Network & Security Simulation

Contacts: Rainer Bye, Stephan Schmidt, Joël Chinnow, Karsten Bsufka

 

One research focus of CC Security is the simulation of networks. The goal here is twofold; one goal is to evaluate and compare developed security mechanisms and a second goal is to examine the behavior and the spread of attacks and malicious software.

At the core of this research focus is the network security simulator NeSSi2, which has been developed by CC Security. NeSSi2 allows the modeling of IT networks at different levels of abstraction, and is easily extendable with own security mechanisms and attack simulations. The simulation engine of NeSSi2 and the basic network model is also applied to other domains (energy, transport, ...) and thus allows the investigation of dependencies between critical infrastructures.

Security mechanisms to be developed in the context of other research areas, such as anomaly detection methods for the detection of Distributed Denial of Service (DDoS) attacks or cooperation strategies for the exchange of malicious software signatures, should be evaluated as part of specially developed simulation. There are three objectives: First, the effectiveness of security mechanisms should be comparable. Second, the behavior of security mechanisms and the evaluation results should be reproducible. Third, it should be easy to adapt the evaluation of security mechanisms to changed conditions, such as changes in the typical network traffic through new protocols or services.