Merged PR 142: v2.0.0

v2.0.0

Related work items: #901, #1523, #1574, #1594, #1595, #1597, #1623, #1626, #1629, #1631, #1632, #1635, #1637, #1638, #1639, #1640, #1641, #1647, #1648, #1650

.azure/.pypirc

@@ -3,4 +3,4 @@ Index-servers =
   PrimAITE
 
 [PrimAITE]
-Repository = https://pkgs.dev.azure.com/ma-dev-uk/PrimAITE/_packaging/PrimAITE/pypi/upload/
+Repository = https://pkgs.dev.azure.com/ma-dev-uk/PrimAITE/_packaging/PrimAITE/pypi/upload/

.azure/artifact-release-pipeline.yaml

@@ -15,16 +15,17 @@ steps:
   displayName: 'Use Python $(python.version)'
 
 - script: |
-    python -m pip install --upgrade pip
-    pip install build
-    pip install wheel
+    python -m pip install --upgrade pip==23.0.1
+    pip install wheel==0.38.4 --upgrade
+    pip install setuptools==66 --upgrade
+    pip install build==0.10.0
     pip install twine
     pip install keyring
     pip install artifacts-keyring
   displayName: 'Install build dependencies'
 
 - script: |
-    python setup.py sdist bdist_wheel
+    python -m build
   displayName: 'Build PrimAITE sdist and wheel'
 
 - task: TwineAuthenticate@1
@@ -33,5 +34,5 @@ steps:
     artifactFeed: PrimAITE/PrimAITE
 
 - script: |
-    python -m twine upload --verbose -r PrimAITE --config-file  $(PYPIRC_PATH) dist/*
+    python -m twine upload --verbose -r PrimAITE --config-file  $(PYPIRC_PATH) dist/*.whl
   displayName: 'Artifact Upload'

.azure/azure-build-deploy-docs-pipeline.yml

@@ -0,0 +1,49 @@
+name: Azure Static Web Apps CI/CD
+
+pr: none
+trigger:
+  branches:
+    include:
+      - dev
+
+jobs:
+- job: build_and_deploy_job
+  displayName: Build and Deploy Job
+  condition: or(eq(variables['Build.Reason'], 'Manual'),or(eq(variables['Build.Reason'], 'PullRequest'),eq(variables['Build.Reason'], 'IndividualCI')))
+  pool:
+    vmImage: ubuntu-latest
+  variables:
+  - group: Azure-Static-Web-Apps-nice-bay-0ad032c03-variable-group
+  steps:
+  - checkout: self
+    submodules: true
+
+  - script: |
+      python -m pip install --upgrade pip==23.0.1
+      pip install wheel==0.38.4 --upgrade
+      pip install setuptools==66 --upgrade
+      pip install build==0.10.0
+    displayName: 'Install build dependencies'
+
+  - script: |
+      pip install -e .[dev]
+    displayName: 'Install Yawning-Titan for docs autosummary'
+
+  - script: |
+      primaite setup
+    displayName: 'Perform PrimAITE Setup'
+
+  - script: |
+      cd docs
+      make html
+      cd ..
+      cd ..
+    displayName: 'Build Docs'
+
+  - task: AzureStaticWebApp@0
+    inputs:
+      azure_static_web_apps_api_token: $(AZURE_STATIC_WEB_APPS_API_TOKEN_NICE_BAY_0AD032C03)
+      app_location: "/docs/_build/html"
+      api_location: ""
+      output_location: "/"
+    displayName: 'Deploy Docs to nice-bay-0ad032c03'

.azure/azure-ci-build-pipeline.yaml

@@ -0,0 +1,90 @@
+trigger:
+- main
+- dev
+- feature/*
+- hotfix/*
+- bugfix/*
+- release/*
+
+parameters:
+  # https://stackoverflow.com/a/70046417
+  - name: matrix
+    type: object
+    default:
+    - job_name: 'UbuntuPython38'
+      py: '3.8'
+      img: 'ubuntu-latest'
+      every_time: false
+    - job_name: 'UbuntuPython310'
+      py: '3.10'
+      img: 'ubuntu-latest'
+      every_time: true
+    - job_name: 'WindowsPython38'
+      py: '3.8'
+      img: 'windows-latest'
+      every_time: false
+    - job_name: 'WindowsPython310'
+      py: '3.10'
+      img: 'windows-latest'
+      every_time: false
+    - job_name: 'MacOSPython38'
+      py: '3.8'
+      img: 'macOS-latest'
+      every_time: false
+    - job_name: 'MacOSPython310'
+      py: '3.10'
+      img: 'macOS-latest'
+      every_time: false
+
+stages:
+  - stage: Test
+    jobs:
+    - ${{ each item in parameters.matrix }}:
+      - job: ${{ item.job_name }}
+        pool:
+          vmImage: ${{ item.img }}
+
+        condition: or( eq(variables['Build.Reason'], 'PullRequest'), ${{ item.every_time }} )
+
+        steps:
+          - task: UsePythonVersion@0
+            inputs:
+              versionSpec: ${{ item.py }}
+            displayName: 'Use Python ${{ item.py }}'
+
+          - script: |
+              python -m pip install pre-commit
+              pre-commit install
+              pre-commit run --all-files
+            displayName: 'Run pre-commits'
+
+          - script: |
+              python -m pip install --upgrade pip==23.0.1
+              pip install wheel==0.38.4 --upgrade
+              pip install setuptools==66 --upgrade
+              pip install build==0.10.0
+              pip install pytest-azurepipelines
+            displayName: 'Install build dependencies'
+
+          - script: |
+              python -m build
+            displayName: 'Build PrimAITE'
+
+          - script: |
+              PRIMAITE_WHEEL=$(ls ./dist/primaite*.whl)
+              python -m pip install $PRIMAITE_WHEEL[dev]
+            displayName: 'Install PrimAITE'
+            condition: or(eq( variables['Agent.OS'], 'Linux' ), eq( variables['Agent.OS'], 'Darwin' ))
+
+          - script: |
+              forfiles /p dist\ /m *.whl /c "cmd /c python -m pip install @file[dev]"
+            displayName: 'Install PrimAITE'
+            condition: eq( variables['Agent.OS'], 'Windows_NT' )
+
+          - script: |
+              primaite setup
+            displayName: 'Perform PrimAITE Setup'
+
+          - script: |
+              pytest -n 4
+            displayName: 'Run tests'

.azuredevops/pull_request_template.md

@@ -0,0 +1,12 @@
+## Summary
+*Replace this text with an explanation of what the changes are and how you implemented them. Can this impact any other parts of the codebase that we should keep in mind?*
+
+## Test process
+*How have you tested this (if applicable)?*
+
+## Checklist
+- [ ] This PR is linked to a **work item**
+- [ ] I have performed **self-review** of the code
+- [ ] I have written **tests** for any new functionality added with this PR
+- [ ] I have updated the **documentation** if this PR changes or adds functionality
+- [ ] I have run **pre-commit** checks for code style

.flake8

@@ -0,0 +1,13 @@
+[flake8]
+max-line-length=120
+extend-ignore =
+    D105
+    D107
+    D100
+    D104
+    E203
+    E712
+    D401
+    F811
+exclude =
+    docs/source/*

.gitignore

@@ -1,8 +1,3 @@
-# PrimAITE Package
-PRIMAITE/outputs
-PRIMAITE/outputs/*
-TestResults
-
 # Byte-compiled / optimized / DLL files
 __pycache__/
 *.py[cod]
@@ -55,6 +50,9 @@ coverage.xml
 .hypothesis/
 .pytest_cache/
 cover/
+tests/assets/**/*.png
+tests/assets/**/tensorboard_logs/
+tests/assets/**/checkpoints/
 
 # Translations
 *.mo
@@ -75,6 +73,7 @@ instance/
 
 # Sphinx documentation
 docs/_build/
+docs/source/_autosummary
 
 # PyBuilder
 .pybuilder/
@@ -141,3 +140,13 @@ dmypy.json
 
 # Cython debug symbols
 cython_debug/
+
+# IDE
+.idea/
+docs/source/primaite-dependencies.rst
+
+# outputs
+src/primaite/outputs/
+
+# benchmark session outputs
+benchmark/output

.pre-commit-config.yaml

@@ -0,0 +1,29 @@
+repos:
+  - repo: http://github.com/pre-commit/pre-commit-hooks
+    rev: v4.4.0
+    hooks:
+      - id: check-yaml
+      - id: end-of-file-fixer
+      - id: trailing-whitespace
+      - id: check-added-large-files
+        args: ['--maxkb=1000']
+      - id: mixed-line-ending
+      - id: requirements-txt-fixer
+  - repo: http://github.com/psf/black
+    rev: 23.1.0
+    hooks:
+      - id: black
+        args: [ "--line-length=120" ]
+        additional_dependencies:
+          - jupyter
+  - repo: http://github.com/pycqa/isort
+    rev: 5.12.0
+    hooks:
+      - id: isort
+        args: [ "--profile", "black" ]
+  - repo: http://github.com/PyCQA/flake8
+    rev: 6.0.0
+    hooks:
+      - id: flake8
+        additional_dependencies:
+          - flake8-docstrings

CHANGELOG.md

@@ -0,0 +1,90 @@
+# Changelog
+
+All notable changes to this project will be documented in this file.
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
+and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+## [Unreleased]
+
+## [2.0.0] - 2023-07-26
+
+### Added
+- Command Line Interface (CLI) for easy access and streamlined usage of PrimAITE.
+- Application Directories to enable PrimAITE as a Python package with predefined directories for storage.
+- Support for Ray Rllib, allowing training of PPO and A2C agents using Stable Baselines3 and Ray RLlib.
+- Random Red Agent to train the blue agent against, with options for randomised Red Agent `POL` and `IER`.
+- Repeatability of sessions through seed settings, and deterministic or stochastic evaluation options.
+- Session loading to revisit previously run sessions for SB3 Agents.
+- Agent Session Classes (`AgentSessionABC` and `HardCodedAgentSessionABC`) to standardise agent training with a common interface.
+- Standardised Session Output in a structured format in the user's app sessions directory, providing four types of outputs:
+  1. Session Metadata
+  2. Results
+  3. Diagrams
+  4. Saved agents (training checkpoints and a final trained agent).
+- Configurable Observation Space managed by the `ObservationHandler` class for a more flexible observation space setup.
+- Benchmarking of PrimAITE performance, showcasing session and step durations for reference.
+- Documentation overhaul, including automatic API and test documentation with recursive Sphinx auto-summary, using the Furo theme for responsive light/dark theme, and enhanced navigation with `sphinx-code-tabs` and `sphinx-copybutton`.
+
+### Changed
+- Action Space updated to discrete spaces, introducing a new `ANY` action space option for combined `NODE` and `ACL` actions.
+- Improved `Node` attribute naming convention for consistency, now adhering to `Pascal Case`.
+- Package Structure has been refactored for better build, distribution, and installation, with all source code now in the `src/` directory, and the `PRIMAITE` Python package renamed to `primaite` to adhere to PEP-8 Package & Module Names.
+- Docs and Tests now sit outside the `src/` directory.
+- Non-python files (example config files, Jupyter notebooks, etc.) now sit inside a `*/_package_data/` directory in their respective sub-packages.
+- All dependencies are now defined in the `pyproject.toml` file.
+- Introduced individual configuration for the number of episodes and time steps for training and evaluation sessions, with separate config values for each.
+- Decoupled the lay down config file from the training config, allowing more flexibility in configuration management.
+- Updated `Transactions` to only report pre-action observation, improving the CSV header and providing more human-readable descriptions for columns relating to observations.
+- Changes to `AccessControlList`, where the `acl` dictionary is now a list to accommodate changes to ACL action space and positioning of `ACLRules` inside the list to signal their level of priority.
+
+
+### Fixed
+- Various bug fixes, including Green IERs separation, correct clearing of links in the reference environment, and proper reward calculation.
+- Logic to check if a node is OFF before executing actions on the node by the blue agent, preventing erroneous state changes.
+- Improved functionality of Resetting a Node, adding "SHUTTING DOWN" and "BOOTING" operating states for more reliable reset commands.
+- Corrected the order of actions in the `Primaite` env to ensure the blue agent uses the current state for decision-making.
+
+## [1.1.1] - 2023-06-27
+
+### Bug Fixes
+* Fixed bug whereby 'reference' environment links reach bandwidth capacity and are never cleared due to green & red IERs being applied to them. This bug had a knock-on effect that meant IERs were being blocked based on the full capacity of links on the reference environment which was not correct; they should only be based on the link capacity of the 'live' environment. This fix has been addressed by:
+  * Implementing a reference copy of all green IERs (`self.green_iers_reference`).
+  * Clearing the traffic on reference IERs at the same time as the live IERs.
+  * Passing the `green_iers_reference` to the `apply_iers` function at the reference stage.
+  * Passing the `green_iers_reference` as an additional argument to `calculate_reward_function`.
+  * Updating the green IERs section of the `calculate_reward_function` to now take into account both the green reference IERs and live IERs. The `green_ier_blocked` reward is only applied if the IER is blocked in the live environment but is running in the reference environment.
+  * Re-ordering the actions taken as part of the step function to ensure the blue action happens first before other changes.
+  * Removing the unnecessary "Reapply PoL and IERs" action from the step function.
+  * Moving the deep-copy of nodes and links to below the "Implement blue action" stage of the step function.
+
+## [1.1.0] - 2023-03-13
+
+### Added
+* The user can now initiate either a TRAINING session or an EVALUATION (test) session with the Stable Baselines 3 (SB3) agents via the config_main.yaml file. During evaluation/testing, the agent policy will be fixed (no longer learning) and subjected to the SB3 `evaluate_policy()` function.
+* The user can choose whether a saved agent is loaded into the session (with reference to a URL) via the `config_main.yaml` file. They specify a Boolean true/false indicating whether a saved agent should be loaded, and specify the URL and file name.
+* Active and Service nodes now possess a new "File System State" attribute. This attribute is permitted to have the states GOOD, CORRUPT, DESTROYED, REPAIRING, and RESTORING. This new feature affects the following components:
+  * Blue agent observation space;
+  * Blue agent action space;
+  * Reward function;
+  * Node pattern-of-life.
+* The Red Agent node pattern-of-life has been enhanced so that node PoL is triggered by an 'initiator'. The initiator is either DIRECT (state change is applied to the node without any conditions), IER (state change is applied to the node based on IER entry condition), or SERVICE (state change is applied to the node based on a service state condition on the same node or a different node within the network).
+* New default config named "config_5_DATA_MANIPULATION.yaml" and associated Training Use Case Profile.
+* NodeStateInstruction has been split into `NodeStateInstructionGreen` and `NodeStateInstructionRed` to reflect the changes within the red agent pattern-of-life capability.
+* The reward function has been enhanced so that node attribute states of resetting, patching, repairing, and restarting contribute to the overall reward value.
+* The User Guide has been updated to reflect all the above changes.
+
+### Changed
+* "config_1_DDOS_BASIC.yaml" modified to make it more simplistic to aid evaluation testing.
+* "config_2_DDOS_BASIC.yaml" updated to reflect the addition of the File System State and the Red Agent node pattern-of-life enhancement.
+* "config_3_DOS_VERY_BASIC.yaml" updated to reflect the addition of the File System State and the Red Agent node pattern-of-life enhancement.
+* "config_UNIT_TEST.yaml" is a copy of the new "config_5_DATA_MANIPULATION.yaml" file.
+* Updates to Transactions.
+
+### Fixed
+* Fixed "config_2_DDOS_BASIC.yaml" by adding another ACL rule to allow traffic to flow from Node 9 to Node 3. Previously, there was no rule, so one of the green IERs could not flow by default.
+
+
+
+[unreleased]: https://github.com/Autonomous-Resilient-Cyber-Defence/PrimAITE/compare/v2.0.0...HEAD
+[2.0.0]: https://github.com/Autonomous-Resilient-Cyber-Defence/PrimAITE/releases/tag/v2.0.0

LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2023 - 2025 Defence Science and Technology Laboratory UK (https://dstl.gov.uk)
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

MANIFEST.in

@@ -0,0 +1,2 @@
+include src/primaite/setup/_package_data/primaite_config.yaml
+include src/primaite/config/_package_data/*.yaml

PRIMAITE/Main.py

@@ -1,312 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-PRIMAITE - main (harness) module
-
-Coding Standards: PEP 8
-"""
-
-from sys import exc_info
-import time
-import yaml
-import os.path
-import logging
-from datetime import datetime
-
-from environment.primaite import PRIMAITE
-from transactions.transactions_to_file import write_transaction_to_file
-from common.config_values_main import config_values_main
-
-from stable_baselines3 import PPO
-from stable_baselines3.ppo import MlpPolicy as PPOMlp
-from stable_baselines3 import A2C
-from stable_baselines3.common.env_checker import check_env
-from stable_baselines3.common.evaluation import evaluate_policy
-
-################################# FUNCTIONS ######################################
-
-def run_generic():
-    """
-    Run against a generic agent
-    """
-
-    for episode in range(0, config_values.num_episodes):
-        for step in range(0, config_values.num_steps):
-
-            # Send the observation space to the agent to get an action
-            # TEMP - random action for now
-            # action = env.blue_agent_action(obs)
-            action = env.action_space.sample()
-
-            # Run the simulation step on the live environment
-            obs, reward, done, info = env.step(action)
-
-            # Break if done is True
-            if done:
-                break
-
-            # Introduce a delay between steps
-            time.sleep(config_values.time_delay / 1000)
-
-        # Reset the environment at the end of the episode
-        env.reset()
-
-    env.close()
-
-
-def run_stable_baselines3_ppo():
-    """
-    Run against a stable_baselines3 PPO agent
-    """ 
-
-    if config_values.load_agent == True:
-        try:
-            agent = PPO.load(config_values.agent_load_file, env, verbose=0, n_steps=config_values.num_steps)
-        except:
-            print("ERROR: Could not load agent at location: " + config_values.agent_load_file)
-            logging.error("Could not load agent")
-            logging.error("Exception occured", exc_info=True)
-    else:
-        agent = PPO(PPOMlp, env, verbose=0, n_steps=config_values.num_steps)
-
-    if config_values.session_type == "TRAINING":
-        # We're in a training session
-        print("Starting training session...")
-        logging.info("Starting training session...")
-        for episode in range(0, config_values.num_episodes):
-            agent.learn(total_timesteps=1)     
-        save_agent(agent)
-    else:
-        # Default to being in an evaluation session
-        print("Starting evaluation session...")
-        logging.info("Starting evaluation session...")
-        evaluate_policy(agent, env, n_eval_episodes=config_values.num_episodes)
-
-    env.close()
-
-def run_stable_baselines3_a2c():
-    """
-    Run against a stable_baselines3 A2C agent
-    """
-
-    if config_values.load_agent == True:
-        try:
-            agent = A2C.load(config_values.agent_load_file, env, verbose=0, n_steps=config_values.num_steps)
-        except:
-            print("ERROR: Could not load agent at location: " + config_values.agent_load_file)
-            logging.error("Could not load agent")
-            logging.error("Exception occured", exc_info=True)
-    else:
-        agent = A2C("MlpPolicy", env, verbose=0, n_steps=config_values.num_steps)
-
-    if config_values.session_type == "TRAINING":
-        # We're in a training session
-        print("Starting training session...")
-        logging.info("Starting training session...")
-        for episode in range(0, config_values.num_episodes):
-            agent.learn(total_timesteps=1)     
-        save_agent(agent)
-    else:
-        # Default to being in an evaluation session
-        print("Starting evaluation session...")
-        logging.info("Starting evaluation session...")
-        evaluate_policy(agent, env, n_eval_episodes=config_values.num_episodes)   
-
-    env.close()
-
-def save_agent(_agent):
-    """
-    Persist an agent (only works for stable baselines3 agents at present)
-    """
-
-    now = datetime.now() # current date and time
-    time = now.strftime("%Y%m%d_%H%M%S")
-
-    try:
-        path = 'outputs/agents/'
-        is_dir = os.path.isdir(path)
-        if not is_dir:
-            os.makedirs(path)
-        filename = "outputs/agents/agent_saved_" + time
-        _agent.save(filename)
-        logging.info("Trained agent saved as " + filename)
-    except Exception as e:
-        logging.error("Could not save agent")
-        logging.error("Exception occured", exc_info=True)
-
-def configure_logging():
-    """
-    Configures logging
-    """
-
-    try:
-        now = datetime.now() # current date and time
-        time = now.strftime("%Y%m%d_%H%M%S")
-        filename = "logs/app_" + time + ".log"
-        path = 'logs/'
-        is_dir = os.path.isdir(path)
-        if not is_dir:
-            os.makedirs(path)
-        logging.basicConfig(filename=filename, filemode='w', format='%(asctime)s - %(levelname)s - %(message)s', datefmt='%d-%b-%y %H:%M:%S', level=logging.INFO)
-    except:
-        print("ERROR: Could not start logging")
-
-def load_config_values():
-    """
-    Loads the config values from the main config file into a config object
-    """
-
-    try:
-        # Generic
-        config_values.agent_identifier = config_data['agentIdentifier']           
-        config_values.num_episodes = int(config_data['numEpisodes'])                                
-        config_values.time_delay = int(config_data['timeDelay'])                  
-        config_values.config_filename_use_case = config_data['configFilename']   
-        config_values.session_type = config_data['sessionType']
-        config_values.load_agent = bool(config_data['loadAgent'])
-        config_values.agent_load_file = config_data['agentLoadFile']
-        # Environment
-        config_values.observation_space_high_value = int(config_data['observationSpaceHighValue'])
-        # Reward values
-        # Generic
-        config_values.all_ok = int(config_data['allOk']) 
-        # Node Operating State
-        config_values.off_should_be_on = int(config_data['offShouldBeOn'])
-        config_values.off_should_be_resetting = int(config_data['offShouldBeResetting'])
-        config_values.on_should_be_off = int(config_data['onShouldBeOff'])
-        config_values.on_should_be_resetting = int(config_data['onShouldBeResetting'])
-        config_values.resetting_should_be_on = int(config_data['resettingShouldBeOn'])
-        config_values.resetting_should_be_off = int(config_data['resettingShouldBeOff']) 
-        config_values.resetting = int(config_data['resetting'])
-        # Node O/S or Service State
-        config_values.good_should_be_patching = int(config_data['goodShouldBePatching'])
-        config_values.good_should_be_compromised = int(config_data['goodShouldBeCompromised'])
-        config_values.good_should_be_overwhelmed = int(config_data['goodShouldBeOverwhelmed'])
-        config_values.patching_should_be_good = int(config_data['patchingShouldBeGood'])
-        config_values.patching_should_be_compromised = int(config_data['patchingShouldBeCompromised'])
-        config_values.patching_should_be_overwhelmed = int(config_data['patchingShouldBeOverwhelmed'])
-        config_values.patching = int(config_data['patching'])
-        config_values.compromised_should_be_good = int(config_data['compromisedShouldBeGood'])
-        config_values.compromised_should_be_patching = int(config_data['compromisedShouldBePatching'])
-        config_values.compromised_should_be_overwhelmed = int(config_data['compromisedShouldBeOverwhelmed'])
-        config_values.compromised = int(config_data['compromised'])     
-        config_values.overwhelmed_should_be_good = int(config_data['overwhelmedShouldBeGood'])
-        config_values.overwhelmed_should_be_patching = int(config_data['overwhelmedShouldBePatching'])
-        config_values.overwhelmed_should_be_compromised = int(config_data['overwhelmedShouldBeCompromised'])
-        config_values.overwhelmed = int(config_data['overwhelmed'])
-        # Node File System State
-        config_values.good_should_be_repairing = int(config_data['goodShouldBeRepairing'])
-        config_values.good_should_be_restoring = int(config_data['goodShouldBeRestoring'])
-        config_values.good_should_be_corrupt = int(config_data['goodShouldBeCorrupt'])
-        config_values.good_should_be_destroyed = int(config_data['goodShouldBeDestroyed'])
-        config_values.repairing_should_be_good = int(config_data['repairingShouldBeGood'])
-        config_values.repairing_should_be_restoring = int(config_data['repairingShouldBeRestoring'])
-        config_values.repairing_should_be_corrupt = int(config_data['repairingShouldBeCorrupt'])
-        config_values.repairing_should_be_destroyed = int(config_data['repairingShouldBeDestroyed'])   
-        config_values.repairing = int(config_data['repairing'])
-        config_values.restoring_should_be_good = int(config_data['restoringShouldBeGood'])
-        config_values.restoring_should_be_repairing = int(config_data['restoringShouldBeRepairing'])
-        config_values.restoring_should_be_corrupt = int(config_data['restoringShouldBeCorrupt'])     
-        config_values.restoring_should_be_destroyed = int(config_data['restoringShouldBeDestroyed'])
-        config_values.restoring = int(config_data['restoring'])
-        config_values.corrupt_should_be_good = int(config_data['corruptShouldBeGood'])
-        config_values.corrupt_should_be_repairing = int(config_data['corruptShouldBeRepairing'])
-        config_values.corrupt_should_be_restoring = int(config_data['corruptShouldBeRestoring'])
-        config_values.corrupt_should_be_destroyed = int(config_data['corruptShouldBeDestroyed'])
-        config_values.corrupt = int(config_data['corrupt'])
-        config_values.destroyed_should_be_good = int(config_data['destroyedShouldBeGood'])
-        config_values.destroyed_should_be_repairing = int(config_data['destroyedShouldBeRepairing'])
-        config_values.destroyed_should_be_restoring = int(config_data['destroyedShouldBeRestoring'])
-        config_values.destroyed_should_be_corrupt = int(config_data['destroyedShouldBeCorrupt'])
-        config_values.destroyed = int(config_data['destroyed'])
-        config_values.scanning = int(config_data['scanning'])
-        # IER status
-        config_values.red_ier_running = int(config_data['redIerRunning'])
-        config_values.green_ier_blocked = int(config_data['greenIerBlocked'])
-        # Patching / Reset durations
-        config_values.os_patching_duration = int(config_data['osPatchingDuration'])                         
-        config_values.node_reset_duration = int(config_data['nodeResetDuration'])                           
-        config_values.service_patching_duration = int(config_data['servicePatchingDuration']) 
-        config_values.file_system_repairing_limit = int(config_data['fileSystemRepairingLimit']) 
-        config_values.file_system_restoring_limit = int(config_data['fileSystemRestoringLimit']) 
-        config_values.file_system_scanning_limit = int(config_data['fileSystemScanningLimit']) 
-        
-        logging.info("Training agent: " + config_values.agent_identifier)
-        logging.info("Training environment config: " + config_values.config_filename_use_case)
-        logging.info("Training cycle has " + str(config_values.num_episodes) + " episodes")
-
-    except Exception as e:
-        logging.error("Could not save load config data")
-        logging.error("Exception occured", exc_info=True)
-
-
-################################# MAIN PROCESS ############################################
-
-# Starting point
-
-# Welcome message
-print("Welcome to the Primary-level AI Training Environment (PrimAITE)")
-
-# Configure logging
-configure_logging()
-
-# Open the main config file
-try:
-    config_file_main = open("config/config_main.yaml", "r")
-    config_data = yaml.safe_load(config_file_main)
-    # Create a config class
-    config_values = config_values_main()
-    # Load in config data
-    load_config_values()
-except Exception as e:
-    logging.error("Could not load main config")
-    logging.error("Exception occured", exc_info=True)
-
-# Create a list of transactions
-# A transaction is an object holding the: 
-# - episode # 
-# - step # 
-# - initial observation space
-# - action
-# - reward
-# - new observation space  
-transaction_list = []
-
-# Create the PRIMAITE environment
-try:
-    env = PRIMAITE(config_values, transaction_list)
-    logging.info("PrimAITE environment created")
-except Exception as e:
-    logging.error("Could not create PrimAITE environment")
-    logging.error("Exception occured", exc_info=True)
-
-# Get the number of steps (which is stored in the child config file)
-config_values.num_steps = env.episode_steps
-
-# Run environment against an agent
-if config_values.agent_identifier == "GENERIC":
-    run_generic()
-elif config_values.agent_identifier == "STABLE_BASELINES3_PPO":
-    run_stable_baselines3_ppo()
-elif config_values.agent_identifier == "STABLE_BASELINES3_A2C":
-    run_stable_baselines3_a2c()
-
-print("Session finished")
-logging.info("Session finished")
-
-print("Saving transaction logs...")
-logging.info("Saving transaction logs...")
-
-write_transaction_to_file(transaction_list)
-
-config_file_main.close
-
-print("Finished")
-logging.info("Finished")
-
-
-
-
-
-
-
-

PRIMAITE/acl/__init__.py

@@ -1 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.

PRIMAITE/acl/access_control_list.py

@@ -1,134 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-A class that implements the access control list implementation for the network
-"""
-
-from acl.acl_rule import ACLRule
-
-class AccessControlList():
-    """
-    Access Control List class
-    """
-
-    def __init__(self):
-        """
-        Init
-        """
-
-        self.acl = {}       # A dictionary of ACL Rules
-    
-    def check_address_match(self, _rule, _source_ip_address, _dest_ip_address):
-        """
-        Checks for IP address matches
-
-        Args:
-            _rule: The rule being checked
-            _source_ip_address: the source IP address to compare
-            _dest_ip_address: the destination IP address to compare
-
-        Returns:
-             True if match; False otherwise.
-        """
-
-        if ((_rule.get_source_ip() == _source_ip_address and _rule.get_dest_ip() == _dest_ip_address) or
-            (_rule.get_source_ip() == "ANY" and _rule.get_dest_ip() == _dest_ip_address) or
-            (_rule.get_source_ip() == _source_ip_address and _rule.get_dest_ip() == "ANY") or
-            (_rule.get_source_ip() == "ANY" and _rule.get_dest_ip() == "ANY")):
-            return True
-        else:
-            return False
-
-    def is_blocked(self, _source_ip_address, _dest_ip_address, _protocol, _port):
-        """
-        Checks for rules that block a protocol / port
-
-        Args:
-            _source_ip_address: the source IP address to check
-            _dest_ip_address: the destination IP address to check
-            _protocol: the protocol to check
-            _port: the port to check
-
-        Returns:
-             Indicates block if all conditions are satisfied.
-        """
-        
-        for rule_key, rule_value in self.acl.items():
-            if self.check_address_match(rule_value, _source_ip_address, _dest_ip_address):
-                if ((rule_value.get_protocol() == _protocol or rule_value.get_protocol() == "ANY") and
-                    (str(rule_value.get_port()) == str(_port) or rule_value.get_port() == "ANY")):
-                    # There's a matching rule. Get the permission
-                    if rule_value.get_permission() == "DENY":
-                        return True
-                    elif rule_value.get_permission() == "ALLOW":
-                        return False
-
-        # If there has been no rule to allow the IER through, it will return a blocked signal by default
-        return True
-
-    def add_rule(self, _permission, _source_ip, _dest_ip, _protocol, _port):
-        """
-        Adds a new rule
-
-        Args:
-            _permission: the permission value (e.g. "ALLOW" or "DENY")
-            _source_ip: the source IP address
-            _dest_ip: the destination IP address
-            _protocol: the protocol
-            _port: the port
-        """
-
-        new_rule = ACLRule(_permission, _source_ip, _dest_ip, _protocol, str(_port))
-        hash_value = hash(new_rule)
-        self.acl[hash_value] = new_rule
-
-    def remove_rule(self, _permission, _source_ip, _dest_ip, _protocol, _port):
-        """
-        Removes a rule
-
-        Args:
-            _permission: the permission value (e.g. "ALLOW" or "DENY")
-            _source_ip: the source IP address
-            _dest_ip: the destination IP address
-            _protocol: the protocol
-            _port: the port
-        """
-
-        rule = ACLRule(_permission, _source_ip, _dest_ip, _protocol, str(_port))
-        hash_value = hash(rule)
-        # There will not always be something 'popable' since the agent will be trying random things
-        try:
-            self.acl.pop(hash_value)
-        except:
-            return
-
-    def remove_all_rules(self):
-        """
-        Removes all rules
-        """
-
-        self.acl.clear()
-
-    def get_dictionary_hash(self, _permission, _source_ip, _dest_ip, _protocol, _port):
-        """
-        Produces a hash value for a rule
-
-        Args:
-            _permission: the permission value (e.g. "ALLOW" or "DENY")
-            _source_ip: the source IP address
-            _dest_ip: the destination IP address
-            _protocol: the protocol
-            _port: the port
-
-        Returns:
-             Hash value based on rule parameters.
-        """
-
-        rule = ACLRule(_permission, _source_ip, _dest_ip, _protocol, str(_port))
-        hash_value = hash(rule)
-        return hash_value
-
-
-
-
-
-

PRIMAITE/acl/acl_rule.py

@@ -1,88 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-A class that implements an access control list rule
-"""
-
-class ACLRule():
-    """
-    Access Control List Rule class
-    """
-
-    def __init__(self, _permission, _source_ip, _dest_ip, _protocol, _port):
-        """
-        Init
-
-        Args:
-            _permission: The permission (ALLOW or DENY)
-            _source_ip: The source IP address
-            _dest_ip: The destination IP address
-            _protocol: The rule protocol
-            _port: The rule port
-        """
-
-        self.permission = _permission
-        self.source_ip = _source_ip
-        self.dest_ip = _dest_ip
-        self.protocol = _protocol
-        self.port = _port
-
-    def __hash__(self):
-        """
-        Override the hash function
-
-        Returns:
-             Returns hash of core parameters.
-        """
-
-        return hash((self.permission, self.source_ip, self.dest_ip, self.protocol, self.port))
-
-    def get_permission(self):
-        """
-        Gets the permission attribute
-
-        Returns:
-             Returns permission attribute
-        """
-
-        return self.permission
-
-    def get_source_ip(self):
-        """
-        Gets the source IP address attribute
-
-        Returns:
-             Returns source IP address attribute
-        """
-
-        return self.source_ip
-
-    def get_dest_ip(self):
-        """
-        Gets the desintation IP address attribute
-
-        Returns:
-             Returns destination IP address attribute
-        """
-
-        return self.dest_ip
-
-    def get_protocol(self):
-        """
-        Gets the protocol attribute
-
-        Returns:
-             Returns protocol attribute
-        """
-        return self.protocol
-
-    def get_port(self):
-        """
-        Gets the port attribute
-
-        Returns:
-             Returns port attribute
-        """
-
-        return self.port
-        
-

PRIMAITE/common/__init__.py

@@ -1,2 +0,0 @@
-
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.

PRIMAITE/common/config_values_main.py

@@ -1,91 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-The config class
-"""
-
-class config_values_main(object):
-    """
-    Class to hold main config values
-    """
-
-    def __init__(self):
-        """
-        Init
-        """
-
-        # Generic
-        self.agent_identifier = ""                  # the agent in use
-        self.num_episodes = 0                       # number of episodes to train over
-        self.num_steps = 0                          # number of steps in an episode
-        self.time_delay = 0                         # delay between steps (ms) - applies to generic agents only
-        self.config_filename_use_case = ""          # the filename for the Use Case config file
-        self.session_type = ""                      # the session type to run (TRAINING or EVALUATION)
-
-        # Environment
-        self.observation_space_high_value = 0       # The high value for the observation space
-
-        # Reward values
-        # Generic
-        self.all_ok = 0 
-        # Node Operating State
-        self.off_should_be_on = 0
-        self.off_should_be_resetting = 0
-        self.on_should_be_off = 0
-        self.on_should_be_resetting = 0
-        self.resetting_should_be_on = 0
-        self.resetting_should_be_off = 0 
-        self.resetting = 0
-        # Node O/S or Service State
-        self.good_should_be_patching = 0
-        self.good_should_be_compromised = 0
-        self.good_should_be_overwhelmed = 0
-        self.patching_should_be_good = 0
-        self.patching_should_be_compromised = 0
-        self.patching_should_be_overwhelmed = 0
-        self.patching = 0
-        self.compromised_should_be_good = 0
-        self.compromised_should_be_patching = 0
-        self.compromised_should_be_overwhelmed = 0
-        self.compromised = 0     
-        self.overwhelmed_should_be_good = 0
-        self.overwhelmed_should_be_patching = 0
-        self.overwhelmed_should_be_compromised = 0
-        self.overwhelmed = 0
-        # Node File System State
-        self.good_should_be_repairing = 0
-        self.good_should_be_restoring = 0
-        self.good_should_be_corrupt = 0
-        self.good_should_be_destroyed = 0
-        self.repairing_should_be_good = 0
-        self.repairing_should_be_restoring = 0
-        self.repairing_should_be_corrupt = 0
-        self.repairing_should_be_destroyed = 0   # Repairing does not fix destroyed state - you need to restore
-        self.repairing = 0
-        self.restoring_should_be_good = 0
-        self.restoring_should_be_repairing = 0
-        self.restoring_should_be_corrupt = 0     # Not the optimal method (as repair will fix corruption)
-        self.restoring_should_be_destroyed = 0
-        self.restoring = 0
-        self.corrupt_should_be_good = 0
-        self.corrupt_should_be_repairing = 0
-        self.corrupt_should_be_restoring = 0
-        self.corrupt_should_be_destroyed = 0
-        self.corrupt = 0
-        self.destroyed_should_be_good = 0
-        self.destroyed_should_be_repairing = 0
-        self.destroyed_should_be_restoring = 0
-        self.destroyed_should_be_corrupt = 0
-        self.destroyed = 0
-        self.scanning = 0
-        # IER status
-        self.red_ier_running = 0
-        self.green_ier_blocked = 0
-
-        # Patching / Reset
-        self.os_patching_duration = 0                         # The time taken to patch the OS
-        self.node_reset_duration = 0                          # The time taken to reset a node (hardware)
-        self.service_patching_duration = 0                    # The time taken to patch a service   
-        self.file_system_repairing_limit = 0				  # The time take to repair a file
-        self.file_system_restoring_limit = 0				  # The time take to restore a file
-        self.file_system_scanning_limit = 0                   # The time taken to scan the file system
-

PRIMAITE/common/enums.py

@@ -1,104 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-Enumerations for APE
-"""
-
-from enum import Enum
-
-class TYPE(Enum):
-    """
-    Node type enumeration
-    """
-
-    CCTV = 1
-    SWITCH = 2
-    COMPUTER = 3
-    LINK = 4
-    MONITOR = 5
-    PRINTER = 6
-    LOP = 7
-    RTU = 8
-    ACTUATOR = 9
-    SERVER = 10
-
-class PRIORITY(Enum):
-    """
-    Node priority enumeration
-    """
-
-    P1 = 1
-    P2 = 2
-    P3 = 3
-    P4 = 4
-    P5 = 5
-
-class HARDWARE_STATE(Enum):
-    """
-    Node hardware state enumeration
-    """
-
-    ON = 1
-    OFF = 2
-    RESETTING = 3
-
-class SOFTWARE_STATE(Enum):
-    """
-    O/S or Service state enumeration
-    """
-
-    GOOD = 1
-    PATCHING = 2
-    COMPROMISED = 3
-    OVERWHELMED = 4
-
-class NODE_POL_TYPE(Enum):
-    """
-    Node Pattern of Life type enumeration
-    """
-
-    OPERATING = 1
-    OS = 2
-    SERVICE = 3
-    FILE = 4
-
-class NODE_POL_INITIATOR(Enum):
-    """
-    Node Pattern of Life initiator enumeration
-    """
-
-    DIRECT = 1
-    IER = 2
-    SERVICE = 3
-
-class PROTOCOL(Enum):
-    """
-    Service protocol enumeration
-    """
-
-    LDAP = 0
-    FTP = 1
-    HTTPS = 2
-    SMTP = 3
-    RTP = 4
-    IPP = 5
-    TCP = 6
-    NONE = 7
-
-class ACTION_TYPE(Enum):
-    """
-    Action type enumeration
-    """
-
-    NODE = 0
-    ACL = 1
-
-class FILE_SYSTEM_STATE(Enum):
-    """
-    File System State
-    """
-
-    GOOD = 1
-    CORRUPT = 2
-    DESTROYED = 3
-    REPAIRING = 4
-    RESTORING = 5

PRIMAITE/common/protocol.py

@@ -1,59 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-The protocol class
-"""
-
-class Protocol(object):
-    """
-    Protocol class
-    """
-
-    def __init__(self, _name):
-        """
-        Init
-
-        Args:
-            _name: The protocol name
-        """
-
-        self.name = _name
-        self.load = 0       # bps
-
-    def get_name(self):
-        """
-        Gets the protocol name
-
-        Returns:
-             The protocol name
-        """
-
-        return self.name
-
-    def get_load(self):
-        """
-        Gets the protocol load
-
-        Returns:
-             The protocol load (bps)
-        """
-
-        return self.load
-
-    def add_load(self, _load):
-        """
-        Adds load to the protocol
-
-        Args:
-            _load: The load to add
-        """
-
-        self.load += _load
-
-    def clear_load(self):
-        """
-        Clears the load on this protocol
-        """
-
-        self.load = 0
-
-

PRIMAITE/common/service.py

@@ -1,100 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-The Service class
-"""
-
-from common.enums import SOFTWARE_STATE
-
-class Service(object):
-    """
-    Service class
-    """
-
-    def __init__(self, _name, _port, _state):
-        """
-        Init
-
-        Args:
-            _name: The service name
-            _port: The service port
-            _state: The service state
-        """
-
-        self.name = _name
-        self.port = _port
-        self.state = _state
-        self.patching_count = 0
-
-    def set_name(self, _name):
-        """
-        Sets the service name
-
-        Args:
-            _name: The service name
-        """
-
-        self.name = _name
-
-    def get_name(self):
-        """
-        Gets the service name
-
-        Returns:
-             The service name
-        """
-
-        return self.name
-
-    def set_port(self, _port):
-        """
-        Sets the service port
-
-        Args:
-            _port: The service port
-        """
-
-        self.port = _port
-
-    def get_port(self):
-        """
-        Gets the service port
-
-        Returns:
-             The service port
-        """
-
-        return self.port
-
-    def set_state(self, _state):
-        """
-        Sets the service state
-
-        Args:
-            _state: The service state
-        """
-
-        self.state = _state
-
-    def get_state(self):
-        """
-        Gets the service state
-
-        Returns:
-             The service state
-        """
-
-        return self.state
-
-    def reduce_patching_count(self):
-        """
-        Reduces the patching count for the service
-        """
-
-        self.patching_count -= 1
-        if self.patching_count <= 0:
-            self.patching_count = 0
-            self.state = SOFTWARE_STATE.GOOD
-
-
-
-

PRIMAITE/config/config_1_DDOS_BASIC.yaml

@@ -1,169 +0,0 @@
-- itemType: ACTIONS
-  type: NODE
-- itemType: STEPS
-  steps: 128
-- itemType: PORTS
-  portsList:
-  - port: '80'
-- itemType: SERVICES
-  serviceList:
-  - name: TCP
-- itemType: NODE
-  id: '1'
-  name: PC1
-  baseType: SERVICE
-  nodeType: COMPUTER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.1.2
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-- itemType: NODE
-  id: '2'
-  name: SERVER
-  baseType: SERVICE
-  nodeType: SERVER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.1.3
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-- itemType: NODE
-  id: '3'
-  name: PC2
-  baseType: SERVICE
-  nodeType: COMPUTER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.1.4
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-- itemType: NODE
-  id: '4'
-  name: SWITCH1
-  baseType: ACTIVE
-  nodeType: SWITCH
-  priority: P2
-  hardwareState: 'ON'
-  ipAddress: 192.168.1.5
-  softwareState: GOOD
-  fileSystemState: GOOD
-- itemType: NODE
-  id: '5'
-  name: SWITCH2
-  baseType: ACTIVE
-  nodeType: SWITCH
-  priority: P2
-  hardwareState: 'ON'
-  ipAddress: 192.168.1.6
-  softwareState: GOOD
-  fileSystemState: GOOD
-- itemType: NODE
-  id: '6'
-  name: SWITCH3
-  baseType: ACTIVE
-  nodeType: SWITCH
-  priority: P2
-  hardwareState: 'ON'
-  ipAddress: 192.168.1.7
-  softwareState: GOOD
-  fileSystemState: GOOD
-- itemType: LINK
-  id: '7'
-  name: link1
-  bandwidth: 1000000000
-  source: '1'
-  destination: '4'
-- itemType: LINK
-  id: '8'
-  name: link2
-  bandwidth: 1000000000
-  source: '4'
-  destination: '2'
-- itemType: LINK
-  id: '9'
-  name: link3
-  bandwidth: 1000000000
-  source: '2'
-  destination: '5'
-- itemType: LINK
-  id: '10'
-  name: link4
-  bandwidth: 1000000000
-  source: '2'
-  destination: '6'
-- itemType: LINK
-  id: '11'
-  name: link5
-  bandwidth: 1000000000
-  source: '5'
-  destination: '3'
-- itemType: LINK
-  id: '12'
-  name: link6
-  bandwidth: 1000000000
-  source: '6'
-  destination: '3'
-- itemType: GREEN_IER
-  id: '13'
-  startStep: 1
-  endStep: 128
-  load: 100000
-  protocol: TCP
-  port: '80'
-  source: '3'
-  destination: '2'
-  missionCriticality: 5
-- itemType: RED_POL
-  id: '14'
-  startStep: 50
-  endStep: 50
-  targetNodeId: '1'
-  initiator: DIRECT
-  type: SERVICE
-  protocol: TCP
-  state: COMPROMISED
-  sourceNodeId: NA
-  sourceNodeService: NA
-  sourceNodeServiceState: NA
-- itemType: RED_IER
-  id: '15'
-  startStep: 60
-  endStep: 100
-  load: 1000000
-  protocol: TCP
-  port: '80'
-  source: '1'
-  destination: '2'
-  missionCriticality: 0
-- itemType: RED_POL
-  id: '16'
-  startStep: 80
-  endStep: 80
-  targetNodeId: '2'
-  initiator: IER
-  type: SERVICE
-  protocol: TCP
-  state: COMPROMISED
-  sourceNodeId: NA
-  sourceNodeService: NA
-  sourceNodeServiceState: NA
-- itemType: ACL_RULE
-  id: '17'
-  permission: ALLOW
-  source: ANY
-  destination: ANY
-  protocol: ANY
-  port: ANY

