Department of Electrical and Computer Engineering
University: Royal Military College of Canada
Professors: Dr. M.H. Rahman
Department:Electrical & Computer Engineering
We are using OPNET for:
Courses using OPNET:
EEE 473: Computer Communications
The aim of this course is to acquaint the student with fundamental concepts of computer networks and data communication technology. It follows the 7-layer model of the OSI architecture for computer networks.
EEE 565: Computer Networks and Protocols
Review of queuing theory as it applies to networks: capacity assignment. OSI model for computer networks. Analysis of protocol, routing and flow control. Multiple access techniques. Local area networks. The students may be asked to review recent papers and do small projects.
Research using OPNET:
Distributed Simulation Network Traffic Analysis of MODSAF
Modular Semi-Automated Forces (ModSAF) uses the Distributed Interactive Simulation (DIS) protocol to broadcast information about the simulated entities via select protocol data units (PDUs) across a network. Simulation performance decreases with increasing entity count as a result of poor techniques for ModSAF for determining communication infrastructure requirements. Using network analysis techniques, experimental network traffic generated by ModSAF was analyzed by gradually increasing the entity count until simulation failure occurred. Analysis conducted shows that network performance was not a factor in the resulting simulation failure but that processor and memory utilization contributed to overall simulation degradation and subsequent failure. Moreover, traditional methods for simulation traffic do not account for the burstiness of the traffic observed. A peak-to-average bit rate factor (P/A BFR) was developed to provide more effective estimation techniques.
Improved Network Survivability Using an Enhanced Routing Protocol to Push Back a Distributed Denial of Service Attack
Denial of service is one of the many ways malicious users attack computers on a network. The thesis aims at finding a way to pushback a Distributed DoS (DDoS) attack in near real time. This thesis proposes to accomplish its goal by modifying and enhancing the OSPF routing protocol. It assumes that a third party performs the detection of the DDoS and that the aggregate information identifying the DDoS can be obtained. Using the OSPF protocol, a communication mechanism is developed to allow network routers to block or reduce malicious flows. Some existing quality of service (QoS) mechanisms are used to block the malicious traffic. When successful, the most upstream routers, within an Autonomous System (AS), block the malicious traffic while letting the legitimate users access the targeted and legitimate assets.
The modified routing protocol is validated by analysing simulations performed with the Opnet Modeler software. The findings demonstrate that the proposed Pushback Algorithm is stable and the volume of additional traffic created by the Pushback Algorithm during an attack has minimal to no impact on the overall network. Some of the proposed modifications, on Cisco routers, translate into a very efficient convergence time of the Pushback mechanism to the edge routers. The Pushback Algorithm works well in an acyclic environment. However, the success of the Pushback Algorithm in a cyclic environment is not as obvious. Finally, the proposed Pushback mechanism is not reliant on frequent expert assessment and can be automated. Less human involvement is therefore required to fight DDoS attacks. These are encouraging findings if we want to win the battles against hackers.
This site is maintained by elecadm@rmc.ca
