- Nokia's new N97 vs. the iPhone
- Talk-powered cell phones?
- FBI: Copper thieves jeopardize U.S. infrastructure
- 10 Microsoft research projects
- Smartphone smackdown: Storm vs. iPhone
Like a ship in a bottle, the Internet-Simulation Event and Attack Generation Environment is a miniature version of the real thing: It's the vast Internet shrunk to fit onto a high-speed LAN on the floor of a building in a research park adjacent to the Iowa State University campus in Ames.
Iseage (pronounced "ice age") lets you model an attack on your network without having to put your real one on the line.
"It's a test bed for information warfare," says Iowa State University Professor of Computing Doug Jacobson, who heads up the project, which is funded primarily by the Department of Justice. "We'll look at attack tools and defense mechanisms. Our goal is to have this as a point where organizations can test security paradigms."
The school last year snagged a half-million dollar grant from the Justice Department, with another $700,000 promised for this summer, to build the miniature Internet. Agriculture and construction equipment manufacturer John Deere also kicked in $30,000. Iseage, basically a collection of PCs, servers and switches using custom-designed software to simulate routers and network nodes, was ready for its first game of Beat the Hacker last month (see diagram).
Wider Net archive
Our collection of stories that go beyond the speeds and feeds of the network and IT industries.
Iowa State's Cyber Defense Competition pitted teams of university students, who defended Web sites, mainly of their own design, against security professionals playing the part of attacker.
"My role was to break in and crash their servers," says Adam Kaufman, information security analyst for the state of Iowa in Des Moines. "It gave them a taste of what an attack is like."
The Web sites being defended ran on Windows, Unix and open source operating systems. Some of the students who protected the sites used the Snort intrusion-detection system, and assorted firewalls. Competition organizers supplied content for the Web sites.
The competition, which lasted for 20 consecutive hours, began by having Red Team attackers use scanning tools, such as nMap freeware, to find out each student team's software configurations and determine where weaknesses might lie.
"I also used the Web Inspect scanner to find a vulnerability in a PHP page, for instance," Kaufman says. "One team had a server that allowed us to run commands on it. Or we could upload files."
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comment