PRIMAITE/config/config_2_DDOS_BASIC.yaml

@@ -1,361 +0,0 @@
-- itemType: ACTIONS
-  type: NODE
-- itemType: STEPS
-  steps: 128
-- itemType: PORTS
-  portsList:
-  - port: '80'
-- itemType: SERVICES
-  serviceList:
-  - name: TCP
-- itemType: NODE
-  id: '1'
-  name: PC1
-  baseType: SERVICE
-  nodeType: COMPUTER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.10.11
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-- itemType: NODE
-  id: '2'
-  name: PC2
-  baseType: SERVICE
-  nodeType: COMPUTER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.10.12
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-- itemType: NODE
-  id: '3'
-  name: PC3
-  baseType: SERVICE
-  nodeType: COMPUTER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.10.13
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-- itemType: NODE
-  id: '4'
-  name: PC4
-  baseType: SERVICE
-  nodeType: COMPUTER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.20.14
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-- itemType: NODE
-  id: '5'
-  name: SWITCH1
-  baseType: ACTIVE
-  nodeType: SWITCH
-  priority: P2
-  hardwareState: 'ON'
-  ipAddress: 192.168.1.2
-  softwareState: GOOD
-  fileSystemState: GOOD
-- itemType: NODE
-  id: '6'
-  name: IDS
-  baseType: SERVICE
-  nodeType: SERVER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.1.4
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-- itemType: NODE
-  id: '7'
-  name: SWITCH2
-  baseType: ACTIVE
-  nodeType: SWITCH
-  priority: P2
-  hardwareState: 'ON'
-  ipAddress: 192.168.1.3
-  softwareState: GOOD
-  fileSystemState: GOOD
-- itemType: NODE
-  id: '8'
-  name: LOP1
-  baseType: SERVICE
-  nodeType: LOP
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.1.12
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-- itemType: NODE
-  id: '9'
-  name: SERVER1
-  baseType: SERVICE
-  nodeType: SERVER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.10.14
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-- itemType: NODE
-  id: '10'
-  name: SERVER2
-  baseType: SERVICE
-  nodeType: SERVER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.20.15
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-- itemType: LINK
-  id: '11'
-  name: link1
-  bandwidth: 1000000000
-  source: '1'
-  destination: '5'
-- itemType: LINK
-  id: '12'
-  name: link2
-  bandwidth: 1000000000
-  source: '2'
-  destination: '5'
-- itemType: LINK
-  id: '13'
-  name: link3
-  bandwidth: 1000000000
-  source: '3'
-  destination: '5'
-- itemType: LINK
-  id: '14'
-  name: link4
-  bandwidth: 1000000000
-  source: '4'
-  destination: '5'
-- itemType: LINK
-  id: '15'
-  name: link5
-  bandwidth: 1000000000
-  source: '5'
-  destination: '6'
-- itemType: LINK
-  id: '16'
-  name: link6
-  bandwidth: 1000000000
-  source: '5'
-  destination: '8'
-- itemType: LINK
-  id: '17'
-  name: link7
-  bandwidth: 1000000000
-  source: '6'
-  destination: '7'
-- itemType: LINK
-  id: '18'
-  name: link8
-  bandwidth: 1000000000
-  source: '8'
-  destination: '7'
-- itemType: LINK
-  id: '19'
-  name: link9
-  bandwidth: 1000000000
-  source: '7'
-  destination: '9'
-- itemType: LINK
-  id: '20'
-  name: link10
-  bandwidth: 1000000000
-  source: '7'
-  destination: '10'
-- itemType: GREEN_IER
-  id: '21'
-  startStep: 1
-  endStep: 128
-  load: 100000
-  protocol: TCP
-  port: '80'
-  source: '1'
-  destination: '9'
-  missionCriticality: 2
-- itemType: GREEN_IER
-  id: '22'
-  startStep: 1
-  endStep: 128
-  load: 100000
-  protocol: TCP
-  port: '80'
-  source: '2'
-  destination: '9'
-  missionCriticality: 2
-- itemType: GREEN_IER
-  id: '23'
-  startStep: 1
-  endStep: 128
-  load: 100000
-  protocol: TCP
-  port: '80'
-  source: '9'
-  destination: '3'
-  missionCriticality: 5
-- itemType: GREEN_IER
-  id: '24'
-  startStep: 1
-  endStep: 128
-  load: 100000
-  protocol: TCP
-  port: '80'
-  source: '4'
-  destination: '10'
-  missionCriticality: 2
-- itemType: ACL_RULE
-  id: '25'
-  permission: ALLOW
-  source: 192.168.10.11
-  destination: 192.168.10.14
-  protocol: TCP
-  port: 80
-- itemType: ACL_RULE
-  id: '26'
-  permission: ALLOW
-  source: 192.168.10.12
-  destination: 192.168.10.14
-  protocol: TCP
-  port: 80
-- itemType: ACL_RULE
-  id: '27'
-  permission: ALLOW
-  source: 192.168.10.13
-  destination: 192.168.10.14
-  protocol: TCP
-  port: 80
-- itemType: ACL_RULE
-  id: '28'
-  permission: ALLOW
-  source: 192.168.20.14
-  destination: 192.168.20.15
-  protocol: TCP
-  port: 80
-- itemType: ACL_RULE
-  id: '29'
-  permission: ALLOW
-  source: 192.168.10.14
-  destination: 192.168.10.13
-  protocol: TCP
-  port: 80
-- itemType: ACL_RULE
-  id: '30'
-  permission: DENY
-  source: 192.168.10.11
-  destination: 192.168.20.15
-  protocol: TCP
-  port: 80
-- itemType: ACL_RULE
-  id: '31'
-  permission: DENY
-  source: 192.168.10.12
-  destination: 192.168.20.15
-  protocol: TCP
-  port: 80
-- itemType: ACL_RULE
-  id: '32'
-  permission: DENY
-  source: 192.168.10.13
-  destination: 192.168.20.15
-  protocol: TCP
-  port: 80
-- itemType: ACL_RULE
-  id: '33'
-  permission: DENY
-  source: 192.168.20.14
-  destination: 192.168.10.14
-  protocol: TCP
-  port: 80
-- itemType: RED_POL
-  id: '34'
-  startStep: 20
-  endStep: 20
-  targetNodeId: '1'
-  initiator: DIRECT
-  type: SERVICE
-  protocol: TCP
-  state: COMPROMISED
-  sourceNodeId: NA
-  sourceNodeService: NA
-  sourceNodeServiceState: NA
-- itemType: RED_POL
-  id: '35'
-  startStep: 20
-  endStep: 20
-  targetNodeId: '2'
-  initiator: DIRECT
-  type: SERVICE
-  protocol: TCP
-  state: COMPROMISED
-  sourceNodeId: NA
-  sourceNodeService: NA
-  sourceNodeServiceState: NA
-- itemType: RED_IER
-  id: '36'
-  startStep: 30
-  endStep: 128
-  load: 440000000
-  protocol: TCP
-  port: '80'
-  source: '1'
-  destination: '9'
-  missionCriticality: 0
-- itemType: RED_IER
-  id: '37'
-  startStep: 30
-  endStep: 128
-  load: 440000000
-  protocol: TCP
-  port: '80'
-  source: '2'
-  destination: '9'
-  missionCriticality: 0
-- itemType: RED_POL
-  id: '38'
-  startStep: 30
-  endStep: 30
-  targetNodeId: '9'
-  initiator: IER
-  type: SERVICE
-  protocol: TCP
-  state: OVERWHELMED
-  sourceNodeId: NA
-  sourceNodeService: NA
-  sourceNodeServiceState: NA

PRIMAITE/config/config_3_DOS_VERY_BASIC.yaml

@@ -1,165 +0,0 @@
-- itemType: ACTIONS
-  type: NODE
-- itemType: STEPS
-  steps: 256
-- itemType: PORTS
-  portsList:
-  - port: '80'
-- itemType: SERVICES
-  serviceList:
-  - name: TCP
-- itemType: NODE
-  id: '1'
-  name: PC1
-  baseType: SERVICE
-  nodeType: COMPUTER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.1.2
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-- itemType: NODE
-  id: '2'
-  name: PC2
-  baseType: SERVICE
-  nodeType: COMPUTER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.1.3
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-- itemType: NODE
-  id: '3'
-  name: SWITCH1
-  baseType: ACTIVE
-  nodeType: SWITCH
-  priority: P2
-  hardwareState: 'ON'
-  ipAddress: 192.168.1.1
-  softwareState: GOOD
-  fileSystemState: GOOD
-- itemType: NODE
-  id: '4'
-  name: SERVER1
-  baseType: SERVICE
-  nodeType: SERVER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.1.4
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-- itemType: LINK
-  id: '5'
-  name: link1
-  bandwidth: 1000000000
-  source: '1'
-  destination: '3'
-- itemType: LINK
-  id: '6'
-  name: link2
-  bandwidth: 1000000000
-  source: '2'
-  destination: '3'
-- itemType: LINK
-  id: '7'
-  name: link3
-  bandwidth: 1000000000
-  source: '3'
-  destination: '4'
-- itemType: GREEN_IER
-  id: '8'
-  startStep: 1
-  endStep: 256
-  load: 10000
-  protocol: TCP
-  port: '80'
-  source: '1'
-  destination: '4'
-  missionCriticality: 1
-- itemType: GREEN_IER
-  id: '9'
-  startStep: 1
-  endStep: 256
-  load: 10000
-  protocol: TCP
-  port: '80'
-  source: '2'
-  destination: '4'
-  missionCriticality: 1
-- itemType: GREEN_IER
-  id: '10'
-  startStep: 1
-  endStep: 256
-  load: 10000
-  protocol: TCP
-  port: '80'
-  source: '4'
-  destination: '2'
-  missionCriticality: 5
-- itemType: ACL_RULE
-  id: '11'
-  permission: ALLOW
-  source: 192.168.1.2
-  destination: 192.168.1.4
-  protocol: TCP
-  port: 80
-- itemType: ACL_RULE
-  id: '12'
-  permission: ALLOW
-  source: 192.168.1.3
-  destination: 192.168.1.4
-  protocol: TCP
-  port: 80
-- itemType: ACL_RULE
-  id: '13'
-  permission: ALLOW
-  source: 192.168.1.4
-  destination: 192.168.1.3
-  protocol: TCP
-  port: 80
-- itemType: RED_POL
-  id: '14'
-  startStep: 20
-  endStep: 20
-  targetNodeId: '1'
-  initiator: DIRECT
-  type: SERVICE
-  protocol: TCP
-  state: COMPROMISED
-  sourceNodeId: NA
-  sourceNodeService: NA
-  sourceNodeServiceState: NA
-- itemType: RED_IER
-  id: '15'
-  startStep: 30
-  endStep: 256
-  load: 10000000
-  protocol: TCP
-  port: '80'
-  source: '1'
-  destination: '4'
-  missionCriticality: 0
-- itemType: RED_POL
-  id: '16'
-  startStep: 40
-  endStep: 40
-  targetNodeId: '4'
-  initiator: IER
-  type: SERVICE
-  protocol: TCP
-  state: OVERWHELMED
-  sourceNodeId: NA
-  sourceNodeService: NA
-  sourceNodeServiceState: NA

PRIMAITE/config/config_UNIT_TEST.yaml

@@ -1,533 +0,0 @@
-- itemType: ACTIONS
-  type: NODE
-- itemType: STEPS
-  steps: 256
-- itemType: PORTS
-  portsList:
-  - port: '80'
-  - port: '1433'
-  - port: '53'
-- itemType: SERVICES
-  serviceList:
-  - name: TCP
-  - name: TCP_SQL
-  - name: UDP
-- itemType: NODE
-  id: '1'
-  name: CLIENT_1
-  baseType: SERVICE
-  nodeType: COMPUTER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.10.11
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-  - name: UDP
-    port: '53'
-    state: GOOD
-- itemType: NODE
-  id: '2'
-  name: CLIENT_2
-  baseType: SERVICE
-  nodeType: COMPUTER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.10.12
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-- itemType: NODE
-  id: '3'
-  name: SWITCH_1
-  baseType: ACTIVE
-  nodeType: SWITCH
-  priority: P2
-  hardwareState: 'ON'
-  ipAddress: 192.168.10.1
-  softwareState: GOOD
-  fileSystemState: GOOD
-- itemType: NODE
-  id: '4'
-  name: SECURITY_SUITE
-  baseType: SERVICE
-  nodeType: SERVER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.1.10
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-  - name: UDP
-    port: '53'
-    state: GOOD
-- itemType: NODE
-  id: '5'
-  name: MANAGEMENT_CONSOLE
-  baseType: SERVICE
-  nodeType: SERVER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.1.12
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-  - name: UDP
-    port: '53'
-    state: GOOD
-- itemType: NODE
-  id: '6'
-  name: SWITCH_2
-  baseType: ACTIVE
-  nodeType: SWITCH
-  priority: P2
-  hardwareState: 'ON'
-  ipAddress: 192.168.2.1
-  softwareState: GOOD
-  fileSystemState: GOOD
-- itemType: NODE
-  id: '7'
-  name: WEB_SERVER
-  baseType: SERVICE
-  nodeType: SERVER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.2.10
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-  - name: TCP_SQL
-    port: '1433'
-    state: GOOD
-- itemType: NODE
-  id: '8'
-  name: DATABASE_SERVER
-  baseType: SERVICE
-  nodeType: SERVER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.2.14
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-  - name: TCP_SQL
-    port: '1433'
-    state: GOOD
-  - name: UDP
-    port: '53'
-    state: GOOD
-- itemType: NODE
-  id: '9'
-  name: BACKUP_SERVER
-  baseType: SERVICE
-  nodeType: SERVER
-  priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.2.16
-  softwareState: GOOD
-  fileSystemState: GOOD
-  services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-- itemType: LINK
-  id: '10'
-  name: LINK_1
-  bandwidth: 1000000000
-  source: '1'
-  destination: '3'
-- itemType: LINK
-  id: '11'
-  name: LINK_2
-  bandwidth: 1000000000
-  source: '2'
-  destination: '3'
-- itemType: LINK
-  id: '12'
-  name: LINK_3
-  bandwidth: 1000000000
-  source: '3'
-  destination: '4'
-- itemType: LINK
-  id: '13'
-  name: LINK_4
-  bandwidth: 1000000000
-  source: '3'
-  destination: '5'
-- itemType: LINK
-  id: '14'
-  name: LINK_5
-  bandwidth: 1000000000
-  source: '4'
-  destination: '6'
-- itemType: LINK
-  id: '15'
-  name: LINK_6
-  bandwidth: 1000000000
-  source: '5'
-  destination: '6'
-- itemType: LINK
-  id: '16'
-  name: LINK_7
-  bandwidth: 1000000000
-  source: '6'
-  destination: '7'
-- itemType: LINK
-  id: '17'
-  name: LINK_8
-  bandwidth: 1000000000
-  source: '6'
-  destination: '8'
-- itemType: LINK
-  id: '18'
-  name: LINK_9
-  bandwidth: 1000000000
-  source: '6'
-  destination: '9'
-- itemType: GREEN_IER
-  id: '19'
-  startStep: 1
-  endStep: 256
-  load: 10000
-  protocol: TCP
-  port: '80'
-  source: '1'
-  destination: '7'
-  missionCriticality: 5
-- itemType: GREEN_IER
-  id: '20'
-  startStep: 1
-  endStep: 256
-  load: 10000
-  protocol: TCP
-  port: '80'
-  source: '7'
-  destination: '1'
-  missionCriticality: 5
-- itemType: GREEN_IER
-  id: '21'
-  startStep: 1
-  endStep: 256
-  load: 10000
-  protocol: TCP
-  port: '80'
-  source: '2'
-  destination: '7'
-  missionCriticality: 5
-- itemType: GREEN_IER
-  id: '22'
-  startStep: 1
-  endStep: 256
-  load: 10000
-  protocol: TCP
-  port: '80'
-  source: '7'
-  destination: '2'
-  missionCriticality: 5
-- itemType: GREEN_IER
-  id: '23'
-  startStep: 1
-  endStep: 256
-  load: 5000
-  protocol: TCP_SQL
-  port: '1433'
-  source: '7'
-  destination: '8'
-  missionCriticality: 5
-- itemType: GREEN_IER
-  id: '24'
-  startStep: 1
-  endStep: 256
-  load: 100000
-  protocol: TCP_SQL
-  port: '1433'
-  source: '8'
-  destination: '7'
-  missionCriticality: 5
-- itemType: GREEN_IER
-  id: '25'
-  startStep: 1
-  endStep: 256
-  load: 50000
-  protocol: TCP
-  port: '80'
-  source: '1'
-  destination: '9'
-  missionCriticality: 2
-- itemType: GREEN_IER
-  id: '26'
-  startStep: 1
-  endStep: 256
-  load: 50000
-  protocol: TCP
-  port: '80'
-  source: '2'
-  destination: '9'
-  missionCriticality: 2
-- itemType: GREEN_IER
-  id: '27'
-  startStep: 1
-  endStep: 256
-  load: 5000
-  protocol: TCP
-  port: '80'
-  source: '5'
-  destination: '7'
-  missionCriticality: 1
-- itemType: GREEN_IER
-  id: '28'
-  startStep: 1
-  endStep: 256
-  load: 5000
-  protocol: TCP
-  port: '80'
-  source: '7'
-  destination: '5'
-  missionCriticality: 1
-- itemType: GREEN_IER
-  id: '29'
-  startStep: 1
-  endStep: 256
-  load: 5000
-  protocol: TCP
-  port: '80'
-  source: '5'
-  destination: '8'
-  missionCriticality: 1
-- itemType: GREEN_IER
-  id: '30'
-  startStep: 1
-  endStep: 256
-  load: 5000
-  protocol: TCP
-  port: '80'
-  source: '8'
-  destination: '5'
-  missionCriticality: 1
-- itemType: GREEN_IER
-  id: '31'
-  startStep: 1
-  endStep: 256
-  load: 5000
-  protocol: TCP
-  port: '80'
-  source: '5'
-  destination: '9'
-  missionCriticality: 1
-- itemType: GREEN_IER
-  id: '32'
-  startStep: 1
-  endStep: 256
-  load: 5000
-  protocol: TCP
-  port: '80'
-  source: '9'
-  destination: '5'
-  missionCriticality: 1
-- itemType: ACL_RULE
-  id: '33'
-  permission: ALLOW
-  source: 192.168.10.11
-  destination: 192.168.2.10
-  protocol: ANY
-  port: ANY
-- itemType: ACL_RULE
-  id: '34'
-  permission: ALLOW
-  source: 192.168.10.11
-  destination: 192.168.2.14
-  protocol: ANY
-  port: ANY
-- itemType: ACL_RULE
-  id: '35'
-  permission: ALLOW
-  source: 192.168.10.12
-  destination: 192.168.2.14
-  protocol: ANY
-  port: ANY
-- itemType: ACL_RULE
-  id: '36'
-  permission: ALLOW
-  source: 192.168.10.12
-  destination: 192.168.2.10
-  protocol: ANY
-  port: ANY
-- itemType: ACL_RULE
-  id: '37'
-  permission: ALLOW
-  source: 192.168.2.10
-  destination: 192.168.10.11
-  protocol: ANY
-  port: ANY
-- itemType: ACL_RULE
-  id: '38'
-  permission: ALLOW
-  source: 192.168.2.10
-  destination: 192.168.10.12
-  protocol: ANY
-  port: ANY
-- itemType: ACL_RULE
-  id: '39'
-  permission: ALLOW
-  source: 192.168.2.10
-  destination: 192.168.2.14
-  protocol: ANY
-  port: ANY
-- itemType: ACL_RULE
-  id: '40'
-  permission: ALLOW
-  source: 192.168.2.14
-  destination: 192.168.2.10
-  protocol: ANY
-  port: ANY
-- itemType: ACL_RULE
-  id: '41'
-  permission: ALLOW
-  source: 192.168.10.11
-  destination: 192.168.2.16
-  protocol: ANY
-  port: ANY
-- itemType: ACL_RULE
-  id: '42'
-  permission: ALLOW
-  source: 192.168.10.12
-  destination: 192.168.2.16
-  protocol: ANY
-  port: ANY
-- itemType: ACL_RULE
-  id: '43'
-  permission: ALLOW
-  source: 192.168.1.12
-  destination: 192.168.2.10
-  protocol: ANY
-  port: ANY
-- itemType: ACL_RULE
-  id: '44'
-  permission: ALLOW
-  source: 192.168.1.12
-  destination: 192.168.2.14
-  protocol: ANY
-  port: ANY
-- itemType: ACL_RULE
-  id: '45'
-  permission: ALLOW
-  source: 192.168.1.12
-  destination: 192.168.2.16
-  protocol: ANY
-  port: ANY
-- itemType: ACL_RULE
-  id: '46'
-  permission: ALLOW
-  source: 192.168.2.10
-  destination: 192.168.1.12
-  protocol: ANY
-  port: ANY
-- itemType: ACL_RULE
-  id: '47'
-  permission: ALLOW
-  source: 192.168.2.14
-  destination: 192.168.1.12
-  protocol: ANY
-  port: ANY
-- itemType: ACL_RULE
-  id: '48'
-  permission: ALLOW
-  source: 192.168.2.16
-  destination: 192.168.1.12
-  protocol: ANY
-  port: ANY
-- itemType: ACL_RULE
-  id: '49'
-  permission: DENY
-  source: ANY
-  destination: ANY
-  protocol: ANY
-  port: ANY
-- itemType: RED_POL
-  id: '50'
-  startStep: 50
-  endStep: 50
-  targetNodeId: '1'
-  initiator: DIRECT
-  type: SERVICE
-  protocol: UDP
-  state: COMPROMISED
-  sourceNodeId: NA
-  sourceNodeService: NA
-  sourceNodeServiceState: NA
-- itemType: RED_IER
-  id: '51'
-  startStep: 75
-  endStep: 105
-  load: 10000
-  protocol: UDP
-  port: '53'
-  source: '1'
-  destination: '8'
-  missionCriticality: 0
-- itemType: RED_POL
-  id: '52'
-  startStep: 100
-  endStep: 100
-  targetNodeId: '8'
-  initiator: IER
-  type: SERVICE
-  protocol: UDP
-  state: COMPROMISED
-  sourceNodeId: NA
-  sourceNodeService: NA
-  sourceNodeServiceState: NA
-- itemType: RED_POL
-  id: '53'
-  startStep: 105
-  endStep: 105
-  targetNodeId: '8'
-  initiator: SERVICE
-  type: FILE
-  protocol: NA
-  state: CORRUPT
-  sourceNodeId: '8'
-  sourceNodeService: UDP
-  sourceNodeServiceState: COMPROMISED
-- itemType: RED_POL
-  id: '54'
-  startStep: 105
-  endStep: 105
-  targetNodeId: '8'
-  initiator: SERVICE
-  type: SERVICE
-  protocol: TCP_SQL
-  state: COMPROMISED
-  sourceNodeId: '8'
-  sourceNodeService: UDP
-  sourceNodeServiceState: COMPROMISED
-- itemType: RED_POL
-  id: '55'
-  startStep: 125
-  endStep: 125
-  targetNodeId: '7'
-  initiator: SERVICE
-  type: SERVICE
-  protocol: TCP
-  state: OVERWHELMED
-  sourceNodeId: '8'
-  sourceNodeService: TCP_SQL 
-  sourceNodeServiceState: COMPROMISED

PRIMAITE/docs/source/conf.py

@@ -1,28 +0,0 @@
-# Configuration file for the Sphinx documentation builder.
-#
-# For the full list of built-in configuration values, see the documentation:
-# https://www.sphinx-doc.org/en/master/usage/configuration.html
-
-# -- Project information -----------------------------------------------------
-# https://www.sphinx-doc.org/en/master/usage/configuration.html#project-information
-
-project = 'PrimAITE'
-copyright = '2022, jashort'
-author = 'jashort'
-release = '0.1.0'
-
-# -- General configuration ---------------------------------------------------
-# https://www.sphinx-doc.org/en/master/usage/configuration.html#general-configuration
-
-extensions = ['sphinx_rtd_theme']
-
-templates_path = ['_templates']
-exclude_patterns = []
-
-
-
-# -- Options for HTML output -------------------------------------------------
-# https://www.sphinx-doc.org/en/master/usage/configuration.html#options-for-html-output
-
-html_theme = 'sphinx_rtd_theme'
-html_static_path = ['_static']

PRIMAITE/docs/source/config.rst

@@ -1,397 +0,0 @@
-.. _config:
-
-The Config Files Explained
-==========================
-
-PrimAITE uses two configuration files for its operation:
-
-* config_main.yaml - used to define the top-level settings of the PrimAITE environment, and the session that is to be run.
-* config_[name].yaml - used to define the low-level settings of a session, including the network laydown, green / red agent information exchange requirements (IERSs), Access Control Rules, Action Space type, and the number of steps in each episode.
-
-config_main.yaml:
-*****************
-
-The config_main.yaml file consists of the following attributes:
-
-**Generic Config Values**
-
-* **agentIdentifier** [enum]
-
-   This identifies the agent to use for the session. Select from one of the following:
-
-   * GENERIC - Where a user developed agent is to be used
-   * STABLE_BASELINES3_PPO - Use a SB3 PPO agent
-   * STABLE_BASELINES3_A2C - use a SB3 A2C agent
-
-* **numEpisodes** [int]
-
-   This defines the number of episodes that the agent will train or be evaluated over. Each episode consists of a number of steps (with step number defined in the config_[name].yaml file)
-
-* **timeDelay** [int]
-
-   The time delay (in milliseconds) to take between each step when running a GENERIC agent session
-
-* **configFilename** [filename]
-
-   The name of the config_[name].yaml file to use for this session
-
-* **sessionType** [text]
-
-   Type of session to be run (TRAINING or EVALUATION)
-
-* **loadAgent** [bool]
-
-   Determine whether to load an agent from file
-
-* **agentLoadFile** [text]
-
-   File path and file name of agent if you're loading one in
-
-* **observationSpaceHighValue** [int]
-
-   The high value to use for values in the observation space. This is set to 1000000000 by default, and should not need changing in most cases
-
-**Reward-Based Config Values**
-
-* **Generic [allOk]** [int]
-
-   The score to give when the current situation (for a given component) is no different from that expected in the baseline (i.e. as though no blue or red agent actions had been undertaken)
-
-* **Node Operating State [offShouldBeOn]** [int]
-
-   The score to give when the node should be on, but is off
-
-* **Node Operating State [offShouldBeResetting]** [int]
-
-   The score to give when the node should be resetting, but is off
-
-* **Node Operating State [onShouldBeOff]** [int]
-    
-   The score to give when the node should be off, but is on
-
-* **Node Operating State [onShouldBeResetting]** [int]
-    
-   The score to give when the node should be resetting, but is on
-
-* **Node Operating State [resettingShouldBeOn]** [int]
-    
-   The score to give when the node should be on, but is resetting
-
-* **Node Operating State [resettingShouldBeOff]** [int]
-    
-   The score to give when the node should be off, but is resetting
-
-* **Node Operating State [resetting]** [int]
-    
-   The score to give when the node is resetting
-
-* **Node Operating System or Service State [goodShouldBePatching]** [int]
-    
-   The score to give when the state should be patching, but is good
-
-* **Node Operating System or Service State [goodShouldBeCompromised]** [int]
-    
-   The score to give when the state should be compromised, but is good
-
-* **Node Operating System or Service State [goodShouldBeOverwhelmed]** [int]
-    
-   The score to give when the state should be overwhelmed, but is good
-
-* **Node Operating System or Service State [patchingShouldBeGood]** [int]
-    
-   The score to give when the state should be good, but is patching
-
-* **Node Operating System or Service State [patchingShouldBeCompromised]** [int]
-    
-   The score to give when the state should be compromised, but is patching
-
-* **Node Operating System or Service State [patchingShouldBeOverwhelmed]** [int]
-    
-   The score to give when the state should be overwhelmed, but is patching
-
-* **Node Operating System or Service State [patching]** [int]
-    
-   The score to give when the state is patching
-
-* **Node Operating System or Service State [compromisedShouldBeGood]** [int]
-    
-   The score to give when the state should be good, but is compromised
-
-* **Node Operating System or Service State [compromisedShouldBePatching]** [int]
-    
-   The score to give when the state should be patching, but is compromised
-
-* **Node Operating System or Service State [compromisedShouldBeOverwhelmed]** [int]
-    
-   The score to give when the state should be overwhelmed, but is compromised
-
-* **Node Operating System or Service State [compromised]** [int]
-    
-   The score to give when the state is compromised
-
-* **Node Operating System or Service State [overwhelmedShouldBeGood]** [int]
-    
-   The score to give when the state should be good, but is overwhelmed
-
-* **Node Operating System or Service State [overwhelmedShouldBePatching]** [int]
-    
-   The score to give when the state should be patching, but is overwhelmed
-
-* **Node Operating System or Service State [overwhelmedShouldBeCompromised]** [int]
-    
-   The score to give when the state should be compromised, but is overwhelmed
-
-* **Node Operating System or Service State [overwhelmed]** [int]
-    
-   The score to give when the state is overwhelmed
-
-* **Node File System State [goodShouldBeRepairing]** [int]
-
-    The score to give when the state should be repairing, but is good
-
-* **Node File System State [goodShouldBeRestoring]** [int]
-
-    The score to give when the state should be restoring, but is good
-
-* **Node File System State [goodShouldBeCorrupt]** [int]
-
-    The score to give when the state should be corrupt, but is good
-
-* **Node File System State [goodShouldBeDestroyed]** [int]
-
-    The score to give when the state should be destroyed, but is good
-
-* **Node File System State [repairingShouldBeGood]** [int]
-
-    The score to give when the state should be good, but is repairing
-
-* **Node File System State [repairingShouldBeRestoring]** [int]
-
-    The score to give when the state should be restoring, but is repairing
-
-* **Node File System State [repairingShouldBeCorrupt]** [int]
-
-    The score to give when the state should be corrupt, but is repairing
-
-* **Node File System State [repairingShouldBeDestroyed]** [int]
-
-    The score to give when the state should be destroyed, but is repairing
-
-* **Node File System State [repairing]** [int]
-
-    The score to give when the state is repairing
-
-* **Node File System State [restoringShouldBeGood]** [int]
-
-    The score to give when the state should be good, but is restoring
-
-* **Node File System State [restoringShouldBeRepairing]** [int]
-
-    The score to give when the state should be repairing, but is restoring
-
-* **Node File System State [restoringShouldBeCorrupt]** [int]
-
-    The score to give when the state should be corrupt, but is restoring
-
-* **Node File System State [restoringShouldBeDestroyed]** [int]
-
-    The score to give when the state should be destroyed, but is restoring
-
-* **Node File System State [restoring]** [int]
-
-    The score to give when the state is restoring
-
-* **Node File System State [corruptShouldBeGood]** [int]
-
-    The score to give when the state should be good, but is corrupt
-
-* **Node File System State [corruptShouldBeRepairing]** [int]
-
-    The score to give when the state should be repairing, but is corrupt
-
-* **Node File System State [corruptShouldBeRestoring]** [int]
-
-    The score to give when the state should be restoring, but is corrupt
-
-* **Node File System State [corruptShouldBeDestroyed]** [int]
-
-    The score to give when the state should be destroyed, but is corrupt
-
-* **Node File System State [corrupt]** [int]
-
-    The score to give when the state is corrupt
-
-* **Node File System State [destroyedShouldBeGood]** [int]
-
-    The score to give when the state should be good, but is destroyed
-
-* **Node File System State [destroyedShouldBeRepairing]** [int]
-
-    The score to give when the state should be repairing, but is destroyed
-
-* **Node File System State [destroyedShouldBeRestoring]** [int]
-
-    The score to give when the state should be restoring, but is destroyed
-
-* **Node File System State [destroyedShouldBeCorrupt]** [int]
-
-    The score to give when the state should be corrupt, but is destroyed
-
-* **Node File System State [destroyed]** [int]
-
-    The score to give when the state is destroyed
-
-* **Node File System State [scanning]** [int]
-
-    The score to give when the state is scanning
-
-* **IER Status [redIerRunning]** [int]
-    
-   The score to give when a red agent IER is permitted to run
-
-* **IER Status [greenIerBlocked]** [int]
-    
-   The score to give when a green agent IER is prevented from running
-
-**Patching / Reset Durations**
-
-* **osPatchingDuration** [int]
-
-   The number of steps to take when patching an Operating System
-
-* **nodeResetDuration** [int]
-   
-   The number of steps to take when resetting a node's operating state
-
-* **servicePatchingDuration** [int]
-   
-   The number of steps to take when patching a service
-
-* **fileSystemRepairingLimit** [int]: 
-
-   The number of steps to take when repairing the file system
-
-* **fileSystemRestoringLimit** [int]
-
-   The number of steps to take when restoring the file system
-
-* **fileSystemScanningLimit** [int]
-
-   The number of steps to take when scanning the file system
-
-config_[name].yaml:
-*******************
-
-The config_[name].yaml file consists of the following attributes:
-
-* **itemType: ACTIONS** [enum]
-   
-   Determines whether a NODE or ACL action space format is adopted for the session
-
-* **itemType: STEPS** [int]
-    
-   Determines the number of steps to run in each episode of the session
-
-* **itemType: PORTS** [int]
-   
-   Provides a list of ports modelled in this session
-
-* **itemType: SERVICES** [freetext]
-   
-   Provides a list of services modelled in this session
-
-* **itemType: NODE**
-    
-   Defines a node included in the system laydown being simulated. It should consist of the following attributes:
-
-     * **id** [int]: Unique ID for this YAML item
-     * **name** [freetext]: Human-readable name of the component
-     * **baseType** [enum]: Relates to the base type of the node. Can be SERVICE, ACTIVE or PASSIVE. PASSIVE nodes do not have an operating system or services. ACTIVE nodes have an operating system, but no services. SERVICE nodes have both an operating system and one or more services
-     * **nodeType** [enum]: Relates to the component type. Can be one of CCTV, SWITCH, COMPUTER, LINK, MONITOR, PRINTER, LOP, RTU, ACTUATOR or SERVER
-     * **priority** [enum]: Provides a priority for each node. Can be one of P1, P2, P3, P4 or P5 (which P1 being the highest)
-     * **hardwareState** [enum]: The initial hardware state of the node. Can be one of ON, OFF or RESETTING
-     * **ipAddress** [IP address]: The IP address of the component in format xxx.xxx.xxx.xxx
-     * **softwareState** [enum]: The intial state of the node operating system. Can be GOOD, PATCHING or COMPROMISED
-     * **fileSystemState** [enum]: The initial state of the node file system. Can be GOOD, CORRUPT, DESTROYED, REPAIRING or RESTORING
-     * **services**: For each service associated with the node:
-
-        * **name** [freetext]: Free-text name of the service, but must match one of the services defined for the system in the services list
-        * **port** [int]: Integer value of the port related to this service, but must match one of the ports defined for the system in the ports list
-        * **state** [enum]: The initial state of the service. Can be one of GOOD, PATCHING, COMPROMISED or OVERWHELMED
-     
-* **itemType: LINK**
-   
-   Defines a link included in the system laydown being simulated. It should consist of the following attributes:
-
-     * **id** [int]: Unique ID for this YAML item
-     * **name** [freetext]: Human-readable name of the component
-     * **bandwidth** [int]: The bandwidth (in bits/s) of the link
-     * **source** [int]: The ID of the source node
-     * **destination** [int]: The ID of the destination node
-
-* **itemType: GREEN_IER**
-
-   Defines a green agent Information Exchange Requirement (IER). It should consist of:
-
-     * **id** [int]: Unique ID for this YAML item
-     * **startStep** [int]: The start step (in the episode) for this IER to begin
-     * **endStep** [int]: The end step (in the episode) for this IER to finish
-     * **load** [int]: The load (in bits/s) for this IER to apply to links
-     * **protocol** [freetext]: The protocol to apply to the links. This must match a value in the services list
-     * **port** [int]: The port that the protocol is running on. This must match a value in the ports list
-     * **source** [int]: The ID of the source node
-     * **destination** [int]: The ID of the destination node
-     * **missionCriticality** [enum]: The mission criticality of this IER (with 5 being highest, 1 lowest)
-
-* **itemType: RED_IER**
-    
-   Defines a red agent Information Exchange Requirement (IER). It should consist of:
-
-     * **id** [int]: Unique ID for this YAML item
-     * **startStep** [int]: The start step (in the episode) for this IER to begin
-     * **endStep** [int]: The end step (in the episode) for this IER to finish
-     * **load** [int]: The load (in bits/s) for this IER to apply to links
-     * **protocol** [freetext]: The protocol to apply to the links. This must match a value in the services list
-     * **port** [int]: The port that the protocol is running on. This must match a value in the ports list
-     * **source** [int]: The ID of the source node
-     * **destination** [int]: The ID of the destination node
-     * **missionCriticality** [enum]: Not currently used. Default to 0
-
-* **itemType: GREEN_POL**
-     
-    Defines a green agent pattern-of-life instruction. It should consist of:
-
-      * **id** [int]: Unique ID for this YAML item
-      * **startStep** [int]: The start step (in the episode) for this PoL to begin
-      * **endStep** [int]: Not currently used. Default to same as start step
-      * **nodeId** [int]: The ID of the node to apply the PoL to
-      * **type** [enum]: The type of PoL to apply. Can be one of OPERATING, OS or SERVICE
-      * **protocol** [freetext]: The protocol to be affected if SERVICE type is chosen. Must match a value in the services list
-      * **state** [enuum]: The state to apply to the node (which represents the PoL change). Can be one of ON, OFF or RESETTING (for node state) or GOOD, PATCHING or COMPROMISED (for operating system state) or GOOD, PATCHING, COMPROMISED or OVERWHELMED (for service state)
-
-* **itemType: RED_POL**
-     
-    Defines a red agent pattern-of-life instruction. It should consist of:
-
-      * **id** [int]: Unique ID for this YAML item
-      * **startStep** [int]: The start step (in the episode) for this PoL to begin
-      * **endStep** [int]: Not currently used. Default to same as start step
-      * **targetNodeId** [int]: The ID of the node to apply the PoL to
-      * **initiator** [enum]: What initiates the PoL. Can be DIRECT, IER or SERVICE
-      * **type** [enum]: The type of PoL to apply. Can be one of OPERATING, OS or SERVICE
-      * **protocol** [freetext]: The protocol to be affected if SERVICE type is chosen. Must match a value in the services list
-      * **state** [enum]: The state to apply to the node (which represents the PoL change). Can be one of ON, OFF or RESETTING (for node state) or GOOD, PATCHING or COMPROMISED (for operating system state) or GOOD, PATCHING, COMPROMISED or OVERWHELMED (for service state) or GOOD, CORRUPT, DESTROYED, REPAIRING or RESTORING (for file system state)
-      * **sourceNodeId** [int] The ID of the source node containing the service to check (used for SERVICE initiator)
-      * **sourceNodeService** [freetext]: The service on the source node to check (used for SERVICE initiator). Must match a value in the services list for this node
-      * **sourceNodeServiceState** [enum]: The state of the source node service to check (used for SERVICE initiator). Can be one of GOOD, PATCHING, COMPROMISED or OVERWHELMED
-
-* **itemType: ACL_RULE**
-     
-    Defines an initial Access Control List (ACL) rule. It should consist of:
-
-      * **id** [int]: Unique ID for this YAML item
-      * **permission** [enum]: Defines either an allow or deny rule. Value must be either DENY or ALLOW
-      * **source** [IP address]: Defines the source IP address for the rule in xxx.xxx.xxx.xxx format
-      * **destination** [IP address]: Defines the destination IP address for the rule in xxx.xxx.xxx.xxx format
-      * **protocol** [freetext]: Defines the protocol for the rule. Must match a value in the services list
-      * **port** [int]: Defines the port for the rule. Must match a value in the ports list

PRIMAITE/docs/source/dependencies.rst

@@ -1,26 +0,0 @@
-.. _dependencies:
-
-PrimAITE Dependencies
-=====================
-
-PrimAITE is built with the following versions of dependencies:
-
-* Python 3.10.9
-* PyYAML 6.0
-* numpy 1.23.5
-* networkx 2.8.8
-* gym 0.21.0
-* matplotlib 3.6.2 
-* stable_baselines_3 1.6.2
-
-The latest release of PrimAITE has been tested against the following versions of dependencies:
-
-* Python 3.10.9
-* PyYAML 6.0
-* numpy 1.23.5
-* networkx 2.8.8
-* gym 0.21.0
-* matplotlib 3.6.2 
-* stable_baselines_3 1.6.2
-
-

PRIMAITE/docs/source/index.rst

@@ -1,42 +0,0 @@
-.. PrimAITE documentation master file, created by
-   sphinx-quickstart on Thu Dec  8 09:51:18 2022.
-   You can adapt this file completely to your liking, but it should at least
-   contain the root `toctree` directive.
-
-Welcome to PrimAITE's documentation
-====================================
-
-What is PrimAITE?
-------------------------
-
-PrimAITE (Primary-level AI Training Environment) is a simulation environment for training AI under the ARCD programme​. It incorporates the functionality required of a Primary-level environment, as specified in the Dstl ARCD Training Environment Matrix document:​
-
-* The ability to model a relevant platform / system context; 
-* The ability to model key characteristics of a platform / system by representing connections, IP addresses, ports, traffic loading, operating systems, file system, services and processes; 
-* Operates at machine-speed to enable fast training cycles. 
-
-PrimAITE aims to evolve into an ARCD environment that could be used as the follow-on from Reception level approaches (e.g. YAWNING TITAN), and help bridge the Sim-to-Real gap into Secondary level environments (e.g. IMAGINARY YAK)​.
-
-This is similar to the approach taken by FVEY international partners (e.g. AUS CyBORG, US NSA FARLAND and CAN CyGil). These environments are referenced by the Dstl ARCD Agent Training Environments Knowledge Transfer document (TR141342)​.
-
-What is PrimAITE built with
---------------------------------------
-
-* `OpenAI's Gym <https://gym.openai.com/>`_ is used as the basis for AI blue agent interaction with the PrimAITE environment
-* `Networkx <https://github.com/networkx/networkx>`_ is used as the underlying data structure used for the PrimAITE environment
-* `Stable Baselines 3 <https://github.com/DLR-RM/stable-baselines3>`_ is used as a default source of RL algorithms (although PrimAITE is not limited to SB3 agents)
-
-Where next?
-------------
-
-The best place to start is :ref:`about`
-
-.. toctree::
-   :maxdepth: 8
-   :caption: Contents:
-
-   about
-   dependencies
-   config
-   session
-   results

PRIMAITE/docs/source/results.rst

@@ -1,42 +0,0 @@
-.. _results:
-
-Results, Output and Logging from PrimAITE
-=========================================
-
-PrimAITE produces four types of data:
-
-* Outputs - Results
-* Outputs - Diagrams
-* Outputs - Saved agents
-* Logging
-
-Outputs can be found in the *[Install Directory]\\PRIMAITE\\PRIMAITE\\outputs* directory
-
-Logging can be found in the *[Install Directory]\\PRIMAITE\\PRIMAITE\\logs* directory
-
-**Outputs - Results**
-
-PrimAITE automatically creates two sets of results from each session, and stores them in the *Results* folder:
-
-* Average reward per episode - a csv file listing the average reward for each episode of the session. This provides, for example, an indication of the change over a training session of the reward value
-* All transactions - a csv file listing the following values for every step of every episode:
-
-	* Timestamp
-	* Episode number
-	* Step number
-	* Initial observation space (before red and blue agent actions have been taken). Individual elements of the observation space are presented in the format OSI_X_Y
-	* Resulting observation space (after the red and blue agent actions have been taken) Individual elements of the observation space are presented in the format OSN_X_Y
-	* Reward value
-	* Action space (as presented by the blue agent on this step). Individual elements of the action space are presented in the format AS_X
-
-**Outputs - Diagrams**
-
-For each session, PrimAITE automatically creates a visualisation of the system / network laydown configuration, and stores it in the *Diagrams* folder.
-
-**Outputs - Saved agents**
-
-For each training session, assuming the agent being trained implements the *save()* function and this function is called by the code, PrimAITE automatically saves the agent state and stores it in the *agents* folder.
-
-**Logging**
-
-PrimAITE also provides output logs (for diagnosis) using the Python Logging package. These can be found in the *[Install Directory]\\PRIMAITE\\PRIMAITE\\logs* directory

PRIMAITE/docs/source/session.rst

@@ -1,88 +0,0 @@
-.. _session:
-
-Running a PrimAITE Training or Evaluation Session
-=================================================
-
-The application will determine whether a Training or Evaluation session is being executed via the 'sessionType' value in the config_mail.yaml file. A PrimAITE session will usually be associated with a "Use Case Profile"; this document will present:
-
-* The Use Case name, default number of steps in an episode and default number of episodes in a session. The number of steps and episodes can be modified in the configuration files
-* The system laydown being modelled
-* The objectives of the session (steady-state), the red agent and the blue agent (in a defensive role)
-* The green agent pattern-of-life profile
-* The red agent attack profile
-* The observation space definition
-* The action space definition
-* Agent integration guidance
-* Initial Access Control List settings (if applicable)
-* The reward function definition
-
-**Integrating a user defined blue agent**
-
-Integrating a blue agent with PrimAITE requires some modification of the code within the main.py file. The main.py file consists of a number of functions, each of which will invoke training for a particular agent. These are:
-
-* Generic (run_generic)
-* Stable Baselines 3 PPO (run_stable_baselines3_ppo)
-* Stable Baselines 3 A2C (run_stable_baselines3_a2c)
-
-The selection of which agent type to use is made via the config_main.yaml file. In order to train a user generated agent, 
-the run_generic function should be selected, and should be modified (typically) to be:
-
-.. code:: python
-
-    agent = MyAgent(environment, max_steps)​
-    for episode in range(0, num_episodes):​
-        agent.learn()      ​
-    env.close()​
-    save_agent(agent)
-
-Where:
-
-* *MyAgent* is the user created agent
-* *environment* is the PrimAITE environment
-* *max_steps* is the number of steps in an episode, as defined in the config_[name].yaml file
-* *num_episodes* is the number of episodes in the session, as defined in the config_main.yaml file
-* the *.learn()* function should be defined in the user created agent
-* the *env.close()* function is defined within PrimAITE
-* the *save_agent()* assumes that a *save()* function has been defined in the user created agent. If not, this line can be ommitted (although it is encouraged, since it will allow the agent to be saved and ported)
-
-The code below provides a suggested format for the learn() function within the user created agent.
-It's important to include the *self.environment.reset()* call within the episode loop in order that the 
-environment is reset between episodes. Note that the example below should not be considered exhaustive.
-
-.. code:: python
-
-    def learn(self) :​
-
-    # pre-reqs​​
-
-    # reset the environment​
-    self.environment.reset()​
-    done = False​
-    
-    for step in range(max_steps):​
-        # calculate the action​
-        action = ...
-
-        ​# execute the environment step​
-        new_state, reward, done, info = self.environment.step(action)​
-
-        # algorithm updates​
-        ...
-
-        # update to our new state​
-        state = new_state​
-
-        # if done, finish episode​
-        if done == True:​
-            break
-
-**Running the session**
- 
-In order to execute a session, carry out the following steps:
-
-1. Navigate to "[Install directory]\\PRIMAITE\\PRIMAITE\\” 
-2. Start a console window (type “CMD” in path window, or start a console window first and navigate to “[Install Directory]\\PRIMAITE\\PRIMAITE\\”) 
-3. Type “python main.py” 
-4. The session will start with an output indicating the current episode, and average reward value for the episode 
-
- 

PRIMAITE/environment/__init__.py

@@ -1,2 +0,0 @@
-
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.

