panelists and participants.
Panels and questions
Consider the same set of questions for all the panels:
- Getting the data--where does in come from, how is it collected, how does it come into your hands.
- Dissemination: who can see it under what terms?
- Outcomes: How has the data paid off?
- Economics: how is the data sharing sustained?
- What next? What more data would be desirable? Is the work (whatever it is) sustainable? Need it be sustainable?
February 26 (Wednesday)
- 08:00 - 09:00 breakfast
- 09:00 - 09:30 Introductions, goals of the workshop
- David Clark (MIT/CSAIL) and kc claffy (CAIDA/UC San Diego), KISMET: Goals of this workshop
- 09:30 - 10:30 Talks: Data-Sharing Initiatives
- kc claffy (CAIDA/UC San Diego), CAIDA, and DHS IMPACT Program
- Richard Clayton (University of Cambridge), Cambridge Cybercrime Centre
- 10:30 - 11:00 break
- 11:00 - 12:30 Panel: OKN support for parameterizing DNS structure, dynamics
Moderator: Mattijs Jonker (University of Twente)
- Gautam Akiwate (UC San Diego), Fantastic DNS Threats and Where to Find Them
- Raffaele Sommese (University of Twente), OpenINTEL - Creating a "long-term memory" for the global DNS
- Colin Strutt and Dave Piscitello (Interisle Consulting Group), Exposing Criminal Abuse of Internet Names and Addresses (ECAINA): Proof of Concept
- Eric Ziegast (Farsight Security, Inc.), Passive DNS
- 12:30 - 13:30 lunch
- 13:30 - 15:15 Lightning Talks: Enabling Platforms for Open Knowledge, and What Security-Relevant Analysis They Enable
- Kirill Levchenko and Tzu-Bin Yan (UIUC), PKTLAB: A Universal Measurement Endpoint Interface
- Mattijs Jonker (University of Twente), OpenINTEL: IPv4 reverse measurements
- Raffaele Sommers (University of Twente), Diving into DNS delegation inconsistency
- Gautum Akiwate (UC San Diego), ZoneDB a.k.a. dns.coffee
- Joe Abley (PIR), TLD Registry Data
- 15:15 - 15:30 Discussion and expectations of breakout sessions
- 15:30 - 16:00 break
- 16:00 - 17:00 Breakouts: Scenarios
- 17:00 - 17:30 Plenary: Summarize breakout insights
- 17:30 - 20:00 happy hour, on-site catered dinner
February 27 (Thursday)
- 08:00 - 09:00 breakfast
- 09:00 - 09:30 Roundtable discussion of Day 1
- 09:30 - 11:00 Lightning Talks: OKN support for understanding Internet topology structure
- Ioana Livadariu (SimulaMet), Abuse of the IPv4 transfer markets
- Matthew Luckie (University of Waikato), Hoiho (routing naming conventions)
- Alex Gamero-Garrido (CAIDA / UC San Diego), Inferring Country-Level Transit Influence of Autonomous Systems
- David Teach (University of Oregon) and Steven Huter (NSRC), RouteViews Updates
- Joanna Merson (University of Oregon) and Kevin Conte (NSRC), Routeviews Visibility Map
- 11:00 - 11:30 break
- 11:30 - 12:30 Lightning Talks: Enabling Platforms for Open Knowledge, and What Security-Relevant Analysis They Enable
- Ronald F. Guilmette (unaffiliated, remote participant), A Study of African Address Space
- Alberto Dainotti (CAIDA/UC San Diego), CAIDA's BGP (Hijacking) Observatory
- Johannes Zirngibl (TU Munich), HEAP BGP Observatory
- Julian Martin Del Fiore (University of Strasbourg), Filtering the Noise to Reveal Inter-Domain Lies (see: related paper)
- 12:30 - 13:30 lunch
- 13:30 - 15:00 Panel: OKN support to understand improvements to routing security
Moderator: Tony Tauber (Comcast)
- Aftab Siddiqui (Internet Society, remote participant)
- Mark Kosters (ARIN)
- Cecilia Testart (MIT)
- Taejoong Chung (Rochester Institute of Technology)
- Alberto Dainotti (CAIDA / UC San Diego)
- 15:00 - 15:15 break
- 15:15 - 16:30 Breakouts: Scenarios
- 16:30 - 16:45 break
- 16:45 - 17:30 Plenary: Summarize breakout insights
- 17:30 Open Discussion: What dangling threads should be captured tomorrow?
