Changes between Version 20 and Version 21 of ExDescLang


Ignore:
Timestamp:
Oct 11, 2010 2:30:03 PM (14 years ago)
Author:
sunshine
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • ExDescLang

    v20 v21  
    44
    55I'll start with a few examples of experiments first, that we should be able to design in this language.
    6  1. A botnet experiment where a worm infects some vulnerable hosts, they organize into a P2P botnet with some botmaster and start exchanging C&C traffic. Experimenter wants to observe the evolution of the botnet and the amount of traffic that master receives. There are three classes of experiments here that need to be combined together:
     6 1. A botnet experiment where a worm infects some vulnerable hosts, they organize into a P2P botnet with some botmaster and start exchanging C&C traffic. Experimenter wants to observe the evolution of the botnet and the amount of traffic that master receives. There are two classes of experiments here that need to be combined together:
    77    a. an experiment where worm spreads and infects vulnerable hosts
    8     b. an experiment where some hosts organize into P2P network and somehow elect a botmaster
    9     c. an experiment where peers start exchanging some C&C botnet traffic
     8    b. an experiment where some hosts organize into P2P network and somehow elect a leader who then sends commands to them and they may send reports back
    109
    1110 2. A cache poisoning experiment where the attacker poisons a DNS cache to take over authority for a given domain. The attacker then creates a phishing page and tries to steal user's usernames/passwords. There are two classes of experiments that need to be combined:
     
    3534== Example 1: botnet ==
    3635
    37 This example used 3 metadescriptions. Let's go through each of them:
     36This example used two metadescriptions. Let's go through each of them:
    3837
    3938=== Worm spread metadescription ===
     
    4140Dimensions:
    4241 * '''Logical topology:'''
    43    [[Image(wormobj.jpg)]]
    44    (in English: There must be two sets of hosts, at least one infected host in infected set and at least one vulnerable host in vulnerable set. There can be a third set of hosts that are not vulnerable or infected. All these sets are disjoint.)
     42   [[Image(peerobj.jpg)]]
     43   (in English: There must be two sets of hosts, at least two eligible peers and at least one leader. Nothing is said about relationship between sets so it's possible that there's an intersection between those that is non-empty.)
    4544 * '''Timeline of events: '''
    4645   [[Image(wormwf.jpg)]]