PRIMAITE/environment/reward.py

@@ -1,340 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-Implements reward function
-"""
-
-from common.enums import *
-from nodes.active_node import ActiveNode
-from nodes.service_node import ServiceNode
-
-def calculate_reward_function(initial_nodes, final_nodes, reference_nodes, green_iers, red_iers, step_count, config_values):
-    """
-    Compares the states of the initial and final nodes/links to get a reward
-
-    Args:
-        initial_nodes: The nodes before red and blue agents take effect
-        final_nodes: The nodes after red and blue agents take effect
-        reference_nodes: The nodes if there had been no red or blue effect
-        green_iers: The green IERs (should be running)
-        red_iers: Should be stopeed (ideally) by the blue agent
-        step_count: current step
-        config_values: Config values
-    """
-
-    reward_value = 0
-
-    # For each node, compare operating state, o/s operating state, service states
-    for node_key, final_node in final_nodes.items():
-        initial_node = initial_nodes[node_key]
-        reference_node = reference_nodes[node_key]
-            
-        # Operating State
-        reward_value += score_node_operating_state(final_node, initial_node, reference_node, config_values)
-
-        # Operating System State
-        if (isinstance(final_node, ActiveNode) or isinstance(final_node, ServiceNode)):
-            reward_value += score_node_os_state(final_node, initial_node, reference_node, config_values)
-
-        # Service State
-        if (isinstance(final_node, ServiceNode)):
-            reward_value += score_node_service_state(final_node, initial_node, reference_node, config_values)
-
-        # File System State
-        if isinstance(final_node, ActiveNode):
-            reward_value += score_node_file_system(final_node, initial_node, reference_node, config_values)
- 
-    # Go through each red IER - penalise if it is running
-    for ier_key, ier_value in red_iers.items():
-        start_step = ier_value.get_start_step()
-        stop_step = ier_value.get_end_step()
-        if step_count >= start_step and step_count <= stop_step:
-            if ier_value.get_is_running():
-                reward_value += config_values.red_ier_running
-
-    # Go through each green IER - penalise if it's not running (weighted)
-    for ier_key, ier_value in green_iers.items():
-        start_step = ier_value.get_start_step()
-        stop_step = ier_value.get_end_step()
-        if step_count >= start_step and step_count <= stop_step:
-            if not ier_value.get_is_running():
-                reward_value += config_values.green_ier_blocked * ier_value.get_mission_criticality()
-
-    return reward_value
-
-
-def score_node_operating_state(final_node, initial_node, reference_node, config_values):
-    """
-    Calculates score relating to the operating state of a node
-
-    Args:
-        final_node: The node after red and blue agents take effect
-        initial_node: The node before red and blue agents take effect
-        reference_node: The node if there had been no red or blue effect
-        config_values: Config values
-    """
-    
-    score = 0    
-    final_node_operating_state = final_node.get_state()
-    initial_node_operating_state = initial_node.get_state()
-    reference_node_operating_state = reference_node.get_state()
-
-    if final_node_operating_state == reference_node_operating_state:
-        # All is well - we're no different from the reference situation
-        score += config_values.all_ok
-    else:     
-        # We're different from the reference situation
-        # Need to compare initial and final state of node (i.e. after red and blue actions)
-        if initial_node_operating_state == HARDWARE_STATE.ON:
-            if final_node_operating_state == HARDWARE_STATE.OFF:
-                score += config_values.off_should_be_on
-            elif final_node_operating_state == HARDWARE_STATE.RESETTING:
-                score += config_values.resetting_should_be_on
-            else:
-                pass
-        elif initial_node_operating_state == HARDWARE_STATE.OFF:
-            if final_node_operating_state == HARDWARE_STATE.ON:
-                score += config_values.on_should_be_off
-            elif final_node_operating_state == HARDWARE_STATE.RESETTING:
-                score += config_values.resetting_should_be_off  
-            else:
-                pass
-        elif initial_node_operating_state == HARDWARE_STATE.RESETTING:
-            if final_node_operating_state == HARDWARE_STATE.ON:
-                score += config_values.on_should_be_resetting
-            elif final_node_operating_state == HARDWARE_STATE.OFF:
-                score += config_values.off_should_be_resetting
-            elif final_node_operating_state == HARDWARE_STATE.RESETTING:
-                score += config_values.resetting
-            else:
-                pass
-        else:
-            pass
-
-    return score
-
-def score_node_os_state(final_node, initial_node, reference_node, config_values):
-    """
-    Calculates score relating to the operating system state of a node
-
-    Args:
-        final_node: The node after red and blue agents take effect
-        initial_node: The node before red and blue agents take effect
-        reference_node: The node if there had been no red or blue effect
-        config_values: Config values
-    """
-
-    score = 0    
-    final_node_os_state = final_node.get_os_state()
-    initial_node_os_state = initial_node.get_os_state()
-    reference_node_os_state = reference_node.get_os_state()
-
-    if final_node_os_state == reference_node_os_state:
-        # All is well - we're no different from the reference situation
-        score += config_values.all_ok
-    else:  
-        # We're different from the reference situation
-        # Need to compare initial and final state of node (i.e. after red and blue actions)
-        if initial_node_os_state == SOFTWARE_STATE.GOOD:
-            if final_node_os_state == SOFTWARE_STATE.PATCHING:
-                score += config_values.patching_should_be_good
-            elif final_node_os_state == SOFTWARE_STATE.COMPROMISED:
-                score += config_values.compromised_should_be_good
-            else:
-                pass
-        elif initial_node_os_state == SOFTWARE_STATE.PATCHING:
-            if final_node_os_state == SOFTWARE_STATE.GOOD:
-                score += config_values.good_should_be_patching
-            elif final_node_os_state == SOFTWARE_STATE.COMPROMISED:
-                score += config_values.compromised_should_be_patching  
-            elif final_node_os_state == SOFTWARE_STATE.PATCHING:
-                score += config_values.patching 
-            else:
-                pass              
-        elif initial_node_os_state == SOFTWARE_STATE.COMPROMISED:
-            if final_node_os_state == SOFTWARE_STATE.GOOD:
-                score += config_values.good_should_be_compromised
-            elif final_node_os_state == SOFTWARE_STATE.PATCHING:
-                score += config_values.patching_should_be_compromised
-            elif final_node_os_state == SOFTWARE_STATE.COMPROMISED:
-                score += config_values.compromised 
-            else:
-                pass
-        else:
-            pass
-
-    return score
-
-def score_node_service_state(final_node, initial_node, reference_node, config_values):
-    """
-    Calculates score relating to the service state(s) of a node
-
-    Args:
-        final_node: The node after red and blue agents take effect
-        initial_node: The node before red and blue agents take effect
-        reference_node: The node if there had been no red or blue effect
-        config_values: Config values
-    """
-
-    score = 0    
-    final_node_services = final_node.get_services()
-    initial_node_services = initial_node.get_services()
-    reference_node_services = reference_node.get_services()
-    
-    for service_key, final_service in final_node_services.items():
-        reference_service = reference_node_services[service_key]
-        initial_service = initial_node_services[service_key]
-
-        if final_service.get_state() == reference_service.get_state():
-            # All is well - we're no different from the reference situation
-            score += config_values.all_ok
-        else:
-            # We're different from the reference situation
-            # Need to compare initial and final state of node (i.e. after red and blue actions)
-            if initial_service.get_state() == SOFTWARE_STATE.GOOD:
-                if final_service.get_state() == SOFTWARE_STATE.PATCHING:
-                    score += config_values.patching_should_be_good
-                elif final_service.get_state() == SOFTWARE_STATE.COMPROMISED:
-                    score += config_values.compromised_should_be_good
-                elif final_service.get_state() == SOFTWARE_STATE.OVERWHELMED:
-                    score += config_values.overwhelmed_should_be_good
-                else:
-                    pass
-            elif initial_service.get_state() == SOFTWARE_STATE.PATCHING:
-                if final_service.get_state() == SOFTWARE_STATE.GOOD:
-                    score += config_values.good_should_be_patching
-                elif final_service.get_state() == SOFTWARE_STATE.COMPROMISED:
-                    score += config_values.compromised_should_be_patching    
-                elif final_service.get_state() == SOFTWARE_STATE.OVERWHELMED:
-                    score += config_values.overwhelmed_should_be_patching 
-                elif final_service.get_state() == SOFTWARE_STATE.PATCHING:
-                    score += config_values.patching 
-                else:
-                    pass
-            elif initial_service.get_state() == SOFTWARE_STATE.COMPROMISED:
-                if final_service.get_state() == SOFTWARE_STATE.GOOD:
-                    score += config_values.good_should_be_compromised
-                elif final_service.get_state() == SOFTWARE_STATE.PATCHING:
-                    score += config_values.patching_should_be_compromised
-                elif final_service.get_state() == SOFTWARE_STATE.COMPROMISED:
-                    score += config_values.compromised 
-                elif final_service.get_state() == SOFTWARE_STATE.OVERWHELMED:
-                    score += config_values.overwhelmed_should_be_compromised 
-                else:
-                    pass
-            elif initial_service.get_state() == SOFTWARE_STATE.OVERWHELMED:
-                if final_service.get_state() == SOFTWARE_STATE.GOOD:
-                    score += config_values.good_should_be_overwhelmed
-                elif final_service.get_state() == SOFTWARE_STATE.PATCHING:
-                    score += config_values.patching_should_be_overwhelmed
-                elif final_service.get_state() == SOFTWARE_STATE.COMPROMISED:
-                    score += config_values.compromised_should_be_overwhelmed 
-                elif final_service.get_state() == SOFTWARE_STATE.OVERWHELMED:
-                    score += config_values.overwhelmed 
-                else:
-                    pass
-            else:
-                pass
-
-    return score
-
-def score_node_file_system(final_node, initial_node, reference_node, config_values):
-    """
-    Calculates score relating to the file system state of a node
-
-    Args:
-        final_node: The node after red and blue agents take effect
-        initial_node: The node before red and blue agents take effect
-        reference_node: The node if there had been no red or blue effect
-    """
-
-    score = 0    
-    final_node_file_system_state = final_node.get_file_system_state_actual()
-    initial_node_file_system_state = initial_node.get_file_system_state_actual()
-    reference_node_file_system_state = reference_node.get_file_system_state_actual()
-
-    final_node_scanning_state = final_node.is_scanning_file_system()
-    reference_node_scanning_state = reference_node.is_scanning_file_system()
-
-    # File System State
-    if final_node_file_system_state == reference_node_file_system_state:
-        # All is well - we're no different from the reference situation
-        score += config_values.all_ok
-    else:  
-        # We're different from the reference situation
-        # Need to compare initial and final state of node (i.e. after red and blue actions)
-        if initial_node_file_system_state == FILE_SYSTEM_STATE.GOOD:
-            if final_node_file_system_state == FILE_SYSTEM_STATE.REPAIRING:
-                score += config_values.repairing_should_be_good
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.RESTORING:
-                score += config_values.restoring_should_be_good
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.CORRUPT:
-                score += config_values.corrupt_should_be_good
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.DESTROYED:
-                score += config_values.destroyed_should_be_good
-            else:
-                pass
-        elif initial_node_file_system_state == FILE_SYSTEM_STATE.REPAIRING:
-            if final_node_file_system_state == FILE_SYSTEM_STATE.GOOD:
-                score += config_values.good_should_be_repairing
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.RESTORING:
-                score += config_values.restoring_should_be_repairing  
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.CORRUPT:
-                score += config_values.corrupt_should_be_repairing  
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.DESTROYED:
-                score += config_values.destroyed_should_be_repairing 
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.REPAIRING:
-                score += config_values.repairing
-            else:
-                pass              
-        elif initial_node_file_system_state == FILE_SYSTEM_STATE.RESTORING:
-            if final_node_file_system_state == FILE_SYSTEM_STATE.GOOD:
-                score += config_values.good_should_be_restoring
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.REPAIRING:
-                score += config_values.repairing_should_be_restoring
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.CORRUPT:
-                score += config_values.corrupt_should_be_restoring
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.DESTROYED:
-                score += config_values.destroyed_should_be_restoring  
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.RESTORING:
-                score += config_values.restoring  
-            else:
-                pass
-        elif initial_node_file_system_state == FILE_SYSTEM_STATE.CORRUPT:
-            if final_node_file_system_state == FILE_SYSTEM_STATE.GOOD:
-                score += config_values.good_should_be_corrupt
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.REPAIRING:
-                score += config_values.repairing_should_be_corrupt
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.RESTORING:
-                score += config_values.restoring_should_be_corrupt
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.DESTROYED:
-                score += config_values.destroyed_should_be_corrupt  
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.CORRUPT:
-                score += config_values.corrupt  
-            else:
-                pass
-        elif initial_node_file_system_state == FILE_SYSTEM_STATE.DESTROYED:
-            if final_node_file_system_state == FILE_SYSTEM_STATE.GOOD:
-                score += config_values.good_should_be_destroyed
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.REPAIRING:
-                score += config_values.repairing_should_be_destroyed
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.RESTORING:
-                score += config_values.restoring_should_be_destroyed
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.CORRUPT:
-                score += config_values.corrupt_should_be_destroyed  
-            elif final_node_file_system_state == FILE_SYSTEM_STATE.DESTROYED:
-                score += config_values.destroyed  
-            else:
-                pass
-        else:
-            pass
-
-    # Scanning State
-    if final_node_scanning_state == reference_node_scanning_state:
-        # All is well - we're no different from the reference situation
-        score += config_values.all_ok
-    else: 
-        # We're different from the reference situation
-        # We're scanning the file system which incurs a penalty (as it slows down systems)
-        score += config_values.scanning
-
-    return score

PRIMAITE/links/__init__.py

@@ -1 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.

PRIMAITE/links/link.py

@@ -1,132 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-The link class
-"""
-
-from common.protocol import Protocol
-from common.enums import *
-
-class Link(object):
-    """
-    Link class
-    """
-
-    def __init__(self, _id, _bandwidth, _source_node_name, _dest_node_name, _services):
-        """
-        Init
-
-        Args:
-            _id: The IER id
-            _bandwidth: The bandwidth of the link (bps)
-            _source_node_name: The name of the source node
-            _dest_node_name: The name of the destination node
-            _protocols: The protocols to add to the link
-        """
-
-        self.id = _id
-        self.bandwidth = _bandwidth     
-        self.source_node_name = _source_node_name
-        self.dest_node_name = _dest_node_name
-        self.protocol_list = []
-
-        # Add the default protocols
-        for protocol_name in _services:
-            self.add_protocol(protocol_name)
-
-    def add_protocol(self, _protocol):
-        """
-        Adds a new protocol to the list of protocols on this link
-
-        Args:
-            _protocol: The protocol to be added (enum)
-        """
-
-        self.protocol_list.append(Protocol(_protocol))
-
-    def get_id(self):
-        """
-        Gets link ID
-
-        Returns:
-             Link ID
-        """
-
-        return self.id
-
-    def get_source_node_name(self):
-        """
-        Gets source node name
-
-        Returns:
-             Source node name
-        """
-
-        return self.source_node_name
-
-    def get_dest_node_name(self):
-        """
-        Gets destination node name
-
-        Returns:
-             Destination node name
-        """
-
-        return self.dest_node_name
-
-    def get_bandwidth(self):
-        """
-        Gets bandwidth of link
-
-        Returns:
-             Link bandwidth (bps)
-        """
-
-        return self.bandwidth
-
-    def get_protocol_list(self):
-        """
-        Gets list of protocols on this link
-
-        Returns:
-             List of protocols on this link
-        """
-
-        return self.protocol_list
-
-    def get_current_load(self):
-        """
-        Gets current total load on this link
-
-        Returns:
-             Total load on this link (bps)
-        """
-
-        total_load = 0
-        for protocol in self.protocol_list:
-            total_load += protocol.get_load()
-        return total_load
-
-    def add_protocol_load(self, _protocol, _load):
-        """
-        Adds a loading to a protocol on this link
-
-        Args:
-            _protocol: The protocol to load
-            _load: The amount to load (bps)
-        """
-
-        for protocol in self.protocol_list:
-            if protocol.get_name() == _protocol:
-                protocol.add_load(_load)
-            else:
-                pass
-
-    def clear_traffic(self):
-        """
-        Clears all traffic on this link
-        """
-
-        for protocol in self.protocol_list:
-            protocol.clear_load()
-
-

PRIMAITE/nodes/__init__.py

@@ -1 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.

PRIMAITE/nodes/active_node.py

@@ -1,205 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-An Active Node (i.e. not an actuator)
-"""
-
-from nodes.node import Node
-from common.enums import *
-
-class ActiveNode(Node):
-    """
-    Active Node class
-    """
-
-    def __init__(self, _id, _name, _type, _priority, _state, _ip_address, _os_state, _file_system_state, _config_values):
-        """
-        Init
-
-        Args:
-            _id: The node ID
-            _name: The node name
-            _type: The node type (enum)
-            _priority: The node priority (enum)
-            _state: The node state (enum)
-            _ip_address: The node IP address
-            _os_state: The node Operating System state
-            _file_system_state: The node file system state
-            _config_values: The config values
-        """
-
-        super().__init__(_id, _name, _type, _priority, _state, _config_values)
-        self.ip_address = _ip_address
-        # Related to O/S
-        self.os_state = _os_state
-        self.patching_count = 0
-        # Related to File System
-        self.file_system_state_actual = _file_system_state
-        self.file_system_state_observed = _file_system_state
-        self.file_system_scanning = False
-        self.file_system_scanning_count = 0
-        self.file_system_action_count = 0
-
-
-    def set_ip_address(self, _ip_address):
-        """
-        Sets IP address
-
-        Args:
-            _ip_address: IP address
-        """
-
-        self.ip_address = _ip_address
-
-    def get_ip_address(self):
-        """
-        Gets IP address
-
-        Returns:
-             IP address
-        """
-        return self.ip_address
-
-    def set_os_state(self, _os_state):
-        """
-        Sets operating system state
-
-        Args:
-            _os_state: Operating system state
-        """
-
-        self.os_state = _os_state
-        if _os_state == SOFTWARE_STATE.PATCHING:
-            self.patching_count = self.config_values.os_patching_duration
-
-    def set_os_state_if_not_compromised(self, _os_state):
-        """
-        Sets operating system state if the node is not compromised
-
-        Args:
-            _os_state: Operating system state
-        """
-
-        if self.os_state != SOFTWARE_STATE.COMPROMISED:
-            self.os_state = _os_state
-            if _os_state == SOFTWARE_STATE.PATCHING:
-                self.patching_count = self.config_values.os_patching_duration
-
-    def get_os_state(self):
-        """
-        Gets operating system state
-
-        Returns:
-             Operating system state
-        """
-
-        return self.os_state
-
-    def update_os_patching_status(self):
-        """
-        Updates operating system status based on patching cycle
-        """
-
-        self.patching_count -= 1
-        if self.patching_count <= 0:
-            self.patching_count = 0
-            self.os_state = SOFTWARE_STATE.GOOD
-
-    def set_file_system_state(self, _file_system_state):
-        """
-        Sets the file system state (actual and observed)
-
-        Args:
-            _file_system_state: File system state
-        """
-
-        self.file_system_state_actual = _file_system_state
-
-        if _file_system_state == FILE_SYSTEM_STATE.REPAIRING:
-            self.file_system_action_count = self.config_values.file_system_repairing_limit
-            self.file_system_state_observed = FILE_SYSTEM_STATE.REPAIRING
-        elif _file_system_state == FILE_SYSTEM_STATE.RESTORING:
-            self.file_system_action_count = self.config_values.file_system_restoring_limit
-            self.file_system_state_observed = FILE_SYSTEM_STATE.RESTORING
-        elif _file_system_state == FILE_SYSTEM_STATE.GOOD:
-            self.file_system_state_observed = FILE_SYSTEM_STATE.GOOD
-
-    def set_file_system_state_if_not_compromised(self, _file_system_state):
-        """
-        Sets the file system state (actual and observed) if not in a compromised state
-        Use for green PoL to prevent it overturning a compromised state
-
-        Args:
-            _file_system_state: File system state
-        """
-
-        if self.file_system_state_actual != FILE_SYSTEM_STATE.CORRUPT and self.file_system_state_actual != FILE_SYSTEM_STATE.DESTROYED:
-            self.file_system_state_actual = _file_system_state
-
-            if _file_system_state == FILE_SYSTEM_STATE.REPAIRING:
-                self.file_system_action_count = self.config_values.file_system_repairing_limit
-                self.file_system_state_observed = FILE_SYSTEM_STATE.REPAIRING
-            elif _file_system_state == FILE_SYSTEM_STATE.RESTORING:
-                self.file_system_action_count = self.config_values.file_system_restoring_limit
-                self.file_system_state_observed = FILE_SYSTEM_STATE.RESTORING
-            elif _file_system_state == FILE_SYSTEM_STATE.GOOD:
-                self.file_system_state_observed = FILE_SYSTEM_STATE.GOOD
-
-    def get_file_system_state_actual(self):
-        """
-        Gets file system state (actual)
-
-        Returns:
-             File system state (actual)
-        """
-
-        return self.file_system_state_actual
-
-    def get_file_system_state_observed(self):
-        """
-        Gets file system state (observed)
-
-        Returns:
-             File system state (observed)
-        """
-
-        return self.file_system_state_observed
-
-    def start_file_system_scan(self):
-        """
-        Starts a file system scan
-        """
-
-        self.file_system_scanning = True
-        self.file_system_scanning_count = self.config_values.file_system_scanning_limit
-
-    def is_scanning_file_system(self):
-        """
-        Gets true/false on whether file system is being scanned
-
-        Returns:
-             True if file system is being scanned
-        """
-
-        return self.file_system_scanning
-
-    def update_file_system_state(self):
-        """
-        Updates file system status based on scanning / restore / repair cycle
-        """
-
-        # Deprecate both the action count (for restoring or reparing) and the scanning count
-        self.file_system_action_count -= 1
-        self.file_system_scanning_count -= 1
-
-        # Reparing / Restoring updates
-        if self.file_system_action_count <= 0:
-            self.file_system_action_count = 0
-            if self.file_system_state_actual == FILE_SYSTEM_STATE.REPAIRING or self.file_system_state_actual == FILE_SYSTEM_STATE.RESTORING:
-                self.file_system_state_actual = FILE_SYSTEM_STATE.GOOD
-                self.file_system_state_observed = FILE_SYSTEM_STATE.GOOD
-
-        # Scanning updates
-        if self.file_system_scanning == True and self.file_system_scanning_count < 0:
-            self.file_system_state_observed = self.file_system_state_actual
-            self.file_system_scanning = False
-            self.file_system_scanning_count = 0

PRIMAITE/nodes/node.py

@@ -1,176 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-The base Node class
-"""
-
-from common.enums import *
-
-class Node:
-    """
-    Node class
-    """
-
-    def __init__(self, _id, _name, _type, _priority, _state, _config_values):
-        """
-        Init
-
-        Args:
-            _id: The node id
-            _name: The name of the node
-            _type: The type of the node
-            _priority: The priority of the node
-            _state: The state of the node
-        """
-
-        self.id = _id
-        self.name = _name
-        self.type = _type
-        self.priority = _priority
-        self.operating_state = _state
-        self.resetting_count = 0    
-        self.config_values = _config_values
-
-    def __repr__(self):
-        """
-        Returns the name of the node
-        """
-
-        return self.name
-
-    def set_id(self, _id):
-        """
-        Sets the node ID
-
-        Args:
-            _id: The node ID
-        """
-
-        self.id = _id
-
-    def get_id(self):
-        """
-        Gets the node ID
-
-        Returns:
-             The node ID
-        """
-
-        return self.id
-
-    def set_name(self, _name):
-        """
-        Sets the node name
-
-        Args:
-            _name: The node name
-        """
-
-        self.name = _name
-
-    def get_name(self):
-        """
-        Gets the node name
-
-        Returns:
-             The node name
-        """
-
-        return self.name
-
-    def set_type(self, _type):
-        """
-        Sets the node type
-
-        Args:
-            _type: The node type
-        """
-
-        self.type = _type
-
-    def get_type(self):
-        """
-        Gets the node type
-
-        Returns:
-             The node type
-        """
-
-        return self.type
-
-    def set_priority(self, _priority):
-        """
-        Sets the node priority
-
-        Args:
-            _priority: The node priority
-        """
-
-        self.priority = _priority
-
-    def get_priority(self):
-        """
-        Gets the node priority
-
-        Returns:
-             The node priority
-        """
-
-        return self.priority
-
-    def set_state(self, _state):
-        """
-        Sets the node state
-
-        Args:
-            _state: The node state
-        """
-
-        self.operating_state = _state
-
-    def get_state(self):
-        """
-        Gets the node operating state
-
-        Returns:
-             The node operating state
-        """
-
-        return self.operating_state
-
-    def turn_on(self):
-        """
-        Sets the node state to ON
-        """
-
-        self.operating_state = HARDWARE_STATE.ON
-
-    def turn_off(self):
-        """
-        Sets the node state to OFF
-        """
-
-        self.operating_state = HARDWARE_STATE.OFF
-
-    def reset(self):
-        """
-        Sets the node state to Resetting and starts the reset count
-        """
-
-        self.operating_state = HARDWARE_STATE.RESETTING
-        self.resetting_count = self.config_values.node_reset_duration
-
-    def update_resetting_status(self):
-        """
-        Updates the resetting count
-        """
-
-        self.resetting_count -= 1
-        if self.resetting_count <= 0:
-            self.resetting_count = 0
-            self.operating_state = HARDWARE_STATE.ON
-
-
-
-
-
-

PRIMAITE/nodes/node_state_instruction_green.py

@@ -1,92 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-Defines node behaviour for Green PoL
-"""
-
-class NodeStateInstructionGreen(object):
-    """
-    The Node State Instruction class
-    """
-
-    def __init__(self, _id, _start_step, _end_step, _node_id, _node_pol_type, _service_name, _state):
-        """
-        Init
-
-        Args:
-            _id: The node state instruction id
-            _start_step: The start step of the instruction
-            _end_step: The end step of the instruction
-            _node_id: The id of the associated node
-            _node_pol_type: The pattern of life type
-            _service_name: The service name
-            _state: The state (node or service)
-        """
-
-        self.id = _id
-        self.start_step = _start_step
-        self.end_step = _end_step
-        self.node_id = _node_id
-        self.node_pol_type = _node_pol_type
-        self.service_name = _service_name # Not used when not a service instruction
-        self.state = _state     
-
-    def get_start_step(self):
-        """
-        Gets the start step
-
-        Returns:
-             The start step
-        """
-
-        return self.start_step
-
-    def get_end_step(self):
-        """
-        Gets the end step
-
-        Returns:
-             The end step
-        """
-
-        return self.end_step
-
-    def get_node_id(self):
-        """
-        Gets the node ID
-
-        Returns:
-             The node ID
-        """
-
-        return self.node_id
-
-    def get_node_pol_type(self):
-        """
-        Gets the node pattern of life type (enum)
-
-        Returns:
-             The node pattern of life type (enum)
-        """
-
-        return self.node_pol_type
-
-    def get_service_name(self):
-        """
-        Gets the service name
-
-        Returns:
-             The service name
-        """
-
-        return self.service_name
-
-    def get_state(self):
-        """
-        Gets the state (node or service)
-
-        Returns:
-             The state (node or service)
-        """
-
-        return self.state
-        

PRIMAITE/nodes/node_state_instruction_red.py

@@ -1,140 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-Defines node behaviour for Green PoL
-"""
-
-class NodeStateInstructionRed(object):
-    """
-    The Node State Instruction class
-    """
-
-    def __init__(self, _id, _start_step, _end_step, _target_node_id, _pol_initiator, _pol_type, pol_protocol, _pol_state, _pol_source_node_id, _pol_source_node_service, _pol_source_node_service_state):
-        """
-        Init
-
-        Args:
-            _id: The node state instruction id
-            _start_step: The start step of the instruction
-            _end_step: The end step of the instruction
-            _target_node_id: The id of the associated node
-            -pol_initiator: The way the PoL is applied (DIRECT, IER or SERVICE)
-            _pol_type: The pattern of life type
-            -pol_protocol: The pattern of life protocol/service affected
-            _pol_state: The state (node or service)
-            _pol_source_node_id: The source node Id (used for initiator type SERVICE)
-            _pol_source_node_service: The source node service (used for initiator type SERVICE)
-            _pol_source_node_service_state: The source node service state (used for initiator type SERVICE)
-        """
-
-        self.id = _id
-        self.start_step = _start_step
-        self.end_step = _end_step
-        self.target_node_id = _target_node_id
-        self.initiator = _pol_initiator
-        self.pol_type = _pol_type
-        self.service_name = pol_protocol # Not used when not a service instruction
-        self.state = _pol_state
-        self.source_node_id = _pol_source_node_id
-        self.source_node_service = _pol_source_node_service
-        self.source_node_service_state = _pol_source_node_service_state
-
-    def get_start_step(self):
-        """
-        Gets the start step
-
-        Returns:
-             The start step
-        """
-
-        return self.start_step
-
-    def get_end_step(self):
-        """
-        Gets the end step
-
-        Returns:
-             The end step
-        """
-
-        return self.end_step
-
-    def get_target_node_id(self):
-        """
-        Gets the node ID
-
-        Returns:
-             The node ID
-        """
-
-        return self.target_node_id
-
-    def get_initiator(self):
-        """
-        Gets the initiator
-
-        Returns:
-             The initiator
-        """
-
-        return self.initiator
-
-    def get_pol_type(self):
-        """
-        Gets the node pattern of life type (enum)
-
-        Returns:
-             The node pattern of life type (enum)
-        """
-
-        return self.pol_type
-
-    def get_service_name(self):
-        """
-        Gets the service name
-
-        Returns:
-             The service name
-        """
-
-        return self.service_name
-
-    def get_state(self):
-        """
-        Gets the state (node or service)
-
-        Returns:
-             The state (node or service)
-        """
-
-        return self.state
-
-    def get_source_node_id(self):
-        """
-        Gets the source node id (used for initiator type SERVICE)
-
-        Returns:
-             The source node id
-        """
-
-        return self.source_node_id
-
-    def get_source_node_service(self):
-        """
-        Gets the source node service (used for initiator type SERVICE)
-
-        Returns:
-             The source node service
-        """
-
-        return self.source_node_service
-
-    def get_source_node_service_state(self):
-        """
-        Gets the source node service state (used for initiator type SERVICE)
-
-        Returns:
-             The source node service state
-        """
-
-        return self.source_node_service_state
-        

PRIMAITE/nodes/passive_node.py

@@ -1,37 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-The Passive Node class (i.e. an actuator)
-"""
-
-from nodes.node import Node
-
-class PassiveNode(Node):
-    """
-    The Passive Node class
-    """
-
-    def __init__(self, _id, _name, _type, _priority, _state, _config_values):
-        """
-        Init
-
-        Args:
-            _id: The node id
-            _name: The name of the node
-            _type: The type of the node
-            _priority: The priority of the node
-            _state: The state of the node
-        """
-
-        # Pass through to Super for now
-        super().__init__(_id, _name, _type, _priority, _state, _config_values)
-
-    def get_ip_address(self):
-        """
-        Gets the node IP address
-
-        Returns:
-             The node IP address
-        """
-
-        # No concept of IP address for passive nodes for now
-        return ""

PRIMAITE/nodes/service_node.py

@@ -1,162 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-A Service Node (i.e. not an actuator)
-"""
-
-from nodes.active_node import ActiveNode
-from common.enums import *
-
-class ServiceNode(ActiveNode):
-    """
-    ServiceNode class
-    """
-
-    def __init__(self, _id, _name, _type, _priority, _state, _ip_address, _os_state, _file_system_state, _config_values):
-        """
-        Init
-
-        Args:
-            _id: The node id
-            _name: The name of the node
-            _type: The type of the node
-            _priority: The priority of the node
-            _state: The state of the node
-            _ipAddress: The IP address of the node
-            _osState: The operating system state of the node
-            _file_system_state: The file system state of the node
-        """
-
-        super().__init__(_id, _name, _type, _priority, _state, _ip_address, _os_state, _file_system_state, _config_values)
-        self.services = {}
-
-    def add_service(self, _service):
-        """
-        Adds a service to the node
-
-        Args:
-            _service: The service to add
-        """
-
-        self.services[_service.get_name()] = _service
-
-    def get_services(self):
-        """
-        Gets the dictionary of services on this node
-
-        Returns:
-             Dictionary of services on this node
-        """
-
-        return self.services
-
-    def has_service(self, _protocol):
-        """
-        Indicates whether a service is on a node
-
-        Returns:
-             True if service (protocol) is on the node
-        """
-
-        for service_key, service_value in self.services.items():
-            if service_key == _protocol:
-                return True
-            else:
-                pass
-        return False
-
-    def service_running(self, _protocol):
-        """
-        Indicates whether a service is in a running state on the node
-
-        Returns:
-             True if service (protocol) is in a running state on the node
-        """
-
-        for service_key, service_value in self.services.items():
-            if service_key == _protocol:
-                if service_value.get_state() != SOFTWARE_STATE.PATCHING:
-                    return True
-                else:
-                    return False
-            else:
-                pass
-        return False
-
-    def service_is_overwhelmed(self, _protocol):
-        """
-        Indicates whether a service is in an overwhelmed state on the node
-
-        Returns:
-             True if service (protocol) is in an overwhelmed state on the node
-        """
-
-        for service_key, service_value in self.services.items():
-            if service_key == _protocol:
-                if service_value.get_state() == SOFTWARE_STATE.OVERWHELMED:
-                    return True
-                else:
-                    return False
-            else:
-                pass
-        return False
-
-    def set_service_state(self, _protocol, _state):
-        """
-        Sets the state of a service (protocol) on the node
-
-        Args:
-            _protocol: The service (protocol)
-            _state: The state value
-        """
-
-        for service_key, service_value in self.services.items():
-            if service_key == _protocol:
-                # Can't set to compromised if you're in a patching state
-                if (_state == SOFTWARE_STATE.COMPROMISED and service_value.get_state() != SOFTWARE_STATE.PATCHING) or _state != SOFTWARE_STATE.COMPROMISED:
-                    service_value.set_state(_state)
-                else:
-                    # Do nothing
-                    pass
-                if _state == SOFTWARE_STATE.PATCHING:
-                    service_value.patching_count = self.config_values.service_patching_duration
-                else:
-                    # Do nothing
-                    pass
-
-    def set_service_state_if_not_compromised(self, _protocol, _state):
-        """
-        Sets the state of a service (protocol) on the node if the operating state is not "compromised"
-
-        Args:
-            _protocol: The service (protocol)
-            _state: The state value
-        """
-
-        for service_key, service_value in self.services.items():
-            if service_key == _protocol:
-                if service_value.get_state() != SOFTWARE_STATE.COMPROMISED:
-                    service_value.set_state(_state)
-                    if _state == SOFTWARE_STATE.PATCHING:
-                        service_value.patching_count = self.config_values.service_patching_duration
-
-    def get_service_state(self, _protocol):
-        """
-        Gets the state of a service
-
-        Returns:
-             The state of the service
-        """
-
-        for service_key, service_value in self.services.items():
-            if service_key == _protocol:
-                return service_value.get_state()
-
-    def update_services_patching_status(self):
-        """
-        Updates the patching counter for any service that are patching
-        """
-
-        for service_key, service_value in self.services.items():
-            if service_value.get_state() == SOFTWARE_STATE.PATCHING:
-                service_value.reduce_patching_count()
-

PRIMAITE/pol/__init__.py

@@ -1 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.

PRIMAITE/pol/ier.py

@@ -1,147 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-Information Exchange Requirements for APE
-Used to represent an information flow from source to destination
-"""
-
-class IER(object):
-    """
-    Information Exchange Requirement class
-    """
-
-    def __init__(self, _id, _start_step, _end_step, _load, _protocol, _port, _source_node_id, _dest_node_id, _mission_criticality, _running=False):
-        """
-        Init
-
-        Args:
-            _id: The IER id
-            _start_step: The step when this IER should start
-            _end_step: The step when this IER should end
-            _load: The load this IER should put on a link (bps)
-            _protocol: The protocol of this IER
-            _port: The port this IER runs on
-            _source_node_id: The source node ID
-            _dest_node_id: The destination node ID
-            _mission_criticality: Criticality of this IER to the mission (0 none, 5 mission critical)
-            _running: Indicates whether the IER is currently running
-        """
-
-        self.id = _id
-        self.start_step = _start_step
-        self.end_step = _end_step
-        self.source_node_id = _source_node_id
-        self.dest_node_id = _dest_node_id
-        self.load = _load       
-        self.protocol = _protocol
-        self.port = _port
-        self.mission_criticality = _mission_criticality
-        self.running = _running
-
-    def get_id(self):
-        """
-        Gets IER ID
-
-        Returns:
-             IER ID
-        """
-
-        return self.id
-
-    def get_start_step(self):
-        """
-        Gets IER start step
-
-        Returns:
-             IER start step
-        """
-
-        return self.start_step
-
-    def get_end_step(self):
-        """
-        Gets IER end step
-
-        Returns:
-             IER end step
-        """
-
-        return self.end_step
-
-    def get_load(self):
-        """
-        Gets IER load
-
-        Returns:
-             IER load
-        """
-
-        return self.load
-
-    def get_protocol(self):
-        """
-        Gets IER protocol
-
-        Returns:
-             IER protocol
-        """
-
-        return self.protocol
-
-    def get_port(self):
-        """
-        Gets IER port
-
-        Returns:
-             IER port
-        """
-
-        return self.port
-
-    def get_source_node_id(self):
-        """
-        Gets IER source node ID
-
-        Returns:
-             IER source node ID
-        """
-
-        return self.source_node_id
-
-    def get_dest_node_id(self):
-        """
-        Gets IER destination node ID
-
-        Returns:
-             IER destination node ID
-        """
-
-        return self.dest_node_id
-
-    def get_is_running(self):
-        """
-        Informs whether the IER is currently running
-
-        Returns:
-             True if running
-        """
-
-        return self.running
-
-    def set_is_running(self, _value):
-        """
-        Sets the running state of the IER
-
-        Args:
-             _value: running status
-        """
-        self.running = _value
-
-    def get_mission_criticality(self):
-        """
-        Gets the IER mission criticality (used in the reward function)
-
-        Returns:
-             Mission criticality value (0 lowest to 5 highest)
-        """
-
-        return self.mission_criticality

PRIMAITE/tests/test_acl.py

@@ -1,105 +0,0 @@
-
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-Used to tes the ACL functions
-"""
-
-from acl.acl_rule import ACLRule
-from acl.access_control_list import AccessControlList
-
-def test_acl_address_match_1():
-    """
-    Test that matching IP addresses produce True
-    """
-
-    acl = AccessControlList()
-
-    rule = ACLRule("ALLOW", "192.168.1.1", "192.168.1.2", "TCP", "80")
-
-    assert acl.check_address_match(rule, "192.168.1.1", "192.168.1.2") == True
-
-def test_acl_address_match_2():
-    """
-    Test that mismatching IP addresses produce False
-    """
-
-    acl = AccessControlList()
-
-    rule = ACLRule("ALLOW", "192.168.1.1", "192.168.1.2", "TCP", "80")
-
-    assert acl.check_address_match(rule, "192.168.1.1", "192.168.1.3") == False
-
-def test_acl_address_match_3():
-    """
-    Test the ANY condition for source IP addresses produce True
-    """
-
-    acl = AccessControlList()
-
-    rule = ACLRule("ALLOW", "ANY", "192.168.1.2", "TCP", "80")
-
-    assert acl.check_address_match(rule, "192.168.1.1", "192.168.1.2") == True
-
-def test_acl_address_match_4():
-    """
-    Test the ANY condition for dest IP addresses produce True
-    """
-
-    acl = AccessControlList()
-
-    rule = ACLRule("ALLOW", "192.168.1.1", "ANY", "TCP", "80")
-
-    assert acl.check_address_match(rule, "192.168.1.1", "192.168.1.2") == True
-
-def test_check_acl_block_affirmative():
-    """
-    Test the block function (affirmative)
-    """
-
-    # Create the Access Control List
-    acl = AccessControlList()
-
-    # Create a rule
-    acl_rule_permission = "ALLOW"
-    acl_rule_source = "192.168.1.1"
-    acl_rule_destination = "192.168.1.2"
-    acl_rule_protocol = "TCP"
-    acl_rule_port = "80"
-
-    acl.add_rule(acl_rule_permission, acl_rule_source, acl_rule_destination, acl_rule_protocol, acl_rule_port)
-
-    assert acl.is_blocked("192.168.1.1", "192.168.1.2", "TCP", "80") == False
-
-def test_check_acl_block_negative():
-    """
-    Test the block function (negative)
-    """
-
-    # Create the Access Control List
-    acl = AccessControlList()
-
-    # Create a rule
-    acl_rule_permission = "DENY"
-    acl_rule_source = "192.168.1.1"
-    acl_rule_destination = "192.168.1.2"
-    acl_rule_protocol = "TCP"
-    acl_rule_port = "80"
-
-    acl.add_rule(acl_rule_permission, acl_rule_source, acl_rule_destination, acl_rule_protocol, acl_rule_port)
-
-    assert acl.is_blocked("192.168.1.1", "192.168.1.2", "TCP", "80") == True
-
-def test_rule_hash():
-    """
-    Test the rule hash
-    """
-
-    # Create the Access Control List
-    acl = AccessControlList()
-
-    rule = ACLRule("DENY", "192.168.1.1", "192.168.1.2", "TCP", "80")
-    hash_value_local = hash(rule)
-
-    hash_value_remote = acl.get_dictionary_hash("DENY", "192.168.1.1", "192.168.1.2", "TCP", "80")
-
-    assert hash_value_local == hash_value_remote

PRIMAITE/transactions/__init__.py

@@ -1 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.

