Transparent Security is a solution for identify the source devices of a DDoS attack and mitigates the attack in the customer premises or the access network. This solution leverages a P4 based programmable data plane for add in-band network telemetry (INT) for device identification and in-band mitigation.
Fixes #398 & Fixes #403
Replaces the AE that was running on snaps-hcp and/or the SimpleAE with one running within a Siddhi CEP runtime
Speeds up the setup and execution of the lab-trial scenaio
Do you have any concerns with this PR?
Drop reports are not currently working with Siddhi but we don't currently have any automated tests around them.
Additionally, the data-inspection tests have been disabled for CI as the report counts from the AE node have been sketchy. IDK if this has to do with the AE running on 20.04 with Py 3.8 although that makes no logical sense?
How can the reviewer verify this PR?
Ensure CI passes. Most importantly the pkt-flood tests are the ones that will be exercising the new AE
Any background context you want to provide?
snaps-hcp and SimpleAE have proven to be lacking in performance, latency, and/or flexibility and this is the candidate replacement.
Screenshots or logs (if appropriate)
Questions:
Have you connected this PR to the issue it resolves? yes
Does the documentation need an update? probably yes
Does this add new dependencies? Siddhi AMI that can be build with the env-build scripts of type 'siddhi'
Have you added unit or functional tests for this PR? I've massaged the data-inspection and pkt-flood lab-trial scenario tests.
What does this PR do?
Fixes #398 & Fixes #403 Replaces the AE that was running on snaps-hcp and/or the SimpleAE with one running within a Siddhi CEP runtime Speeds up the setup and execution of the lab-trial scenaio
Do you have any concerns with this PR?
Drop reports are not currently working with Siddhi but we don't currently have any automated tests around them. Additionally, the data-inspection tests have been disabled for CI as the report counts from the AE node have been sketchy. IDK if this has to do with the AE running on 20.04 with Py 3.8 although that makes no logical sense?
How can the reviewer verify this PR?
Ensure CI passes. Most importantly the pkt-flood tests are the ones that will be exercising the new AE
Any background context you want to provide?
snaps-hcp and SimpleAE have proven to be lacking in performance, latency, and/or flexibility and this is the candidate replacement.
Screenshots or logs (if appropriate)
Questions: