Slashdot Mirror

← Back to Stories (view on slashdot.org)

UCB, USC To Build (And Hack) A Model Internet

Posted by timothy on from the smaller-scale dept.

darksoulz writes "Associated Press stories from TheKansasCityChannel.com and TheChamplainChannel.com have an interesting report today. It appears that the U.S. Government has given a $5.5 million grant to the University of California, Berkley and the University of Southern California so that they can build a model of the internet, so they can hack it. They are trying to find better defenses against hacking, without breaking the real Internet. The first phase is scheduled to be completed by February."

13 of 218 comments (clear)

  1. Re:Good by Tin+Foil+Hat · · Score: 2, Insightful

    Will they expose this system externally for real "hackers" to play with?

    If they do, I'm sure slashdot will be more than happy to help with stress testing.

    --
    No matter how many of my rights are taken away, somehow I still don't feel safe. -Frigid Monkey
  2. In ten years... by sandbenders · · Score: 5, Insightful

    In ten years everyone will wonder why USC and Berkley produced all of the decade's best crackers. This project will result in three things:

    1. Good dissertations for CS PhDs.
    2. More secure software, which will rarely be implemented and even more rarely be implemented well.
    3. A whole bunch of research assistants who think they are l33t h4x0rs. And some of them will be right.

    --
    Eagles may fly, but weasels don't get sucked into jet engines.
  3. Quick question: by mblase · · Score: 2, Insightful

    I know you can hack a server, but how exactly do you hack "the Internet" (model or otherwise)?

    1. Re:Quick question: by heironymouscoward · · Score: 2, Insightful

      Hacking the Internet is quite different from hacking a server. A single server behaves in an obvious and predictable fashion. The Internet behaves like a natural system: clearly there are always going to be a number of hacked systems, but the overall impact depends on how these systems have been hacked, what damage the hackers do, how fast the damage spreads, etc.

      What I presume this 'model' will be used for is to do things like simulate how fast and far a new kind of virus could spread.

      It's extremely pertinent research and the price tag is trivial compared with the cost of damage to the real thing.

      --
      Ceci n'est pas une signature
  4. Re:Good by Anonymous Coward · · Score: 5, Insightful

    I think the real point here is to make a testbed where they can unleash worms and then try different techniques to try and trace, contain, stop, and prevent them. Not to actually attract hackers. They will be the hackers, do the hacking, etc. Also to play with DDOS attacks and whatnot, without saturating any existing networks. I think the operative term is hacking a model 'internet' not a machine on the internet.

  5. Just offer prizes to hackers by G4from128k · · Score: 4, Insightful

    I'm not sure how they plan to "model" the internet, but I would argue that the internet is its own best model. Anything else will lack some exloits present in the "real" net while have other exploits absent in the real net (bugs in the model's software).

    I would take the $5.5 million and divide it up into $5000 prizes that are payable to any hacker that demonstrates and documents a hack on the real net. The profs and grad students could ajudicate the prize giving. They would find at least 1100 exploits this way (fewer if they have to pay those pesky grad students or usurious university accounting department overhead rates).

    If letting hackers profit from hacking the actual internet is too scary/illegal, then the university could create a small publically exposed network running a variety of apps, OS, etc.

    --
    Two wrongs don't make a right, but three lefts do.
    1. Re:Just offer prizes to hackers by dido · · Score: 2, Insightful

      Do the words "Cyber-Armageddon" mean anything to you? I imagine what some of the things they'll try to simulate are the really monstrous distributed denial of service attacks that would cripple the entire Internet for days and cause untold amounts of damage and inconvenience for millions all over the world. Things that would make a major slashdotting look like a mild hiccup. If they did that on the real Internet, the damage it would cause worldwide would be worth a helluvalot more than a piddly US$5.5 million.

      I imagine they'll be dealing more with network structural problems than cracking problems. They'd also be doing experiments on some conjectures like the Warhol worms and flash worms we've heard about that can infect 60% or more of all the hosts on the Internet in under 15 minutes. If they did such an experiment on the real Internet, that would again cause a lot of major disruption, especially if they made a mistake in the worm's programming, and that's not exactly an unknown occurrence... The Great Worm itself had a bug that rendered it far less benign than Robert T. Morris planned. If that happened on one of the world's largest WAN's however, no big deal, it'll just inconvenience the grad students in charge of it, and they'd need to reinstall, which is probably part of what they'll be getting paid to do anyway.