PRIMAITE/transactions/transaction.py

@@ -1,69 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-The Transaction class
-"""
-
-class Transaction(object):
-    """
-    Transaction class
-    """
-    def __init__(self, _timestamp, _agent_identifier, _episode_number, _step_number):
-        """
-        Init
-
-        Args:
-            _timestamp: The time this object was created
-            _agent_identifier: An identifier for the agent in use
-            _episode_number: The episode number
-            _step_number: The step number        
-        """
-
-        self.timestamp = _timestamp
-        self.agent_identifier = _agent_identifier
-        self.episode_number = _episode_number
-        self.step_number = _step_number      
-
-    def set_obs_space_pre(self, _obs_space_pre):
-        """
-        Sets the observation space (pre)
-
-        Args:
-            _obs_space_pre: The observation space before any actions are taken
-        """
-
-        self.obs_space_pre = _obs_space_pre
-
-    def set_obs_space_post(self, _obs_space_post):
-        """
-        Sets the observation space (post)
-
-        Args:
-            _obs_space_post: The observation space after any actions are taken
-        """
-
-        self.obs_space_post = _obs_space_post
-
-    def set_reward(self, _reward):
-        """
-        Sets the reward
-
-        Args:
-            _reward: The reward value
-        """
-
-        self.reward = _reward
-
-    def set_action_space(self, _action_space):
-        """
-        Sets the action space
-
-        Args:
-            _action_space: The action space invoked by the agent
-        """
-
-        self.action_space = _action_space
-
-
-
-
-

PRIMAITE/transactions/transactions_to_file.py

@@ -1,104 +0,0 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-Writes the Transaction log list out to file for evaluation to utilse
-"""
-
-import csv
-import logging
-import os.path
-
-from datetime import datetime
-
-from transactions.transaction import Transaction
-
-def turn_action_space_to_array(_action_space):
-    """
-    Turns action space into a string array so it can be saved to csv
-
-    Args:
-        _action_space: The action space
-    """
-
-    return_array = []
-    for x in range(len(_action_space)):
-        return_array.append(str(_action_space[x]))
-
-    return return_array
-
-def turn_obs_space_to_array(_obs_space, _obs_assets, _obs_features):
-    """
-    Turns observation space into a string array so it can be saved to csv
-
-    Args:
-        _obs_space: The observation space
-        _obs_assets: The number of assets (i.e. nodes or links) in the observation space
-        _obs_features: The number of features associated with the asset
-    """
-
-    return_array = []
-    for x in range(_obs_assets):
-        for y in range(_obs_features):
-            return_array.append(str(_obs_space[x][y]))
-
-    return return_array
-
-def write_transaction_to_file(_transaction_list):
-    """
-    Writes transaction logs to file to support training evaluation
-
-    Args:
-        _transaction_list: The list of transactions from all steps and all episodes
-        _num_episodes: The number of episodes that were conducted
-    """
-
-    # Get the first transaction and use it to determine the makeup of the observation space and action space
-    # Label the obs space fields in csv as "OSI_1_1", "OSN_1_1" and action space as "AS_1"
-    # This will be tied into the PrimAITE Use Case so that they make sense
-    template_transation = _transaction_list[0]
-    action_length = template_transation.action_space.size
-    obs_assets = template_transation.obs_space_post.shape[0]
-    obs_features = template_transation.obs_space_post.shape[1]
-
-    # Create the action space headers array   
-    action_header = []
-    for x in range(action_length):
-        action_header.append('AS_' + str(x))
-
-    # Create the observation space headers array
-    obs_header_initial = []
-    obs_header_new = []
-    for x in range(obs_assets):
-        for y in range(obs_features):
-            obs_header_initial.append('OSI_' + str(x) + '_' + str(y))
-            obs_header_new.append('OSN_' + str(x) + '_' + str(y))
-
-    # Open up a csv file
-    header = ['Timestamp', 'Episode', 'Step', 'Reward']
-    header = header + action_header + obs_header_initial + obs_header_new
-    now = datetime.now() # current date and time
-    time = now.strftime("%Y%m%d_%H%M%S")
-
-    try:
-        path = 'outputs/results/'
-        is_dir = os.path.isdir(path)
-        if not is_dir:
-            os.makedirs(path)
-
-        filename = "outputs/results/all_transactions_" + time + ".csv"
-        csv_file = open(filename, 'w', encoding='UTF8', newline='')
-        csv_writer = csv.writer(csv_file)
-        csv_writer.writerow(header)
-
-        for transaction in _transaction_list:
-            csv_data = [str(transaction.timestamp),  str(transaction.episode_number), str(transaction.step_number), str(transaction.reward)]
-            csv_data = csv_data + turn_action_space_to_array(transaction.action_space) + \
-                turn_obs_space_to_array(transaction.obs_space_pre, obs_assets, obs_features) + \
-                turn_obs_space_to_array(transaction.obs_space_post, obs_assets, obs_features)
-            csv_writer.writerow(csv_data)
-
-        csv_file.close()
-    except Exception as e:
-        logging.error("Could not save the transaction file")
-        logging.error("Exception occured", exc_info=True)
-
-

README.md

@@ -1 +1,64 @@
-# PrimAITE
+# PrimAITE
+
+## Getting Started with PrimAITE
+
+### Pre-Requisites
+
+In order to get **PrimAITE** installed, you will need to have the following installed:
+
+- `python3.8+`
+- `python3-pip`
+- `virtualenv`
+
+**PrimAITE** is designed to be OS-agnostic, and thus should work on most variations/distros of Linux, Windows, and MacOS.
+
+### Installation from source
+#### 1. Navigate to the PrimAITE folder and create a new python virtual environment (venv)
+
+```unix
+python3 -m venv <name_of_venv>
+```
+
+#### 2. Activate the venv
+
+##### Unix
+```bash
+source <name_of_venv>/bin/activate
+```
+
+##### Windows
+```powershell
+.\<name_of_venv>\Scripts\activate
+```
+
+#### 3. Install `primaite` into the venv along with all of it's dependencies
+
+```bash
+python3 -m pip install -e .
+```
+
+### Development Installation
+To install the development dependencies, postfix the command in step 3 above with the `[dev]` extra. Example:
+
+```bash
+python3 -m pip install -e .[dev]
+```
+
+## Building documentation
+The PrimAITE documentation can be built with the following commands:
+
+##### Unix
+```bash
+cd docs
+make html
+```
+
+##### Windows
+```powershell
+cd docs
+.\make.bat html
+```
+
+This will build the documentation as a collection of HTML files which uses the Read The Docs sphinx theme. Other build
+options are available but may require additional dependencies such as LaTeX and PDF. Please refer to the Sphinx documentation
+for your specific output requirements.

benchmark/config/benchmark_training_config.yaml

@@ -0,0 +1,164 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+# Training Config File
+
+# Sets which agent algorithm framework will be used.
+# Options are:
+# "SB3" (Stable Baselines3)
+# "RLLIB" (Ray RLlib)
+# "CUSTOM" (Custom Agent)
+agent_framework: SB3
+
+# Sets which deep learning framework will be used (by RLlib ONLY).
+# Default is TF (Tensorflow).
+# Options are:
+# "TF" (Tensorflow)
+# TF2 (Tensorflow 2.X)
+# TORCH (PyTorch)
+deep_learning_framework: TF2
+
+# Sets which Agent class will be used.
+# Options are:
+# "A2C" (Advantage Actor Critic coupled with either SB3 or RLLIB agent_framework)
+# "PPO" (Proximal Policy Optimization coupled with either SB3 or RLLIB agent_framework)
+# "HARDCODED" (The HardCoded agents coupled with an ACL or NODE action_type)
+# "DO_NOTHING" (The DoNothing agents coupled with an ACL or NODE action_type)
+# "RANDOM" (primaite.agents.simple.RandomAgent)
+# "DUMMY" (primaite.agents.simple.DummyAgent)
+agent_identifier: PPO
+
+# Sets whether Red Agent POL and IER is randomised.
+# Options are:
+# True
+# False
+random_red_agent: False
+
+# The (integer) seed to be used in random number generation
+# Default is None (null)
+seed: null
+
+# Set whether the agent will be deterministic instead of stochastic
+# Options are:
+# True
+# False
+deterministic: False
+
+# Sets what view of the environment the deterministic hardcoded agent has. The default is BASIC.
+# Options are:
+# "BASIC" (The current observation space only)
+# "FULL" (Full environment view with actions taken and reward feedback)
+hard_coded_agent_view: FULL
+
+# Sets How the Action Space is defined:
+# "NODE"
+# "ACL"
+# "ANY" node and acl actions
+action_type: NODE
+
+# observation space
+observation_space:
+  flatten: true
+  components:
+    - name: NODE_LINK_TABLE
+    - name: NODE_STATUSES
+    - name: LINK_TRAFFIC_LEVELS
+
+# Number of episodes for training to run per session
+num_train_episodes: 500
+
+# Number of time_steps for training per episode
+num_train_steps: 256
+
+# Number of episodes for evaluation to run per session
+num_eval_episodes: 1
+
+# Number of time_steps for evaluation per episode
+num_eval_steps: 256
+
+# Sets how often the agent will save a checkpoint (every n time episodes).
+# Set to 0 if no checkpoints are required. Default is 10
+checkpoint_every_n_episodes: 0
+
+# Time delay (milliseconds) between steps for CUSTOM agents.
+time_delay: 5
+
+# Type of session to be run. Options are:
+# "TRAIN" (Trains an agent)
+# "EVAL" (Evaluates an agent)
+# "TRAIN_EVAL" (Trains then evaluates an agent)
+session_type: TRAIN
+
+# Environment config values
+# The high value for the observation space
+observation_space_high_value: 1000000000
+
+# The Stable Baselines3 learn/eval output verbosity level:
+# Options are:
+# "NONE" (No Output)
+# "INFO" (Info Messages (such as devices and wrappers used))
+# "DEBUG" (All Messages)
+sb3_output_verbose_level: NONE
+
+# Reward values
+# Generic
+all_ok: 0
+# Node Hardware State
+off_should_be_on: -0.001
+off_should_be_resetting: -0.0005
+on_should_be_off: -0.0002
+on_should_be_resetting: -0.0005
+resetting_should_be_on: -0.0005
+resetting_should_be_off: -0.0002
+resetting: -0.0003
+# Node Software or Service State
+good_should_be_patching: 0.0002
+good_should_be_compromised: 0.0005
+good_should_be_overwhelmed: 0.0005
+patching_should_be_good: -0.0005
+patching_should_be_compromised: 0.0002
+patching_should_be_overwhelmed: 0.0002
+patching: -0.0003
+compromised_should_be_good: -0.002
+compromised_should_be_patching: -0.002
+compromised_should_be_overwhelmed: -0.002
+compromised: -0.002
+overwhelmed_should_be_good: -0.002
+overwhelmed_should_be_patching: -0.002
+overwhelmed_should_be_compromised: -0.002
+overwhelmed: -0.002
+# Node File System State
+good_should_be_repairing: 0.0002
+good_should_be_restoring: 0.0002
+good_should_be_corrupt: 0.0005
+good_should_be_destroyed: 0.001
+repairing_should_be_good: -0.0005
+repairing_should_be_restoring: 0.0002
+repairing_should_be_corrupt: 0.0002
+repairing_should_be_destroyed: 0.0000
+repairing: -0.0003
+restoring_should_be_good: -0.001
+restoring_should_be_repairing: -0.0002
+restoring_should_be_corrupt: 0.0001
+restoring_should_be_destroyed: 0.0002
+restoring: -0.0006
+corrupt_should_be_good: -0.001
+corrupt_should_be_repairing: -0.001
+corrupt_should_be_restoring: -0.001
+corrupt_should_be_destroyed: 0.0002
+corrupt: -0.001
+destroyed_should_be_good: -0.002
+destroyed_should_be_repairing: -0.002
+destroyed_should_be_restoring: -0.002
+destroyed_should_be_corrupt: -0.002
+destroyed: -0.002
+scanning: -0.0002
+# IER status
+red_ier_running: -0.0005
+green_ier_blocked: -0.001
+
+# Patching / Reset durations
+os_patching_duration: 5            # The time taken to patch the OS
+node_reset_duration: 5             # The time taken to reset a node (hardware)
+service_patching_duration: 5       # The time taken to patch a service
+file_system_repairing_limit: 5      # The time take to repair the file system
+file_system_restoring_limit: 5      # The time take to restore the file system
+file_system_scanning_limit: 5       # The time taken to scan the file system

benchmark/primaite_benchmark.py

@@ -0,0 +1,449 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+import json
+import platform
+import shutil
+import sys
+from datetime import datetime
+from pathlib import Path
+from typing import Any, Dict, Final, Optional, Tuple, Union
+from unittest.mock import patch
+
+import GPUtil
+import plotly.graph_objects as go
+import polars as pl
+import psutil
+import yaml
+from plotly.graph_objs import Figure
+from pylatex import Command, Document
+from pylatex import Figure as LatexFigure
+from pylatex import Section, Subsection, Tabular
+from pylatex.utils import bold
+
+import primaite
+from primaite.config.lay_down_config import data_manipulation_config_path
+from primaite.data_viz.session_plots import get_plotly_config
+from primaite.environment.primaite_env import Primaite
+from primaite.primaite_session import PrimaiteSession
+
+_LOGGER = primaite.getLogger(__name__)
+
+_BENCHMARK_ROOT = Path(__file__).parent
+_RESULTS_ROOT: Final[Path] = _BENCHMARK_ROOT / "results"
+_RESULTS_ROOT.mkdir(exist_ok=True, parents=True)
+
+_OUTPUT_ROOT: Final[Path] = _BENCHMARK_ROOT / "output"
+# Clear and recreate the output directory
+if _OUTPUT_ROOT.exists():
+    shutil.rmtree(_OUTPUT_ROOT)
+_OUTPUT_ROOT.mkdir()
+
+_TRAINING_CONFIG_PATH = _BENCHMARK_ROOT / "config" / "benchmark_training_config.yaml"
+_LAY_DOWN_CONFIG_PATH = data_manipulation_config_path()
+
+
+def get_size(size_bytes: int):
+    """
+    Scale bytes to its proper format.
+
+    e.g:
+        1253656 => '1.20MB'
+        1253656678 => '1.17GB'
+
+    :
+    """
+    factor = 1024
+    for unit in ["", "K", "M", "G", "T", "P"]:
+        if size_bytes < factor:
+            return f"{size_bytes:.2f}{unit}B"
+        size_bytes /= factor
+
+
+def _get_system_info() -> Dict:
+    """Builds and returns a dict containing system info."""
+    uname = platform.uname()
+    cpu_freq = psutil.cpu_freq()
+    virtual_mem = psutil.virtual_memory()
+    swap_mem = psutil.swap_memory()
+    gpus = GPUtil.getGPUs()
+    return {
+        "System": {
+            "OS": uname.system,
+            "OS Version": uname.version,
+            "Machine": uname.machine,
+            "Processor": uname.processor,
+        },
+        "CPU": {
+            "Physical Cores": psutil.cpu_count(logical=False),
+            "Total Cores": psutil.cpu_count(logical=True),
+            "Max Frequency": f"{cpu_freq.max:.2f}Mhz",
+        },
+        "Memory": {"Total": get_size(virtual_mem.total), "Swap Total": get_size(swap_mem.total)},
+        "GPU": [{"Name": gpu.name, "Total Memory": f"{gpu.memoryTotal}MB"} for gpu in gpus],
+    }
+
+
+def _build_benchmark_latex_report(
+    benchmark_metadata_dict: Dict, this_version_plot_path: Path, all_version_plot_path: Path
+):
+    geometry_options = {"tmargin": "2.5cm", "rmargin": "2.5cm", "bmargin": "2.5cm", "lmargin": "2.5cm"}
+    data = benchmark_metadata_dict
+    primaite_version = data["primaite_version"]
+
+    # Create a new document
+    doc = Document("report", geometry_options=geometry_options)
+    # Title
+    doc.preamble.append(Command("title", f"PrimAITE {primaite_version} Learning Benchmark"))
+    doc.preamble.append(Command("author", "PrimAITE Dev Team"))
+    doc.preamble.append(Command("date", datetime.now().date()))
+    doc.append(Command("maketitle"))
+
+    sessions = data["total_sessions"]
+    episodes = data["training_config"]["num_train_episodes"]
+    steps = data["training_config"]["num_train_steps"]
+
+    # Body
+    with doc.create(Section("Introduction")):
+        doc.append(
+            f"PrimAITE v{primaite_version} was benchmarked automatically upon release. Learning rate metrics "
+            f"were captured to be referenced during system-level testing and user acceptance testing (UAT)."
+        )
+        doc.append(
+            f"\nThe benchmarking process consists of running {sessions} training session using the same "
+            f"training and lay down config files. Each session trains an agent for {episodes} episodes, "
+            f"with each episode consisting of {steps} steps."
+        )
+        doc.append(
+            f"\nThe mean reward per episode from each session is captured. This is then used to calculate a "
+            f"combined average reward per episode from the {sessions} individual sessions for smoothing. "
+            f"Finally, a 25-widow rolling average of the combined average reward per session is calculated for "
+            f"further smoothing."
+        )
+
+    with doc.create(Section("System Information")):
+        with doc.create(Subsection("Python")):
+            with doc.create(Tabular("|l|l|")) as table:
+                table.add_hline()
+                table.add_row((bold("Version"), sys.version))
+                table.add_hline()
+        for section, section_data in data["system_info"].items():
+            if section_data:
+                with doc.create(Subsection(section)):
+                    if isinstance(section_data, dict):
+                        with doc.create(Tabular("|l|l|")) as table:
+                            table.add_hline()
+                            for key, value in section_data.items():
+                                table.add_row((bold(key), value))
+                                table.add_hline()
+                    elif isinstance(section_data, list):
+                        headers = section_data[0].keys()
+                        tabs_str = "|".join(["l" for _ in range(len(headers))])
+                        tabs_str = f"|{tabs_str}|"
+                        with doc.create(Tabular(tabs_str)) as table:
+                            table.add_hline()
+                            table.add_row([bold(h) for h in headers])
+                            table.add_hline()
+                            for item in section_data:
+                                table.add_row(item.values())
+                                table.add_hline()
+
+    headers_map = {
+        "total_sessions": "Total Sessions",
+        "total_episodes": "Total Episodes",
+        "total_time_steps": "Total Steps",
+        "av_s_per_session": "Av Session Duration (s)",
+        "av_s_per_step": "Av Step Duration (s)",
+        "av_s_per_100_steps_10_nodes": "Av Duration per 100 Steps per 10 Nodes (s)",
+    }
+    with doc.create(Section("Stats")):
+        with doc.create(Subsection("Benchmark Results")):
+            with doc.create(Tabular("|l|l|")) as table:
+                table.add_hline()
+                for section, header in headers_map.items():
+                    if section.startswith("av_"):
+                        table.add_row((bold(header), f"{data[section]:.4f}"))
+                    else:
+                        table.add_row((bold(header), data[section]))
+                    table.add_hline()
+
+    with doc.create(Section("Graphs")):
+        with doc.create(Subsection(f"PrimAITE {primaite_version} Learning Benchmark Plot")):
+            with doc.create(LatexFigure(position="h!")) as pic:
+                pic.add_image(str(this_version_plot_path))
+                pic.add_caption(f"PrimAITE {primaite_version} Learning Benchmark Plot")
+
+        with doc.create(Subsection("PrimAITE All Versions Learning Benchmark Plot")):
+            with doc.create(LatexFigure(position="h!")) as pic:
+                pic.add_image(str(all_version_plot_path))
+                pic.add_caption("PrimAITE All Versions Learning Benchmark Plot")
+
+    doc.generate_pdf(str(this_version_plot_path).replace(".png", ""), clean_tex=True)
+
+
+class BenchmarkPrimaiteSession(PrimaiteSession):
+    """A benchmarking primaite session."""
+
+    def __init__(
+        self,
+        training_config_path: Union[str, Path],
+        lay_down_config_path: Union[str, Path],
+    ):
+        super().__init__(training_config_path, lay_down_config_path)
+        self.setup()
+
+    @property
+    def env(self) -> Primaite:
+        """Direct access to the env for ease of testing."""
+        return self._agent_session._env  # noqa
+
+    def __enter__(self):
+        return self
+
+    def __exit__(self, type, value, tb):
+        shutil.rmtree(self.session_path)
+        _LOGGER.debug(f"Deleted benchmark session directory: {self.session_path}")
+
+    def _learn_benchmark_durations(self) -> Tuple[float, float, float]:
+        """
+        Calculate and return the learning benchmark durations.
+
+        Calculates the:
+        - Total learning time in seconds
+        - Total learning time per time step in seconds
+        - Total learning time per 100 time steps per 10 nodes in seconds
+
+        :return: The learning benchmark durations as a Tuple of three floats:
+            Tuple[total_s, s_per_step, s_per_100_steps_10_nodes].
+        """
+        data = self.metadata_file_as_dict()
+        start_dt = datetime.fromisoformat(data["start_datetime"])
+        end_dt = datetime.fromisoformat(data["end_datetime"])
+        delta = end_dt - start_dt
+        total_s = delta.total_seconds()
+
+        total_steps = data["learning"]["total_time_steps"]
+        s_per_step = total_s / total_steps
+
+        num_nodes = self.env.num_nodes
+        num_intervals = total_steps / 100
+        av_interval_time = total_s / num_intervals
+        s_per_100_steps_10_nodes = av_interval_time / (num_nodes / 10)
+
+        return total_s, s_per_step, s_per_100_steps_10_nodes
+
+    def learn_metadata_dict(self) -> Dict[str, Any]:
+        """Metadata specific to the learning session."""
+        total_s, s_per_step, s_per_100_steps_10_nodes = self._learn_benchmark_durations()
+        return {
+            "total_episodes": self.env.actual_episode_count,
+            "total_time_steps": self.env.total_step_count,
+            "total_s": total_s,
+            "s_per_step": s_per_step,
+            "s_per_100_steps_10_nodes": s_per_100_steps_10_nodes,
+            "av_reward_per_episode": self.learn_av_reward_per_episode_dict(),
+        }
+
+
+def _get_benchmark_session_path(session_timestamp: datetime) -> Path:
+    return _OUTPUT_ROOT / session_timestamp.strftime("%Y-%m-%d_%H-%M-%S")
+
+
+def _get_benchmark_primaite_session() -> BenchmarkPrimaiteSession:
+    with patch("primaite.agents.agent_abc.get_session_path", _get_benchmark_session_path) as mck:
+        mck.session_timestamp = datetime.now()
+        return BenchmarkPrimaiteSession(_TRAINING_CONFIG_PATH, _LAY_DOWN_CONFIG_PATH)
+
+
+def _build_benchmark_results_dict(start_datetime: datetime, metadata_dict: Dict) -> dict:
+    n = len(metadata_dict)
+    with open(_TRAINING_CONFIG_PATH, "r") as file:
+        training_config_dict = yaml.safe_load(file)
+    with open(_LAY_DOWN_CONFIG_PATH, "r") as file:
+        lay_down_config_dict = yaml.safe_load(file)
+    averaged_data = {
+        "start_timestamp": start_datetime.isoformat(),
+        "end_datetime": datetime.now().isoformat(),
+        "primaite_version": primaite.__version__,
+        "system_info": _get_system_info(),
+        "total_sessions": n,
+        "total_episodes": sum(d["total_episodes"] for d in metadata_dict.values()),
+        "total_time_steps": sum(d["total_time_steps"] for d in metadata_dict.values()),
+        "av_s_per_session": sum(d["total_s"] for d in metadata_dict.values()) / n,
+        "av_s_per_step": sum(d["s_per_step"] for d in metadata_dict.values()) / n,
+        "av_s_per_100_steps_10_nodes": sum(d["s_per_100_steps_10_nodes"] for d in metadata_dict.values()) / n,
+        "combined_av_reward_per_episode": {},
+        "session_av_reward_per_episode": {k: v["av_reward_per_episode"] for k, v in metadata_dict.items()},
+        "training_config": training_config_dict,
+        "lay_down_config": lay_down_config_dict,
+    }
+
+    episodes = metadata_dict[1]["av_reward_per_episode"].keys()
+
+    for episode in episodes:
+        combined_av_reward = sum(metadata_dict[k]["av_reward_per_episode"][episode] for k in metadata_dict.keys()) / n
+        averaged_data["combined_av_reward_per_episode"][episode] = combined_av_reward
+
+    return averaged_data
+
+
+def _get_df_from_episode_av_reward_dict(data: Dict):
+    data: Dict = {"episode": data.keys(), "av_reward": data.values()}
+
+    return (
+        pl.from_dict(data)
+        .with_columns(rolling_mean=pl.col("av_reward").rolling_mean(window_size=25))
+        .rename({"rolling_mean": "rolling_av_reward"})
+    )
+
+
+def _plot_benchmark_metadata(
+    benchmark_metadata_dict: Dict,
+    title: Optional[str] = None,
+    subtitle: Optional[str] = None,
+) -> Figure:
+    if title:
+        if subtitle:
+            title = f"{title} <br>{subtitle}</sup>"
+    else:
+        if subtitle:
+            title = subtitle
+
+    config = get_plotly_config()
+    layout = go.Layout(
+        autosize=config["size"]["auto_size"],
+        width=config["size"]["width"],
+        height=config["size"]["height"],
+    )
+    # Create the line graph with a colored line
+    fig = go.Figure(layout=layout)
+    fig.update_layout(template=config["template"])
+
+    for session, av_reward_dict in benchmark_metadata_dict["session_av_reward_per_episode"].items():
+        df = _get_df_from_episode_av_reward_dict(av_reward_dict)
+        fig.add_trace(
+            go.Scatter(
+                x=df["episode"],
+                y=df["av_reward"],
+                mode="lines",
+                name=f"Session {session}",
+                opacity=0.25,
+                line={"color": "#a6a6a6"},
+            )
+        )
+
+    df = _get_df_from_episode_av_reward_dict(benchmark_metadata_dict["combined_av_reward_per_episode"])
+    fig.add_trace(
+        go.Scatter(
+            x=df["episode"], y=df["av_reward"], mode="lines", name="Combined Session Av", line={"color": "#FF0000"}
+        )
+    )
+
+    fig.add_trace(
+        go.Scatter(
+            x=df["episode"],
+            y=df["rolling_av_reward"],
+            mode="lines",
+            name="Rolling Av (Combined Session Av)",
+            line={"color": "#4CBB17"},
+        )
+    )
+
+    # Set the layout of the graph
+    fig.update_layout(
+        xaxis={
+            "title": "Episode",
+            "type": "linear",
+        },
+        yaxis={"title": "Average Reward"},
+        title=title,
+    )
+
+    return fig
+
+
+def _plot_all_benchmarks_combined_session_av():
+    """
+    Plot the Benchmark results for each released version of PrimAITE.
+
+    Does this by iterating over the ``benchmark/results`` directory and
+    extracting the benchmark metadata json for each version that has been
+    benchmarked. The combined_av_reward_per_episode is extracted from each,
+    converted into a polars dataframe, and plotted as a scatter line in plotly.
+    """
+    title = "PrimAITE Versions Learning Benchmark"
+    subtitle = "Rolling Av (Combined Session Av)"
+    if title:
+        if subtitle:
+            title = f"{title} <br>{subtitle}</sup>"
+    else:
+        if subtitle:
+            title = subtitle
+    config = get_plotly_config()
+    layout = go.Layout(
+        autosize=config["size"]["auto_size"],
+        width=config["size"]["width"],
+        height=config["size"]["height"],
+    )
+    # Create the line graph with a colored line
+    fig = go.Figure(layout=layout)
+    fig.update_layout(template=config["template"])
+
+    for dir in _RESULTS_ROOT.iterdir():
+        if dir.is_dir():
+            metadata_file = dir / f"{dir.name}_benchmark_metadata.json"
+            with open(metadata_file, "r") as file:
+                metadata_dict = json.load(file)
+            df = _get_df_from_episode_av_reward_dict(metadata_dict["combined_av_reward_per_episode"])
+
+            fig.add_trace(go.Scatter(x=df["episode"], y=df["rolling_av_reward"], mode="lines", name=dir.name))
+
+    # Set the layout of the graph
+    fig.update_layout(
+        xaxis={
+            "title": "Episode",
+            "type": "linear",
+        },
+        yaxis={"title": "Average Reward"},
+        title=title,
+    )
+    fig["data"][0]["showlegend"] = True
+
+    return fig
+
+
+def run():
+    """Run the PrimAITE benchmark."""
+    start_datetime = datetime.now()
+    av_reward_per_episode_dicts = {}
+    for i in range(1, 11):
+        print(f"Starting Benchmark Session: {i}")
+        with _get_benchmark_primaite_session() as session:
+            session.learn()
+            av_reward_per_episode_dicts[i] = session.learn_metadata_dict()
+
+    benchmark_metadata = _build_benchmark_results_dict(
+        start_datetime=start_datetime, metadata_dict=av_reward_per_episode_dicts
+    )
+    v_str = f"v{primaite.__version__}"
+
+    version_result_dir = _RESULTS_ROOT / v_str
+    if version_result_dir.exists():
+        shutil.rmtree(version_result_dir)
+    version_result_dir.mkdir(exist_ok=True, parents=True)
+
+    with open(version_result_dir / f"{v_str}_benchmark_metadata.json", "w") as file:
+        json.dump(benchmark_metadata, file, indent=4)
+    title = f"PrimAITE v{primaite.__version__.strip()} Learning Benchmark"
+    fig = _plot_benchmark_metadata(benchmark_metadata, title=title)
+    this_version_plot_path = version_result_dir / f"{title}.png"
+    fig.write_image(this_version_plot_path)
+
+    fig = _plot_all_benchmarks_combined_session_av()
+
+    all_version_plot_path = _RESULTS_ROOT / "PrimAITE Versions Learning Benchmark.png"
+    fig.write_image(all_version_plot_path)
+
+    _build_benchmark_latex_report(benchmark_metadata, this_version_plot_path, all_version_plot_path)
+
+
+if __name__ == "__main__":
+    run()

diagram/classes.puml

@@ -0,0 +1,521 @@
+@startuml classes
+set namespaceSeparator none
+class "ACLRule" as primaite.acl.acl_rule.ACLRule {
+  dest_ip : str
+  permission
+  port : str
+  protocol : str
+  source_ip : str
+  get_dest_ip() -> str
+  get_permission() -> str
+  get_port() -> str
+  get_protocol() -> str
+  get_source_ip() -> str
+}
+class "AbstractObservationComponent" as primaite.environment.observations.AbstractObservationComponent {
+  current_observation : NotImplementedType, ndarray
+  env : str
+  space : Space
+  structure : List[str]
+  {abstract}generate_structure() -> List[str]
+  {abstract}update() -> None
+}
+class "AccessControlList" as primaite.acl.access_control_list.AccessControlList {
+  acl
+  acl_implicit_permission
+  acl_implicit_rule
+  max_acl_rules : int
+  add_rule(_permission: RulePermissionType, _source_ip: str, _dest_ip: str, _protocol: str, _port: str, _position: str) -> None
+  check_address_match(_rule: ACLRule, _source_ip_address: str, _dest_ip_address: str) -> bool
+  get_dictionary_hash(_permission: RulePermissionType, _source_ip: str, _dest_ip: str, _protocol: str, _port: str) -> int
+  get_relevant_rules(_source_ip_address: str, _dest_ip_address: str, _protocol: str, _port: str) -> Dict[int, ACLRule]
+  is_blocked(_source_ip_address: str, _dest_ip_address: str, _protocol: str, _port: str) -> bool
+  remove_all_rules() -> None
+  remove_rule(_permission: RulePermissionType, _source_ip: str, _dest_ip: str, _protocol: str, _port: str) -> None
+}
+class "AccessControlList_" as primaite.environment.observations.AccessControlList_ {
+  current_observation : ndarray
+  space : MultiDiscrete
+  structure : list
+  generate_structure() -> List[str]
+  update() -> None
+}
+
+class "ActiveNode" as primaite.nodes.active_node.ActiveNode {
+  file_system_action_count : int
+  file_system_scanning : bool
+  file_system_scanning_count : int
+  file_system_state_actual : GOOD
+  file_system_state_observed : REPAIRING, RESTORING, GOOD
+  ip_address : str
+  patching_count : int
+  software_state
+  software_state : GOOD
+  set_file_system_state(file_system_state: FileSystemState) -> None
+  set_file_system_state_if_not_compromised(file_system_state: FileSystemState) -> None
+  set_software_state_if_not_compromised(software_state: SoftwareState) -> None
+  start_file_system_scan() -> None
+  update_booting_status() -> None
+  update_file_system_state() -> None
+  update_os_patching_status() -> None
+  update_resetting_status() -> None
+}
+class "AgentSessionABC" as primaite.agents.agent_abc.AgentSessionABC {
+  checkpoints_path
+  evaluation_path
+  is_eval : bool
+  learning_path
+  sb3_output_verbose_level : NONE
+  session_path : Union[str, Path]
+  session_timestamp : datetime
+  timestamp_str
+  uuid
+  close() -> None
+  {abstract}evaluate() -> None
+  {abstract}export() -> None
+  {abstract}learn() -> None
+  load(path: Union[str, Path]) -> None
+  {abstract}save() -> None
+}
+
+class "DoNothingACLAgent" as primaite.agents.simple.DoNothingACLAgent {
+}
+class "DoNothingNodeAgent" as primaite.agents.simple.DoNothingNodeAgent {
+}
+class "DummyAgent" as primaite.agents.simple.DummyAgent {
+}
+class "HardCodedACLAgent" as primaite.agents.hardcoded_acl.HardCodedACLAgent {
+  get_allow_acl_rules(source_node_id: int, dest_node_id: str, protocol: int, port: str, acl: AccessControlList, nodes: Dict[str, NodeUnion], services_list: List[str]) -> Dict[int, ACLRule]
+  get_allow_acl_rules_for_ier(ier: IER, acl: AccessControlList, nodes: Dict[str, NodeUnion]) -> Dict[int, ACLRule]
+  get_blocked_green_iers(green_iers: Dict[str, IER], acl: AccessControlList, nodes: Dict[str, NodeUnion]) -> Dict[str, IER]
+  get_blocking_acl_rules_for_ier(ier: IER, acl: AccessControlList, nodes: Dict[str, NodeUnion]) -> Dict[int, ACLRule]
+  get_deny_acl_rules(source_node_id: int, dest_node_id: str, protocol: int, port: str, acl: AccessControlList, nodes: Dict[str, NodeUnion], services_list: List[str]) -> Dict[int, ACLRule]
+  get_matching_acl_rules(source_node_id: str, dest_node_id: str, protocol: str, port: str, acl: AccessControlList, nodes: Dict[str, Union[ServiceNode, ActiveNode]], services_list: List[str]) -> Dict[int, ACLRule]
+  get_matching_acl_rules_for_ier(ier: IER, acl: AccessControlList, nodes: Dict[str, NodeUnion]) -> Dict[int, ACLRule]
+}
+class "HardCodedAgentSessionABC" as primaite.agents.hardcoded_abc.HardCodedAgentSessionABC {
+  is_eval : bool
+  evaluate() -> None
+  export() -> None
+  learn() -> None
+  load(path: Union[str, Path]) -> None
+  save() -> None
+}
+class "HardCodedNodeAgent" as primaite.agents.hardcoded_node.HardCodedNodeAgent {
+}
+class "IER" as primaite.pol.ier.IER {
+  dest_node_id : str
+  end_step : int
+  id : str
+  load : int
+  mission_criticality : int
+  port : str
+  protocol : str
+  running : bool
+  source_node_id : str
+  start_step : int
+  get_dest_node_id() -> str
+  get_end_step() -> int
+  get_id() -> str
+  get_is_running() -> bool
+  get_load() -> int
+  get_mission_criticality() -> int
+  get_port() -> str
+  get_protocol() -> str
+  get_source_node_id() -> str
+  get_start_step() -> int
+  set_is_running(_value: bool) -> None
+}
+class "Link" as primaite.links.link.Link {
+  bandwidth : int
+  dest_node_name : str
+  id : str
+  protocol_list : List[Protocol]
+  source_node_name : str
+  add_protocol(_protocol: str) -> None
+  add_protocol_load(_protocol: str, _load: int) -> None
+  clear_traffic() -> None
+  get_bandwidth() -> int
+  get_current_load() -> int
+  get_dest_node_name() -> str
+  get_id() -> str
+  get_protocol_list() -> List[Protocol]
+  get_source_node_name() -> str
+}
+class "LinkTrafficLevels" as primaite.environment.observations.LinkTrafficLevels {
+  current_observation : ndarray
+  space : MultiDiscrete
+  structure : list
+  generate_structure() -> List[str]
+  update() -> None
+}
+class "Node" as primaite.nodes.node.Node {
+  booting_count : int
+  config_values
+  hardware_state : BOOTING, ON, RESETTING, OFF
+  name : Final[str]
+  node_id : Final[str]
+  node_type : Final[NodeType]
+  priority
+  resetting_count : int
+  shutting_down_count : int
+  reset() -> None
+  turn_off() -> None
+  turn_on() -> None
+  update_booting_status() -> None
+  update_resetting_status() -> None
+  update_shutdown_status() -> None
+}
+class "NodeLinkTable" as primaite.environment.observations.NodeLinkTable {
+  current_observation : ndarray
+  space : Box
+  structure : list
+  generate_structure() -> List[str]
+  update() -> None
+}
+class "NodeStateInstructionGreen" as primaite.nodes.node_state_instruction_green.NodeStateInstructionGreen {
+  end_step : int
+  id : str
+  node_id : str
+  node_pol_type : str
+  service_name : str
+  start_step : int
+  state : Union['HardwareState', 'SoftwareState', 'FileSystemState']
+  get_end_step() -> int
+  get_node_id() -> str
+  get_node_pol_type() -> 'NodePOLType'
+  get_service_name() -> str
+  get_start_step() -> int
+  get_state() -> Union['HardwareState', 'SoftwareState', 'FileSystemState']
+}
+class "NodeStateInstructionRed" as primaite.nodes.node_state_instruction_red.NodeStateInstructionRed {
+  end_step : int
+  id : str
+  initiator : str
+  pol_type
+  service_name : str
+  source_node_id : str
+  source_node_service : str
+  source_node_service_state : str
+  start_step : int
+  state : Union['HardwareState', 'SoftwareState', 'FileSystemState']
+  target_node_id : str
+  get_end_step() -> int
+  get_initiator() -> 'NodePOLInitiator'
+  get_pol_type() -> NodePOLType
+  get_service_name() -> str
+  get_source_node_id() -> str
+  get_source_node_service() -> str
+  get_source_node_service_state() -> str
+  get_start_step() -> int
+  get_state() -> Union['HardwareState', 'SoftwareState', 'FileSystemState']
+  get_target_node_id() -> str
+}
+class "NodeStatuses" as primaite.environment.observations.NodeStatuses {
+  current_observation : ndarray
+  space : MultiDiscrete
+  structure : list
+  generate_structure() -> List[str]
+  update() -> None
+}
+class "ObservationsHandler" as primaite.environment.observations.ObservationsHandler {
+  current_observation
+  registered_obs_components : List[AbstractObservationComponent]
+  space
+  deregister(obs_component: AbstractObservationComponent) -> None
+  describe_structure() -> List[str]
+  from_config(env: 'Primaite', obs_space_config: dict) -> 'ObservationsHandler'
+  register(obs_component: AbstractObservationComponent) -> None
+  update_obs() -> None
+  update_space() -> None
+}
+class "PassiveNode" as primaite.nodes.passive_node.PassiveNode {
+  ip_address
+}
+class "Primaite" as primaite.environment.primaite_env.Primaite {
+  ACTION_SPACE_ACL_ACTION_VALUES : int
+  ACTION_SPACE_ACL_PERMISSION_VALUES : int
+  ACTION_SPACE_NODE_ACTION_VALUES : int
+  ACTION_SPACE_NODE_PROPERTY_VALUES : int
+  acl
+  action_dict : dict, Dict[int, List[int]]
+  action_space : Discrete, Space
+  action_type : int
+  actual_episode_count
+  agent_identifier
+  average_reward : float
+  env_obs : ndarray, tuple
+  episode_av_reward_writer
+  episode_count : int
+  episode_steps : int
+  green_iers : Dict[str, IER]
+  green_iers_reference : Dict[str, IER]
+  lay_down_config
+  links : Dict[str, Link]
+  links_post_blue : dict
+  links_post_pol : dict
+  links_post_red : dict
+  links_reference : Dict[str, Link]
+  max_number_acl_rules : int
+  network : Graph
+  network_reference : Graph
+  node_pol : Dict[str, NodeStateInstructionGreen]
+  nodes : Dict[str, NodeUnion]
+  nodes_post_blue : dict
+  nodes_post_pol : dict
+  nodes_post_red : dict
+  nodes_reference : Dict[str, NodeUnion]
+  num_links : int
+  num_nodes : int
+  num_ports : int
+  num_services : int
+  obs_config : dict
+  obs_handler
+  observation_space : Tuple, Box, Space
+  observation_type
+  ports_list : List[str]
+  red_iers : Dict[str, IER], dict
+  red_node_pol : dict, Dict[str, NodeStateInstructionRed]
+  services_list : List[str]
+  session_path : Final[Path]
+  step_count : int
+  step_info : Dict[Any]
+  timestamp_str : Final[str]
+  total_reward : float
+  total_step_count : int
+  training_config
+  transaction_writer
+  apply_actions_to_acl(_action: int) -> None
+  apply_actions_to_nodes(_action: int) -> None
+  apply_time_based_updates() -> None
+  close() -> None
+  create_acl_action_dict() -> Dict[int, List[int]]
+  create_acl_rule(item: Dict) -> None
+  create_green_ier(item: Dict) -> None
+  create_green_pol(item: Dict) -> None
+  create_link(item: Dict) -> None
+  create_node(item: Dict) -> None
+  create_node_action_dict() -> Dict[int, List[int]]
+  create_node_and_acl_action_dict() -> Dict[int, List[int]]
+  create_ports_list(ports: Dict) -> None
+  create_red_ier(item: Dict) -> None
+  create_red_pol(item: Dict) -> None
+  create_services_list(services: Dict) -> None
+  get_action_info(action_info: Dict) -> None
+  get_observation_info(observation_info: Dict) -> None
+  init_acl() -> None
+  init_observations() -> Tuple[spaces.Space, np.ndarray]
+  interpret_action_and_apply(_action: int) -> None
+  load_lay_down_config() -> None
+  output_link_status() -> None
+  reset() -> np.ndarray
+  reset_environment() -> None
+  reset_node(item: Dict) -> None
+  save_obs_config(obs_config: dict) -> None
+  set_as_eval() -> None
+  step(action: int) -> Tuple[np.ndarray, float, bool, Dict]
+  update_environent_obs() -> None
+}
+class "PrimaiteSession" as primaite.primaite_session.PrimaiteSession {
+  evaluation_path : Optional[Path], Path
+  is_load_session : bool
+  learning_path : Optional[Path], Path
+  session_path : Optional[Path], Path
+  timestamp_str : str, Optional[str]
+  close() -> None
+  evaluate() -> None
+  learn() -> None
+  setup() -> None
+}
+class "Protocol" as primaite.common.protocol.Protocol {
+  load : int
+  name : str
+  add_load(_load: int) -> None
+  clear_load() -> None
+  get_load() -> int
+  get_name() -> str
+}
+class "RLlibAgent" as primaite.agents.rllib.RLlibAgent {
+  {abstract}evaluate() -> None
+  {abstract}export() -> None
+  learn() -> None
+  {abstract}load(path: Union[str, Path]) -> RLlibAgent
+  save(overwrite_existing: bool) -> None
+}
+class "RandomAgent" as primaite.agents.simple.RandomAgent {
+}
+class "SB3Agent" as primaite.agents.sb3.SB3Agent {
+  is_eval : bool
+  evaluate() -> None
+  {abstract}export() -> None
+  learn() -> None
+  save() -> None
+}
+class "Service" as primaite.common.service.Service {
+  name : str
+  patching_count : int
+  port : str
+  software_state : GOOD
+  reduce_patching_count() -> None
+}
+class "ServiceNode" as primaite.nodes.service_node.ServiceNode {
+  services : Dict[str, Service]
+  add_service(service: Service) -> None
+  get_service_state(protocol_name: str) -> SoftwareState
+  has_service(protocol_name: str) -> bool
+  service_is_overwhelmed(protocol_name: str) -> bool
+  service_running(protocol_name: str) -> bool
+  set_service_state(protocol_name: str, software_state: SoftwareState) -> None
+  set_service_state_if_not_compromised(protocol_name: str, software_state: SoftwareState) -> None
+  update_booting_status() -> None
+  update_resetting_status() -> None
+  update_services_patching_status() -> None
+}
+class "SessionOutputWriter" as primaite.utils.session_output_writer.SessionOutputWriter {
+  learning_session : bool
+  transaction_writer : bool
+  close() -> None
+  write(data: Union[Tuple, Transaction]) -> None
+}
+class "TrainingConfig" as primaite.config.training_config.TrainingConfig {
+  action_type
+  agent_framework
+  agent_identifier
+  agent_load_file : Optional[str]
+  all_ok : float
+  checkpoint_every_n_episodes : int
+  compromised : float
+  compromised_should_be_good : float
+  compromised_should_be_overwhelmed : float
+  compromised_should_be_patching : float
+  corrupt : float
+  corrupt_should_be_destroyed : float
+  corrupt_should_be_good : float
+  corrupt_should_be_repairing : float
+  corrupt_should_be_restoring : float
+  deep_learning_framework
+  destroyed : float
+  destroyed_should_be_corrupt : float
+  destroyed_should_be_good : float
+  destroyed_should_be_repairing : float
+  destroyed_should_be_restoring : float
+  deterministic : bool
+  file_system_repairing_limit : int
+  file_system_restoring_limit : int
+  file_system_scanning_limit : int
+  good_should_be_compromised : float
+  good_should_be_corrupt : float
+  good_should_be_destroyed : float
+  good_should_be_overwhelmed : float
+  good_should_be_patching : float
+  good_should_be_repairing : float
+  good_should_be_restoring : float
+  green_ier_blocked : float
+  hard_coded_agent_view
+  implicit_acl_rule
+  load_agent : bool
+  max_number_acl_rules : int
+  node_booting_duration : int
+  node_reset_duration : int
+  node_shutdown_duration : int
+  num_eval_episodes : int
+  num_eval_steps : int
+  num_train_episodes : int
+  num_train_steps : int
+  observation_space : dict
+  observation_space_high_value : int
+  off_should_be_on : float
+  off_should_be_resetting : float
+  on_should_be_off : float
+  on_should_be_resetting : float
+  os_patching_duration : int
+  overwhelmed : float
+  overwhelmed_should_be_compromised : float
+  overwhelmed_should_be_good : float
+  overwhelmed_should_be_patching : float
+  patching : float
+  patching_should_be_compromised : float
+  patching_should_be_good : float
+  patching_should_be_overwhelmed : float
+  random_red_agent : bool
+  red_ier_running : float
+  repairing : float
+  repairing_should_be_corrupt : float
+  repairing_should_be_destroyed : float
+  repairing_should_be_good : float
+  repairing_should_be_restoring : float
+  resetting : float
+  resetting_should_be_off : float
+  resetting_should_be_on : float
+  restoring : float
+  restoring_should_be_corrupt : float
+  restoring_should_be_destroyed : float
+  restoring_should_be_good : float
+  restoring_should_be_repairing : float
+  sb3_output_verbose_level
+  scanning : float
+  seed : Optional[int]
+  service_patching_duration : int
+  session_type
+  time_delay : int
+  from_dict(config_dict: Dict[str, Any]) -> TrainingConfig
+  to_dict(json_serializable: bool) -> Dict
+}
+class "Transaction" as primaite.transactions.transaction.Transaction {
+  action_space : Optional[int]
+  agent_identifier
+  episode_number : int
+  obs_space : str
+  obs_space_description : NoneType, Optional[List[str]], list
+  obs_space_post : Optional[Union['np.ndarray', Tuple['np.ndarray']]]
+  obs_space_pre : Optional[Union['np.ndarray', Tuple['np.ndarray']]]
+  reward : Optional[float], float
+  step_number : int
+  timestamp : datetime
+  as_csv_data() -> Tuple[List, List]
+}
+primaite.agents.hardcoded_abc.HardCodedAgentSessionABC --|> primaite.agents.agent_abc.AgentSessionABC
+primaite.agents.hardcoded_acl.HardCodedACLAgent --|> primaite.agents.hardcoded_abc.HardCodedAgentSessionABC
+primaite.agents.hardcoded_node.HardCodedNodeAgent --|> primaite.agents.hardcoded_abc.HardCodedAgentSessionABC
+primaite.agents.rllib.RLlibAgent --|> primaite.agents.agent_abc.AgentSessionABC
+primaite.agents.sb3.SB3Agent --|> primaite.agents.agent_abc.AgentSessionABC
+primaite.agents.simple.DoNothingACLAgent --|> primaite.agents.hardcoded_abc.HardCodedAgentSessionABC
+primaite.agents.simple.DoNothingNodeAgent --|> primaite.agents.hardcoded_abc.HardCodedAgentSessionABC
+primaite.agents.simple.DummyAgent --|> primaite.agents.hardcoded_abc.HardCodedAgentSessionABC
+primaite.agents.simple.RandomAgent --|> primaite.agents.hardcoded_abc.HardCodedAgentSessionABC
+primaite.environment.observations.AccessControlList_ --|> primaite.environment.observations.AbstractObservationComponent
+primaite.environment.observations.LinkTrafficLevels --|> primaite.environment.observations.AbstractObservationComponent
+primaite.environment.observations.NodeLinkTable --|> primaite.environment.observations.AbstractObservationComponent
+primaite.environment.observations.NodeStatuses --|> primaite.environment.observations.AbstractObservationComponent
+primaite.nodes.active_node.ActiveNode --|> primaite.nodes.node.Node
+primaite.nodes.passive_node.PassiveNode --|> primaite.nodes.node.Node
+primaite.nodes.service_node.ServiceNode --|> primaite.nodes.active_node.ActiveNode
+primaite.common.service.Service --|> primaite.nodes.service_node.ServiceNode
+primaite.acl.access_control_list.AccessControlList --* primaite.environment.primaite_env.Primaite : acl
+primaite.acl.acl_rule.ACLRule --* primaite.acl.access_control_list.AccessControlList : acl_implicit_rule
+primaite.agents.hardcoded_acl.HardCodedACLAgent --* primaite.primaite_session.PrimaiteSession : _agent_session
+primaite.agents.hardcoded_node.HardCodedNodeAgent --* primaite.primaite_session.PrimaiteSession : _agent_session
+primaite.agents.rllib.RLlibAgent --* primaite.primaite_session.PrimaiteSession : _agent_session
+primaite.agents.sb3.SB3Agent --* primaite.primaite_session.PrimaiteSession : _agent_session
+primaite.agents.simple.DoNothingACLAgent --* primaite.primaite_session.PrimaiteSession : _agent_session
+primaite.agents.simple.DoNothingNodeAgent --* primaite.primaite_session.PrimaiteSession : _agent_session
+primaite.agents.simple.DummyAgent --* primaite.primaite_session.PrimaiteSession : _agent_session
+primaite.agents.simple.RandomAgent --* primaite.primaite_session.PrimaiteSession : _agent_session
+primaite.config.training_config.TrainingConfig --* primaite.agents.agent_abc.AgentSessionABC : _training_config
+primaite.config.training_config.TrainingConfig --* primaite.environment.primaite_env.Primaite : training_config
+primaite.environment.observations.ObservationsHandler --* primaite.environment.primaite_env.Primaite : obs_handler
+primaite.environment.primaite_env.Primaite --* primaite.agents.agent_abc.AgentSessionABC : _env
+primaite.environment.primaite_env.Primaite --* primaite.agents.hardcoded_abc.HardCodedAgentSessionABC : _env
+primaite.environment.primaite_env.Primaite --* primaite.agents.sb3.SB3Agent : _env
+primaite.utils.session_output_writer.SessionOutputWriter --* primaite.environment.primaite_env.Primaite : episode_av_reward_writer
+primaite.utils.session_output_writer.SessionOutputWriter --* primaite.environment.primaite_env.Primaite : transaction_writer
+primaite.config.training_config.TrainingConfig --o primaite.nodes.node.Node : config_values
+primaite.nodes.node_state_instruction_green.NodeStateInstructionGreen --* primaite.environment.primaite_env.Primaite
+primaite.nodes.node_state_instruction_red.NodeStateInstructionRed --* primaite.environment.primaite_env.Primaite
+primaite.pol.ier.IER --* primaite.environment.primaite_env.Primaite
+primaite.common.protocol.Protocol --o primaite.links.link.Link
+primaite.links.link.Link --* primaite.environment.primaite_env.Primaite
+primaite.config.training_config.TrainingConfig --o primaite.nodes.active_node.ActiveNode
+primaite.utils.session_output_writer.SessionOutputWriter --> primaite.transactions.transaction.Transaction
+primaite.transactions.transaction.Transaction --> primaite.environment.primaite_env.Primaite
+@enduml

