Assignment 3: Network Security

Due 6:00 p.m. Thursday, April 21, 2016

Getting Started

On your host machine (laptop), go to the course directory:

$ cd COS461-Spring2016

• Now, pull the latest update from Github.

$ git pull

• Reprovision your VM as follows:

$ vagrant reload --provision

The new Vagrantfile will install several packages on your VM. You can take a look at the Vagrantfile on the folder COS461-Spring2016 on your host machine to see the packages that are required for the assignment. Make sure that all the packages were successfully installed.

• Verify that the required packages were installed, as follows:

$ vagrant ssh
* Inside the VM, execute the following commands:
$ mn
* You should see:
*** Mininet must run as root.

$ java
* You should see the Usage message from the Java compiler.

* Check if the following python packages can be imported:
$ python
>>> import dateutil
>>> import test_helper
>>> import matplotlib
>>> import mininet
>>> import scapy

If the packages were not installed correctly, you can reprovision your VM or install the packages manually by executing the commands that are in the Vagrantfile. For example, to install Mininet, you can execute the following command on your VM:

$ sudo apt-get install mininet

This assignment has two parts: detecting portscan from measured traffic records using Spark, and detecting and mitigating DNS reflection attacks in Mininet. Each part is worth 10 points. The instructions for both parts of the assignment are in the form of iPython notebooks. To access the iPython notebooks, you can use a web browser on your host machine and type the URL http://localhost:8888/

Submission and Grading

You should submit your completed assignment by the date posted on the course website to CS Dropbox. For the first part (Portscan), you only need to submit the iPython notebook. For the second part (DNS reflection), you need to submit the following files: mb.py and test.py.