Techniques for the dynamic randomization of network attributes

Critical infrastructure control systems continue to foster predictable communication paths and static configurations that allow easy access to our networked critical infrastructure around the world. This makes them attractive and easy targets for cyber-attack. We have developed technologies that address these attack vectors by automatically reconfiguring network settings. Applying these protective measures will convert control systems into «moving targets» that proactively defend themselves against attack. This «Moving Target Defense» (MTD) revolves about the movement of network reconfiguration, securely communicating reconfiguration specifications to other network nodes as required, and ensuring that connectivity between nodes is uninterrupted. Software-defined Networking (SDN) is leveraged to meet many of these goals. Our MTD approach eliminates adversaries targeting known static attributes of network devices and systems, and consists of the following three techniques: (1) Network Randomization for TCP/UDP Ports; (2) Network Randomization for IP Addresses; (3) Network Randomization for Network Paths In this paper, we describe the implementation of the aforementioned technologies. We also discuss the individual and collective successes for the techniques, challenges for deployment, constraints and assumptions, and the performance implications for each technique

Passive isolation/damping system for the Hubble space telescope reaction wheels

NASA's Hubble Space Telescope contain large, diffraction limited optics with extraordinary resolution and performance for surpassing existing observatories. The need to reduce structural borne vibration and resultant optical jitter from critical Pointing Control System components, Reaction Wheels, prompted the feasibility investigation and eventual development of a passive isolation system. Alternative design concepts considered were required to meet a host of stringent specifications and pass rigid tests to be successfully verified and integrated into the already built flight vehicle. The final design employs multiple arrays of fluid damped springs that attenuate over a wide spectrum, while confining newly introduced resonances to benign regions of vehicle dynamic response. Overall jitter improvement of roughly a factor of 2 to 3 is attained with this system. The basis, evolution, and performance of the isolation system, specifically discussing design concepts considered, optimization studies, development lessons learned, innovative features, and analytical and ground test verified results are presented

The semantics of jitter in anticipating time itself within nano-technology

The development of nano-technology calls for a careful examination of anticipatory systems at this small scale. For the characteristics of time at the boundary between classical and quantum domains are quite critical for the advancement of the new technology. It has long been well recognised that time is not absolute even in classical subjects like navigation and dynamics where idealised concepts like mean solar time, International Atomic Time and Newton’s dynamical time have had to be used. Time is the data of the Universe and belongs in the semantics of its extensional form. At the boundary between classical and quantum behaviour the uncertainty of time data becomes a significant effect and this is why it is of great importance in nanotechnology, in areas such as the interoperability of different time domains in hardware, where noise in the form of jitter causes a system to behave in an unpredictable fashion, a severe and expensive problem for anticipating how time is to be handled. A fundamental difficulty is that jitter is represented using numbers, giving rise to undecidability and incompleteness according to Gödel’s theorems. To escape the clutches of Gödel undecidability it is necessary to advance to cartesian closed categories beyond the category of sets to represent the relationship between different times as adjoint endofunctors in monad and comonad constructions

A Delay-Optimal Packet Scheduler for M2M Uplink

In this paper, we present a delay-optimal packet scheduler for processing the M2M uplink traffic at the M2M application server (AS). Due to the delay-heterogeneity in uplink traffic, we classify it broadly into delay-tolerant and delay-sensitive traffic. We then map the diverse delay requirements of each class to sigmoidal functions of packet delay and formulate a utility-maximization problem that results in a proportionally fair delay-optimal scheduler. We note that solving this optimization problem is equivalent to solving for the optimal fraction of time each class is served with (preemptive) priority such that it maximizes the system utility. Using Monte-Carlo simulations for the queuing process at AS, we verify the correctness of the analytical result for optimal scheduler and show that it outperforms other state-of-the-art packet schedulers such as weighted round robin, max-weight scheduler, fair scheduler and priority scheduling. We also note that at higher traffic arrival rate, the proposed scheduler results in a near-minimal delay variance for the delay-sensitive traffic which is highly desirable. This comes at the expense of somewhat higher delay variance for delay-tolerant traffic which is usually acceptable due to its delay-tolerant nature.Comment: Accepted for publication in IEEE MILCOM 2016 (6 pages, 7 figures