docs/Makefile

@@ -1,12 +1,21 @@
 # Minimal makefile for Sphinx documentation
-#
-
 # You can set these variables from the command line, and also
 # from the environment for the first two.
 SPHINXOPTS    ?=
 SPHINXBUILD   ?= sphinx-build
-SOURCEDIR     = source
-BUILDDIR      = build
+SOURCEDIR     = .
+BUILDDIR      = _build
+
+AUTOSUMMARY="source\_autosummary"
+
+# Remove command is different depending on OS
+ifdef OS
+	RM = IF exist $(AUTOSUMMARY) (  RMDIR $(AUTOSUMMARY) /s /q )
+else
+   ifeq ($(shell uname), Linux)
+      RM = rm -rf $(AUTOSUMMARY)
+   endif
+endif
 
 # Put it first so that "make" without argument is like "make help".
 help:
@@ -14,7 +23,12 @@ help:
 
 .PHONY: help Makefile
 
+clean:
+	$(RM)
+
 # Catch-all target: route all unknown targets to Sphinx using the new
 # "make mode" option.  $(O) is meant as a shortcut for $(SPHINXOPTS).
-%: Makefile
+%: Makefile | clean
+	pip-licenses --format=rst --with-urls --output-file=source/primaite-dependencies.rst
+
 	@$(SPHINXBUILD) -M $@ "$(SOURCEDIR)" "$(BUILDDIR)" $(SPHINXOPTS) $(O)

docs/_templates/custom-class-template.rst

@@ -0,0 +1,41 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+..
+    Credit to https://github.com/JamesALeedham/Sphinx-Autosummary-Recursion for the custom templates.
+..
+{{ fullname | escape | underline}}
+
+.. currentmodule:: {{ module }}
+
+.. autoclass:: {{ objname }}
+   :members:
+   :show-inheritance:
+   :inherited-members:
+   :special-members: __init__, __call__, __add__, __mul__
+
+   {% block methods %}
+   {% if methods %}
+   .. rubric:: {{ _('Methods') }}
+
+   .. autosummary::
+      :nosignatures:
+   {% for item in methods %}
+      {%- if not item.startswith('_') %}
+      ~{{ name }}.{{ item }}
+      {%- endif -%}
+   {%- endfor %}
+   {% endif %}
+   {% endblock %}
+
+   {% block attributes %}
+   {% if attributes %}
+   .. rubric:: {{ _('Attributes') }}
+
+   .. autosummary::
+   {% for item in attributes %}
+      ~{{ name }}.{{ item }}
+   {%- endfor %}
+   {% endif %}
+   {% endblock %}

docs/_templates/custom-module-template.rst

@@ -0,0 +1,73 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+..
+    Credit to https://github.com/JamesALeedham/Sphinx-Autosummary-Recursion for the custom templates.
+..
+{{ fullname | escape | underline}}
+
+.. automodule:: {{ fullname }}
+
+   {% block attributes %}
+   {% if attributes %}
+   .. rubric:: Module attributes
+
+   .. autosummary::
+      :toctree:
+   {% for item in attributes %}
+      {{ item }}
+   {%- endfor %}
+   {% endif %}
+   {% endblock %}
+
+   {% block functions %}
+   {% if functions %}
+   .. rubric:: {{ _('Functions') }}
+
+   .. autosummary::
+      :toctree:
+      :nosignatures:
+   {% for item in functions %}
+      {{ item }}
+   {%- endfor %}
+   {% endif %}
+   {% endblock %}
+
+   {% block classes %}
+   {% if classes %}
+   .. rubric:: {{ _('Classes') }}
+
+   .. autosummary::
+      :toctree:
+      :template: custom-class-template.rst
+      :nosignatures:
+   {% for item in classes %}
+      {{ item }}
+   {%- endfor %}
+   {% endif %}
+   {% endblock %}
+
+   {% block exceptions %}
+   {% if exceptions %}
+   .. rubric:: {{ _('Exceptions') }}
+
+   .. autosummary::
+      :toctree:
+   {% for item in exceptions %}
+      {{ item }}
+   {%- endfor %}
+   {% endif %}
+   {% endblock %}
+
+{% block modules %}
+{% if modules %}
+.. autosummary::
+   :toctree:
+   :template: custom-module-template.rst
+   :recursive:
+{% for item in modules %}
+   {{ item }}
+{%- endfor %}
+{% endif %}
+{% endblock %}

docs/api.rst

@@ -0,0 +1,20 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+..
+   DO NOT DELETE THIS FILE! It contains the all-important `.. autosummary::` directive with `:recursive:` option, without
+   which API documentation wouldn't get extracted from docstrings by the `sphinx.ext.autosummary` engine. It is hidden
+   (not declared in any toctree) to remove an unnecessary intermediate page; index.rst instead points directly to the
+   package page. DO NOT REMOVE THIS FILE!
+
+    Credit to https://github.com/JamesALeedham/Sphinx-Autosummary-Recursion for the custom templates.
+..
+
+.. autosummary::
+   :toctree: source/_autosummary
+   :template: custom-module-template.rst
+   :recursive:
+
+   primaite
+   tests

docs/conf.py

@@ -0,0 +1,58 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+# Configuration file for the Sphinx documentation builder.
+#
+# For the full list of built-in configuration values, see the documentation:
+# https://www.sphinx-doc.org/en/master/usage/configuration.html
+
+import datetime
+
+# -- Project information -----------------------------------------------------
+# https://www.sphinx-doc.org/en/master/usage/configuration.html#project-information
+import os
+import sys
+
+import furo  # noqa
+
+sys.path.insert(0, os.path.abspath("../"))
+
+
+# -- Project information -----------------------------------------------------
+year = datetime.datetime.now().year
+project = "PrimAITE"
+copyright = f"Copyright (C) Defence Science and Technology Laboratory UK 2021 - {year}"
+author = "Defence Science and Technology Laboratory UK"
+
+# The short Major.Minor.Build version
+with open("../src/primaite/VERSION", "r") as file:
+    version = file.readline()
+# The full version, including alpha/beta/rc tags
+release = version
+
+html_title = f"{project} v{release} docs"
+
+# -- General configuration ---------------------------------------------------
+# https://www.sphinx-doc.org/en/master/usage/configuration.html#general-configuration
+
+# Add any Sphinx extension module names here, as strings. They can be
+# extensions coming with Sphinx (named 'sphinx.ext.*') or your custom
+# ones.
+extensions = [
+    "sphinx.ext.autodoc",  # Core Sphinx library for auto html doc generation from docstrings
+    "sphinx.ext.autosummary",  # Create summary tables for modules/classes/methods etc
+    "sphinx.ext.intersphinx",  # Link to other project's documentation (see mapping below)
+    "sphinx.ext.viewcode",  # Add a link to the Python source code for classes, functions etc.
+    "sphinx.ext.todo",
+    "sphinx_copybutton",  # Adds a copy button to code blocks
+    "sphinx_code_tabs",  # Enables tabbed code blocks
+]
+
+
+templates_path = ["_templates"]
+exclude_patterns = ["_build", "Thumbs.db", ".DS_Store"]
+
+
+# -- Options for HTML output -------------------------------------------------
+# https://www.sphinx-doc.org/en/master/usage/configuration.html#options-for-html-output
+
+html_theme = "furo"
+html_static_path = ["_static"]

docs/index.rst

@@ -0,0 +1,65 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+Welcome to PrimAITE's documentation
+====================================
+
+What is PrimAITE?
+------------------------
+
+PrimAITE (Primary-level AI Training Environment) is a simulation environment for training AI under the ARCD programme. It incorporates the functionality required of a Primary-level environment, as specified in the Dstl ARCD Training Environment Matrix document:
+
+* The ability to model a relevant platform / system context;
+* The ability to model key characteristics of a platform / system by representing connections, IP addresses, ports, traffic loading, operating systems, file system, services and processes;
+* Operates at machine-speed to enable fast training cycles.
+
+PrimAITE aims to evolve into an ARCD environment that could be used as the follow-on from Reception level approaches (e.g. YAWNING TITAN), and help bridge the Sim-to-Real gap into Secondary level environments (e.g. IMAGINARY YAK).
+
+This is similar to the approach taken by FVEY international partners (e.g. AUS CyBORG, US NSA FARLAND and CAN CyGil). These environments are referenced by the Dstl ARCD Agent Training Environments Knowledge Transfer document (TR141342).
+
+What is PrimAITE built with
+--------------------------------------
+
+* `OpenAI's Gym <https://gym.openai.com/>`_ is used as the basis for AI blue agent interaction with the PrimAITE environment
+* `Networkx <https://github.com/networkx/networkx>`_ is used as the underlying data structure used for the PrimAITE environment
+* `Stable Baselines 3 <https://github.com/DLR-RM/stable-baselines3>`_ is used as a default source of RL algorithms (although PrimAITE is not limited to SB3 agents)
+* `Ray RLlib <https://github.com/ray-project/ray>`_ is used as an additional source of RL algorithms
+* `Typer <https://github.com/tiangolo/typer>`_ is used for building CLIs (Command Line Interface applications)
+* `Jupyterlab <https://github.com/jupyterlab/jupyterlab>`_ is used as an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook Architecture
+* `Platformdirs <https://github.com/platformdirs/platformdirs>`_ is used for finding the right location to store user data and configuration but varies per platform
+* `Plotly <https://github.com/plotly/plotly.py>`_ is used for building high level charts
+
+
+Where next?
+------------
+
+Head over to the :ref:`getting-started` page to install and setup PrimAITE!
+
+.. toctree::
+   :maxdepth: 8
+   :caption: Contents:
+   :hidden:
+
+   source/getting_started
+   source/about
+   source/config
+   source/primaite_session
+   source/custom_agent
+   PrimAITE API <source/_autosummary/primaite>
+   PrimAITE Tests <source/_autosummary/tests>
+   source/dependencies
+   source/glossary
+   source/migration_1.2_-_2.0
+
+
+.. TODO: Add project links once public repo has been created
+
+.. toctree::
+   :caption: Project Links:
+   :hidden:
+
+   Code <https://github.com/Autonomous-Resilient-Cyber-Defence/PrimAITE>
+   Issues <https://github.com/Autonomous-Resilient-Cyber-Defence/PrimAITE/issues>
+   Pull Requests <https://github.com/Autonomous-Resilient-Cyber-Defence/PrimAITE/pulls>
+   Discussions <https://github.com/Autonomous-Resilient-Cyber-Defence/PrimAITE/discussions>

docs/make.bat

@@ -1,5 +1,7 @@
 @ECHO OFF
 
+setlocal EnableDelayedExpansion
+
 pushd %~dp0
 
 REM Command file for Sphinx documentation
@@ -7,8 +9,10 @@ REM Command file for Sphinx documentation
 if "%SPHINXBUILD%" == "" (
 	set SPHINXBUILD=sphinx-build
 )
-set SOURCEDIR=source
-set BUILDDIR=build
+set SOURCEDIR=.
+set BUILDDIR=_build
+
+set AUTOSUMMARYDIR="%cd%\source\_autosummary\"
 
 %SPHINXBUILD% >NUL 2>NUL
 if errorlevel 9009 (
@@ -25,11 +29,30 @@ if errorlevel 9009 (
 
 if "%1" == "" goto help
 
+REM delete autosummary if it exists
+
+IF EXIST %AUTOSUMMARYDIR% (
+    echo deleting %AUTOSUMMARYDIR%
+    RMDIR %AUTOSUMMARYDIR% /s /q
+)
+
+REM print the YT licenses
+set LICENSEBUILD=pip-licenses --format=rst --with-urls
+set DEPS="%cd%\source\primaite-dependencies.rst"
+
+%LICENSEBUILD% --output-file=%DEPS%
+
 %SPHINXBUILD% -M %1 %SOURCEDIR% %BUILDDIR% %SPHINXOPTS% %O%
 goto end
 
 :help
 %SPHINXBUILD% -M help %SOURCEDIR% %BUILDDIR% %SPHINXOPTS% %O%
 
+:clean
+IF EXIST %AUTOSUMMARYDIR% (
+    echo deleting %AUTOSUMMARYDIR%
+    RMDIR %AUTOSUMMARYDIR% /s /q
+)
+
 :end
 popd

docs/source/about.rst

@@ -1,4 +1,8 @@
-.. _about:
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+.. _about:
 
 About PrimAITE
 ==============
@@ -8,51 +12,51 @@ Features
 
 PrimAITE provides the following features:
 
-* A flexible network / system laydown based on the Python networkx framework​
-* Nodes and links (edges) host Python classes in order to present attributes and methods (and hence, a more representative model of a platform / system)​
-* A ‘green agent’ Information Exchange Requirement (IER) function allows the representation of traffic (protocols and loading) on any / all links. Application of IERs is based on the status of node operating systems and services​
-* A ‘green agent’ node Pattern-of-Life (PoL) function allows the representation of core behaviours on nodes (e.g. Operating state, Operating System state, Service state, File System state)​
-* An Access Control List (ACL) function, mimicking the behaviour of a network firewall, is applied across the model, following standard ACL rule format (e.g. DENY/ALLOW, source IP, destination IP, protocol and port). Application of IERs adheres to any ACL restrictions​
-* Presents an OpenAI Gym interface to the environment, allowing integration with any OpenAI Gym compliant defensive agents ​
-* Red agent activity based on ‘red’ IERs and ‘red’ PoL
-* Defined reward function for use with RL agents (based on nodes status, and green / red IER success)​
-* Fully configurable (network / system laydown, IERs, node PoL, ACL, episode step period, episode max steps) and repeatable to suit the training requirements of agents. Therefore, not bound to a representation of any particular platform, system or technology​
-* Full capture of discrete metrics relating to agent training (full system state, agent actions taken, average reward)​
-* Networkx provides laydown visualisation capability ​
+* A flexible network / system laydown based on the Python networkx framework
+* Nodes and links (edges) host Python classes in order to present attributes and methods (and hence, a more representative model of a platform / system)
+* A 'green agent' Information Exchange Requirement (IER) function allows the representation of traffic (protocols and loading) on any / all links. Application of IERs is based on the status of node operating systems and services
+* A 'green agent' node Pattern-of-Life (PoL) function allows the representation of core behaviours on nodes (e.g. changing the Hardware state, Software State, Service state, or File System state)
+* An Access Control List (ACL) function, mimicking the behaviour of a network firewall, is applied across the model, following standard ACL rule format (e.g. DENY/ALLOW, source IP, destination IP, protocol and port). Application of IERs adheres to any ACL restrictions
+* Presents an OpenAI Gym interface to the environment, allowing integration with any OpenAI Gym compliant defensive agents
+* Red agent activity based on 'red' IERs and 'red' PoL
+* Defined reward function for use with RL agents (based on nodes status, and green / red IER success)
+* Fully configurable (network / system laydown, IERs, node PoL, ACL, episode step period, episode max steps) and repeatable to suit the training requirements of agents. Therefore, not bound to a representation of any particular platform, system or technology
+* Full capture of discrete metrics relating to agent training (full system state, agent actions taken, average reward)
+* Networkx provides laydown visualisation capability
 
 Architecture - Nodes and Links
 ******************************
 
 **Nodes**
 
-An inheritance model has been adopted in order to model nodes. All nodes have the following base attributes (Class: Node):​
+An inheritance model has been adopted in order to model nodes. All nodes have the following base attributes (Class: Node):
 
-* ID​
+* ID
 * Name
-* Type (e.g. computer, switch, RTU - enumeration)​
-* Priority (P1, P2, P3, P4 or P5 - enumeration)​
-* Operating State (ON, OFF, RESETTING - enumeration)​
+* Type (e.g. computer, switch, RTU - enumeration)
+* Priority (P1, P2, P3, P4 or P5 - enumeration)
+* Hardware State (ON, OFF, RESETTING, SHUTTING_DOWN, BOOTING - enumeration)
 
-Active Nodes also have the following attributes (Class: Active Node):​
+Active Nodes also have the following attributes (Class: Active Node):
 
-* IP Address​
-* Operating System State (GOOD, PATCHING, COMPROMISED - enumeration)​
+* IP Address
+* Software State (GOOD, PATCHING, COMPROMISED - enumeration)
 * File System State (GOOD, CORRUPT, DESTROYED, REPAIRING, RESTORING - enumeration)
 
-Service Nodes also have the following attributes (Class: Service Node)​:
+Service Nodes also have the following attributes (Class: Service Node):
 
-* List of Services (where service is composed of service name and port). There is no theoretical limit on the number of services that can be modelled. Services and protocols are currently intrinsically linked (i.e. a service is an application on a node transmitting traffic of this protocol type)​
+* List of Services (where service is composed of service name and port). There is no theoretical limit on the number of services that can be modelled. Services and protocols are currently intrinsically linked (i.e. a service is an application on a node transmitting traffic of this protocol type)
 * Service state (GOOD, PATCHING, COMPROMISED, OVERWHELMED - enumeration)
 
 Passive Nodes are currently not used (but may be employed for non IP-based components such as machinery actuators in future releases).
 
 **Links**
 
-Links are modelled both as network edges (networkx) and as Python classes, in order to extend their functionality​. Links include the following attributes:​
+Links are modelled both as network edges (networkx) and as Python classes, in order to extend their functionality. Links include the following attributes:
 
-* ID​
+* ID
 * Name
-* Bandwidth (bits/s)​
+* Bandwidth (bits/s)
 * Source node ID
 * Destination node ID
 * Protocol list (containing the loading of protocols currently running on the link)
@@ -62,32 +66,32 @@ When the simulation runs, IERs are applied to the links in order to model traffi
 Information Exchange Requirements (IERs)
 ****************************************
 
-PrimAITE adopts the concept of Information Exchange Requirements (IERs) to model both green agent (background) and red agent (adversary) behaviour. IERs are used to initiate modelling of traffic loading on the network, and have the following attributes:​
+PrimAITE adopts the concept of Information Exchange Requirements (IERs) to model both green agent (background) and red agent (adversary) behaviour. IERs are used to initiate modelling of traffic loading on the network, and have the following attributes:
 
-* ID​
-* Start step (i.e. which step in the training episode should the IER start)​
-* End step​ (i.e. which step in the training episode should the IER end)
+* ID
+* Start step (i.e. which step in the training episode should the IER start)
+* End step (i.e. which step in the training episode should the IER end)
 * Source node ID
-* Destination node ID​
-* Load (bits/s)​
-* Protocol​
-* Port​
+* Destination node ID
+* Load (bits/s)
+* Protocol
+* Port
 * Running status (i.e. on / off)
 
-The application of green agent IERs between a source and destination follows a number of rules. Specifically:​
+The application of green agent IERs between a source and destination follows a number of rules. Specifically:
 
-1. Does the current simulation time step fall between IER start and end step​
-2. Is the source node operational (both physically and at an O/S level), and is the service (protocol / port) associated with the IER (a) present on this node, and (b) in an operational state (i.e. not PATCHING)​
-3. Is the destination node operational (both physically and at an O/S level), and is the service (protocol / port) associated with the IER (a) present on this node, and (b) in an operational state (i.e. not PATCHING)​
-4. Are there any Access Control List rules in place that prevent the application of this IER​
-5. Are all switches in the (OSPF) path between source and destination operational (both physically and at an O/S level)​
+1. Does the current simulation time step fall between IER start and end step
+2. Is the source node operational (both physically and at an O/S level), and is the service (protocol / port) associated with the IER (a) present on this node, and (b) in an operational state (i.e. not PATCHING)
+3. Is the destination node operational (both physically and at an O/S level), and is the service (protocol / port) associated with the IER (a) present on this node, and (b) in an operational state (i.e. not PATCHING)
+4. Are there any Access Control List rules in place that prevent the application of this IER
+5. Are all switches in the (OSPF) path between source and destination operational (both physically and at an O/S level)
 
-For red agent IERs, the application of IERs between a source and destination follows a number of subtly different rules. Specifically:​
+For red agent IERs, the application of IERs between a source and destination follows a number of subtly different rules. Specifically:
 
-1. Does the current simulation time step fall between IER start and end step​
-2. Is the source node operational, and is the service (protocol / port) associated with the IER (a) present on that node and (b) already in a compromised state​
-3. Is the destination node operational, and is the service (protocol / port) associated with the IER present on that node​
-4. Are there any Access Control List rules in place that prevent the application of this IER​
+1. Does the current simulation time step fall between IER start and end step
+2. Is the source node operational, and is the service (protocol / port) associated with the IER (a) present on that node and (b) already in a compromised state
+3. Is the destination node operational, and is the service (protocol / port) associated with the IER present on that node
+4. Are there any Access Control List rules in place that prevent the application of this IER
 5. Are all switches in the (OSPF) path between source and destination operational (both physically and at an O/S level)
 
 Assuming the rules pass, the IER is applied to all relevant links (based on use of OSPF) between source and destination.
@@ -101,15 +105,17 @@ The status changes that can be made to a node are as follows:
 
 * All Nodes:
 
-   * Operating State:
+   * Hardware State:
 
       * ON
       * OFF
-      * RESETTING - when a status of resetting is entered, the node will automatically exit this state after a number of steps (as defined by the nodeResetDuration configuration item) after which it returns to an ON state 
+      * RESETTING - when a status of resetting is entered, the node will automatically exit this state after a number of steps (as defined by the nodeResetDuration configuration item) after which it returns to an ON state
+      * BOOTING
+      * SHUTTING_DOWN
 
 * Active Nodes and Service Nodes:
 
-   * Operating System State:
+   * Software State:
 
       * GOOD
       * PATCHING - when a status of patching is entered, the node will automatically exit this state after a number of steps (as defined by the osPatchingDuration configuration item) after which it returns to a GOOD state
@@ -149,7 +155,7 @@ Red agent pattern-of-life has an additional feature not found in the green patte
 Access Control List modelling
 *****************************
 
-An Access Control List (ACL) is modelled to provide the means to manage traffic flows in the system. This will allow defensive agents the means to turn on / off rules, or potentially create new rules, to counter an attack​.
+An Access Control List (ACL) is modelled to provide the means to manage traffic flows in the system. This will allow defensive agents the means to turn on / off rules, or potentially create new rules, to counter an attack.
 
 The ACL follows a standard network firewall format. For example:
 
@@ -182,11 +188,13 @@ All ACL rules are considered when applying an IER. Logic follows the order of ru
 
 Observation Spaces
 ******************
+The observation space provides the blue agent with information about the current status of nodes and links.
 
-The OpenAI Gym observation space provides the status of all nodes and links across the whole system:​
+PrimAITE builds on top of Gym Spaces to create an observation space that is easily configurable for users. It's made up of components which are managed by the :py:class:`primaite.environment.observations.ObservationsHandler`. Each training scenario can define its own observation space, and the user can choose which information to inlude, and how it should be formatted.
 
-* Nodes (in terms of operating state, operating system state, file system state and services state) ​
-* Links (in terms of current loading for each service/protocol)
+NodeLinkTable component
+-----------------------
+For example, the :py:class:`primaite.environment.observations.NodeLinkTable` component represents the status of nodes and links as a ``gym.spaces.Box`` with an example format shown below:
 
 An example observation space is provided below:
 
@@ -194,10 +202,10 @@ An example observation space is provided below:
    :widths: 25 25 25 25 25 25 25
    :header-rows: 1
 
-   * - 
+   * -
      - ID
-     - Operating State
-     - O/S State
+     - Hardware State
+     - Software State
      - File System State
      - Service / Protocol A
      - Service / Protocol B
@@ -244,46 +252,97 @@ An example observation space is provided below:
      - 5000
      - 0
 
-The observation space is a 6 x 6 Box type (OpenAI Gym Space) in this example. This is made up from the node and link information detailed below.
-
 For the nodes, the following values are represented:
 
- * ID
- * Operating State:
+.. code-block::
 
-    * 1 = ON
-    * 2 = OFF
-    * 3 = RESETTING
-
- * O/S State:
-
-    * 1 = GOOD
-    * 2 = PATCHING
-    * 3 = COMPROMISED
-
- * Service State:
-
-    * 1 = GOOD
-    * 2 = PATCHING
-    * 3 = COMPROMISED
-    * 4 = OVERWHELMED
-
- * File System State:
-
-    * 1 = GOOD
-    * 2 = CORRUPT
-    * 3 = DESTROYED
-    * 4 = REPAIRING
-    * 5 = RESTORING
+  [
+    ID
+    Hardware State            (1=ON,   2=OFF,  3=RESETTING,  4=SHUTTING_DOWN, 5=BOOTING)
+    Operating System State    (0=none, 1=GOOD, 2=PATCHING,   3=COMPROMISED)
+    File System State         (0=none, 1=GOOD, 2=CORRUPT,    3=DESTROYED,  4=REPAIRING, 5=RESTORING)
+    Service1/Protocol1 state  (0=none, 1=GOOD, 2=PATCHING,   3=COMPROMISED)
+    Service2/Protocol2 state  (0=none, 1=GOOD, 2=PATCHING,   3=COMPROMISED)
+  ]
 
 (Note that each service available in the network is provided as a column, although not all nodes may utilise all services)
 
 For the links, the following statuses are represented:
 
- * ID
- * Operating State = N/A
- * O/S State = N/A
- * Protocol = loading in bits/s
+.. code-block::
+
+  [
+    ID
+    Hardware State            (0=not applicable)
+    Operating System State    (0=not applicable)
+    File System State         (0=not applicable)
+    Service1/Protocol1 state  (Traffic load from this protocol on this link)
+    Service2/Protocol2 state  (Traffic load from this protocol on this link)
+  ]
+
+NodeStatus component
+----------------------
+This is a MultiDiscrete observation space that can be though of as a one-dimensional vector of discrete states.
+The example above would have the following structure:
+
+.. code-block::
+
+  [
+    node1_info
+    node2_info
+    node3_info
+  ]
+
+Each ``node_info`` contains the following:
+
+.. code-block::
+
+  [
+    hardware_state    (0=none, 1=ON,   2=OFF,      3=RESETTING, 4=SHUTTING_DOWN, 5=BOOTING)
+    software_state    (0=none, 1=GOOD, 2=PATCHING, 3=COMPROMISED)
+    file_system_state (0=none, 1=GOOD, 2=CORRUPT,  3=DESTROYED, 4=REPAIRING, 5=RESTORING)
+    service1_state    (0=none, 1=GOOD, 2=PATCHING, 3=COMPROMISED)
+    service2_state    (0=none, 1=GOOD, 2=PATCHING, 3=COMPROMISED)
+  ]
+
+In a network with three nodes and two services, the full observation space would have 15 elements. It can be written with ``gym`` notation to indicate the number of discrete options for each of the elements of the observation space. For example:
+
+.. code-block::
+
+  gym.spaces.MultiDiscrete([4,5,6,4,4,4,5,6,4,4,4,5,6,4,4])
+
+.. note::
+  NodeStatus observation component provides information only about nodes. Links are not considered.
+
+LinkTrafficLevels
+-----------------
+This component is a MultiDiscrete space showing the traffic flow levels on the links in the network, after applying a threshold to convert it from a continuous to a discrete value.
+There are two configurable parameters:
+* ``quantisation_levels`` determines how many discrete bins to use for converting the continuous traffic value to discrete (default is 5).
+* ``combine_service_traffic`` determines whether to separately output traffic use for each network protocol or whether to combine them into an overall value for the link. (default is ``True``)
+
+For example, with default parameters and a network with three links, the structure of this component would be:
+
+.. code-block::
+
+  [
+    link1_status
+    link2_status
+    link3_status
+  ]
+
+Each ``link_status`` is a number from 0-4 representing the network load in relation to bandwidth.
+
+.. code-block::
+
+  0 = No traffic (0%)
+  1 = low traffic (1%-33%)
+  2 = medium traffic (33%-66%)
+  3 = high traffic (66%-99%)
+  4 = max traffic/ overwhelmed (100%)
+
+Using ``gym`` notation, the shape of the obs space is: ``gym.spaces.MultiDiscrete([5,5,5])``.
+
 
 Action Spaces
 **************
@@ -292,29 +351,40 @@ The action space available to the blue agent comes in two types:
 
  1. Node-based
  2. Access Control List
+ 3. Any (Agent can take both node-based and ACL-based actions)
 
 The choice of action space used during a training session is determined in the config_[name].yaml file.
 
 **Node-Based**
 
-The agent is able to influence the status of nodes by switching them off, resetting, or patching operating systems and services. In this instance, the action space is an OpenAI Gym multidiscrete type, as follows:
+The agent is able to influence the status of nodes by switching them off, resetting, or patching operating systems and services. In this instance, the action space is an OpenAI Gym spaces.Discrete type, as follows:
 
- * [0, num nodes] - Node ID (0 = nothing, node ID)
- * [0, 4] - What property it's acting on (0 = nothing, 1 = state, 2 = O/S state, 3 = service state, 4 = file system state)
- * [0, 3] - Action on property (0 = nothing, 1 = on / scan, 2 = off / repair, 3 = reset / patch / restore)
- * [0, num services] - Resolves to service ID (0 = nothing, resolves to service)
+ * Dictionary item {... ,1: [x1, x2, x3,x4] ...}
+   The placeholders inside the list under the key '1' mean the following:
+
+    * [0, num nodes] - Node ID (0 = nothing, node ID)
+    * [0, 4] - What property it's acting on (0 = nothing, 1 = state, 2 = SoftwareState, 3 = service state, 4 = file system state)
+    * [0, 3] - Action on property (0 = nothing, 1 = on / scan, 2 = off / repair, 3 = reset / patch / restore)
+    * [0, num services] - Resolves to service ID (0 = nothing, resolves to service)
 
 **Access Control List**
 
-The blue agent is able to influence the configuration of the Access Control List rule set (which implements a system-wide firewall). In this instance, the action space is an OpenAI multidiscrete type, as follows:
+The blue agent is able to influence the configuration of the Access Control List rule set (which implements a system-wide firewall). In this instance, the action space is an OpenAI spaces.Discrete type, as follows:
 
+   * Dictionary item {... ,1: [x1, x2, x3, x4, x5, x6] ...}
+   The placeholders inside the list under the key '1' mean the following:
 
- * [0, 2] - Action (0 = do nothing, 1 = create rule, 2 = delete rule)
- * [0, 1] - Permission (0 = DENY, 1 = ALLOW)
- * [0, num nodes] - Source IP (0 = any, then 1 -> x resolving to IP addresses)
- * [0, num nodes] - Dest IP (0 = any, then 1 -> x resolving to IP addresses)
- * [0, num services] - Protocol (0 = any, then 1 -> x resolving to protocol)
- * [0, num ports] - Port (0 = any, then 1 -> x resolving to port)
+     * [0, 2] - Action (0 = do nothing, 1 = create rule, 2 = delete rule)
+     * [0, 1] - Permission (0 = DENY, 1 = ALLOW)
+     * [0, num nodes] - Source IP (0 = any, then 1 -> x resolving to IP addresses)
+     * [0, num nodes] - Dest IP (0 = any, then 1 -> x resolving to IP addresses)
+     * [0, num services] - Protocol (0 = any, then 1 -> x resolving to protocol)
+     * [0, num ports] - Port (0 = any, then 1 -> x resolving to port)
+
+**ANY**
+The agent is able to carry out both **Node-Based** and **Access Control List** operations.
+
+This means the dictionary will contain key-value pairs in the format of BOTH Node-Based and Access Control List as seen above.
 
 Rewards
 *******
@@ -326,8 +396,8 @@ A reward value is presented back to the blue agent on the conclusion of every st
 
 **Node and service status**
 
-On every step, the status of each node is compared against both a reference environment (simulating the situation if the red and blue agents had not impacted the environment) 
-and the before and after state of the environment. If the comparison against the reference environment shows no difference, then the score provided is "AllOK". If there is a 
+On every step, the status of each node is compared against both a reference environment (simulating the situation if the red and blue agents had not impacted the environment)
+and the before and after state of the environment. If the comparison against the reference environment shows no difference, then the score provided is "AllOK". If there is a
 difference with respect to the reference environment, the before and after states are compared, and a score determined. See :ref:`config` for details of reward values.
 
