Visible to the public Redundancy for Network Intrusion Prevention Systems (NIPS) - July 2016Conflict Detection Enabled

Public Audience
Purpose: To highlight project progress. Information is generally at a higher level which is accessible to the interested public. All information contained in the report (regions 1-3) is a Government Deliverable/CDRL.

PI(s):  Mike Reiter

Researchers: Victor Heorhiadi, Jun Jiang


Primary:  Resilient Architectures

This work is developing an architecture for the scalable enforcement of network security policies that is resilient to traffic changes and traffic rerouting in response to failures.



  • We presented our work on SOL, a framework to simplify construction of SDN optimization applications, in an invited talk at the DIMACS Workshop on Algorithms for Software-Defined Networking.  We received numerous expressions of interest in the work, most notably from AT&T.  We are investigating the possibility of collaborating on related projects of particular interest to them.
  • Our work published this quarter develops a framework and system for subjecting microservice-based systems to faults and evaluating their reactions to them, in an effort to validate proper implementation of fault-handling patterns.  This work performs fault injection and monitoring at the network layer and so complements SOL by providing an active monitoring capability for proper implementation, specifically of fault-handling patterns.