- 17:30 - 20:00 happy hour, on-site catered dinner
February 28 (Friday)
- 08:00 - 09:00 breakfast
- 09:00 - 09:30 Roundtable discussion of Day 2
- 09:30 - 10:45 Panel: OKN support for Threat Intelligence Analysis
Moderator: Dave Piscitello (Interisle Consulting Group)
- Jonathan Spring (CERT/CC, SEI, Carnegie Mellon), 10 years of sciencing on blacklists
- John Bambenek (ThreatSTOP), MalDomainML: A Machine Learning Model to Find Malicious Domains before they go Bad
- Vector Guo Li (UC San Diego), Clairvoyance: Inferring Blacklist Use on the Internet
- Paul Mockapetris (ThreatSTOP)
- Tomofumi Okubo (DigiCert, Inc.)
- 10:45 - 11:15 break
- 11:15 - 12:15 Lightning Talks: Supporting Tools for Open Knowledge
- Justin Rohrer (Naval Postgraduate School), Operationalizing Yarrp:High-Speed Active Network Topology Mapping from AWS
- Young Hyun (CAIDA/UC San Diego), FANTAIL: Facilitating Advances in Network Topology Analysis
- Matthew Luckie (University of Waikato), Traceroute+BGP
- 12:15 - 13:30 lunch
- 13:30 - 14:15 Lightning Talks continued
- Thomas Holterbach (ETH Zurich), An Open Platform to Teach How the Internet Practically Works
- Peter Boothe (Measurement Lab / Google), Measurement Lab status
- 14:15 - 15:00 survey fill-out break
- 15:00 - 16:00 Structured Discussion
- Bringing data out from scenarios into planning OKN
- Positioning OKN to serve public sector (policy, safety, defense)
- Positioning OKN to serve data science trends (ML, AI)
- Needed Tools, platforms, analytic capabilities that would facilitate community use of proposed OKN
- Needed institutional, community, and government support
- 16:00 - 16:30 Open Discussion: What dangling threads should be captured in report?
- 16:30 Adjourn; fill out exit survey
Travel grants are available for this workshop. Travel support is intended to defray, but not entirely cover, the costs of attending the workshop. Only registration, shared hotel room, and airfare qualify for reimbursement, and the decision will be made when travel grants are awarded subject to availability of funds. The award will be handled via reimbursements. The specific way will depend on the source of the travel grant, for example, some travel grants will be reimbursed through an NSF grant. Further details of the reimbursement procedure will be communicated to the award recipients.
Save your receipts! After the workshop, please collect all itemized receipts (airfare, lodging, transportation, etc.) to submit for reimbursement. When scanning receipts, please make sure all information is clear and easy to read. Private and sensitive information should be redacted (e.g., address, phone number, etc.). There are strict limitations on what can be reimbursed, so be sure to read the important things to know about reimbursement, below.
Important things to know: Limitations on reimbursement
As per NSF and UC San Diego policy, an attendee on an NSF travel grant must book an economy rate U.S.-based airline carrier in order to be eligible for reimbursement (see Fly America Act). An invoice or itinerary from the travel agency, booking service or airline may serve as the original receipt. The receipt must show the form of payment used, name of passenger, dates and routes of travel, airfare class, and amount paid.
