Automatic Discovery of Protocol Manipulation Attacks in Large Scale Distributed Systems Implementations

(autoattack logo)

Overview

Most distributed systems are designed to meet application-prescribed metrics that ensure availability and high-performance. However, attacks can significantly degrade performance, limiting the practical utility of these systems in adversarial environments. Specifically, compromised participants can manipulate protocol semantics through attacks that target the messages exchanged with honest participants.

Finding attacks against performance in distributed systems implementations is a very challenging task due to (1) state-space explosion that occurs as attackers are more realistically modeled, (2) diversity of programming language, software, operating systems and the subtle interactions between the software components, (3) diversity of communication channels (wired or wireless communication, TCP or UDP, encrypted or not-encrypted), (4) difficulty of expressing performance as an invariant in the system, (5) difficulty of capturing real-world performance in a reproducible way, not only the system performance but the network conditions when that performance was obtained.

This project aims to build an easy-to-use and maintain, low cost platform to find reproducible, real, high-impact, malicious performance attacks on distributed systems implementations in realistic environment.

Publications

    Theses

    Ensuring Specification Compliance, Robustness, and Security of Wireless Network Protocols. Endadul Hoque. Ph.D. Thesis, Dec 2015. [PDF].
    Automated Performance Attack Discovery in Distributed System Implementations Hyojeong Lee. Ph.D. Thesis, Sep 2014. [PDF]

    Journals

    Automated Adversarial Testing of Unmodified Wireless Routing Implementations E. Hoque, H. Lee, R. Potharaju, C. Killian, and C. Nita-Rotaru. In IEEE/ACM Transactions on Networking (ToN), vol. 24, issue 6, 2016.
    Gatling: Automatic Performance Attack Discovery in Large-Scale Distributed Systems Hyojeong Lee, Jeff Seibert, Dylan Fistrovic, Charles Killian, and Cristina Nita-Rotaru. ACM Transactions on Information and System Security (TISSEC). 17, 4, Article 13 (April 2015). [PDF][BIBTEX]

    Conferences

    Building Robust Distributed Systems and Network Protocols by Using Adversarial Testing and Behavioral Analysis Endadul Hoque and Cristina Nita-Rotaru. IEEE Cybersecurity Development (SecDev), Nov. 2016. [PDF] [BIBTEX]
    Leveraging State Information for Automated Attack Discovery in Transport Protocol Implementations Samuel Jero, Hyojeong Lee, and Cristina Nita-Rotaru. 45th IEEE/IFIP International Conference on Dependable Systems and Networks (DSN), Jun. 2015. Best paper award. [PDF] [BIBTEX]
    Turret: A Platform for Automated Attack Finding in Unmodified Distributed System Implementations Hyojeong Lee, Jeff Seibert, Md. Endadul Hoque, Charles Killian, and Cristina Nita-Rotaru. 34th International Conference on Distributed Computing Systems (ICDCS), Jun. 2014. [PDF] [BIBTEX]
    Adversarial Testing of Wireless Routing Implementations Md. Endadul Hoque, Hyojeong Lee, Rahul Potharaju, Charles Killian, and Cristina Nita-Rotaru. 6th ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec), Apr. 2013 [PDF][BIBTEX]
    A Platform for Finding Attacks in Unmodified Implementations of Intrusion Tolerant Systems Hyojeong Lee, Jeff Seibert, Charles Killian, and Cristina Nita-Rotaru. Poster at 10th Usenix Symposium on Operating Systems Design and Implementation (OSDI), Oct. 2012 [PDF][POSTER]
    Gatling: Automatic Attack Discovery in Large-Scale Distributed Systems Hyojeong Lee, Jeff Seibert, Charles Killian, and Cristina Nita-Rotaru. In Proc. of 19th Annual Network & Distributed System Security Symposium (NDSS), Feb. 2012. [PDF][BIBTEX]

    Technical Reports

    A testing platform for teaching secure distributed systems programming, E. Hoque, H. Lee, C. E. Killian, and C. Nita-Rotaru. Dept. of CS, Purdue University, Tech. Rep. 16-002, 2016. [ PDF ]

    Presentations

  • Adversarial Testing and Compliance Checking of Network Protocols. C. Nita-Rotaru, University of Washington, April 2016.
  • Adversarial Testing and Compliance Checking of Network Protocols. C. Nita-Rotaru, University of Napoli Francesco Segundo, Feb. 2016.
  • Adversarial Testing and Compliance Checking of Network Protocols. C. Nita-Rotaru, MIT Lincoln Labs, Dec. 2015.
  • Adversarial Testing of Implementations of Distributed Systems. C. Nita-Rotaru, Politechnica University of Bucharest, July 2015.
  • Adversarial Testing of Implementations of Distributed Systems. C. Nita-Rotaru, Oxford University, July 2015.
  • Adversarial Testing of Implementations of Distributed Systems. C. Nita-Rotaru, Johns Hopkins University, January 2015.
  • Adversarial Testing of Implementations of Distributed Systems. C. Nita-Rotaru, Applied Communication Sciences, August 2014.
  • Adversarial Testing of Implementations of Distributed Systems. C. Nita-Rotaru, Georgia Tech., August 2013.
  • Adversarial Testing of Implementations of Distributed Systems. C. Nita-Rotaru, Intelligent Automation Inc., July 2013.

Software

Students

    Current Members

    • Endadul Hoque, Postdoctoral Research Associate
    • Samuel Jero, Graduate Student

    Collaborators and Previous Members

    • Hyojeong Lee, Ph.D. 2014
    • Jeff Seibert, PhD, 2012
    • Dylan Fistrovic, B.S. 2013
    • Byngchan An, Graduate Student
    • Jun Zhang, Undergraduate Student

Funding

This project is funded by grant CNS-1223834 from SaTC NSF. Principal Investigator: Cristina Nita-Rotaru (Purdue University and Northeastern University) Co-Principal Investigator: Charles Killian (Purdue University and Google)