Slashdot Mirror

← Back to Stories (view on slashdot.org)

UCB, USC To Build (And Hack) A Model Internet

Posted by timothy on from the smaller-scale dept.

darksoulz writes "Associated Press stories from TheKansasCityChannel.com and TheChamplainChannel.com have an interesting report today. It appears that the U.S. Government has given a $5.5 million grant to the University of California, Berkley and the University of Southern California so that they can build a model of the internet, so they can hack it. They are trying to find better defenses against hacking, without breaking the real Internet. The first phase is scheduled to be completed by February."

13 of 218 comments (clear)

  1. Good by delirium28 · · Score: 5, Interesting
    This is an intersting approach, but if they keep this a "closed system" (i.e. a hidden internet), then how much real "hacking" can they expect? Are they going to use honeypot data? Will they expose this system externally for real "hackers" to play with? Just my $0.02 worth.

    --
    Who is John Galt?
    1. Re:Good by Anonymous Coward · · Score: 5, Insightful

      I think the real point here is to make a testbed where they can unleash worms and then try different techniques to try and trace, contain, stop, and prevent them. Not to actually attract hackers. They will be the hackers, do the hacking, etc. Also to play with DDOS attacks and whatnot, without saturating any existing networks. I think the operative term is hacking a model 'internet' not a machine on the internet.

  2. Are they doing the FULL internet here? by paroneayea · · Score: 5, Funny

    I mean, will sixty percent of it be model porn?

    --
    http://mediagoblin.org/
  3. I'll do it for 1 million by the_skywise · · Score: 5, Funny

    Why do you need 5 million for that? How many computers can it possibly take? 50? 100? Let's say 100. That's $100,000 (and that's generous these days) Let's say $200,000 to lease building space and power for 2 years (also generous) and let's pay 3 professors part time, plus 10 students work study wages (Figure $50,000 per professor and $20,000 per student...$350,000)

    What do we got?
    $100,000 parts
    $200,000 space
    $350,000 labor
    --------
    $650,000

    What's the other ~5 million going for?

    Oh wait... they must need Windows licenses and full copies of Outlook to properly test the hacks...

    1. Re:I'll do it for 1 million by dr_dank · · Score: 5, Funny

      What's the other ~5 million going for?

      Mountain Dew doesn't come cheaply, my friend....

      --
      Where does the school board find them and why do they keep sending them to ME?
  4. In ten years... by sandbenders · · Score: 5, Insightful

    In ten years everyone will wonder why USC and Berkley produced all of the decade's best crackers. This project will result in three things:

    1. Good dissertations for CS PhDs.
    2. More secure software, which will rarely be implemented and even more rarely be implemented well.
    3. A whole bunch of research assistants who think they are l33t h4x0rs. And some of them will be right.

    --
    Eagles may fly, but weasels don't get sucked into jet engines.
  5. Re:Is it dead already? by nate1138 · · Score: 5, Funny
    My old roommate used to say that only two good things ever came from Berkeley:
    • BSD
    • LSD

    Of course he went to Cal-Tech (Which I've always heard was a trade school for surfers ;-)
    --
    Where's my lobbyist? Right here.
  6. Questions remain by bwaynef · · Score: 4, Interesting
    I think this is a straight-forward approach but there are problems that need to be addressed.

    • How will they implement the latencies and delays that commonly befall the internet.
    • Where will the millions of unique traffic-data originate.
    • How will they mimic the different styles of hacking.

    It would be interesting to see how they implement this network.

    • Are they going to be two seperate networks.
    • Will they be one network connected over an existing internet link?
    • If they connect over an existing internet link how will they deal with that connection as its no longer a simulation

    I don't think that we have a requirement to see any of the information that I've questioned above but this information could lead /. to be more informed on this situation.

  7. The Real Reason by fireboy1919 · · Score: 4, Funny

    Tech support companies the world over are tired of people calling up and asking, "Is your internet better than the internets of other companies?" They made a plea to the US government to do something about it, who, out of embarassment for the American people's stupidity, promptly made up a new reason to make another, lower quality internet.

    From now on, rather than spending several hours trying to explain the concept of the internet to people who have trouble walking and chewing gum at the same time, tech supporters will be able to simple say, "Yes."

    --
    Mod me down and I will become more powerful than you can possibly imagine!
  8. Just offer prizes to hackers by G4from128k · · Score: 4, Insightful

    I'm not sure how they plan to "model" the internet, but I would argue that the internet is its own best model. Anything else will lack some exloits present in the "real" net while have other exploits absent in the real net (bugs in the model's software).

    I would take the $5.5 million and divide it up into $5000 prizes that are payable to any hacker that demonstrates and documents a hack on the real net. The profs and grad students could ajudicate the prize giving. They would find at least 1100 exploits this way (fewer if they have to pay those pesky grad students or usurious university accounting department overhead rates).

    If letting hackers profit from hacking the actual internet is too scary/illegal, then the university could create a small publically exposed network running a variety of apps, OS, etc.

    --
    Two wrongs don't make a right, but three lefts do.
  9. Similar Project at Iowa State University by logrey · · Score: 5, Interesting

    Iowa State has a similar project funded with a $500,000 grant from the U.S. Department of Justice.
    Iowa State Computer Security Lab

  10. The nature of government grants by mystery_bowler · · Score: 4, Informative

    For the last few years I've been developing software systems for law enforcement, so occassionally I pick up interesting bits of information about how government funding works. If you didn't hear about it - and not many people did - the Dept. of Homeland Security made a sort of "open call" (via the Dept. Of Justice, if I remember correctly) about a year or so ago. It was - more or less - an open invitation for vendors to propose innovative ideas to the DHS about fighting terrorism within the United States. The really interesting thing about the open call was that it was specifically worded to encourage "innovative" and "new" approaches. I joked at the time that I actually felt good about the open call...it seemed like the guys at the DHS were acknowledging that they didn't have a clue what to do and where looking for expert help on making things radically better.

    I'd be interested to find out if the "model internet" was a proposed idea. In terms of government funding, $5 million isn't all that much, so I wouldn't be surprised to see if this was an idea pitched by people at UCB and USC during the open call. I'd heard that big names asking for reasonably small amounts of money were getting through pretty easily.

    I tried to convince my company to pitch a variant of our crime analysis/trendspotting tools. Include a reference per recorded crime that indicates political or religious bias as the motive of the crime. Get a concentration of those - even if they are "lesser" crimes like vandalism or simple assualt - and you've got "smoke". And where there's "smoke"...

    --

    My sigs always suck.
  11. here's the real scoop by t_parker16 · · Score: 5, Informative

    all this speculating on what's involved, but the project is described in pretty good detail over at the ISI web site. (and so, its apparently not USC specifically but the usc information sciences institute):

    http://www.isi.edu/stories/70.html

    excerpt:

    "The DETER testbed will consist of approximately 1,000 computers with multiple network interface cards, located off the actual Internet. Three permanent hardware clusters, or nodes, at UC Berkeley and at ISI's Southern California and Virginia facilities, will serve as the core of the system.

    "This isolated mini-Internet will serve as a shared laboratory where researchers from government, industry and academia can test existing and new security technology, using a wide variety of attack techniques."