DETER

Background

An experimental infrastructure is needed to support the development and testing of next-generation cyber security technologies. Due to the inherent risks of testing malicious software in operational networks, neither existing research network infrastructures nor the operational Internet meet this need. New security technologies are currently tested and validated in small- to medium-size private research laboratories, which are not representative of the large operational networks or Internet elements that might be involved in a security attack. In response to this issue, the U.S. Department of Homeland Security (DHS) Science and Technology Directorate partnered with the National Science Foundation to create the Defense Technology Experimental Research (DETER) testbed. The DETER testbed is used by both DHS-funded researchers, the larger cyber security research community including government, industry, and academia and educational users to test and evaluate cyber security technologies.

The DETER testbed is used to test and evaluate cyber security technologies by over 200 organizations from more than 20 states and 17 countries, including major DHS-funded researchers, government, industry, academia and educational users.

DETER Implementation

The DETER testbed provides the necessary infrastructure networks, tools, methodologies, and supporting processes to support national testing of emerging and advanced security technologies. The testbed facilitates scientific experimentation and validation against established baselines of attack behavior and supports innovative approaches that involve breaking the network infrastructure. The testing framework allows researchers to experiment with a variety of parameters representing the network environment, including deployed defense technologies, attack behaviors, and mechanism configurations. Current efforts will support larger and more complex experiments with increased usability.

The success of the DETER testbed lies largely in its collaboration with the cyber security research community. Annual workshops are conducted to disseminate and discuss project results and outcomes, and reports documenting benchmarks, testbeds, data collection and analysis, and evaluations of security mechanisms that have been deployed. It is important for the research community to share their results with each other and to discuss improvements to the DETER research infrastructure.

The DETER testbed provides the necessary infrastructure—networks, tools, methodologies, and supporting processes—to support national testing of emerging and advanced security technologies. The testbed facilitates scientific experimentation and validation against established baselines of attack behavior and supports innovative approaches that involve breaking the net-work infrastructure. The testing framework allows researchers to experiment with a variety of parameters representing the net.

Significant Impact

The DETER testbed provides cyber security researchers, developers, and operators from government, industry, and academia with the opportunity to thoroughly test new technologies intended to protect the Nations critical infrastructure. This active medium-scale testbed is successfully strengthening critical network and Internet security. The DETER testbed is used increasingly for education. Users benefit from developing and sharing educational material and tools to train the next generation of cyber security experts. DETER exposure in educational communities will generate an increasing interest in research and provide hands-on experience for potential next-generation operators.

More information about the DETER testbed is available here.