 **IER status**
@@ -342,4 +412,3 @@ The PrimAITE project has an ambition to include the following enhancements in fu
 
 * Integration with a suitable standardised framework to allow multi-agent integration
 * Integration with external threat emulation tools, either using off-line data, or integrating at runtime
-* Provision of data such that agents can construct alternative observation spaces (as an alternative to the default PrimAITE observation space)

docs/source/config.rst

@@ -0,0 +1,489 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+.. _config:
+
+The Config Files Explained
+==========================
+
+PrimAITE uses two configuration files for its operation:
+
+* **The Training Config**
+
+    Used to define the top-level settings of the PrimAITE environment, the reward values, and the session that is to be run.
+
+* **The Lay Down Config**
+
+    Used to define the low-level settings of a session, including the network laydown, green / red agent information exchange requirements (IERSs) and Access Control Rules.
+
+Training Config:
+*******************
+
+The Training Config file consists of the following attributes:
+
+**Generic Config Values**
+
+
+* **agent_framework** [enum]
+
+    This identifies the agent framework to be used to instantiate the agent algorithm. Select from one of the following:
+
+    * NONE - Where a user developed agent is to be used
+    * SB3 - Stable Baselines3
+    * RLLIB - Ray RLlib.
+
+* **agent_identifier**
+
+    This identifies the agent to use for the session. Select from one of the following:
+
+    * A2C - Advantage Actor Critic
+    * PPO - Proximal Policy Optimization
+    * HARDCODED - A custom built deterministic agent
+    * RANDOM - A Stochastic random agent
+
+
+* **random_red_agent** [bool]
+
+    Determines if the session should be run with a random red agent
+
+* **action_type** [enum]
+
+    Determines whether a NODE, ACL, or ANY (combined NODE & ACL) action space format is adopted for the session
+
+
+* **OBSERVATION_SPACE** [dict]
+
+    Allows for user to configure observation space by combining one or more observation components. List of available
+    components is in :py:mod:`primaite.environment.observations`.
+
+    The observation space config item should have a ``components`` key which is a list of components. Each component
+    config must have a ``name`` key, and can optionally have an ``options`` key. The ``options`` are passed to the
+    component while it is being initialised.
+
+    This example illustrates the correct format for the observation space config item
+
+    .. code-block:: yaml
+
+        observation_space:
+        components:
+          - name: NODE_LINK_TABLE
+          - name: NODE_STATUSES
+          - name: LINK_TRAFFIC_LEVELS
+          - name: ACCESS_CONTROL_LIST
+            options:
+              combine_service_traffic : False
+              quantisation_levels: 99
+
+
+    Currently available components are:
+
+      * :py:mod:`NODE_LINK_TABLE<primaite.environment.observations.NodeLinkTable>` this does not accept any additional options
+      * :py:mod:`NODE_STATUSES<primaite.environment.observations.NodeStatuses>`, this does not accept any additional options
+      * :py:mod:`ACCESS_CONTROL_LIST<primaite.environment.observations.AccessControlList>`, this does not accept additional options
+      * :py:mod:`LINK_TRAFFIC_LEVELS<primaite.environment.observations.LinkTrafficLevels>`, this accepts the following options:
+
+        * ``combine_service_traffic`` - whether to consider bandwidth use separately for each network protocol or combine them into a single bandwidth reading (boolean)
+        * ``quantisation_levels`` - how many discrete bandwidth usage levels to use for encoding. This can be an integer equal to or greater than 3.
+
+    The other configurable item is ``flatten`` which is false by default. When set to true, the observation space is flattened (turned into a 1-D vector). You should use this if your RL agent does not natively support observation space types like ``gym.Spaces.Tuple``.
+
+* **num_train_episodes** [int]
+
+    This defines the number of episodes that the agent will train for.
+
+
+* **num_train_steps** [int]
+
+    Determines the number of steps to run in each episode of the training session.
+
+
+* **num_eval_episodes** [int]
+
+    This defines the number of episodes that the agent will be evaluated over.
+
+
+* **num_eval_steps** [int]
+
+    Determines the number of steps to run in each episode of the evaluation session.
+
+
+* **time_delay** [int]
+
+    The time delay (in milliseconds) to take between each step when running a GENERIC agent session
+
+
+* **session_type** [text]
+
+    Type of session to be run (TRAINING, EVALUATION, or BOTH)
+
+* **load_agent** [bool]
+
+    Determine whether to load an agent from file
+
+* **agent_load_file** [text]
+
+    File path and file name of agent if you're loading one in
+
+* **observation_space_high_value** [int]
+
+    The high value to use for values in the observation space. This is set to 1000000000 by default, and should not need changing in most cases
+
+* **implicit_acl_rule** [str]
+
+    Determines which Explicit rule the ACL list has - two options are: DENY or ALLOW.
+
+* **max_number_acl_rules** [int]
+
+    Sets a limit on how many ACL rules there can be in the ACL list throughout the training session.
+
+**Reward-Based Config Values**
+
+Rewards are calculated based on the difference between the current state and reference state (the 'should be' state) of the environment.
+
+* **Generic [all_ok]** [float]
+
+    The score to give when the current situation (for a given component) is no different from that expected in the baseline (i.e. as though no blue or red agent actions had been undertaken)
+
+* **Node Hardware State [off_should_be_on]** [float]
+
+    The score to give when the node should be on, but is off
+
+* **Node Hardware State [off_should_be_resetting]** [float]
+
+    The score to give when the node should be resetting, but is off
+
+* **Node Hardware State [on_should_be_off]** [float]
+
+    The score to give when the node should be off, but is on
+
+* **Node Hardware State [on_should_be_resetting]** [float]
+
+    The score to give when the node should be resetting, but is on
+
+* **Node Hardware State [resetting_should_be_on]** [float]
+
+    The score to give when the node should be on, but is resetting
+
+* **Node Hardware State [resetting_should_be_off]** [float]
+
+    The score to give when the node should be off, but is resetting
+
+* **Node Hardware State [resetting]** [float]
+
+    The score to give when the node is resetting
+
+* **Node Operating System or Service State [good_should_be_patching]** [float]
+
+    The score to give when the state should be patching, but is good
+
+* **Node Operating System or Service State [good_should_be_compromised]** [float]
+
+    The score to give when the state should be compromised, but is good
+
+* **Node Operating System or Service State [good_should_be_overwhelmed]** [float]
+
+    The score to give when the state should be overwhelmed, but is good
+
+* **Node Operating System or Service State [patching_should_be_good]** [float]
+
+    The score to give when the state should be good, but is patching
+
+* **Node Operating System or Service State [patching_should_be_compromised]** [float]
+
+    The score to give when the state should be compromised, but is patching
+
+* **Node Operating System or Service State [patching_should_be_overwhelmed]** [float]
+
+    The score to give when the state should be overwhelmed, but is patching
+
+* **Node Operating System or Service State [patching]** [float]
+
+    The score to give when the state is patching
+
+* **Node Operating System or Service State [compromised_should_be_good]** [float]
+
+    The score to give when the state should be good, but is compromised
+
+* **Node Operating System or Service State [compromised_should_be_patching]** [float]
+
+    The score to give when the state should be patching, but is compromised
+
+* **Node Operating System or Service State [compromised_should_be_overwhelmed]** [float]
+
+    The score to give when the state should be overwhelmed, but is compromised
+
+* **Node Operating System or Service State [compromised]** [float]
+
+    The score to give when the state is compromised
+
+* **Node Operating System or Service State [overwhelmed_should_be_good]** [float]
+
+    The score to give when the state should be good, but is overwhelmed
+
+* **Node Operating System or Service State [overwhelmed_should_be_patching]** [float]
+
+    The score to give when the state should be patching, but is overwhelmed
+
+* **Node Operating System or Service State [overwhelmed_should_be_compromised]** [float]
+
+    The score to give when the state should be compromised, but is overwhelmed
+
+* **Node Operating System or Service State [overwhelmed]** [float]
+
+    The score to give when the state is overwhelmed
+
+* **Node File System State [good_should_be_repairing]** [float]
+
+    The score to give when the state should be repairing, but is good
+
+* **Node File System State [good_should_be_restoring]** [float]
+
+    The score to give when the state should be restoring, but is good
+
+* **Node File System State [good_should_be_corrupt]** [float]
+
+    The score to give when the state should be corrupt, but is good
+
+* **Node File System State [good_should_be_destroyed]** [float]
+
+    The score to give when the state should be destroyed, but is good
+
+* **Node File System State [repairing_should_be_good]** [float]
+
+    The score to give when the state should be good, but is repairing
+
+* **Node File System State [repairing_should_be_restoring]** [float]
+
+    The score to give when the state should be restoring, but is repairing
+
+* **Node File System State [repairing_should_be_corrupt]** [float]
+
+    The score to give when the state should be corrupt, but is repairing
+
+* **Node File System State [repairing_should_be_destroyed]** [float]
+
+    The score to give when the state should be destroyed, but is repairing
+
+* **Node File System State [repairing]** [float]
+
+    The score to give when the state is repairing
+
+* **Node File System State [restoring_should_be_good]** [float]
+
+    The score to give when the state should be good, but is restoring
+
+* **Node File System State [restoring_should_be_repairing]** [float]
+
+    The score to give when the state should be repairing, but is restoring
+
+* **Node File System State [restoring_should_be_corrupt]** [float]
+
+    The score to give when the state should be corrupt, but is restoring
+
+* **Node File System State [restoring_should_be_destroyed]** [float]
+
+    The score to give when the state should be destroyed, but is restoring
+
+* **Node File System State [restoring]** [float]
+
+    The score to give when the state is restoring
+
+* **Node File System State [corrupt_should_be_good]** [float]
+
+    The score to give when the state should be good, but is corrupt
+
+* **Node File System State [corrupt_should_be_repairing]** [float]
+
+    The score to give when the state should be repairing, but is corrupt
+
+* **Node File System State [corrupt_should_be_restoring]** [float]
+
+    The score to give when the state should be restoring, but is corrupt
+
+* **Node File System State [corrupt_should_be_destroyed]** [float]
+
+    The score to give when the state should be destroyed, but is corrupt
+
+* **Node File System State [corrupt]** [float]
+
+    The score to give when the state is corrupt
+
+* **Node File System State [destroyed_should_be_good]** [float]
+
+    The score to give when the state should be good, but is destroyed
+
+* **Node File System State [destroyed_should_be_repairing]** [float]
+
+    The score to give when the state should be repairing, but is destroyed
+
+* **Node File System State [destroyed_should_be_restoring]** [float]
+
+    The score to give when the state should be restoring, but is destroyed
+
+* **Node File System State [destroyed_should_be_corrupt]** [float]
+
+    The score to give when the state should be corrupt, but is destroyed
+
+* **Node File System State [destroyed]** [float]
+
+    The score to give when the state is destroyed
+
+* **Node File System State [scanning]** [float]
+
+    The score to give when the state is scanning
+
+* **IER Status [red_ier_running]** [float]
+
+    The score to give when a red agent IER is permitted to run
+
+* **IER Status [green_ier_blocked]** [float]
+
+    The score to give when a green agent IER is prevented from running
+
+**Patching / Reset Durations**
+
+* **os_patching_duration** [int]
+
+    The number of steps to take when patching an Operating System
+
+* **node_reset_duration** [int]
+
+    The number of steps to take when resetting a node's hardware state
+
+* **service_patching_duration** [int]
+
+    The number of steps to take when patching a service
+
+* **file_system_repairing_limit** [int]:
+
+    The number of steps to take when repairing the file system
+
+* **file_system_restoring_limit** [int]
+
+    The number of steps to take when restoring the file system
+
+* **file_system_scanning_limit** [int]
+
+    The number of steps to take when scanning the file system
+
+* **deterministic** [bool]
+
+   Set to true if the agent evaluation should be deterministic. Default is ``False``
+
+* **seed** [int]
+
+   Seed used in the randomisation in agent training. Default is ``None``
+
+The Lay Down Config
+*******************
+
+The lay down config file consists of the following attributes:
+
+
+* **itemType: STEPS** [int]
+
+* **item_type: PORTS** [int]
+
+    Provides a list of ports modelled in this session
+
+* **item_type: SERVICES** [freetext]
+
+    Provides a list of services modelled in this session
+
+* **item_type: NODE**
+
+    Defines a node included in the system laydown being simulated. It should consist of the following attributes:
+
+     * **id** [int]: Unique ID for this YAML item
+     * **name** [freetext]: Human-readable name of the component
+     * **node_class** [enum]: Relates to the base type of the node. Can be SERVICE, ACTIVE or PASSIVE. PASSIVE nodes do not have an operating system or services. ACTIVE nodes have an operating system, but no services. SERVICE nodes have both an operating system and one or more services
+     * **node_type** [enum]: Relates to the component type. Can be one of CCTV, SWITCH, COMPUTER, LINK, MONITOR, PRINTER, LOP, RTU, ACTUATOR or SERVER
+     * **priority** [enum]: Provides a priority for each node. Can be one of P1, P2, P3, P4 or P5 (which P1 being the highest)
+     * **hardware_state** [enum]: The initial hardware state of the node. Can be one of ON, OFF or RESETTING
+     * **ip_address** [IP address]: The IP address of the component in format xxx.xxx.xxx.xxx
+     * **software_state** [enum]: The intial state of the node operating system. Can be GOOD, PATCHING or COMPROMISED
+     * **file_system_state** [enum]: The initial state of the node file system. Can be GOOD, CORRUPT, DESTROYED, REPAIRING or RESTORING
+     * **services**: For each service associated with the node:
+
+        * **name** [freetext]: Free-text name of the service, but must match one of the services defined for the system in the services list
+        * **port** [int]: Integer value of the port related to this service, but must match one of the ports defined for the system in the ports list
+        * **state** [enum]: The initial state of the service. Can be one of GOOD, PATCHING, COMPROMISED or OVERWHELMED
+
+* **item_type: LINK**
+
+    Defines a link included in the system laydown being simulated. It should consist of the following attributes:
+
+     * **id** [int]: Unique ID for this YAML item
+     * **name** [freetext]: Human-readable name of the component
+     * **bandwidth** [int]: The bandwidth (in bits/s) of the link
+     * **source** [int]: The ID of the source node
+     * **destination** [int]: The ID of the destination node
+
+* **item_type: GREEN_IER**
+
+    Defines a green agent Information Exchange Requirement (IER). It should consist of:
+
+     * **id** [int]: Unique ID for this YAML item
+     * **start_step** [int]: The start step (in the episode) for this IER to begin
+     * **end_step** [int]: The end step (in the episode) for this IER to finish
+     * **load** [int]: The load (in bits/s) for this IER to apply to links
+     * **protocol** [freetext]: The protocol to apply to the links. This must match a value in the services list
+     * **port** [int]: The port that the protocol is running on. This must match a value in the ports list
+     * **source** [int]: The ID of the source node
+     * **destination** [int]: The ID of the destination node
+     * **mission_criticality** [enum]: The mission criticality of this IER (with 5 being highest, 1 lowest)
+
+* **item_type: RED_IER**
+
+    Defines a red agent Information Exchange Requirement (IER). It should consist of:
+
+     * **id** [int]: Unique ID for this YAML item
+     * **start_step** [int]: The start step (in the episode) for this IER to begin
+     * **end_step** [int]: The end step (in the episode) for this IER to finish
+     * **load** [int]: The load (in bits/s) for this IER to apply to links
+     * **protocol** [freetext]: The protocol to apply to the links. This must match a value in the services list
+     * **port** [int]: The port that the protocol is running on. This must match a value in the ports list
+     * **source** [int]: The ID of the source node
+     * **destination** [int]: The ID of the destination node
+     * **mission_criticality** [enum]: Not currently used. Default to 0
+
+* **item_type: GREEN_POL**
+
+    Defines a green agent pattern-of-life instruction. It should consist of:
+
+      * **id** [int]: Unique ID for this YAML item
+      * **start_step** [int]: The start step (in the episode) for this PoL to begin
+      * **end_step** [int]: Not currently used. Default to same as start step
+      * **nodeId** [int]: The ID of the node to apply the PoL to
+      * **type** [enum]: The type of PoL to apply. Can be one of OPERATING, OS or SERVICE
+      * **protocol** [freetext]: The protocol to be affected if SERVICE type is chosen. Must match a value in the services list
+      * **state** [enuum]: The state to apply to the node (which represents the PoL change). Can be one of ON, OFF or RESETTING (for node state) or GOOD, PATCHING or COMPROMISED (for Software State) or GOOD, PATCHING, COMPROMISED or OVERWHELMED (for service state)
+
+* **item_type: RED_POL**
+
+    Defines a red agent pattern-of-life instruction. It should consist of:
+
+      * **id** [int]: Unique ID for this YAML item
+      * **start_step** [int]: The start step (in the episode) for this PoL to begin
+      * **end_step** [int]: Not currently used. Default to same as start step
+      * **targetNodeId** [int]: The ID of the node to apply the PoL to
+      * **initiator** [enum]: What initiates the PoL. Can be DIRECT, IER or SERVICE
+      * **type** [enum]: The type of PoL to apply. Can be one of OPERATING, OS or SERVICE
+      * **protocol** [freetext]: The protocol to be affected if SERVICE type is chosen. Must match a value in the services list
+      * **state** [enum]: The state to apply to the node (which represents the PoL change). Can be one of ON, OFF or RESETTING (for node state) or GOOD, PATCHING or COMPROMISED (for Software State) or GOOD, PATCHING, COMPROMISED or OVERWHELMED (for service state) or GOOD, CORRUPT, DESTROYED, REPAIRING or RESTORING (for file system state)
+      * **sourceNodeId** [int] The ID of the source node containing the service to check (used for SERVICE initiator)
+      * **sourceNodeService** [freetext]: The service on the source node to check (used for SERVICE initiator). Must match a value in the services list for this node
+      * **sourceNodeServiceState** [enum]: The state of the source node service to check (used for SERVICE initiator). Can be one of GOOD, PATCHING, COMPROMISED or OVERWHELMED
+
+* **item_type: ACL_RULE**
+
+    Defines an initial Access Control List (ACL) rule. It should consist of:
+
+      * **id** [int]: Unique ID for this YAML item
+      * **permission** [enum]: Defines either an allow or deny rule. Value must be either DENY or ALLOW
+      * **source** [IP address]: Defines the source IP address for the rule in xxx.xxx.xxx.xxx format
+      * **destination** [IP address]: Defines the destination IP address for the rule in xxx.xxx.xxx.xxx format
+      * **protocol** [freetext]: Defines the protocol for the rule. Must match a value in the services list
+      * **port** [int]: Defines the port for the rule. Must match a value in the ports list
+      * **position** [int]: Defines where to place the ACL rule in the list. Lower index or (higher up in the list) means they are checked first. Index starts at 0 (Python indexes).

docs/source/custom_agent.rst

@@ -0,0 +1,142 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+Custom Agents
+=============
+
+
+Integrating a user defined blue agent
+*************************************
+
+.. note::
+
+    If you are planning to implement custom RL agents into PrimAITE, you must use the project as a repository. If you install PrimAITE as a python package from wheel, custom agents are not supported.
+
+PrimAITE has integration with Ray RLLib and StableBaselines3 agents. All agents interface with PrimAITE through an :py:class:`primaite.agents.agent.AgentSessionABC<Agent Session>` which provides Input/Output of agent savefiles, as well as capturing and plotting performance metrics during training and evaluation. If you wish to integrate a custom blue agent, it is recommended to create a subclass of the :py:class:`primaite.agents.agent.AgentSessionABC` and implement the ``__init__()``, ``_setup()``,  ``_save_checkpoint()``, ``learn()``, ``evaluate()``, ``_get_latest_checkpoint``, ``load()``, and ``save()`` methods.
+
+Below is a barebones example of a custom agent implementation:
+
+.. code:: python
+
+    # src/primaite/agents/my_custom_agent.py
+
+    from primaite.agents.agent import AgentSessionABC
+    from primaite.common.enums import AgentFramework, AgentIdentifier
+
+    class CustomAgent(AgentSessionABC):
+        def __init__(self, training_config_path, lay_down_config_path):
+            super().__init__(training_config_path, lay_down_config_path)
+            assert self._training_config.agent_framework == AgentFramework.CUSTOM
+            assert self._training_config.agent_identifier == AgentIdentifier.MY_AGENT
+            self._setup()
+
+        def _setup(self):
+            super()._setup()
+            self._env = Primaite(
+                training_config_path=self._training_config_path,
+                lay_down_config_path=self._lay_down_config_path,
+                session_path=self.session_path,
+                timestamp_str=self.timestamp_str,
+        )
+            self._agent = ... # your code to setup agent
+
+        def _save_checkpoint(self):
+            checkpoint_num = self._training_config.checkpoint_every_n_episodes
+            episode_count = self._env.episode_count
+            save_checkpoint = False
+            if checkpoint_num:
+                save_checkpoint = episode_count % checkpoint_num == 0
+            # saves checkpoint if the episode count is not 0 and save_checkpoint flag was set to true
+            if episode_count and save_checkpoint:
+                ...
+                # your code to save checkpoint goes here.
+                # The path should start with self.checkpoints_path and include the episode number.
+
+        def learn(self):
+            ...
+            # call your agent's learning function here.
+
+            super().learn() # this will finalise learning and output session metadata
+            self.save()
+
+        def evaluate(self):
+            ...
+            # call your agent's evaluation function here.
+
+            self._env.close()
+            super().evaluate()
+
+        def _get_latest_checkpoint(self):
+            ...
+            # Load an agent from file.
+
+        @classmethod
+        def load(cls, path):
+            ...
+            # Create a CustomAgent object which loads model weights from file.
+
+        def save(self):
+            ...
+            # Call your agent's function that saves it to a file
+
+
+You will also need to modify :py:class:`primaite.primaite_session.PrimaiteSession<PrimaiteSession>` and :py:mod:`primaite.common.enums` to capture your new agent identifiers.
+
+.. code-block:: python
+    :emphasize-lines: 17, 18
+
+    # src/primaite/common/enums.py
+
+    class AgentIdentifier(Enum):
+        """The Red Agent algo/class."""
+        A2C = 1
+        "Advantage Actor Critic"
+        PPO = 2
+        "Proximal Policy Optimization"
+        HARDCODED = 3
+        "The Hardcoded agents"
+        DO_NOTHING = 4
+        "The DoNothing agents"
+        RANDOM = 5
+        "The RandomAgent"
+        DUMMY = 6
+        "The DummyAgent"
+        CUSTOM_AGENT = 7
+        "Your custom agent"
+
+.. code-block:: python
+    :emphasize-lines: 3, 11, 12
+
+    # src/primaite_session.py
+
+    from primaite.agents.my_custom_agent import CustomAgent
+
+    # ...
+
+        def setup(self):
+        """Performs the session setup."""
+        if self._training_config.agent_framework == AgentFramework.CUSTOM:
+            _LOGGER.debug(f"PrimaiteSession Setup: Agent Framework = {AgentFramework.CUSTOM}")
+            if self._training_config.agent_identifier == AgentIdentifier.CUSTOM_AGENT:
+                self._agent_session = CustomAgent(self._training_config_path, self._lay_down_config_path)
+            if self._training_config.agent_identifier == AgentIdentifier.HARDCODED:
+                _LOGGER.debug(f"PrimaiteSession Setup: Agent Identifier =" f" {AgentIdentifier.HARDCODED}")
+                if self._training_config.action_type == ActionType.NODE:
+                    # Deterministic Hardcoded Agent with Node Action Space
+                    self._agent_session = HardCodedNodeAgent(self._training_config_path, self._lay_down_config_path)
+
+Finally, specify your agent in your training config.
+
+.. code-block:: yaml
+
+    # ~/primaite/2.0.0/config/path/to/your/config_main.yaml
+
+    # Training Config File
+
+    agent_framework: CUSTOM
+    agent_identifier: CUSTOM_AGENT
+    random_red_agent: False
+    # ...
+
+Now you can :ref:`run a primaite session<run a primaite session>` with your custom agent by passing in the custom ``config_main``.

docs/source/dependencies.rst

@@ -0,0 +1,14 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+.. role::  raw-html(raw)
+    :format: html
+
+Dependencies
+============
+
+PrimAITE Dependencies
+---------------------
+
+.. include:: primaite-dependencies.rst

docs/source/getting_started.rst

@@ -0,0 +1,155 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+.. _getting-started:
+
+Getting Started
+===============
+
+**Getting Started with PrimAITE**
+
+Pre-Requisites
+
+In order to get **PrimAITE** installed, you will need to have a python version between 3.8 and 3.10 installed. If you don't already have it, this is how to install it:
+
+
+.. tabs:: lang
+
+    .. code-tab:: bash
+        :caption: Unix
+
+        sudo add-apt-repository ppa:deadsnakes/ppa
+        sudo apt install python3.10
+        sudo apt-get install python3-pip
+        sudo apt-get install python3-venv
+
+    .. code-tab:: text
+        :caption: Windows (Powershell)
+
+        - Manual install from: https://www.python.org/downloads/release/python-31011/
+
+**PrimAITE** is designed to be OS-agnostic, and thus should work on most variations/distros of Linux, Windows, and MacOS.
+
+Install PrimAITE
+****************
+
+1. Create a primaite directory in your home directory:
+
+.. tabs:: lang
+
+    .. code-tab:: bash
+        :caption: Unix
+
+        mkdir ~/primaite/2.0.0
+
+    .. code-tab:: powershell
+        :caption: Windows (Powershell)
+
+        mkdir ~\primaite\2.0.0
+
+2. Navigate to the primaite directory and create a new python virtual environment (venv)
+
+.. tabs:: lang
+
+    .. code-tab:: bash
+        :caption: Unix
+
+        cd ~/primaite/2.0.0
+        python3 -m venv .venv
+
+    .. code-tab:: powershell
+        :caption: Windows (Powershell)
+
+        cd ~\primaite\2.0.0
+        python3 -m venv .venv
+        attrib +h .venv /s /d # Hides the .venv directory
+
+3. Activate the venv
+
+.. tabs:: lang
+
+    .. code-tab:: bash
+        :caption: Unix
+
+        source .venv/bin/activate
+
+    .. code-tab:: powershell
+        :caption: Windows (Powershell)
+
+        .\.venv\Scripts\activate
+
+
+4. Install PrimAITE using pip from PyPi
+
+.. tabs:: lang
+
+    .. code-tab:: bash
+        :caption: Unix
+
+        pip install primaite
+
+    .. code-tab:: powershell
+        :caption: Windows (Powershell)
+
+        pip install primaite
+
+5. Perform the PrimAITE setup
+
+.. tabs:: lang
+
+    .. code-tab:: bash
+        :caption: Unix
+
+        primaite setup
+
+    .. code-tab:: powershell
+        :caption: Windows (Powershell)
+
+        primaite setup
+
+Clone & Install PrimAITE for Development
+****************************************
+
+To be able to extend PrimAITE further, or to build wheels manually before install, clone the repository to a location
+of your choice:
+
+.. TODO:: Add repo path once we know what it is
+
+.. code-block:: bash
+
+    git clone <repo path>
+    cd primaite
+
+Create and activate your Python virtual environment (venv)
+
+.. tabs:: lang
+
+    .. code-tab:: bash
+        :caption: Unix
+
+        python3 -m venv venv
+        source venv/bin/activate
+
+    .. code-tab:: powershell
+        :caption: Windows (Powershell)
+
+        python3 -m venv venv
+        .\venv\Scripts\activate
+
+Install PrimAITE with the dev extra
+
+.. tabs:: lang
+
+    .. code-tab:: bash
+        :caption: Unix
+
+        pip install -e .[dev]
+
+    .. code-tab:: powershell
+        :caption: Windows (Powershell)
+
+        pip install -e .[dev]
+
+
+To view the complete list of packages installed during PrimAITE installation, go to the dependencies page (:ref:`Dependencies`).

docs/source/glossary.rst

@@ -0,0 +1,81 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+Glossary
+=============
+
+.. glossary::
+    :sorted:
+
+    Network
+        The network in primaite is a logical representation of a computer network containing :term:`Nodes<Node>` and :term:`Links<Link>`.
+
+    Node
+        A Node represents a network endpoint. For example a computer, server, switch, or an actuator.
+
+    Link
+        A Link represents the connection between two Nodes. For example, a physical wire between a computer and a switch or a wireless connection.
+
+    Protocol
+        Protocols are used by links to separate different types of network traffic. Common examples would be HTTP, TCP, and UDP.
+
+    Service
+        A service represents a piece of software that is installed on a node, such as a web server or a database.
+
+    Access Control List
+        PrimAITE blocks or allows certain traffic on the network by simulating firewall rules, which are defined in the Access Control List.
+
+    Agent
+        An agent is a representation of a user of the network. Typically this would be a user that is using one of the computer nodes, though it could be an autonomous agent.
+
+    Green agent
+        Simulates typical benign activity on the network, such as real users using computers and servers.
+
+    Red Agent
+        An agent that is aiming to attack the network in some way, for example by executing a Denial-Of-Service attack or stealing data.
+
+    Blue Agent
+        A defensive agent that protects the network from Red Agent attacks to minimise disruption to green agents and protect data.
+
+    Information Exchange Requirement (IER)
+        Simulates network traffic by sending data from one network node to another via links for a specified amount of time. IERs can be part of green agent behaviour or red agent behaviour. PrimAITE can be configured to apply a penalty for green agents' IERs being blocked and a reward for red agents' IERs being blocked.
+
+    Pattern-of-Life (PoL)
+        PoLs allow agents to change the current hardware, OS, file system, or service statuses of nodes during the course of an episode. For example, a green agent may restart a server node to represent scheduled maintainance. A red agent's Pattern-of-Life can be used to attack nodes by changing their states to CORRUPTED or COMPROMISED.
+
+    Reward
+        The reward is a single number used by the blue agent to understand whether it's performing well or poorly. RL agents change their behaviour in an attempt to increase the expected reward each episode. The reward is generated based on the current states of the environment / :term:`reference environment` and is impacted positively by things like green IERS running successfully and negatively by things like nodes being compromised.
+
+    Observation
+        An observation is a representation of the current state of the environment that is given to the learning agent so it can decide on which action to perform. If the environment is 'fully observable', the observation contains information about every possible aspect of the environment. More commonly, the environment is 'partially observable' which means the learning agent has to make decisions without knowing every detail of the current environment state.
+
+    Action
+        The learning agent decides on an action to take on every step in the simulation. The action has the chance to positively or negatively impact the environment state. Over time, the agent aims to learn which actions to take when to maximise the expected reward.
+
+    Training
+        During training, an RL agent is placed in the simulated network and it learns which actions to take in which scenarios to obtain maximum reward.
+
+    Evaluation
+        During evaluation, an RL agent acts on the simulated network but it is not allowed to update it's behaviour. Evaluation is used to assess how successful agents are at defending the network.
+
+    Step
+        The agents can only act in the environment at discrete intervals. The time step is the basic unit of time in the simulation. At each step, the RL agent has an opportunity to observe the state of the environment and decide an action. Steps are also used for updating states for time-dependent activities such as rebooting a node.
+
+    Episode
+        When an episode starts, the network simulation is reset to an initial state. The agents take actions on each step of the episode until it reaches a terminal state, which usually happens after a predetermined number of steps. After the terminal state is reached, a new episode starts and the RL agent has another opportunity to protect the network.
+
+    Reference environment
+        While the network simulation is unfolding, a parallel simulation takes place which is identical to the main one except that blue and red agent actions are not applied. This reference environment essentially shows what would be happening to the network if there had been no cyberattack or defense. The reference environment is used to calculate rewards.
+
+    Transaction
+        PrimAITE records the decisions of the learning agent by saving its observation, action, and reward at every time step. During each session, this data is saved to disk to allow for full inspection.
+
+    Laydown
+        The laydown is a file which defines the training scenario. It contains the network topology, firewall rules, services, protocols, and details about green and red agent behaviours.
+
+    Gym
+        PrimAITE uses the Gym reinforcement learning framework API to create a training environment and interface with RL agents. Gym defines a common way of creating observations, actions, and rewards.
+
+    User app home
+        PrimAITE supports upgrading software version while retaining user data. The user data directory is where configs, notebooks, and results are stored, this location is `~/primaite<version>` on linux/darwin and `C:\Users\<username>\primaite\<version>` on Windows.

docs/source/migration_1.2_-_2.0.rst

@@ -0,0 +1,57 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+v1.2 to v2.0 Migration guide
+============================
+
+**1. Installing PrimAITE**
+
+    Like before, you can install primaite from the repository by running ``pip install -e .``. But, there is now an additional setup step which does several things, like setting up user directories, copy default configs and notebooks, etc. Once you have installed PrimAITE to your virtual environment, run this command to finalise setup.
+
+    .. code-block:: bash
+
+        primaite setup
+
+**2. Running a training session**
+
+    In version 1.2 of PrimAITE, the main entry point for training or evaluating agents was the ``src/primaite/main.py`` file. v2.0.0 introduced managed 'sessions' which are responsible for reading configuration files, performing training, and writing outputs.
+
+    ``main.py`` file still runs a training session but it now uses the new `PrimaiteSession`, and it now requires you to provide the path to your config files.
+
+    .. code-block:: bash
+
+        python src/primaite/main.py --tc path/to/training-config.yaml --ldc path/to/laydown-config.yaml
+
+    Alternatively, the session can be invoked via the commandline by running:
+
+    .. code-block:: bash
+
+        primaite session --tc path/to/training-config.yaml --ldc path/to/laydown-config.yaml
+
+**3. Location of configs**
+
+    In version 1.2, training configs and laydown configs were all stored in the project repository under ``src/primaite/config``. Version 2.0.0 introduced user data directories, and now when you install and setup PrimAITE, config files are stored in your user data location. On Linux/OSX, this is stored in ``~/primaite/2.0.0/config``. On Windows, this is stored in ``C:\Users\<your username>\primaite\configs``. Upon first setup, the configs folder is populated with some default yaml files. It is recommended that you store all your custom configuration files here.
+
+**4. Contents of configs**
+
+    Some things that were previously part of the laydown config are now part of the traning config.
+
+        * Actions
+
+    If you have custom configs which use these, you will need to adapt them by moving the configuration from the laydown config to the training config.
+
+    Also, there are new configurable items in the training config:
+
+        * Observations
+        * Agent framework
+        * Agent
+        * Deep learning framework
+        * random red agents
+        * seed
+        * deterministic
+        * hard coded agent view
+
+    Each of these items have default values which are designed so that PrimAITE has the same behaviour as it did in 1.2.0, so you do not have to specify them.
+
+    ACL Rules in laydown configs have a new required parameter: ``position``. The lower the position, the higher up in the ACL table the rule will placed. If you have custom laydowns, you will need to go through them and add a position to each ACL_RULE.

docs/source/primaite_session.rst

@@ -0,0 +1,182 @@
+.. only:: comment
+
+    © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+.. _run a primaite session:
+
+Run a PrimAITE Session
+======================
+
+Run
+---
+
+A PrimAITE session can be ran either with the ``primaite session`` command from the cli
+(See :func:`primaite.cli.session`), or by calling :func:`primaite.main.run` from a Python terminal or Jupyter Notebook.
+Both the ``primaite session`` and :func:`primaite.main.run` take a training config and a lay down config as parameters.
+
+
+.. tabs::
+
+    .. code-tab:: bash
+        :caption: Unix CLI
+
+        cd ~/primaite/2.0.0
+        source ./.venv/bin/activate
+        primaite session --tc ./config/my_training_config.yaml --ldc ./config/my_lay_down_config.yaml
+
+    .. code-tab:: powershell
+        :caption: Powershell CLI
+
+        cd ~\primaite\2.0.0
+        .\.venv\Scripts\activate
+        primaite session --tc .\config\my_training_config.yaml --ldc .\config\my_lay_down_config.yaml
+
+
+    .. code-tab:: python
+        :caption: Python
+
+        from primaite.main import run
+
+        training_config = <path to training config yaml file>
+        lay_down_config = <path to lay down config yaml file>
+        run(training_config, lay_down_config)
+
+When a session is ran, a session output sub-directory is created in the users app sessions directory (``~/primaite/2.0.0/sessions``).
+The sub-directory is formatted as such: ``~/primaite/2.0.0/sessions/<yyyy-mm-dd>/<yyyy-mm-dd>_<hh-mm-dd>/``
+
+For example, when running a session at 17:30:00 on 31st January 2023, the session will output to:
+``~/primaite/2.0.0/sessions/2023-01-31/2023-01-31_17-30-00/``.
+
+``primaite session`` can be ran in the terminal/command prompt without arguments. It will use the default configs in the directory ``primaite/config/example_config``.
+
+
+Outputs
+-------
+
+PrimAITE produces four types of outputs:
+
+* Session Metadata
+* Results
+* Diagrams
+* Saved agents (training checkpoints and a final trained agent)
+
+
+**Session Metadata**
+
+PrimAITE creates a ``session_metadata.json`` file that contains the following metadata:
+
+    * **uuid** - The UUID assigned to the session upon instantiation.
+    * **start_datetime** - The date & time the session started in iso format.
+    * **end_datetime** - The date & time the session ended in iso format.
+    * **learning**
+        * **total_episodes** - The total number of training episodes completed.
+        * **total_time_steps** - The total number of training time steps completed.
+    * **evaluation**
+        * **total_episodes** - The total number of evaluation episodes completed.
+        * **total_time_steps** - The total number of evaluation time steps completed.
+    * **env**
+        * **training_config**
+            * **All training config items**
+        * **lay_down_config**
+            * **All lay down config items**
+
+
+**Results**
+
+PrimAITE automatically creates two sets of results from each learning and evaluation session:
+
+* Average reward per episode - a csv file listing the average reward for each episode of the session. This provides, for example, an indication of the change over a training session of the reward value
+* All transactions - a csv file listing the following values for every step of every episode:
+
+    * Timestamp
+    * Episode number
+    * Step number
+    * Reward value
+    * Action taken (as presented by the blue agent on this step). Individual elements of the action space are presented in the format AS_X
+    * Initial observation space (what the blue agent observed when it decided its action)
+
+**Diagrams**
+
+* For each session, PrimAITE automatically creates a visualisation of the system / network lay down configuration.
+* For each learning and evaluation task within the session, PrimAITE automatically plots the average reward per episode using PlotLY and saves it to the learning or evaluation subdirectory in the session directory.
+
+**Saved agents**
+
+For each training session, assuming the agent being trained implements the *save()* function and this function is called by the code, PrimAITE automatically saves the agent state.
+
+**Example Session Directory Structure**
+
+.. code-block:: text
+
+    ~/
+    └── primaite/
+        └── 2.0.0/
+            └── sessions/
+                └── 2023-07-18/
+                    └── 2023-07-18_11-06-04/
+                        ├── evaluation/
+                        │   ├── all_transactions_2023-07-18_11-06-04.csv
+                        │   ├── average_reward_per_episode_2023-07-18_11-06-04.csv
+                        │   └── average_reward_per_episode_2023-07-18_11-06-04.png
+                        ├── learning/
+                        │   ├── all_transactions_2023-07-18_11-06-04.csv
+                        │   ├── average_reward_per_episode_2023-07-18_11-06-04.csv
+                        │   ├── average_reward_per_episode_2023-07-18_11-06-04.png
+                        │   ├── checkpoints/
+                        │   │   └── sb3ppo_10.zip
+                        │   ├── SB3_PPO.zip
+                        │   └── tensorboard_logs/
+                        │       ├── PPO_1/
+                        │       │   └── events.out.tfevents.1689674765.METD-9PMRFB3.42960.0
+                        │       ├── PPO_2/
+                        │       │   └── events.out.tfevents.1689674766.METD-9PMRFB3.42960.1
+                        │       ├── PPO_3/
+                        │       │   └── events.out.tfevents.1689674766.METD-9PMRFB3.42960.2
+                        │       ├── PPO_4/
+                        │       │   └── events.out.tfevents.1689674767.METD-9PMRFB3.42960.3
+                        │       ├── PPO_5/
+                        │       │   └── events.out.tfevents.1689674767.METD-9PMRFB3.42960.4
+                        │       ├── PPO_6/
+                        │       │   └── events.out.tfevents.1689674768.METD-9PMRFB3.42960.5
+                        │       ├── PPO_7/
+                        │       │   └── events.out.tfevents.1689674768.METD-9PMRFB3.42960.6
+                        │       ├── PPO_8/
+                        │       │   └── events.out.tfevents.1689674769.METD-9PMRFB3.42960.7
+                        │       ├── PPO_9/
+                        │       │   └── events.out.tfevents.1689674770.METD-9PMRFB3.42960.8
+                        │       └── PPO_10/
+                        │           └── events.out.tfevents.1689674770.METD-9PMRFB3.42960.9
+                        ├── network_2023-07-18_11-06-04.png
+                        └── session_metadata.json
+
+Loading a session
+-----------------
+
+A previous session can be loaded by providing the **directory** of the previous session to either the ``primaite session`` command from the cli
+(See :func:`primaite.cli.session`), or by calling :func:`primaite.main.run` with session_path.
+
+.. tabs::
+
+    .. code-tab:: bash
+        :caption: Unix CLI
+
+        cd ~/primaite/2.0.0
+        source ./.venv/bin/activate
+        primaite session --load "path/to/session"
+
+    .. code-tab:: bash
+        :caption: Powershell CLI
+
+        cd ~\primaite\2.0.0
+        .\.venv\Scripts\activate
+        primaite session --load "path\to\session"
+
+
+    .. code-tab:: python
+        :caption: Python
+
+        from primaite.main import run
+
+        run(session_path=<previous session directory>)
+
+When PrimAITE runs a loaded session, PrimAITE will output in the provided session directory

pyproject.toml

@@ -0,0 +1,83 @@
+[build-system]
+requires = ["setuptools", "setuptools-scm", "wheel"]
+build-backend = "setuptools.build_meta"
+
+[project]
+name = "primaite"
+description = "PrimAITE (Primary-level AI Training Environment) is a simulation environment for training AI under the ARCD programme."
+authors = [{name="Defence Science and Technology Laboratory UK", email="oss@dstl.gov.uk"}]
+license = {file = "LICENSE"}
+requires-python = ">=3.8, <3.11"
+dynamic = ["version", "readme"]
+classifiers = [
+    "License :: OSI Approved :: MIT License",
+    "Development Status :: 5 - Production/Stable",
+    "Operating System :: Microsoft :: Windows",
+    "Operating System :: MacOS",
+    "Operating System :: POSIX :: Linux",
+    "Operating System :: Unix",
+    "Programming Language :: Python :: 3",
+    "Programming Language :: Python :: 3.8",
+    "Programming Language :: Python :: 3.9",
+    "Programming Language :: Python :: 3.10",
+    "Programming Language :: Python :: 3 :: Only",
+]
+
+dependencies = [
+    "gym==0.21.0",
+    "jupyterlab==3.6.1",
+    "kaleido==0.2.1",
+    "matplotlib==3.7.1",
+    "networkx==3.1",
+    "numpy==1.23.5",
+    "platformdirs==3.5.1",
+    "plotly==5.15.0",
+    "polars==0.18.4",
+    "PyYAML==6.0",
+    "ray[rllib]==2.2.0",
+    "stable-baselines3==1.6.2",
+    "tensorflow==2.12.0",
+    "typer[all]==0.9.0"
+]
+
+[tool.setuptools.dynamic]
+version = {file = ["src/primaite/VERSION"]}
+readme = {file = ["README.md"]}
+
+[tool.setuptools]
+package-dir = {"" = "src"}
+include-package-data = true
+license-files = ["LICENSE"]
+
+
+[project.optional-dependencies]
+dev = [
+    "build==0.10.0",
+    "flake8==6.0.0",
+    "furo==2023.3.27",
+    "gputil==1.4.0",
+    "pip-licenses==4.3.0",
+    "pre-commit==2.20.0",
+    "pylatex==1.4.1",
+    "pytest==7.2.0",
+    "pytest-xdist==3.3.1",
+    "pytest-cov==4.0.0",
+    "pytest-flake8==1.1.1",
+    "setuptools==66",
+    "Sphinx==6.1.3",
+    "sphinx-code-tabs==0.5.3",
+    "sphinx-copybutton==0.5.2",
+    "wheel==0.38.4"
+]
+
+[project.scripts]
+primaite = "primaite.cli:app"
+
+[tool.isort]
+profile = "black"
+line_length = 120
+force_sort_within_sections = "False"
+order_by_type = "False"
+
+[tool.black]
+line-length = 120

pytest.ini

@@ -0,0 +1,5 @@
+[pytest]
+testpaths =
+    tests
+markers =
+    env_config_paths

setup.py

@@ -1,26 +1,17 @@
-# Crown Copyright (C) Dstl 2022. DEFCON 703. Shared in confidence.
-"""
-Setup
-"""
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+from setuptools import setup
+from wheel.bdist_wheel import bdist_wheel as _bdist_wheel  # noqa
+
+
+class bdist_wheel(_bdist_wheel):  # noqa
+    def finalize_options(self):  # noqa
+        super().finalize_options()
+        # Set to False if you need to build OS and Python specific wheels
+        self.root_is_pure = True  # noqa
 
-from setuptools import find_packages, setup
 
 setup(
-    name="primaite",
-    maintainer="QinetiQ Training and Simulation Ltd",
-    url="https://github.com/qtsl/PrimAITE",
-    description="A primary-level simulation tool",
-    python_requires=">=3.7",
-    version="1.1.0",
-    install_requires=[
-        "gym==0.21.0",
-        "matplotlib==3.6.2",
-        "networkx==2.8.8",
-        "numpy==1.23.5",
-        "stable_baselines3==1.6.2",
-        # Required for older versions of Gym that aren't compliant with
-        # Setuptools>=67.
-        "setuptools==66"
-    ],
-    packages=find_packages()
+    cmdclass={
+        "bdist_wheel": bdist_wheel,
+    }
 )

src/primaite/VERSION

@@ -0,0 +1 @@
+2.0.0

src/primaite/__init__.py

@@ -0,0 +1,207 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+import logging
+import logging.config
+import shutil
+import sys
+from bisect import bisect
+from logging import Formatter, Logger, LogRecord, StreamHandler
+from logging.handlers import RotatingFileHandler
+from pathlib import Path
+from typing import Any, Dict, Final, List
+
+import pkg_resources
+import yaml
+from platformdirs import PlatformDirs
+
+with open(Path(__file__).parent.resolve() / "VERSION", "r") as file:
+    __version__ = file.readline().strip()
+
+
+class _PrimaitePaths:
+    """
+    A Primaite paths class that leverages PlatformDirs.
+
+    The PlatformDirs appname is 'primaite' and the version is ``primaite.__version__`.
+    """
+
+    def __init__(self):
+        self._dirs: Final[PlatformDirs] = PlatformDirs(appname="primaite", version=__version__)
+
+    def _get_dirs_properties(self) -> List[str]:
+        class_items = self.__class__.__dict__.items()
+        return [k for k, v in class_items if isinstance(v, property)]
+
+    def mkdirs(self):
+        """
+        Creates all Primaite directories.
+
+        Does this by retrieving all properties in the PrimaiteDirs class and calls each one.
+        """
+        for p in self._get_dirs_properties():
+            getattr(self, p)
+
+    @property
+    def user_home_path(self) -> Path:
+        """The PrimAITE user home path."""
+        path = Path.home() / "primaite" / __version__
+        path.mkdir(exist_ok=True, parents=True)
+        return path
+
+    @property
+    def user_sessions_path(self) -> Path:
+        """The PrimAITE user sessions path."""
+        path = self.user_home_path / "sessions"
+        path.mkdir(exist_ok=True, parents=True)
+        return path
+
+    @property
+    def user_config_path(self) -> Path:
+        """The PrimAITE user config path."""
+        path = self.user_home_path / "config"
+        path.mkdir(exist_ok=True, parents=True)
+        return path
+
+    @property
+    def user_notebooks_path(self) -> Path:
+        """The PrimAITE user notebooks path."""
+        path = self.user_home_path / "notebooks"
+        path.mkdir(exist_ok=True, parents=True)
+        return path
+
+    @property
+    def app_home_path(self) -> Path:
+        """The PrimAITE app home path."""
+        path = self._dirs.user_data_path
+        path.mkdir(exist_ok=True, parents=True)
+        return path
+
+    @property
+    def app_config_dir_path(self) -> Path:
+        """The PrimAITE app config directory path."""
+        path = self._dirs.user_config_path
+        path.mkdir(exist_ok=True, parents=True)
+        return path
+
+    @property
+    def app_config_file_path(self) -> Path:
+        """The PrimAITE app config file path."""
+        return self.app_config_dir_path / "primaite_config.yaml"
+
+    @property
+    def app_log_dir_path(self) -> Path:
+        """The PrimAITE app log directory path."""
+        if sys.platform == "win32":
+            path = self.app_home_path / "logs"
+        else:
+            path = self._dirs.user_log_path
+        path.mkdir(exist_ok=True, parents=True)
+        return path
+
+    @property
+    def app_log_file_path(self) -> Path:
+        """The PrimAITE app log file path."""
+        return self.app_log_dir_path / "primaite.log"
+
+    def __repr__(self):
+        properties_str = ", ".join([f"{p}='{getattr(self, p)}'" for p in self._get_dirs_properties()])
+        return f"{self.__class__.__name__}({properties_str})"
+
+
+PRIMAITE_PATHS: Final[_PrimaitePaths] = _PrimaitePaths()
+
+
+def _host_primaite_config():
+    if not PRIMAITE_PATHS.app_config_file_path.exists():
+        pkg_config_path = Path(pkg_resources.resource_filename("primaite", "setup/_package_data/primaite_config.yaml"))
+        shutil.copy2(pkg_config_path, PRIMAITE_PATHS.app_config_file_path)
+
+
+_host_primaite_config()
+
+
+def _get_primaite_config() -> Dict:
+    config_path = PRIMAITE_PATHS.app_config_file_path
+    if not config_path.exists():
+        config_path = Path(pkg_resources.resource_filename("primaite", "setup/_package_data/primaite_config.yaml"))
+    with open(config_path, "r") as file:
+        primaite_config = yaml.safe_load(file)
+    log_level_map = {
+        "NOTSET": logging.NOTSET,
+        "DEBUG": logging.DEBUG,
+        "INFO": logging.INFO,
+        "WARN": logging.WARN,
+        "ERROR": logging.ERROR,
+        "CRITICAL": logging.CRITICAL,
+    }
+    primaite_config["log_level"] = log_level_map[primaite_config["logging"]["log_level"]]
+    return primaite_config
+
+
+_PRIMAITE_CONFIG = _get_primaite_config()
+
+
+class _LevelFormatter(Formatter):
+    """
+    A custom level-specific formatter.
+
+    Credit to: https://stackoverflow.com/a/68154386
+    """
+
+    def __init__(self, formats: Dict[int, str], **kwargs: Any) -> None:
+        super().__init__()
+
+        if "fmt" in kwargs:
+            raise ValueError("Format string must be passed to level-surrogate formatters, " "not this one")
+
+        self.formats = sorted((level, Formatter(fmt, **kwargs)) for level, fmt in formats.items())
+
+    def format(self, record: LogRecord) -> str:
+        """Overrides ``Formatter.format``."""
+        idx = bisect(self.formats, (record.levelno,), hi=len(self.formats) - 1)
+        level, formatter = self.formats[idx]
+        return formatter.format(record)
+
+
+_LEVEL_FORMATTER: Final[_LevelFormatter] = _LevelFormatter(
+    {
+        logging.DEBUG: _PRIMAITE_CONFIG["logging"]["logger_format"]["DEBUG"],
+        logging.INFO: _PRIMAITE_CONFIG["logging"]["logger_format"]["INFO"],
+        logging.WARNING: _PRIMAITE_CONFIG["logging"]["logger_format"]["WARNING"],
+        logging.ERROR: _PRIMAITE_CONFIG["logging"]["logger_format"]["ERROR"],
+        logging.CRITICAL: _PRIMAITE_CONFIG["logging"]["logger_format"]["CRITICAL"],
+    }
+)
+
+_STREAM_HANDLER: Final[StreamHandler] = StreamHandler()
+
+_FILE_HANDLER: Final[RotatingFileHandler] = RotatingFileHandler(
+    filename=PRIMAITE_PATHS.app_log_file_path,
+    maxBytes=10485760,  # 10MB
+    backupCount=9,  # Max 100MB of logs
+    encoding="utf8",
+)
+_STREAM_HANDLER.setLevel(_PRIMAITE_CONFIG["logging"]["log_level"])
+_FILE_HANDLER.setLevel(_PRIMAITE_CONFIG["logging"]["log_level"])
+
+_LOG_FORMAT_STR: Final[str] = _PRIMAITE_CONFIG["logging"]["logger_format"]
+_STREAM_HANDLER.setFormatter(_LEVEL_FORMATTER)
+_FILE_HANDLER.setFormatter(_LEVEL_FORMATTER)
+
+_LOGGER = logging.getLogger(__name__)
+
+_LOGGER.addHandler(_STREAM_HANDLER)
+_LOGGER.addHandler(_FILE_HANDLER)
+
+
+def getLogger(name: str) -> Logger:  # noqa
+    """
+    Get a PrimAITE logger.
+
+    :param name: The logger name. Use ``__name__``.
+    :return: An instance of :py:class:`logging.Logger` with the PrimAITE
+        logging config.
+    """
+    logger = logging.getLogger(name)
+    logger.setLevel(_PRIMAITE_CONFIG["log_level"])
+
+    return logger

src/primaite/acl/__init__.py

@@ -0,0 +1,2 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+"""Access Control List. Models firewall functionality."""

