Results Cybersecurity Research Cooperation US-NL

Digital sovereignty in a rapidly changing world

Introduction

Session chair, Peter Zinn

Short result project presentations PAADDOS / MADDVIPR and MINIONS

Prof. dr. Roland van Rijswijk-Deij, Professor, Network Security at University of Twente

Panel discussion led by session chair, Peter Zinn
Subject: Digital sovereignty in a rapidly changing world
Panel Members:

- Prof. Dr. Kimberly C Claffy, Professor, Lead Center for Applied Internet Data Analysis (CAIDA)
- Dr. Anna Sperotto, Associate Professor, Design and Analysis of Communication Systems (DACS) University of Twente
- Dr. Damon McCoy, Associate Professor, Computer Science and Engineering Department Tandon School of Engineering New York University
- Dr. Carlos Hernandez de Ganan, Associate Professor, Faculty of Technology, Policy and Management, TU Delft

Round-up

Session chair, Peter Zinn



Planning Background project information

The Joint U.S. – Netherlands Cyber Security Research Programme is an initiative of NWO, the Dutch Ministry of Justice and Security and the American Department for Homeland Security(DHS S&T).

Planning Anycast for Anti-DDoS

Prof. dr. ir. A. Pras & Prof. J Heidemann

University of Southern California and University of Twente —to define a framework to counter the IoT DDoS threat by creating tools to reconfigure capabilities in DNS servers and content delivery networks. This framework will be used to create tools to manage anycast (methodology in which a single destination address has multiple routing paths to two or more endpoint destinations) before and during DDoS attacks, and evaluate operational DNS systems.

Mapping DNS DDoS Vulnerabilities to Improve Protection and Prevention

Dr. Anna Sperotto & Dr. Kimberly Claffy

University of California and University of Twente —to analyze the DDoS attacks focused on exploitation of DNS. Attack sources, targets, and characteristics observed in DDoS attack traffic will be analyzed and an assessment of vulnerabilities and single points of failure that threaten the resilience of the DNS under DDoS attack will be conducted. By combining these two perspectives, actionable intelligence will be used to improve the resilience of the DNS against attacks, while facilitating prevention of DNS attacks.

MitigatINg IOt-based DDoS attacks via DNS

Dr. ing. Carlos Hernandez Ganan & Dr. Damon McCoy

New York University and Delft University of Technology —to design and create a prototype to implement DDoS countermeasures and remediation for in-home networks and IoT devices, primarily from attacks using Domain Name System (DNS).