      What you're proposing by the way, would be tantamount to condoning acts that the Department of Homeland Security (which appears to be one of the agencies funding this project) has labeled terrorism, and which have been illegal since long before 9/11.

      --
      Qu'on me donne six lignes écrites de la main du plus honnête homme, j'y trouverai de quoi le faire pendre.
  6. Re:This will fail by orangesquid · · Score: 3, Insightful

    What makes you think they would pick a good operating system on purpose? Rather, they could put up many different systems known to be hackable, write worms or scripts designed to hack into these machines, and try to create technologies to capture/contain and lessen/slow infections and security breaches.

    I don't think the point is to re-create OpenBSD. The goal is probably more of a cross between network monitoring, intrusion detecion systems, and automatic network reconfiguration.

    The Internet can already route around problems because of redundancy. Sophisiticated routers can control and shape traffic. But, as of yet, there's no widespread technology to protect entire networks from security problems. We will never create perfect systems... so we must create countermeasures so that when our systems fail, they fail in the smallest and least dangerous ways possible. It's like fault isolation.

    --
    --TheOrangeSquid Is it any wonder things seem so awry? We swim in a sea of confusion and don't have to think to survive
  7. Re:Tin foil hat or not? by gnu-generation-one · · Score: 2, Insightful

    "If they find fundamental flaws in the systems will they keep them secret to shore up US networks?"

    I don't think Internet Explorer is a secret anymore

  8. Re:Good by Rick+the+Red · · Score: 2, Insightful
    It can't be a proper model of the internet unless it contains its own Slashdot, complete with the Slashdot Effect.

    Of course, this is a simulation of the internet, so it will have a simulation of Slashdot, and thus we are all now simulations somewhere in a computer in California, simulating the Slashdotting of simulated small, interesting web sites. Wow, I now have an avitar!

    --
    If all this should have a reason, we would be the last to know.
  9. The "What if machine" by brakett · · Score: 2, Insightful
    The way I understod the article, this is supposed to be a wan that can be used as a what-if-machine. This would be a way to se the results of changing widely used standards.

    What if everybody used IPv6?
    What if you had to prove your id to send mail?
    What if a Curious Yellow -like worm were realeased?
    What if.... well you get my point.

  10. USE THE RIGHT WORD!!!!!! by some+guy+I+know · · Score: 2, Insightful

    It's "cracking", not "hacking", dammit!
    I expect this from mainstream media, but not here.

    --
    Those who sacrifice security to condemn liberty deserve to repeat history or something. - Benjamin Santayana
  11. a model? by hyrdra · · Score: 3, Insightful

    The problem with their "model" is that something as complex as the current Internet as it exists today can't really be modeled, at least not very well. It's a huge chaotic system thats constantly changing and growing, so when you try to model it your model is going to be out of date before you can do anything useful with it. I really don't think $5 million can buy even a small representation of what the Internet is today. Think of the OSI layers and all the different software, hardware, protocols, methods, systems and manufactures in place at each layer. Each of those has its own set of vulnerabilities, holes, etc. and keep in mind there are many different versions of each of those running at the same time across different networks.

    This complexity is precisely what makes tracking and solving problems with today's Internet so hard.

    I am curious as to what they expect to study and find from this model. Today's problems with the Internet and networking in general are largely social, economic, or political. Figuring out some neat new protocol isn't going to make backbone provider X update their entire network. Worms and the such are also the bain of a social problem. As long as we have smart programmers with free time, there will be worms and exploits of the system no matter what procedures are in place or how smart the network is; The fix for said worms are timely patches and updates, however most users won't and don't do this, hence the epidemics.

    This might make some great academic research and a neat new toy for the University but I fail to see how it can find applications in the real world where the problems are much harder than the technical ones this project (presumably) hopes to solve.

    --


    "I'll just chip in a bit for RedHat: I actually have that installed on my university machine." - Linus, '95