src/primaite/acl/access_control_list.py

@@ -0,0 +1,198 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+"""A class that implements the access control list implementation for the network."""
+import logging
+from typing import Dict, Final, List, Union
+
+from primaite.acl.acl_rule import ACLRule
+from primaite.common.enums import RulePermissionType
+
+_LOGGER: Final[logging.Logger] = logging.getLogger(__name__)
+
+
+class AccessControlList:
+    """Access Control List class."""
+
+    def __init__(self, implicit_permission: RulePermissionType, max_acl_rules: int) -> None:
+        """Init."""
+        # Implicit ALLOW or DENY firewall spec
+        self.acl_implicit_permission = implicit_permission
+        # Implicit rule in ACL list
+        if self.acl_implicit_permission == RulePermissionType.DENY:
+            self.acl_implicit_rule = ACLRule(RulePermissionType.DENY, "ANY", "ANY", "ANY", "ANY")
+        elif self.acl_implicit_permission == RulePermissionType.ALLOW:
+            self.acl_implicit_rule = ACLRule(RulePermissionType.ALLOW, "ANY", "ANY", "ANY", "ANY")
+        else:
+            raise ValueError(f"implicit permission must be ALLOW or DENY, got {self.acl_implicit_permission}")
+
+        # Maximum number of ACL Rules in ACL
+        self.max_acl_rules: int = max_acl_rules
+        # A list of ACL Rules
+        self._acl: List[Union[ACLRule, None]] = [None] * (self.max_acl_rules - 1)
+
+    @property
+    def acl(self) -> List[Union[ACLRule, None]]:
+        """Public access method for private _acl."""
+        return self._acl + [self.acl_implicit_rule]
+
+    def check_address_match(self, _rule: ACLRule, _source_ip_address: str, _dest_ip_address: str) -> bool:
+        """Checks for IP address matches.
+
+        :param _rule: The rule object to check
+        :type _rule: ACLRule
+        :param _source_ip_address: Source IP address to compare
+        :type _source_ip_address: str
+        :param _dest_ip_address: Destination IP address to compare
+        :type _dest_ip_address: str
+        :return: True if there is a match, otherwise False.
+        :rtype: bool
+        """
+        if (
+            (_rule.get_source_ip() == _source_ip_address and _rule.get_dest_ip() == _dest_ip_address)
+            or (_rule.get_source_ip() == "ANY" and _rule.get_dest_ip() == _dest_ip_address)
+            or (_rule.get_source_ip() == _source_ip_address and _rule.get_dest_ip() == "ANY")
+            or (_rule.get_source_ip() == "ANY" and _rule.get_dest_ip() == "ANY")
+        ):
+            return True
+        else:
+            return False
+
+    def is_blocked(self, _source_ip_address: str, _dest_ip_address: str, _protocol: str, _port: str) -> bool:
+        """
+        Checks for rules that block a protocol / port.
+
+        Args:
+            _source_ip_address: the source IP address to check
+            _dest_ip_address: the destination IP address to check
+            _protocol: the protocol to check
+            _port: the port to check
+
+        Returns:
+             Indicates block if all conditions are satisfied.
+        """
+        for rule in self.acl:
+            if isinstance(rule, ACLRule):
+                if self.check_address_match(rule, _source_ip_address, _dest_ip_address):
+                    if (rule.get_protocol() == _protocol or rule.get_protocol() == "ANY") and (
+                        str(rule.get_port()) == str(_port) or rule.get_port() == "ANY"
+                    ):
+                        # There's a matching rule. Get the permission
+                        if rule.get_permission() == RulePermissionType.DENY:
+                            return True
+                        elif rule.get_permission() == RulePermissionType.ALLOW:
+                            return False
+
+        # If there has been no rule to allow the IER through, it will return a blocked signal by default
+        return True
+
+    def add_rule(
+        self,
+        _permission: RulePermissionType,
+        _source_ip: str,
+        _dest_ip: str,
+        _protocol: str,
+        _port: str,
+        _position: str,
+    ) -> None:
+        """
+        Adds a new rule.
+
+        Args:
+            _permission: the permission value (e.g. "ALLOW" or "DENY")
+            _source_ip: the source IP address
+            _dest_ip: the destination IP address
+            _protocol: the protocol
+            _port: the port
+            _position: position to insert ACL rule into ACL list (starting from index 1 and NOT 0)
+        """
+        try:
+            position_index = int(_position)
+        except TypeError:
+            _LOGGER.info(f"Position {_position} could not be converted to integer.")
+            return
+
+        new_rule = ACLRule(_permission, _source_ip, _dest_ip, _protocol, str(_port))
+        # Checks position is in correct range
+        if self.max_acl_rules - 1 > position_index > -1:
+            try:
+                _LOGGER.info(f"Position {position_index} is valid.")
+                # Check to see Agent will not overwrite current ACL in ACL list
+                if self._acl[position_index] is None:
+                    _LOGGER.info(f"Inserting rule {new_rule} at position {position_index}")
+                    # Adds rule
+                    self._acl[position_index] = new_rule
+                else:
+                    # Cannot overwrite it
+                    _LOGGER.info(f"Error: inserting rule at non-empty position {position_index}")
+                    return
+            except Exception:
+                _LOGGER.info(f"New Rule could NOT be added to list at position {position_index}.")
+        else:
+            _LOGGER.info(f"Position {position_index} is an invalid/overwrites implicit firewall rule")
+
+    def remove_rule(
+        self, _permission: RulePermissionType, _source_ip: str, _dest_ip: str, _protocol: str, _port: str
+    ) -> None:
+        """
+        Removes a rule.
+
+        Args:
+            _permission: the permission value (e.g. "ALLOW" or "DENY")
+            _source_ip: the source IP address
+            _dest_ip: the destination IP address
+            _protocol: the protocol
+            _port: the port
+        """
+        rule_to_delete = ACLRule(_permission, _source_ip, _dest_ip, _protocol, str(_port))
+        delete_rule_hash = hash(rule_to_delete)
+
+        for index in range(0, len(self._acl)):
+            if isinstance(self._acl[index], ACLRule) and hash(self._acl[index]) == delete_rule_hash:
+                self._acl[index] = None
+
+    def remove_all_rules(self) -> None:
+        """Removes all rules."""
+        for i in range(len(self._acl)):
+            self._acl[i] = None
+
+    def get_dictionary_hash(
+        self, _permission: RulePermissionType, _source_ip: str, _dest_ip: str, _protocol: str, _port: str
+    ) -> int:
+        """
+        Produces a hash value for a rule.
+
+        Args:
+            _permission: the permission value (e.g. "ALLOW" or "DENY")
+            _source_ip: the source IP address
+            _dest_ip: the destination IP address
+            _protocol: the protocol
+            _port: the port
+
+        Returns:
+             Hash value based on rule parameters.
+        """
+        rule = ACLRule(_permission, _source_ip, _dest_ip, _protocol, str(_port))
+        hash_value = hash(rule)
+        return hash_value
+
+    def get_relevant_rules(
+        self, _source_ip_address: str, _dest_ip_address: str, _protocol: str, _port: str
+    ) -> Dict[int, ACLRule]:
+        """Get all ACL rules that relate to the given arguments.
+
+        :param _source_ip_address: the source IP address to check
+        :param _dest_ip_address: the destination IP address to check
+        :param _protocol: the protocol to check
+        :param _port: the port to check
+        :return: Dictionary of all ACL rules that relate to the given arguments
+        :rtype: Dict[int, ACLRule]
+        """
+        relevant_rules = {}
+        for rule in self.acl:
+            if self.check_address_match(rule, _source_ip_address, _dest_ip_address):
+                if (rule.get_protocol() == _protocol or rule.get_protocol() == "ANY" or _protocol == "ANY") and (
+                    str(rule.get_port()) == str(_port) or rule.get_port() == "ANY" or str(_port) == "ANY"
+                ):
+                    # There's a matching rule.
+                    relevant_rules[self._acl.index(rule)] = rule
+
+        return relevant_rules

src/primaite/acl/acl_rule.py

@@ -0,0 +1,87 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+"""A class that implements an access control list rule."""
+from primaite.common.enums import RulePermissionType
+
+
+class ACLRule:
+    """Access Control List Rule class."""
+
+    def __init__(
+        self, _permission: RulePermissionType, _source_ip: str, _dest_ip: str, _protocol: str, _port: str
+    ) -> None:
+        """
+        Initialise an ACL Rule.
+
+        :param _permission: The permission (ALLOW or DENY)
+        :param _source_ip: The source IP address
+        :param _dest_ip: The destination IP address
+        :param _protocol: The rule protocol
+        :param _port: The rule port
+        """
+        self.permission: RulePermissionType = _permission
+        self.source_ip: str = _source_ip
+        self.dest_ip: str = _dest_ip
+        self.protocol: str = _protocol
+        self.port: str = _port
+
+    def __hash__(self) -> int:
+        """
+        Override the hash function.
+
+        Returns:
+             Returns hash of core parameters.
+        """
+        return hash(
+            (
+                self.permission,
+                self.source_ip,
+                self.dest_ip,
+                self.protocol,
+                self.port,
+            )
+        )
+
+    def get_permission(self) -> str:
+        """
+        Gets the permission attribute.
+
+        Returns:
+             Returns permission attribute
+        """
+        return self.permission
+
+    def get_source_ip(self) -> str:
+        """
+        Gets the source IP address attribute.
+
+        Returns:
+             Returns source IP address attribute
+        """
+        return self.source_ip
+
+    def get_dest_ip(self) -> str:
+        """
+        Gets the desintation IP address attribute.
+
+        Returns:
+             Returns destination IP address attribute
+        """
+        return self.dest_ip
+
+    def get_protocol(self) -> str:
+        """
+        Gets the protocol attribute.
+
+        Returns:
+             Returns protocol attribute
+        """
+        return self.protocol
+
+    def get_port(self) -> str:
+        """
+        Gets the port attribute.
+
+        Returns:
+             Returns port attribute
+        """
+        return self.port

src/primaite/agents/__init__.py

@@ -0,0 +1,2 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+"""Common interface between RL agents from different libraries and PrimAITE."""

src/primaite/agents/agent_abc.py

@@ -0,0 +1,309 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+from __future__ import annotations
+
+import json
+from abc import ABC, abstractmethod
+from datetime import datetime
+from logging import Logger
+from pathlib import Path
+from typing import Any, Dict, Optional, Union
+from uuid import uuid4
+
+import primaite
+from primaite import getLogger, PRIMAITE_PATHS
+from primaite.config import lay_down_config, training_config
+from primaite.config.training_config import TrainingConfig
+from primaite.data_viz.session_plots import plot_av_reward_per_episode
+from primaite.environment.primaite_env import Primaite
+from primaite.utils.session_metadata_parser import parse_session_metadata
+
+_LOGGER: Logger = getLogger(__name__)
+
+
+def get_session_path(session_timestamp: datetime) -> Path:
+    """
+    Get the directory path the session will output to.
+
+    This is set in the format of:
+        ~/primaite/2.0.0/sessions/<yyyy-mm-dd>/<yyyy-mm-dd>_<hh-mm-ss>.
+
+    :param session_timestamp: This is the datetime that the session started.
+    :return: The session directory path.
+    """
+    date_dir = session_timestamp.strftime("%Y-%m-%d")
+    session_path = session_timestamp.strftime("%Y-%m-%d_%H-%M-%S")
+    session_path = PRIMAITE_PATHS.user_sessions_path / date_dir / session_path
+    session_path.mkdir(exist_ok=True, parents=True)
+
+    return session_path
+
+
+class AgentSessionABC(ABC):
+    """
+    An ABC that manages training and/or evaluation of agents in PrimAITE.
+
+    This class cannot be directly instantiated and must be inherited from with all implemented abstract methods
+    implemented.
+    """
+
+    @abstractmethod
+    def __init__(
+        self,
+        training_config_path: Optional[Union[str, Path]] = None,
+        lay_down_config_path: Optional[Union[str, Path]] = None,
+        session_path: Optional[Union[str, Path]] = None,
+    ) -> None:
+        """
+        Initialise an agent session from config files, or load a previous session.
+
+        If training configuration and laydown configuration are provided with a session path,
+        the session path will be used.
+
+        :param training_config_path: YAML file containing configurable items defined in
+            `primaite.config.training_config.TrainingConfig`
+        :type training_config_path: Union[path, str]
+        :param lay_down_config_path: YAML file containing configurable items for generating network laydown.
+        :type lay_down_config_path: Union[path, str]
+        :param session_path: directory path of the session to load
+        """
+        # initialise variables
+        self._env: Primaite
+        self._agent = None
+        self._can_learn: bool = False
+        self._can_evaluate: bool = False
+        self.is_eval = False
+
+        self.session_timestamp: datetime = datetime.now()
+
+        # convert session to path
+        if session_path is not None:
+            if not isinstance(session_path, Path):
+                session_path = Path(session_path)
+
+            # if a session path is provided, load it
+            if not session_path.exists():
+                raise Exception(f"Session could not be loaded. Path does not exist: {session_path}")
+
+            # load session
+            self.load(session_path)
+        else:
+            # set training config path
+            if not isinstance(training_config_path, Path):
+                training_config_path = Path(training_config_path)
+            self._training_config_path: Union[Path, str] = training_config_path
+            self._training_config: TrainingConfig = training_config.load(self._training_config_path)
+
+            if not isinstance(lay_down_config_path, Path):
+                lay_down_config_path = Path(lay_down_config_path)
+            self._lay_down_config_path: Union[Path, str] = lay_down_config_path
+            self._lay_down_config: Dict = lay_down_config.load(self._lay_down_config_path)
+            self.sb3_output_verbose_level = self._training_config.sb3_output_verbose_level
+
+            # set random UUID for session
+            self._uuid = str(uuid4())
+            "The session timestamp"
+            self.session_path = get_session_path(self.session_timestamp)
+            "The Session path"
+
+    @property
+    def timestamp_str(self) -> str:
+        """The session timestamp as a string."""
+        return self.session_timestamp.strftime("%Y-%m-%d_%H-%M-%S")
+
+    @property
+    def learning_path(self) -> Path:
+        """The learning outputs path."""
+        path = self.session_path / "learning"
+        path.mkdir(exist_ok=True, parents=True)
+        return path
+
+    @property
+    def evaluation_path(self) -> Path:
+        """The evaluation outputs path."""
+        path = self.session_path / "evaluation"
+        path.mkdir(exist_ok=True, parents=True)
+        return path
+
+    @property
+    def checkpoints_path(self) -> Path:
+        """The Session checkpoints path."""
+        path = self.learning_path / "checkpoints"
+        path.mkdir(exist_ok=True, parents=True)
+        return path
+
+    @property
+    def uuid(self) -> str:
+        """The Agent Session UUID."""
+        return self._uuid
+
+    def _write_session_metadata_file(self) -> None:
+        """
+        Write the ``session_metadata.json`` file.
+
+        Creates a ``session_metadata.json`` in the ``session_path`` directory
+        and adds the following key/value pairs:
+
+        - uuid: The UUID assigned to the session upon instantiation.
+        - start_datetime: The date & time the session started in iso format.
+        - end_datetime: NULL.
+        - total_episodes: NULL.
+        - total_time_steps: NULL.
+        - env:
+            - training_config:
+                - All training config items
+            - lay_down_config:
+                - All lay down config items
+
+        """
+        metadata_dict = {
+            "uuid": self.uuid,
+            "start_datetime": self.session_timestamp.isoformat(),
+            "end_datetime": None,
+            "learning": {"total_episodes": None, "total_time_steps": None},
+            "evaluation": {"total_episodes": None, "total_time_steps": None},
+            "env": {
+                "training_config": self._training_config.to_dict(json_serializable=True),
+                "lay_down_config": self._lay_down_config,
+            },
+        }
+        filepath = self.session_path / "session_metadata.json"
+        _LOGGER.debug(f"Writing Session Metadata file: {filepath}")
+        with open(filepath, "w") as file:
+            json.dump(metadata_dict, file)
+            _LOGGER.debug("Finished writing session metadata file")
+
+    def _update_session_metadata_file(self) -> None:
+        """
+        Update the ``session_metadata.json`` file.
+
+        Updates the `session_metadata.json`` in the ``session_path`` directory
+        with the following key/value pairs:
+
+        - end_datetime: The date & time the session ended in iso format.
+        - total_episodes: The total number of training episodes completed.
+        - total_time_steps: The total number of training time steps completed.
+        """
+        with open(self.session_path / "session_metadata.json", "r") as file:
+            metadata_dict = json.load(file)
+
+        metadata_dict["end_datetime"] = datetime.now().isoformat()
+        if not self.is_eval:
+            metadata_dict["learning"]["total_episodes"] = self._env.actual_episode_count  # noqa
+            metadata_dict["learning"]["total_time_steps"] = self._env.total_step_count  # noqa
+        else:
+            metadata_dict["evaluation"]["total_episodes"] = self._env.actual_episode_count  # noqa
+            metadata_dict["evaluation"]["total_time_steps"] = self._env.total_step_count  # noqa
+
+        filepath = self.session_path / "session_metadata.json"
+        _LOGGER.debug(f"Updating Session Metadata file: {filepath}")
+        with open(filepath, "w") as file:
+            json.dump(metadata_dict, file)
+            _LOGGER.debug("Finished updating session metadata file")
+
+    @abstractmethod
+    def _setup(self) -> None:
+        _LOGGER.info(
+            "Welcome to the Primary-level AI Training Environment " f"(PrimAITE) (version: {primaite.__version__})"
+        )
+        _LOGGER.info(f"The output directory for this session is: {self.session_path}")
+        self._write_session_metadata_file()
+        self._can_learn = True
+        self._can_evaluate = False
+
+    @abstractmethod
+    def _save_checkpoint(self) -> None:
+        pass
+
+    @abstractmethod
+    def learn(
+        self,
+        **kwargs: Any,
+    ) -> None:
+        """
+        Train the agent.
+
+        :param kwargs: Any agent-specific key-word args to be passed.
+        """
+        if self._can_learn:
+            _LOGGER.info("Finished learning")
+            _LOGGER.debug("Writing transactions")
+            self._update_session_metadata_file()
+            self._can_evaluate = True
+            self.is_eval = False
+
+    @abstractmethod
+    def evaluate(
+        self,
+        **kwargs: Any,
+    ) -> None:
+        """
+        Evaluate the agent.
+
+        :param kwargs: Any agent-specific key-word args to be passed.
+        """
+        if self._can_evaluate:
+            self._update_session_metadata_file()
+            self.is_eval = True
+            self._plot_av_reward_per_episode(learning_session=False)
+            _LOGGER.info("Finished evaluation")
+
+    @abstractmethod
+    def _get_latest_checkpoint(self) -> None:
+        pass
+
+    def load(self, path: Union[str, Path]) -> None:
+        """Load an agent from file."""
+        md_dict, training_config_path, laydown_config_path = parse_session_metadata(path)
+
+        # set training config path
+        self._training_config_path: Union[Path, str] = training_config_path
+        self._training_config: TrainingConfig = training_config.load(self._training_config_path)
+        self._lay_down_config_path: Union[Path, str] = laydown_config_path
+        self._lay_down_config: Dict = lay_down_config.load(self._lay_down_config_path)
+        self.sb3_output_verbose_level = self._training_config.sb3_output_verbose_level
+
+        # set random UUID for session
+        self._uuid = md_dict["uuid"]
+
+        # set the session path
+        self.session_path = path
+        "The Session path"
+
+    @property
+    def _saved_agent_path(self) -> Path:
+        file_name = f"{self._training_config.agent_framework}_" f"{self._training_config.agent_identifier}" f".zip"
+        return self.learning_path / file_name
+
+    @abstractmethod
+    def save(self) -> None:
+        """Save the agent."""
+        pass
+
+    @abstractmethod
+    def export(self) -> None:
+        """Export the agent to transportable file format."""
+        pass
+
+    def close(self) -> None:
+        """Closes the agent."""
+        self._env.episode_av_reward_writer.close()  # noqa
+        self._env.transaction_writer.close()  # noqa
+
+    def _plot_av_reward_per_episode(self, learning_session: bool = True) -> None:
+        # self.close()
+        title = f"PrimAITE Session {self.timestamp_str} "
+        subtitle = str(self._training_config)
+        csv_file = f"average_reward_per_episode_{self.timestamp_str}.csv"
+        image_file = f"average_reward_per_episode_{self.timestamp_str}.png"
+        if learning_session:
+            title += "(Learning)"
+            path = self.learning_path / csv_file
+            image_path = self.learning_path / image_file
+        else:
+            title += "(Evaluation)"
+            path = self.evaluation_path / csv_file
+            image_path = self.evaluation_path / image_file
+
+        fig = plot_av_reward_per_episode(path, title, subtitle)
+        fig.write_image(image_path)
+        _LOGGER.debug(f"Saved average rewards per episode plot to: {path}")

src/primaite/agents/hardcoded_abc.py

@@ -0,0 +1,118 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+import time
+from abc import abstractmethod
+from pathlib import Path
+from typing import Any, Optional, Union
+
+import numpy as np
+
+from primaite import getLogger
+from primaite.agents.agent_abc import AgentSessionABC
+from primaite.environment.primaite_env import Primaite
+
+_LOGGER = getLogger(__name__)
+
+
+class HardCodedAgentSessionABC(AgentSessionABC):
+    """
+    An Agent Session ABC for evaluation deterministic agents.
+
+    This class cannot be directly instantiated and must be inherited from with all implemented abstract methods
+    implemented.
+    """
+
+    def __init__(
+        self,
+        training_config_path: Optional[Union[str, Path]] = "",
+        lay_down_config_path: Optional[Union[str, Path]] = "",
+        session_path: Optional[Union[str, Path]] = None,
+    ) -> None:
+        """
+        Initialise a hardcoded agent session.
+
+        :param training_config_path: YAML file containing configurable items defined in
+            `primaite.config.training_config.TrainingConfig`
+        :type training_config_path: Union[path, str]
+        :param lay_down_config_path: YAML file containing configurable items for generating network laydown.
+        :type lay_down_config_path: Union[path, str]
+        """
+        super().__init__(training_config_path, lay_down_config_path, session_path)
+        self._setup()
+
+    def _setup(self) -> None:
+        self._env: Primaite = Primaite(
+            training_config_path=self._training_config_path,
+            lay_down_config_path=self._lay_down_config_path,
+            session_path=self.session_path,
+            timestamp_str=self.timestamp_str,
+        )
+        super()._setup()
+        self._can_learn = False
+        self._can_evaluate = True
+
+    def _save_checkpoint(self) -> None:
+        pass
+
+    def _get_latest_checkpoint(self) -> None:
+        pass
+
+    def learn(
+        self,
+        **kwargs: Any,
+    ) -> None:
+        """
+        Train the agent.
+
+        :param kwargs: Any agent-specific key-word args to be passed.
+        """
+        _LOGGER.warning("Deterministic agents cannot learn")
+
+    @abstractmethod
+    def _calculate_action(self, obs: np.ndarray) -> None:
+        pass
+
+    def evaluate(
+        self,
+        **kwargs: Any,
+    ) -> None:
+        """
+        Evaluate the agent.
+
+        :param kwargs: Any agent-specific key-word args to be passed.
+        """
+        self._env.set_as_eval()  # noqa
+        self.is_eval = True
+
+        time_steps = self._training_config.num_eval_steps
+        episodes = self._training_config.num_eval_episodes
+
+        obs = self._env.reset()
+        for episode in range(episodes):
+            # Reset env and collect initial observation
+            for step in range(time_steps):
+                # Calculate action
+                action = self._calculate_action(obs)
+
+                # Perform the step
+                obs, reward, done, info = self._env.step(action)
+
+                if done:
+                    break
+
+                # Introduce a delay between steps
+                time.sleep(self._training_config.time_delay / 1000)
+            obs = self._env.reset()
+        self._env.close()
+
+    @classmethod
+    def load(cls, path: Union[str, Path] = None) -> None:
+        """Load an agent from file."""
+        _LOGGER.warning("Deterministic agents cannot be loaded")
+
+    def save(self) -> None:
+        """Save the agent."""
+        _LOGGER.warning("Deterministic agents cannot be saved")
+
+    def export(self) -> None:
+        """Export the agent to transportable file format."""
+        _LOGGER.warning("Deterministic agents cannot be exported")

src/primaite/agents/hardcoded_acl.py

@@ -0,0 +1,515 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+from typing import Dict, List, Union
+
+import numpy as np
+
+from primaite.acl.access_control_list import AccessControlList
+from primaite.acl.acl_rule import ACLRule
+from primaite.agents.hardcoded_abc import HardCodedAgentSessionABC
+from primaite.agents.utils import (
+    get_new_action,
+    get_node_of_ip,
+    transform_action_acl_enum,
+    transform_change_obs_readable,
+)
+from primaite.common.custom_typing import NodeUnion
+from primaite.common.enums import HardCodedAgentView
+from primaite.nodes.active_node import ActiveNode
+from primaite.nodes.service_node import ServiceNode
+from primaite.pol.ier import IER
+
+
+class HardCodedACLAgent(HardCodedAgentSessionABC):
+    """An Agent Session class that implements a deterministic ACL agent."""
+
+    def _calculate_action(self, obs: np.ndarray) -> int:
+        if self._training_config.hard_coded_agent_view == HardCodedAgentView.BASIC:
+            # Basic view action using only the current observation
+            return self._calculate_action_basic_view(obs)
+        else:
+            # full view action using observation space, action
+            # history and reward feedback
+            return self._calculate_action_full_view(obs)
+
+    def get_blocked_green_iers(
+        self, green_iers: Dict[str, IER], acl: AccessControlList, nodes: Dict[str, NodeUnion]
+    ) -> Dict[str, IER]:
+        """Get blocked green IERs.
+
+        :param green_iers: Green IERs to check for being
+        :type green_iers: Dict[str, IER]
+        :param acl: Firewall rules
+        :type acl: AccessControlList
+        :param nodes: Nodes in the network
+        :type nodes: Dict[str,NodeUnion]
+        :return: Same as `green_iers` input dict, but filtered to only contain the blocked ones.
+        :rtype: Dict[str, IER]
+        """
+        blocked_green_iers = {}
+
+        for green_ier_id, green_ier in green_iers.items():
+            source_node_id = green_ier.get_source_node_id()
+            source_node_address = nodes[source_node_id].ip_address
+            dest_node_id = green_ier.get_dest_node_id()
+            dest_node_address = nodes[dest_node_id].ip_address
+            protocol = green_ier.get_protocol()  # e.g. 'TCP'
+            port = green_ier.get_port()
+
+            # Can be blocked by an ACL or by default (no allow rule exists)
+            if acl.is_blocked(source_node_address, dest_node_address, protocol, port):
+                blocked_green_iers[green_ier_id] = green_ier
+
+        return blocked_green_iers
+
+    def get_matching_acl_rules_for_ier(
+        self, ier: IER, acl: AccessControlList, nodes: Dict[str, NodeUnion]
+    ) -> Dict[int, ACLRule]:
+        """Get list of ACL rules which are relevant to an IER.
+
+        :param ier: Information Exchange Request to query against the ACL list
+        :type ier: IER
+        :param acl: Firewall rules
+        :type acl: AccessControlList
+        :param nodes: Nodes in the network
+        :type nodes: Dict[str,NodeUnion]
+        :return: _description_
+        :rtype: _type_
+        """
+        source_node_id = ier.get_source_node_id()
+        source_node_address = nodes[source_node_id].ip_address
+        dest_node_id = ier.get_dest_node_id()
+        dest_node_address = nodes[dest_node_id].ip_address
+        protocol = ier.get_protocol()  # e.g. 'TCP'
+        port = ier.get_port()
+        matching_rules = acl.get_relevant_rules(source_node_address, dest_node_address, protocol, port)
+        return matching_rules
+
+    def get_blocking_acl_rules_for_ier(
+        self, ier: IER, acl: AccessControlList, nodes: Dict[str, NodeUnion]
+    ) -> Dict[int, ACLRule]:
+        """
+        Get blocking ACL rules for an IER.
+
+        .. warning::
+            Can return empty dict but IER can still be blocked by default
+            (No ALLOW rule, therefore blocked).
+
+        :param ier: Information Exchange Request to query against the ACL list
+        :type ier: IER
+        :param acl: Firewall rules
+        :type acl: AccessControlList
+        :param nodes: Nodes in the network
+        :type nodes: Dict[str,NodeUnion]
+        :return: _description_
+        :rtype: _type_
+        """
+        matching_rules = self.get_matching_acl_rules_for_ier(ier, acl, nodes)
+
+        blocked_rules = {}
+        for rule_key, rule_value in matching_rules.items():
+            if rule_value.get_permission() == "DENY":
+                blocked_rules[rule_key] = rule_value
+
+        return blocked_rules
+
+    def get_allow_acl_rules_for_ier(
+        self, ier: IER, acl: AccessControlList, nodes: Dict[str, NodeUnion]
+    ) -> Dict[int, ACLRule]:
+        """Get all allowing ACL rules for an IER.
+
+        :param ier: Information Exchange Request to query against the ACL list
+        :type ier: IER
+        :param acl: Firewall rules
+        :type acl: AccessControlList
+        :param nodes: Nodes in the network
+        :type nodes: Dict[str,NodeUnion]
+        :return: _description_
+        :rtype: _type_
+        """
+        matching_rules = self.get_matching_acl_rules_for_ier(ier, acl, nodes)
+
+        allowed_rules = {}
+        for rule_key, rule_value in matching_rules.items():
+            if rule_value.get_permission() == "ALLOW":
+                allowed_rules[rule_key] = rule_value
+
+        return allowed_rules
+
+    def get_matching_acl_rules(
+        self,
+        source_node_id: str,
+        dest_node_id: str,
+        protocol: str,
+        port: str,
+        acl: AccessControlList,
+        nodes: Dict[str, Union[ServiceNode, ActiveNode]],
+        services_list: List[str],
+    ) -> Dict[int, ACLRule]:
+        """Filter ACL rules to only those which are relevant to the specified nodes.
+
+        :param source_node_id: Source node
+        :type source_node_id: str
+        :param dest_node_id: Destination nodes
+        :type dest_node_id: str
+        :param protocol: Network protocol
+        :type protocol: str
+        :param port: Network port
+        :type port: str
+        :param acl: Access Control list which will be filtered
+        :type acl: AccessControlList
+        :param nodes: The environment's node directory.
+        :type nodes: Dict[str, Union[ServiceNode, ActiveNode]]
+        :param services_list: List of services registered for the environment.
+        :type services_list: List[str]
+        :return: Filtered version of 'acl'
+        :rtype: Dict[str, ACLRule]
+        """
+        if source_node_id != "ANY":
+            source_node_address = nodes[str(source_node_id)].ip_address
+        else:
+            source_node_address = source_node_id
+
+        if dest_node_id != "ANY":
+            dest_node_address = nodes[str(dest_node_id)].ip_address
+        else:
+            dest_node_address = dest_node_id
+
+        if protocol != "ANY":
+            protocol = services_list[protocol - 1]  # -1 as dont have to account for ANY in list of services
+            # TODO: This should throw an error because protocol is a string
+
+        matching_rules = acl.get_relevant_rules(source_node_address, dest_node_address, protocol, port)
+        return matching_rules
+
+    def get_allow_acl_rules(
+        self,
+        source_node_id: int,
+        dest_node_id: str,
+        protocol: int,
+        port: str,
+        acl: AccessControlList,
+        nodes: Dict[str, NodeUnion],
+        services_list: List[str],
+    ) -> Dict[int, ACLRule]:
+        """List ALLOW rules relating to specified nodes.
+
+        :param source_node_id: Source node id
+        :type source_node_id: int
+        :param dest_node_id: Destination node
+        :type dest_node_id: str
+        :param protocol: Network protocol
+        :type protocol: int
+        :param port: Port
+        :type port: str
+        :param acl: Firewall ruleset which is applied to the network
+        :type acl: AccessControlList
+        :param nodes: The simulation's node store
+        :type nodes: Dict[str, NodeUnion]
+        :param services_list: Services list
+        :type services_list: List[str]
+        :return: Filtered ACL Rule directory which includes only those rules which affect the specified source and
+            desination nodes
+        :rtype: Dict[str, ACLRule]
+        """
+        matching_rules = self.get_matching_acl_rules(
+            source_node_id,
+            dest_node_id,
+            protocol,
+            port,
+            acl,
+            nodes,
+            services_list,
+        )
+
+        allowed_rules = {}
+        for rule_key, rule_value in matching_rules.items():
+            if rule_value.get_permission() == "ALLOW":
+                allowed_rules[rule_key] = rule_value
+
+        return allowed_rules
+
+    def get_deny_acl_rules(
+        self,
+        source_node_id: int,
+        dest_node_id: str,
+        protocol: int,
+        port: str,
+        acl: AccessControlList,
+        nodes: Dict[str, NodeUnion],
+        services_list: List[str],
+    ) -> Dict[int, ACLRule]:
+        """List DENY rules relating to specified nodes.
+
+        :param source_node_id: Source node id
+        :type source_node_id: int
+        :param dest_node_id: Destination node
+        :type dest_node_id: str
+        :param protocol: Network protocol
+        :type protocol: int
+        :param port: Port
+        :type port: str
+        :param acl: Firewall ruleset which is applied to the network
+        :type acl: AccessControlList
+        :param nodes: The simulation's node store
+        :type nodes: Dict[str, NodeUnion]
+        :param services_list: Services list
+        :type services_list: List[str]
+        :return: Filtered ACL Rule directory which includes only those rules which affect the specified source and
+            desination nodes
+        :rtype: Dict[str, ACLRule]
+        """
+        matching_rules = self.get_matching_acl_rules(
+            source_node_id,
+            dest_node_id,
+            protocol,
+            port,
+            acl,
+            nodes,
+            services_list,
+        )
+
+        allowed_rules = {}
+        for rule_key, rule_value in matching_rules.items():
+            if rule_value.get_permission() == "DENY":
+                allowed_rules[rule_key] = rule_value
+
+        return allowed_rules
+
+    def _calculate_action_full_view(self, obs: np.ndarray) -> int:
+        """
+        Calculate a good acl-based action for the blue agent to take.
+
+        Knowledge of just the observation space is insufficient for a perfect solution, as we need to know:
+
+            - Which ACL rules already exist, - otherwise:
+                 - The agent would perminently get stuck in a loop of performing the same action over and over.
+                 (best action is to block something, but its already blocked but doesn't know this)
+                 - The agent would be unable to interact with existing rules (e.g. how would it know to delete a rule,
+                 if it doesnt know what rules exist)
+            - The Green IERs (optional) - It often needs to know which traffic it should be allowing. For example
+             in the default config one of the green IERs is blocked by default, but it has no way of knowing this
+             based on the observation space. Additionally, potentially in the future, once a node state
+             has been fixed (no longer compromised), it needs a way to know it should reallow traffic.
+             A RL agent can learn what the green IERs are on its own - but the rule based agent cannot easily do this.
+
+        There doesn't seem like there's much that can be done if an Operating or OS State is compromised
+
+        If a service node becomes compromised there's a decision to make - do we block that service?
+        Pros: It cannot launch an attack on another node, so the node will not be able to be OVERWHELMED
+        Cons: Will block a green IER, decreasing the reward
+        We decide to block the service.
+
+        Potentially a better solution (for the reward) would be to block the incomming traffic from compromised
+        nodes once a service becomes overwhelmed. However currently the ACL action space has no way of reversing
+        an overwhelmed state, so we don't do this.
+
+        :param obs: current observation from the gym environment
+        :type obs: np.ndarray
+        :return: Optimal action to take in the environment (chosen from the discrete action space)
+        :rtype: int
+        """
+        # obs = convert_to_old_obs(obs)
+        r_obs = transform_change_obs_readable(obs)
+        _, _, _, *s = r_obs
+
+        if len(r_obs) == 4:  # only 1 service
+            s = [*s]
+
+        # 1. Check if node is compromised. If so we want to block its outwards services
+        # a. If it is comprimised check if there's an allow rule we should delete.
+        #   cons: might delete a multi-rule from any source node (ANY -> x)
+        # b. OPTIONAL (Deny rules not needed): Check if there already exists an existing Deny Rule so not to duplicate
+        # c. OPTIONAL (no allow rule = blocked): Add a DENY rule
+        found_action = False
+        for service_num, service_states in enumerate(s):
+            for x, service_state in enumerate(service_states):
+                if service_state == "COMPROMISED":
+                    action_source_id = x + 1  # +1 as 0 is any
+                    action_destination_id = "ANY"
+                    action_protocol = service_num + 1  # +1 as 0 is any
+                    action_port = "ANY"
+
+                    allow_rules = self.get_allow_acl_rules(
+                        action_source_id,
+                        action_destination_id,
+                        action_protocol,
+                        action_port,
+                        self._env.acl,
+                        self._env.nodes,
+                        self._env.services_list,
+                    )
+                    deny_rules = self.get_deny_acl_rules(
+                        action_source_id,
+                        action_destination_id,
+                        action_protocol,
+                        action_port,
+                        self._env.acl,
+                        self._env.nodes,
+                        self._env.services_list,
+                    )
+                    if len(allow_rules) > 0:
+                        # Check if there's an allow rule we should delete
+                        rule = list(allow_rules.values())[0]
+                        action_decision = "DELETE"
+                        action_permission = "ALLOW"
+                        action_source_ip = rule.get_source_ip()
+                        action_source_id = int(get_node_of_ip(action_source_ip, self._env.nodes))
+                        action_destination_ip = rule.get_dest_ip()
+                        action_destination_id = int(get_node_of_ip(action_destination_ip, self._env.nodes))
+                        action_protocol_name = rule.get_protocol()
+                        action_protocol = (
+                            self._env.services_list.index(action_protocol_name) + 1
+                        )  # convert name e.g. 'TCP' to index
+                        action_port_name = rule.get_port()
+                        action_port = (
+                            self._env.ports_list.index(action_port_name) + 1
+                        )  # convert port name e.g. '80' to index
+
+                        found_action = True
+                        break
+                    elif len(deny_rules) > 0:
+                        # TODO OPTIONAL
+                        # If there's already a DENY RULE, that blocks EVERYTHING from the source ip we don't need
+                        # to create another
+                        # Check to see if the DENY rule really blocks everything (ANY) or just a specific rule
+                        continue
+                    else:
+                        # TODO OPTIONAL: Add a DENY rule, optional as by default no allow rule == blocked
+                        action_decision = "CREATE"
+                        action_permission = "DENY"
+                        break
+            if found_action:
+                break
+
+        # 2. If NO Node is Comprimised, or the node has already been blocked, check the green IERs and
+        #  add an Allow rule if the green IER is being blocked.
+        # a.  OPTIONAL - NOT IMPLEMENTED (optional as a deny rule does not overwrite an allow rule):
+        # If there's a DENY rule delete it if:
+        #    - There isn't already a deny rule
+        #    - It doesnt allows a comprimised node to become operational.
+        # b. Add an ALLOW rule if:
+        #     - There isn't already an allow rule
+        #     - It doesnt allows a comprimised node to become operational
+
+        if not found_action:
+            # Which Green IERS are blocked
+            blocked_green_iers = self.get_blocked_green_iers(self._env.green_iers, self._env.acl, self._env.nodes)
+            for ier_key, ier in blocked_green_iers.items():
+                # Which ALLOW rules are allowing this IER (none)
+                allowing_rules = self.get_allow_acl_rules_for_ier(ier, self._env.acl, self._env.nodes)
+
+                # If there are no blocking rules, it may be being blocked by default
+                # If there is already an allow rule
+                node_id_to_check = int(ier.get_source_node_id())
+                service_name_to_check = ier.get_protocol()
+                service_id_to_check = self._env.services_list.index(service_name_to_check)
+
+                # Service state of the the source node in the ier
+                service_state = s[service_id_to_check][node_id_to_check - 1]
+
+                if len(allowing_rules) == 0 and service_state != "COMPROMISED":
+                    action_decision = "CREATE"
+                    action_permission = "ALLOW"
+                    action_source_id = int(ier.get_source_node_id())
+                    action_destination_id = int(ier.get_dest_node_id())
+                    action_protocol_name = ier.get_protocol()
+                    action_protocol = (
+                        self._env.services_list.index(action_protocol_name) + 1
+                    )  # convert name e.g. 'TCP' to index
+                    action_port_name = ier.get_port()
+                    action_port = (
+                        self._env.ports_list.index(action_port_name) + 1
+                    )  # convert port name e.g. '80' to index
+
+                    found_action = True
+                    break
+
+        if found_action:
+            action = [
+                action_decision,
+                action_permission,
+                action_source_id,
+                action_destination_id,
+                action_protocol,
+                action_port,
+            ]
+            action = transform_action_acl_enum(action)
+            action = get_new_action(action, self._env.action_dict)
+        else:
+            # If no good/useful action has been found, just perform a nothing action
+            action = ["NONE", "ALLOW", "ANY", "ANY", "ANY", "ANY"]
+            action = transform_action_acl_enum(action)
+            action = get_new_action(action, self._env.action_dict)
+        return action
+
+    def _calculate_action_basic_view(self, obs: np.ndarray) -> int:
+        """
+        Calculate a good acl-based action for the blue agent to take.
+
+        Uses ONLY information from the current observation with NO knowledge
+        of previous actions taken and NO reward feedback.
+
+        We rely on randomness to select the precise action, as we want to
+        block all traffic originating from a compromised node, without being
+        able to tell:
+            1. Which ACL rules already exist
+            2. Which actions the agent has already tried.
+
+        There is a high probability that the correct rule will not be deleted
+        before the state becomes overwhelmed.
+
+        Currently, a deny rule does not overwrite an allow rule. The allow
+        rules must be deleted.
+
+        :param obs: current observation from the gym environment
+        :type obs: np.ndarray
+        :return: Optimal action to take in the environment (chosen from the discrete action space)
+        :rtype: int
+        """
+        action_dict = self._env.action_dict
+        r_obs = transform_change_obs_readable(obs)
+        _, o, _, *s = r_obs
+
+        if len(r_obs) == 4:  # only 1 service
+            s = [*s]
+
+        number_of_nodes = len([i for i in o if i != "NONE"])  # number of nodes (not links)
+        for service_num, service_states in enumerate(s):
+            comprimised_states = [n for n, i in enumerate(service_states) if i == "COMPROMISED"]
+            if len(comprimised_states) == 0:
+                # No states are COMPROMISED, try the next service
+                continue
+
+            compromised_node = np.random.choice(comprimised_states) + 1  # +1 as 0 would be any
+            action_decision = "DELETE"
+            action_permission = "ALLOW"
+            action_source_ip = compromised_node
+            # Randomly select a destination ID to block
+            action_destination_ip = np.random.choice(list(range(1, number_of_nodes + 1)) + ["ANY"])
+            action_destination_ip = (
+                int(action_destination_ip) if action_destination_ip != "ANY" else action_destination_ip
+            )
+            action_protocol = service_num + 1  # +1 as 0 is any
+            # Randomly select a port to block
+            # Bad assumption that number of protocols equals number of ports
+            # AND no rules exist with an ANY port
+            action_port = np.random.choice(list(range(1, len(s) + 1)))
+
+            action = [
+                action_decision,
+                action_permission,
+                action_source_ip,
+                action_destination_ip,
+                action_protocol,
+                action_port,
+            ]
+            action = transform_action_acl_enum(action)
+            action = get_new_action(action, action_dict)
+            # We can only perform 1 action on each step
+            return action
+
+        # If no good/useful action has been found, just perform a nothing action
+        nothing_action = ["NONE", "ALLOW", "ANY", "ANY", "ANY", "ANY"]
+        nothing_action = transform_action_acl_enum(nothing_action)
+        nothing_action = get_new_action(nothing_action, action_dict)
+        return nothing_action