If you are adding personal days to your travel, you are required to show that the airfare that extends travel with personal days, is not more expensive than airfare that does not. Please do a screenshot at the time you are booking travel to show that it does not. If you have a travel preparer booking your airfare, please communicate with them about your plans so that they can prepare this screenshot. Travel preparers should indicate on the screenshot or in the travel reconciliation notes, which is the comparison and which is the actual airfare purchased, since both fares have to be uploaded to the reconciliation.
UC maximum lodging rate for reimbursement is $275 before taxes and mandatory hotel fees. Traveler will not be reimbursed for in-room charges such as gym or movie fees. An itemized receipt is required.
Claim the actual amount spent up to $62 per day. An itemized receipt is required. When submitting your receipt(s), please remove any alcohol expenses from the itemized receipt. Alcohol is not an allowable expense.
- Package deals
For reimbursement eligibility, the receipt or itinerary must specify cost for each item. Before purchasing a package, via the Web or otherwise, confirm you will be able to obtain the required documentation. If the receipt or itinerary does not show cost for each component (e.g., airfare, airfare tax, room rate per night, and room tax per night), get a receipt from each service provider (e.g. the airline, hotel, and/or rental car company). If the separate cost components of a travel package can't be specified, it's not possible to substantiate the business expenses and verify no personal benefit to the traveler. This is based on UC policy and IRS guidelines, and makes the expense ineligible for reimbursement. To meet UC San Diego travel policy, UC travel policy, and IRS requirements, the receipt or itinerary must specify the cost of each item, but most sellers of package deals are unwilling to provide that information due to their relationships with suppliers.
For this workshop, attendees are expected to make their own hotel reservations and transportation arrangements from their hotels to the workshop. For CAIDA's list of local hotels including shuttle availability, see the updated Local Hotels list (PDF). Contact the hotel directly for hotel shuttle schedules (if available) to the San Diego Supercomputer Center (SDSC).
This workshop is being held in the SDSC East Auditorium (Room B210E/B211E) that faces Hopkins Drive.
(For those GPS-enabled attendees, the GPS coordinates near the SDSC Auditorium is WGS84: 32°53'03.77"N, 117°14'20.31"W)
General driving directions to SDSC are located on the CAIDA Contact and Visitor Info page.
- Shuttle to Hotels: SuperShuttle can be arranged to shuttle to UC San Diego campus or your hotel.
- Car: Rental available at the airport near the baggage claim areas of Terminals 1 and 2.
- Taxis and drop-off: San Diego Taxi Information maintains a list of taxis with rates and additional information. Uber and Lyft are also well established in San Diego and now have access to service San Diego's airport. GPSes will need to go to the intersection of Hopkins Drive and Voigt Lane.
10100 Hopkins Drive, La Jolla, CA 92093 is the nearest street address most GPSes/maps recognize. This should take you to a small turn-in in front of the SDSC East Entrance / Auditorium, with a building sign visible that reads "Halicioğlu Data Science Center".
- Parking on campus
The most convenient parking is in the Hopkins parking structure at Hopkins Dr and Voigt Dr, just south of SDSC.
Parking Permits: Parking permits are required to park on UC San Diego Campus.
Parking legally is the attendee's responsibility. It is recommended you find parking at the Hopkins Parking Structure. Near the elevators will be a parking permit machine that sell passes for $30/day. Alternatively, use the ParkMobile app to buy a permit for Zone 4736 (if parking at Hopkins). With a permit purchased, you can park in any White " V " spaces ONLY unless otherwise indicated. (New since 2019: purchased permits are no longer valid in yellow "S", green "B" spaces, or red "A" spaces) Please be sure to read the directions on the parking permit. Parking is limited -- the lot tends to be completely full after 9:00am. The penalty for an improperly parked car is at least $65 per day. We cannot be held responsible for citations issued for parking in an incorrect space or improperly displaying your permit.
For transportation concerns, general questions and help before the workshop, contact CAIDA at <admin-staff at caida.org> or (858) 246-5835.