perfSONAR-CTSC Code Review Engagement Final Report 

Loading...
Thumbnail Image
Can’t use the file because of accessibility barriers? Contact us with the title of the item, permanent link, and specifics of your accommodation need.

Date

2016-01

Journal Title

Journal ISSN

Volume Title

Publisher

Abstract

perfSONAR ("Performance focused Service Oriented Network monitoring ARchitecture") is an infrastructure for monitoring network performance. The perfSONAR software toolkit is deployed around the world, primarily at government labs and universities, to help monitor and provide network reliability information across multiple domains. Some of the virtual organizations deploying perfSONAR include ESnet, GÉANT, and Internet2. CTSC and perfSONAR conducted an engagement in which CTSC performed a code review of perfSONAR’s Bandwidth Test Controller (BWCTL). BWCTL is essentially a daemon and framework for scheduling and executing non-overlapping performance measurement tests between sets of participating hosts (endpoints). The code review consisted of two parts: (1) a First Principles Vulnerability Assessment (FPVA) that involved a manual inspection and analysis of the code, resulting in detailed architecture and resources diagrams and (manual) detection of potential vulnerabilities, and (2) an automated/programmatic static source code analysis using the Software Assurance Marketplace (SWAMP) online service.

Description

Keywords

cybersecurity, cyberinfrastructure, networking

Citation

DOI

Link(s) to data and video for this item

Relation

Rights

This work is made available under the terms of the Creative Commons Attribution 3.0 Unported License.

Type

Technical Report