src/primaite/agents/hardcoded_node.py

@@ -0,0 +1,125 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+import numpy as np
+
+from primaite.agents.hardcoded_abc import HardCodedAgentSessionABC
+from primaite.agents.utils import get_new_action, transform_action_node_enum, transform_change_obs_readable
+
+
+class HardCodedNodeAgent(HardCodedAgentSessionABC):
+    """An Agent Session class that implements a deterministic Node agent."""
+
+    def _calculate_action(self, obs: np.ndarray) -> int:
+        """
+        Calculate a good node-based action for the blue agent to take.
+
+        :param obs: current observation from the gym environment
+        :type obs: np.ndarray
+        :return: Optimal action to take in the environment (chosen from the discrete action space)
+        :rtype: int
+        """
+        action_dict = self._env.action_dict
+        r_obs = transform_change_obs_readable(obs)
+        _, o, os, *s = r_obs
+
+        if len(r_obs) == 4:  # only 1 service
+            s = [*s]
+
+        # Check in order of most important states (order doesn't currently
+        # matter, but it probably should)
+        # First see if any OS states are compromised
+        for x, os_state in enumerate(os):
+            if os_state == "COMPROMISED":
+                action_node_id = x + 1
+                action_node_property = "OS"
+                property_action = "PATCHING"
+                action_service_index = 0  # does nothing isn't relevant for os
+                action = [
+                    action_node_id,
+                    action_node_property,
+                    property_action,
+                    action_service_index,
+                ]
+                action = transform_action_node_enum(action)
+                action = get_new_action(action, action_dict)
+                # We can only perform 1 action on each step
+                return action
+
+        # Next, see if any Services are compromised
+        # We fix the compromised state before overwhelemd state,
+        # If a compromised entry node is fixed before the overwhelmed state is triggered, instruction is ignored
+        for service_num, service in enumerate(s):
+            for x, service_state in enumerate(service):
+                if service_state == "COMPROMISED":
+                    action_node_id = x + 1
+                    action_node_property = "SERVICE"
+                    property_action = "PATCHING"
+                    action_service_index = service_num
+
+                    action = [
+                        action_node_id,
+                        action_node_property,
+                        property_action,
+                        action_service_index,
+                    ]
+                    action = transform_action_node_enum(action)
+                    action = get_new_action(action, action_dict)
+                    # We can only perform 1 action on each step
+                    return action
+
+        # Next, See if any services are overwhelmed
+        # perhaps this should be fixed automatically when the compromised PCs issues are also resolved
+        # Currently there's no reason that an Overwhelmed state cannot be resolved before resolving the compromised PCs
+
+        for service_num, service in enumerate(s):
+            for x, service_state in enumerate(service):
+                if service_state == "OVERWHELMED":
+                    action_node_id = x + 1
+                    action_node_property = "SERVICE"
+                    property_action = "PATCHING"
+                    action_service_index = service_num
+
+                    action = [
+                        action_node_id,
+                        action_node_property,
+                        property_action,
+                        action_service_index,
+                    ]
+                    action = transform_action_node_enum(action)
+                    action = get_new_action(action, action_dict)
+                    # We can only perform 1 action on each step
+                    return action
+
+        # Finally, turn on any off nodes
+        for x, operating_state in enumerate(o):
+            if os_state == "OFF":
+                action_node_id = x + 1
+                action_node_property = "OPERATING"
+                property_action = "ON"  # Why reset it when we can just turn it on
+                action_service_index = 0  # does nothing isn't relevant for operating state
+                action = [
+                    action_node_id,
+                    action_node_property,
+                    property_action,
+                    action_service_index,
+                ]
+                # TODO: transform_action_node_enum takes only one argument, not sure why two are given here.
+                action = transform_action_node_enum(action, action_dict)
+                action = get_new_action(action, action_dict)
+                # We can only perform 1 action on each step
+                return action
+
+        # If no good actions, just go with an action that wont do any harm
+        action_node_id = 1
+        action_node_property = "NONE"
+        property_action = "ON"
+        action_service_index = 0
+        action = [
+            action_node_id,
+            action_node_property,
+            property_action,
+            action_service_index,
+        ]
+        action = transform_action_node_enum(action)
+        action = get_new_action(action, action_dict)
+
+        return action

src/primaite/agents/rllib.py

@@ -0,0 +1,286 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+from __future__ import annotations
+
+import json
+import shutil
+import zipfile
+from datetime import datetime
+from logging import Logger
+from pathlib import Path
+from typing import Any, Callable, Dict, Optional, Union
+from uuid import uuid4
+
+from ray.rllib.algorithms import Algorithm
+from ray.rllib.algorithms.a2c import A2CConfig
+from ray.rllib.algorithms.ppo import PPOConfig
+from ray.tune.logger import UnifiedLogger
+from ray.tune.registry import register_env
+
+from primaite import getLogger
+from primaite.agents.agent_abc import AgentSessionABC
+from primaite.common.enums import AgentFramework, AgentIdentifier, SessionType
+from primaite.environment.primaite_env import Primaite
+from primaite.exceptions import RLlibAgentError
+
+_LOGGER: Logger = getLogger(__name__)
+
+
+# TODO: verify type of env_config
+def _env_creator(env_config: Dict[str, Any]) -> Primaite:
+    return Primaite(
+        training_config_path=env_config["training_config_path"],
+        lay_down_config_path=env_config["lay_down_config_path"],
+        session_path=env_config["session_path"],
+        timestamp_str=env_config["timestamp_str"],
+    )
+
+
+# TODO: verify type hint return type
+def _custom_log_creator(session_path: Path) -> Callable[[Dict], UnifiedLogger]:
+    logdir = session_path / "ray_results"
+    logdir.mkdir(parents=True, exist_ok=True)
+
+    def logger_creator(config: Dict) -> UnifiedLogger:
+        return UnifiedLogger(config, logdir, loggers=None)
+
+    return logger_creator
+
+
+class RLlibAgent(AgentSessionABC):
+    """An AgentSession class that implements a Ray RLlib agent."""
+
+    def __init__(
+        self,
+        training_config_path: Optional[Union[str, Path]] = "",
+        lay_down_config_path: Optional[Union[str, Path]] = "",
+        session_path: Optional[Union[str, Path]] = None,
+    ) -> None:
+        """
+        Initialise the RLLib Agent training session.
+
+        :param training_config_path: YAML file containing configurable items defined in
+            `primaite.config.training_config.TrainingConfig`
+        :type training_config_path: Union[path, str]
+        :param lay_down_config_path: YAML file containing configurable items for generating network laydown.
+        :type lay_down_config_path: Union[path, str]
+        :raises ValueError: If the training config contains an unexpected value for agent_framework (should be "RLLIB")
+        :raises ValueError: If the training config contains an unexpected value for agent_identifies (should be `PPO`
+            or `A2C`)
+        """
+        # TODO: implement RLlib agent loading
+        if session_path is not None:
+            msg = "RLlib agent loading has not been implemented yet"
+            _LOGGER.critical(msg)
+            raise NotImplementedError(msg)
+
+        super().__init__(training_config_path, lay_down_config_path)
+        if self._training_config.session_type == SessionType.EVAL:
+            msg = "Cannot evaluate an RLlib agent that hasn't been through training yet."
+            _LOGGER.critical(msg)
+            raise RLlibAgentError(msg)
+        if not self._training_config.agent_framework == AgentFramework.RLLIB:
+            msg = f"Expected RLLIB agent_framework, " f"got {self._training_config.agent_framework}"
+            _LOGGER.error(msg)
+            raise ValueError(msg)
+        self._agent_config_class: Union[PPOConfig, A2CConfig]
+        if self._training_config.agent_identifier == AgentIdentifier.PPO:
+            self._agent_config_class = PPOConfig
+        elif self._training_config.agent_identifier == AgentIdentifier.A2C:
+            self._agent_config_class = A2CConfig
+        else:
+            msg = "Expected PPO or A2C agent_identifier, " f"got {self._training_config.agent_identifier.value}"
+            _LOGGER.error(msg)
+            raise ValueError(msg)
+        self._agent_config: Union[PPOConfig, A2CConfig]
+
+        self._current_result: dict
+        self._setup()
+        _LOGGER.debug(
+            f"Created {self.__class__.__name__} using: "
+            f"agent_framework={self._training_config.agent_framework}, "
+            f"agent_identifier="
+            f"{self._training_config.agent_identifier}, "
+            f"deep_learning_framework="
+            f"{self._training_config.deep_learning_framework}"
+        )
+        self._train_agent = None  # Required to capture the learning agent to close after eval
+
+    def _update_session_metadata_file(self) -> None:
+        """
+        Update the ``session_metadata.json`` file.
+
+        Updates the `session_metadata.json`` in the ``session_path`` directory
+        with the following key/value pairs:
+
+        - end_datetime: The date & time the session ended in iso format.
+        - total_episodes: The total number of training episodes completed.
+        - total_time_steps: The total number of training time steps completed.
+        """
+        with open(self.session_path / "session_metadata.json", "r") as file:
+            metadata_dict = json.load(file)
+
+        metadata_dict["end_datetime"] = datetime.now().isoformat()
+        if not self.is_eval:
+            metadata_dict["learning"]["total_episodes"] = self._current_result["episodes_total"]  # noqa
+            metadata_dict["learning"]["total_time_steps"] = self._current_result["timesteps_total"]  # noqa
+        else:
+            metadata_dict["evaluation"]["total_episodes"] = self._current_result["episodes_total"]  # noqa
+            metadata_dict["evaluation"]["total_time_steps"] = self._current_result["timesteps_total"]  # noqa
+
+        filepath = self.session_path / "session_metadata.json"
+        _LOGGER.debug(f"Updating Session Metadata file: {filepath}")
+        with open(filepath, "w") as file:
+            json.dump(metadata_dict, file)
+            _LOGGER.debug("Finished updating session metadata file")
+
+    def _setup(self) -> None:
+        super()._setup()
+        register_env("primaite", _env_creator)
+        self._agent_config = self._agent_config_class()
+
+        self._agent_config.environment(
+            env="primaite",
+            env_config=dict(
+                training_config_path=self._training_config_path,
+                lay_down_config_path=self._lay_down_config_path,
+                session_path=self.session_path,
+                timestamp_str=self.timestamp_str,
+            ),
+        )
+        self._agent_config.seed = self._training_config.seed
+
+        self._agent_config.training(train_batch_size=self._training_config.num_train_steps)
+        self._agent_config.framework(framework="tf")
+
+        self._agent_config.rollouts(
+            num_rollout_workers=1,
+            num_envs_per_worker=1,
+            horizon=self._training_config.num_train_steps,
+        )
+        self._agent: Algorithm = self._agent_config.build(logger_creator=_custom_log_creator(self.learning_path))
+
+    def _save_checkpoint(self) -> None:
+        checkpoint_n = self._training_config.checkpoint_every_n_episodes
+        episode_count = self._current_result["episodes_total"]
+        save_checkpoint = False
+        if checkpoint_n:
+            save_checkpoint = episode_count % checkpoint_n == 0
+        if episode_count and save_checkpoint:
+            self._agent.save(str(self.checkpoints_path))
+
+    def learn(
+        self,
+        **kwargs: Any,
+    ) -> None:
+        """
+        Evaluate the agent.
+
+        :param kwargs: Any agent-specific key-word args to be passed.
+        """
+        time_steps = self._training_config.num_train_steps
+        episodes = self._training_config.num_train_episodes
+
+        _LOGGER.info(f"Beginning learning for {episodes} episodes @" f" {time_steps} time steps...")
+        for i in range(episodes):
+            self._current_result = self._agent.train()
+            self._save_checkpoint()
+        self.save()
+        super().learn()
+        # Done this way as the RLlib eval can only be performed if the session hasn't been stopped
+        if self._training_config.session_type is not SessionType.TRAIN:
+            self._train_agent = self._agent
+        else:
+            self._agent.stop()
+            self._plot_av_reward_per_episode(learning_session=True)
+
+    def _unpack_saved_agent_into_eval(self) -> Path:
+        """Unpacks the pre-trained and saved RLlib agent so that it can be reloaded by Ray for eval."""
+        agent_restore_path = self.evaluation_path / "agent_restore"
+        if agent_restore_path.exists():
+            shutil.rmtree(agent_restore_path)
+        agent_restore_path.mkdir()
+        with zipfile.ZipFile(self._saved_agent_path, "r") as zip_file:
+            zip_file.extractall(agent_restore_path)
+        return agent_restore_path
+
+    def _setup_eval(self):
+        self._can_learn = False
+        self._can_evaluate = True
+        self._agent.restore(str(self._unpack_saved_agent_into_eval()))
+
+    def evaluate(
+        self,
+        **kwargs,
+    ):
+        """
+        Evaluate the agent.
+
+        :param kwargs: Any agent-specific key-word args to be passed.
+        """
+        time_steps = self._training_config.num_eval_steps
+        episodes = self._training_config.num_eval_episodes
+
+        self._setup_eval()
+
+        self._env: Primaite = Primaite(
+            self._training_config_path, self._lay_down_config_path, self.session_path, self.timestamp_str
+        )
+
+        self._env.set_as_eval()
+        self.is_eval = True
+        if self._training_config.deterministic:
+            deterministic_str = "deterministic"
+        else:
+            deterministic_str = "non-deterministic"
+        _LOGGER.info(
+            f"Beginning {deterministic_str} evaluation for " f"{episodes} episodes @ {time_steps} time steps..."
+        )
+        for episode in range(episodes):
+            obs = self._env.reset()
+            for step in range(time_steps):
+                action = self._agent.compute_single_action(observation=obs, explore=False)
+
+                obs, rewards, done, info = self._env.step(action)
+
+        self._env.reset()
+        self._env.close()
+        super().evaluate()
+        # Now we're safe to close the learning agent and write the mean rewards per episode for it
+        if self._training_config.session_type is not SessionType.TRAIN:
+            self._train_agent.stop()
+            self._plot_av_reward_per_episode(learning_session=True)
+        # Perform a clean-up of the unpacked agent
+        if (self.evaluation_path / "agent_restore").exists():
+            shutil.rmtree((self.evaluation_path / "agent_restore"))
+
+    def _get_latest_checkpoint(self) -> None:
+        raise NotImplementedError
+
+    @classmethod
+    def load(cls, path: Union[str, Path]) -> RLlibAgent:
+        """Load an agent from file."""
+        raise NotImplementedError
+
+    def save(self, overwrite_existing: bool = True) -> None:
+        """Save the agent."""
+        # Make temp dir to save in isolation
+        temp_dir = self.learning_path / str(uuid4())
+        temp_dir.mkdir()
+
+        # Save the agent to the temp dir
+        self._agent.save(str(temp_dir))
+
+        # Capture the saved Rllib checkpoint inside the temp directory
+        for file in temp_dir.iterdir():
+            checkpoint_dir = file
+            break
+
+        # Zip the folder
+        shutil.make_archive(str(self._saved_agent_path).replace(".zip", ""), "zip", checkpoint_dir)  # noqa
+
+        # Drop the temp directory
+        shutil.rmtree(temp_dir)
+
+    def export(self) -> None:
+        """Export the agent to transportable file format."""
+        raise NotImplementedError

src/primaite/agents/sb3.py

@@ -0,0 +1,196 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+from __future__ import annotations
+
+import json
+from logging import Logger
+from pathlib import Path
+from typing import Any, Optional, Union
+
+import numpy as np
+from stable_baselines3 import A2C, PPO
+from stable_baselines3.ppo import MlpPolicy as PPOMlp
+
+from primaite import getLogger
+from primaite.agents.agent_abc import AgentSessionABC
+from primaite.common.enums import AgentFramework, AgentIdentifier
+from primaite.environment.primaite_env import Primaite
+
+_LOGGER: Logger = getLogger(__name__)
+
+
+class SB3Agent(AgentSessionABC):
+    """An AgentSession class that implements a Stable Baselines3 agent."""
+
+    def __init__(
+        self,
+        training_config_path: Optional[Union[str, Path]] = None,
+        lay_down_config_path: Optional[Union[str, Path]] = None,
+        session_path: Optional[Union[str, Path]] = None,
+    ) -> None:
+        """
+        Initialise the SB3 Agent training session.
+
+        :param training_config_path: YAML file containing configurable items defined in
+            `primaite.config.training_config.TrainingConfig`
+        :type training_config_path: Union[path, str]
+        :param lay_down_config_path: YAML file containing configurable items for generating network laydown.
+        :type lay_down_config_path: Union[path, str]
+        :raises ValueError: If the training config contains an unexpected value for agent_framework (should be "SB3")
+        :raises ValueError: If the training config contains an unexpected value for agent_identifies (should be `PPO`
+            or `A2C`)
+        """
+        super().__init__(training_config_path, lay_down_config_path, session_path)
+        if not self._training_config.agent_framework == AgentFramework.SB3:
+            msg = f"Expected SB3 agent_framework, " f"got {self._training_config.agent_framework}"
+            _LOGGER.error(msg)
+            raise ValueError(msg)
+        self._agent_class: Union[PPO, A2C]
+        if self._training_config.agent_identifier == AgentIdentifier.PPO:
+            self._agent_class = PPO
+        elif self._training_config.agent_identifier == AgentIdentifier.A2C:
+            self._agent_class = A2C
+        else:
+            msg = "Expected PPO or A2C agent_identifier, " f"got {self._training_config.agent_identifier}"
+            _LOGGER.error(msg)
+            raise ValueError(msg)
+
+        self._tensorboard_log_path = self.learning_path / "tensorboard_logs"
+        self._tensorboard_log_path.mkdir(parents=True, exist_ok=True)
+
+        _LOGGER.debug(
+            f"Created {self.__class__.__name__} using: "
+            f"agent_framework={self._training_config.agent_framework}, "
+            f"agent_identifier="
+            f"{self._training_config.agent_identifier}"
+        )
+
+        self.is_eval = False
+
+        self._setup()
+
+    def _setup(self) -> None:
+        """Set up the SB3 Agent."""
+        self._env = Primaite(
+            training_config_path=self._training_config_path,
+            lay_down_config_path=self._lay_down_config_path,
+            session_path=self.session_path,
+            timestamp_str=self.timestamp_str,
+        )
+
+        # check if there is a zip file that needs to be loaded
+        load_file = next(self.session_path.rglob("*.zip"), None)
+
+        if not load_file:
+            # create a new env and agent
+
+            self._agent = self._agent_class(
+                PPOMlp,
+                self._env,
+                verbose=self.sb3_output_verbose_level,
+                n_steps=self._training_config.num_train_steps,
+                tensorboard_log=str(self._tensorboard_log_path),
+                seed=self._training_config.seed,
+            )
+        else:
+            # set env values from session metadata
+            with open(self.session_path / "session_metadata.json", "r") as file:
+                md_dict = json.load(file)
+
+            # load environment values
+            if self.is_eval:
+                # evaluation always starts at 0
+                self._env.episode_count = 0
+                self._env.total_step_count = 0
+            else:
+                # carry on from previous learning sessions
+                self._env.episode_count = md_dict["learning"]["total_episodes"]
+                self._env.total_step_count = md_dict["learning"]["total_time_steps"]
+
+            # load the file
+            self._agent = self._agent_class.load(load_file, env=self._env)
+
+            # set agent values
+            self._agent.verbose = self.sb3_output_verbose_level
+            self._agent.tensorboard_log = self.session_path / "learning/tensorboard_logs"
+
+        super()._setup()
+
+    def _save_checkpoint(self) -> None:
+        checkpoint_n = self._training_config.checkpoint_every_n_episodes
+        episode_count = self._env.episode_count
+        save_checkpoint = False
+        if checkpoint_n:
+            save_checkpoint = episode_count % checkpoint_n == 0
+        if episode_count and save_checkpoint:
+            checkpoint_path = self.checkpoints_path / f"sb3ppo_{episode_count}.zip"
+            self._agent.save(checkpoint_path)
+            _LOGGER.debug(f"Saved agent checkpoint: {checkpoint_path}")
+
+    def _get_latest_checkpoint(self) -> None:
+        pass
+
+    def learn(
+        self,
+        **kwargs: Any,
+    ) -> None:
+        """
+        Train the agent.
+
+        :param kwargs: Any agent-specific key-word args to be passed.
+        """
+        time_steps = self._training_config.num_train_steps
+        episodes = self._training_config.num_train_episodes
+        self.is_eval = False
+        _LOGGER.info(f"Beginning learning for {episodes} episodes @" f" {time_steps} time steps...")
+        for i in range(episodes):
+            self._agent.learn(total_timesteps=time_steps)
+            self._save_checkpoint()
+        self._env._write_av_reward_per_episode()  # noqa
+        self.save()
+        self._env.close()
+        super().learn()
+
+        # save agent
+        self.save()
+
+        self._plot_av_reward_per_episode(learning_session=True)
+
+    def evaluate(
+        self,
+        **kwargs: Any,
+    ) -> None:
+        """
+        Evaluate the agent.
+
+        :param kwargs: Any agent-specific key-word args to be passed.
+        """
+        time_steps = self._training_config.num_eval_steps
+        episodes = self._training_config.num_eval_episodes
+        self._env.set_as_eval()
+        self.is_eval = True
+        if self._training_config.deterministic:
+            deterministic_str = "deterministic"
+        else:
+            deterministic_str = "non-deterministic"
+        _LOGGER.info(
+            f"Beginning {deterministic_str} evaluation for " f"{episodes} episodes @ {time_steps} time steps..."
+        )
+        for episode in range(episodes):
+            obs = self._env.reset()
+
+            for step in range(time_steps):
+                action, _states = self._agent.predict(obs, deterministic=self._training_config.deterministic)
+                if isinstance(action, np.ndarray):
+                    action = np.int64(action)
+                obs, rewards, done, info = self._env.step(action)
+        self._env._write_av_reward_per_episode()  # noqa
+        self._env.close()
+        super().evaluate()
+
+    def save(self) -> None:
+        """Save the agent."""
+        self._agent.save(self._saved_agent_path)
+
+    def export(self) -> None:
+        """Export the agent to transportable file format."""
+        raise NotImplementedError

src/primaite/agents/simple.py

@@ -0,0 +1,59 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+
+import numpy as np
+
+from primaite.agents.hardcoded_abc import HardCodedAgentSessionABC
+from primaite.agents.utils import get_new_action, transform_action_acl_enum, transform_action_node_enum
+
+
+class RandomAgent(HardCodedAgentSessionABC):
+    """
+    A Random Agent.
+
+    Get a completely random action from the action space.
+    """
+
+    def _calculate_action(self, obs: np.ndarray) -> int:
+        return self._env.action_space.sample()
+
+
+class DummyAgent(HardCodedAgentSessionABC):
+    """
+    A Dummy Agent.
+
+    All action spaces setup so dummy action is always 0 regardless of action type used.
+    """
+
+    def _calculate_action(self, obs: np.ndarray) -> int:
+        return 0
+
+
+class DoNothingACLAgent(HardCodedAgentSessionABC):
+    """
+    A do nothing ACL agent.
+
+    A valid ACL action that has no effect; does nothing.
+    """
+
+    def _calculate_action(self, obs: np.ndarray) -> int:
+        nothing_action = ["NONE", "ALLOW", "ANY", "ANY", "ANY", "ANY"]
+        nothing_action = transform_action_acl_enum(nothing_action)
+        nothing_action = get_new_action(nothing_action, self._env.action_dict)
+
+        return nothing_action
+
+
+class DoNothingNodeAgent(HardCodedAgentSessionABC):
+    """
+    A do nothing Node agent.
+
+    A valid Node action that has no effect; does nothing.
+    """
+
+    def _calculate_action(self, obs: np.ndarray) -> int:
+        nothing_action = [1, "NONE", "ON", 0]
+        nothing_action = transform_action_node_enum(nothing_action)
+        nothing_action = get_new_action(nothing_action, self._env.action_dict)
+        # nothing_action should currently always be 0
+
+        return nothing_action

src/primaite/agents/utils.py

@@ -0,0 +1,450 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+from typing import Dict, List, Union
+
+import numpy as np
+
+from primaite.common.custom_typing import NodeUnion
+from primaite.common.enums import (
+    HardwareState,
+    LinkStatus,
+    NodeHardwareAction,
+    NodePOLType,
+    NodeSoftwareAction,
+    SoftwareState,
+)
+
+
+def transform_action_node_readable(action: List[int]) -> List[Union[int, str]]:
+    """Convert a node action from enumerated format to readable format.
+
+    example:
+    [1, 3, 1, 0] -> [1, 'SERVICE', 'PATCHING', 0]
+
+    :param action: Agent action, formatted as a list of ints, for more information check out
+        `primaite.environment.primaite_env.Primaite`
+    :type action: List[int]
+    :return: The same action list, but with the encodings translated back into meaningful labels
+    :rtype: List[Union[int,str]]
+    """
+    action_node_property = NodePOLType(action[1]).name
+
+    if action_node_property == "OPERATING":
+        property_action = NodeHardwareAction(action[2]).name
+    elif (action_node_property == "OS" or action_node_property == "SERVICE") and action[2] <= 1:
+        property_action = NodeSoftwareAction(action[2]).name
+    else:
+        property_action = "NONE"
+
+    new_action: list[Union[int, str]] = [action[0], action_node_property, property_action, action[3]]
+    return new_action
+
+
+def transform_action_acl_readable(action: List[int]) -> List[Union[str, int]]:
+    """
+    Transform an ACL action to a more readable format.
+
+    example:
+    [0, 1, 2, 5, 0, 1] -> ['NONE', 'ALLOW', 2, 5, 'ANY', 1]
+
+    :param action: Agent action, formatted as a list of ints, for more information check out
+        `primaite.environment.primaite_env.Primaite`
+    :type action: List[int]
+    :return: The same action list, but with the encodings translated back into meaningful labels
+    :rtype: List[Union[int,str]]
+    """
+    action_decisions = {0: "NONE", 1: "CREATE", 2: "DELETE"}
+    action_permissions = {0: "DENY", 1: "ALLOW"}
+
+    action_decision = action_decisions[action[0]]
+    action_permission = action_permissions[action[1]]
+
+    # For IPs, Ports and Protocols, 0 means any, otherwise its just an index
+    new_action = [action_decision, action_permission] + list(action[2:6])
+    for n, val in enumerate(list(action[2:6])):
+        if val == 0:
+            new_action[n + 2] = "ANY"
+
+    return new_action
+
+
+def is_valid_node_action(action: List[int]) -> bool:
+    """
+    Is the node action an actual valid action.
+
+    Only uses information about the action to determine if the action has an effect
+
+    Does NOT consider:
+    - Node ID not valid to perform an operation - e.g. selected node has no service so cannot patch
+    - Node already being in that state (turning an ON node ON)
+
+    :param action: Agent action, formatted as a list of ints, for more information check out
+        `primaite.environment.primaite_env.Primaite`
+    :type action: List[int]
+    :return: Whether the action is valid
+    :rtype: bool
+    """
+    action_r = transform_action_node_readable(action)
+
+    node_property = action_r[1]
+    node_action = action_r[2]
+
+    # print("node property", node_property, "\nnode action", node_action)
+
+    if node_property == "NONE":
+        return False
+    if node_action == "NONE":
+        return False
+    if node_property == "OPERATING" and node_action == "PATCHING":
+        # Operating State cannot PATCH
+        return False
+    if node_property != "OPERATING" and node_action not in [
+        "NONE",
+        "PATCHING",
+    ]:
+        # Software States can only do Nothing or Patch
+        return False
+    return True
+
+
+def is_valid_acl_action(action: List[int]) -> bool:
+    """
+    Is the ACL action an actual valid action.
+
+    Only uses information about the action to determine if the action has an effect.
+
+    Does NOT consider:
+        - Trying to create identical rules
+        - Trying to create a rule which is a subset of another rule (caused by "ANY")
+
+    :param action: Agent action, formatted as a list of ints, for more information check out
+        `primaite.environment.primaite_env.Primaite`
+    :type action: List[int]
+    :return: Whether the action is valid
+    :rtype: bool
+    """
+    action_r = transform_action_acl_readable(action)
+
+    action_decision = action_r[0]
+    action_permission = action_r[1]
+    action_source_id = action_r[2]
+    action_destination_id = action_r[3]
+
+    if action_decision == "NONE":
+        return False
+    if action_source_id == action_destination_id and action_source_id != "ANY" and action_destination_id != "ANY":
+        # ACL rule towards itself
+        return False
+    if action_permission == "DENY":
+        # DENY is unnecessary, we can create and delete allow rules instead
+        # No allow rule = blocked/DENY by feault. ALLOW overrides existing DENY.
+        return False
+
+    return True
+
+
+def is_valid_acl_action_extra(action: List[int]) -> bool:
+    """
+    Harsher version of valid acl actions, does not allow action.
+
+    :param action: Agent action, formatted as a list of ints, for more information check out
+        `primaite.environment.primaite_env.Primaite`
+    :type action: List[int]
+    :return: Whether the action is valid
+    :rtype: bool
+    """
+    if is_valid_acl_action(action) is False:
+        return False
+
+    action_r = transform_action_acl_readable(action)
+    action_protocol = action_r[4]
+    action_port = action_r[5]
+
+    # Don't allow protocols or ports to be ANY
+    # in the future we might want to do the opposite, and only have ANY option for ports and service
+    if action_protocol == "ANY":
+        return False
+    if action_port == "ANY":
+        return False
+
+    return True
+
+
+def transform_change_obs_readable(obs: np.ndarray) -> List[List[Union[str, int]]]:
+    """Transform list of transactions to readable list of each observation property.
+
+    example:
+    np.array([[1,2,1,3],[2,1,1,1]]) -> [[1, 2], ['OFF', 'ON'], ['GOOD', 'GOOD'], ['COMPROMISED', 'GOOD']]
+
+    :param obs: Raw observation from the environment.
+    :type obs: np.ndarray
+    :return: The same observation, but the encoded integer values are replaced with readable names.
+    :rtype: List[List[Union[str, int]]]
+    """
+    ids = [i for i in obs[:, 0]]
+    operating_states = [HardwareState(i).name for i in obs[:, 1]]
+    os_states = [SoftwareState(i).name for i in obs[:, 2]]
+    new_obs = [ids, operating_states, os_states]
+
+    for service in range(4, obs.shape[1]):
+        # Links bit/s don't have a service state
+        service_states = [SoftwareState(i).name if i <= 4 else i for i in obs[:, service]]
+        new_obs.append(service_states)
+
+    return new_obs
+
+
+def transform_obs_readable(obs: np.ndarray) -> List[List[Union[str, int]]]:
+    """Transform observation to readable format.
+
+    example
+    np.array([[1,2,1,3],[2,1,1,1]]) -> [[1, 'OFF', 'GOOD', 'COMPROMISED'], [2, 'ON', 'GOOD', 'GOOD']]
+
+    :param obs: Raw observation from the environment.
+    :type obs: np.ndarray
+    :return: The same observation, but the encoded integer values are replaced with readable names.
+    :rtype: List[List[Union[str, int]]]
+    """
+    changed_obs = transform_change_obs_readable(obs)
+    new_obs = list(zip(*changed_obs))
+    # Convert list of tuples to list of lists
+    new_obs = [list(i) for i in new_obs]
+
+    return new_obs
+
+
+def convert_to_new_obs(obs: np.ndarray, num_nodes: int = 10) -> np.ndarray:
+    """Convert original gym Box observation space to new multiDiscrete observation space.
+
+    :param obs: observation in the 'old' (NodeLinkTable) format
+    :type obs: np.ndarray
+    :param num_nodes: number of nodes in the network, defaults to 10
+    :type num_nodes: int, optional
+    :return: reformatted observation
+    :rtype: np.ndarray
+    """
+    # Remove ID columns, remove links and flatten to MultiDiscrete observation space
+    new_obs = obs[:num_nodes, 1:].flatten()
+    return new_obs
+
+
+def convert_to_old_obs(obs: np.ndarray, num_nodes: int = 10, num_links: int = 10, num_services: int = 1) -> np.ndarray:
+    """Convert to old observation.
+
+    Links filled with 0's as no information is included in new observation space.
+
+    example:
+    obs = array([1, 1, 1, 1, 1, 1, 1, 1, 1,  ..., 1, 1, 1])
+
+    new_obs = array([[ 1,  1,  1,  1],
+                     [ 2,  1,  1,  1],
+                     [ 3,  1,  1,  1],
+                     ...
+                    [20,  0,  0,  0]])
+
+    :param obs: observation in the 'new' (MultiDiscrete) format
+    :type obs: np.ndarray
+    :param num_nodes: number of nodes in the network, defaults to 10
+    :type num_nodes: int, optional
+    :param num_links: number of links in the network, defaults to 10
+    :type num_links: int, optional
+    :param num_services: number of services on the network, defaults to 1
+    :type num_services: int, optional
+    :return: 2-d BOX observation space, in the same format as NodeLinkTable
+    :rtype: np.ndarray
+    """
+    # Convert back to more readable, original format
+    reshaped_nodes = obs[:-num_links].reshape(num_nodes, num_services + 2)
+
+    # Add empty links back and add node ID back
+    s = np.zeros(
+        [reshaped_nodes.shape[0] + num_links, reshaped_nodes.shape[1] + 1],
+        dtype=np.int64,
+    )
+    s[:, 0] = range(1, num_nodes + num_links + 1)  # Adding ID back
+    s[:num_nodes, 1:] = reshaped_nodes  # put values back in
+    new_obs = s
+
+    # Add links back in
+    links = obs[-num_links:]
+    # Links will be added to the last protocol/service slot but they are not specific to that service
+    new_obs[num_nodes:, -1] = links
+
+    return new_obs
+
+
+def describe_obs_change(
+    obs1: np.ndarray, obs2: np.ndarray, num_nodes: int = 10, num_links: int = 10, num_services: int = 1
+) -> str:
+    """Build a string describing the difference between two observations.
+
+    example:
+    obs_1 = array([[1, 1, 1, 1, 3], [2, 1, 1, 1, 1]])
+    obs_2 = array([[1, 1, 1, 1, 1], [2, 1, 1, 1, 1]])
+    output = 'ID 1: SERVICE 2 set to GOOD'
+
+    :param obs1: First observation
+    :type obs1: np.ndarray
+    :param obs2: Second observation
+    :type obs2: np.ndarray
+    :param num_nodes: How many nodes are in the network laydown, defaults to 10
+    :type num_nodes: int, optional
+    :param num_links: How many links are in the network laydown, defaults to 10
+    :type num_links: int, optional
+    :param num_services: How many services are configured for this scenario, defaults to 1
+    :type num_services: int, optional
+    :return: A multi-line string with a human-readable description of the difference.
+    :rtype: str
+    """
+    obs1 = convert_to_old_obs(obs1, num_nodes, num_links, num_services)
+    obs2 = convert_to_old_obs(obs2, num_nodes, num_links, num_services)
+    list_of_changes = []
+    for n, row in enumerate(obs1 - obs2):
+        if row.any() != 0:
+            relevant_changes = np.where(row != 0, obs2[n], -1)
+            relevant_changes[0] = obs2[n, 0]  # ID is always relevant
+            is_link = relevant_changes[0] > num_nodes
+            desc = _describe_obs_change_helper(relevant_changes, is_link)
+            list_of_changes.append(desc)
+
+    change_string = "\n ".join(list_of_changes)
+    if len(list_of_changes) > 0:
+        change_string = "\n " + change_string
+    return change_string
+
+
+def _describe_obs_change_helper(obs_change: List[int], is_link: bool) -> str:
+    """
+    Helper funcion to describe what has changed.
+
+    example:
+    [ 1 -1 -1 -1  1] -> "ID 1: Service 1 changed to GOOD"
+
+    Handles multiple changes e.g. 'ID 1: SERVICE 1 changed to PATCHING. SERVICE 2 set to GOOD.'
+
+    :param obs_change: List of integers generated within the `describe_obs_change` function. It should correspond to one
+        row of the observation table, and have `-1` at locations where the observation hasn't changed, and the new
+        status where it has changed.
+    :type obs_change: List[int]
+    :param is_link: Whether the row of the observation space corresponds to a link. False means it represents a node.
+    :type is_link: bool
+    :return: A human-readable description of the difference between the two observation rows.
+    :rtype: str
+    """
+    # Indexes where a change has occured, not including 0th index
+    index_changed = [i for i in range(1, len(obs_change)) if obs_change[i] != -1]
+    # Node pol types, Indexes >= 3 are service nodes
+    NodePOLTypes = [NodePOLType(i).name if i < 3 else NodePOLType(3).name + " " + str(i - 3) for i in index_changed]
+    # Account for hardware states, software sattes and links
+    states = [
+        LinkStatus(obs_change[i]).name
+        if is_link
+        else HardwareState(obs_change[i]).name
+        if i == 1
+        else SoftwareState(obs_change[i]).name
+        for i in index_changed
+    ]
+
+    if not is_link:
+        desc = f"ID {obs_change[0]}:"
+        for node_pol_type, state in list(zip(NodePOLTypes, states)):
+            desc = desc + " " + node_pol_type + " changed to " + state + "."
+    else:
+        desc = f"ID {obs_change[0]}: Link traffic changed to {states[0]}."
+
+    return desc
+
+
+def transform_action_node_enum(action: List[Union[str, int]]) -> List[int]:
+    """Convert a node action from readable string format, to enumerated format.
+
+    example:
+    [1, 'SERVICE', 'PATCHING', 0] -> [1, 3, 1, 0]
+    :param action: Action in 'readable' format
+    :type action: List[Union[str,int]]
+    :return: Action with verbs encoded as ints
+    :rtype: List[int]
+    """
+    action_node_id = action[0]
+    action_node_property = NodePOLType[action[1]].value
+
+    if action[1] == "OPERATING":
+        property_action = NodeHardwareAction[action[2]].value
+    elif action[1] == "OS" or action[1] == "SERVICE":
+        property_action = NodeSoftwareAction[action[2]].value
+    else:
+        property_action = 0
+
+    action_service_index = action[3]
+
+    new_action = [
+        action_node_id,
+        action_node_property,
+        property_action,
+        action_service_index,
+    ]
+
+    return new_action
+
+
+def transform_action_acl_enum(action: List[Union[int, str]]) -> np.ndarray:
+    """
+    Convert acl action from readable str format, to enumerated format.
+
+    :param action: ACL-based action expressed as a list of human-readable ints and strings
+    :type action: List[Union[int,str]]
+    :return: The same action but encoded to contain only integers.
+    :rtype: np.ndarray
+    """
+    action_decisions = {"NONE": 0, "CREATE": 1, "DELETE": 2}
+    action_permissions = {"DENY": 0, "ALLOW": 1}
+
+    action_decision = action_decisions[action[0]]
+    action_permission = action_permissions[action[1]]
+
+    # For IPs, Ports and Protocols, ANY has value 0, otherwise its just an index
+    new_action = [action_decision, action_permission] + list(action[2:6])
+    for n, val in enumerate(list(action[2:6])):
+        if val == "ANY":
+            new_action[n + 2] = 0
+
+    new_action = np.array(new_action)
+    return new_action
+
+
+def get_node_of_ip(ip: str, node_dict: Dict[str, NodeUnion]) -> str:
+    """Get the node ID of an IP address.
+
+    node_dict: dictionary of nodes where key is ID, and value is the node (can be ontained from env.nodes)
+
+    :param ip: The IP address of the node whose ID is required
+    :type ip: str
+    :param node_dict: The environment's node registry dictionary
+    :type node_dict: Dict[str,NodeUnion]
+    :return: The key from the registry dict that corresponds to the node with the IP adress provided by `ip`
+    :rtype: str
+    """
+    for node_key, node_value in node_dict.items():
+        node_ip = node_value.ip_address
+        if node_ip == ip:
+            return node_key
+
+
+def get_new_action(old_action: np.ndarray, action_dict: Dict[int, List]) -> int:
+    """
+    Get new action (e.g. 32) from old action e.g. [1,1,1,0].
+
+    Old_action can be either node or acl action type
+
+    :param old_action: Action expressed as a list of choices, eg. [1,1,1,0]
+    :type old_action: np.ndarray
+    :param action_dict: Dictionary for translating the multidiscrete actions into the list-based actions.
+    :type action_dict: Dict[int,List]
+    :return: Action key correspoinding to the input `old_action`
+    :rtype: int
+    """
+    for key, val in action_dict.items():
+        if list(val) == list(old_action):
+            return key
+    # Not all possible actions are included in dict, only valid action are
+    # if action is not in the dict, its an invalid action so return 0
+    return 0

src/primaite/cli.py

@@ -0,0 +1,198 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+"""Provides a CLI using Typer as an entry point."""
+import logging
+import os
+from enum import Enum
+from typing import Optional
+
+import typer
+import yaml
+from typing_extensions import Annotated
+
+from primaite import PRIMAITE_PATHS
+from primaite.data_viz import PlotlyTemplate
+
+app = typer.Typer()
+
+
+@app.command()
+def build_dirs() -> None:
+    """Build the PrimAITE app directories."""
+    from primaite.setup import setup_app_dirs
+
+    setup_app_dirs.run()
+
+
+@app.command()
+def reset_notebooks(overwrite: bool = True) -> None:
+    """
+    Force a reset of the demo notebooks in the users notebooks directory.
+
+    :param overwrite: If True, will overwrite existing demo notebooks.
+    """
+    from primaite.setup import reset_demo_notebooks
+
+    reset_demo_notebooks.run(overwrite)
+
+
+@app.command()
+def logs(last_n: Annotated[int, typer.Option("-n")]) -> None:
+    """
+    Print the PrimAITE log file.
+
+    :param last_n: The number of lines to print. Default value is 10.
+    """
+    import re
+
+    from primaite import PRIMAITE_PATHS
+
+    if os.path.isfile(PRIMAITE_PATHS.app_log_file_path):
+        with open(PRIMAITE_PATHS.app_log_file_path) as file:
+            lines = file.readlines()
+        for line in lines[-last_n:]:
+            print(re.sub(r"\n*", "", line))
+
+
+_LogLevel = Enum("LogLevel", {k: k for k in logging._levelToName.values()})  # noqa
+
+
+@app.command()
+def log_level(level: Annotated[Optional[_LogLevel], typer.Argument()] = None) -> None:
+    """
+    View or set the PrimAITE Log Level.
+
+    To View, simply call: primaite log-level
+
+    To set, call: primaite log-level <desired log level>
+
+    For example, to set the to debug, call: primaite log-level DEBUG
+    """
+    if PRIMAITE_PATHS.app_config_file_path.exists():
+        with open(PRIMAITE_PATHS.app_config_file_path, "r") as file:
+            primaite_config = yaml.safe_load(file)
+
+        if level:
+            primaite_config["logging"]["log_level"] = level.value
+            with open(PRIMAITE_PATHS.app_config_file_path, "w") as file:
+                yaml.dump(primaite_config, file)
+            print(f"PrimAITE Log Level: {level}")
+        else:
+            level = primaite_config["logging"]["log_level"]
+            print(f"PrimAITE Log Level: {level}")
+
+
+@app.command()
+def notebooks() -> None:
+    """Start Jupyter Lab in the users PrimAITE notebooks directory."""
+    from primaite.notebooks import start_jupyter_session
+
+    start_jupyter_session()
+
+
+@app.command()
+def version() -> None:
+    """Get the installed PrimAITE version number."""
+    import primaite
+
+    print(primaite.__version__)
+
+
+@app.command()
+def clean_up() -> None:
+    """Cleans up left over files from previous version installations."""
+    from primaite.setup import old_installation_clean_up
+
+    old_installation_clean_up.run()
+
+
+@app.command()
+def setup(overwrite_existing: bool = True) -> None:
+    """
+    Perform the PrimAITE first-time setup.
+
+    WARNING: All user-data will be lost.
+    """
+    from primaite import getLogger
+    from primaite.setup import old_installation_clean_up, reset_demo_notebooks, reset_example_configs
+
+    _LOGGER = getLogger(__name__)
+
+    _LOGGER.info("Performing the PrimAITE first-time setup...")
+
+    _LOGGER.info("Building primaite_config.yaml...")
+
+    _LOGGER.info("Building the PrimAITE app directories...")
+    PRIMAITE_PATHS.mkdirs()
+
+    _LOGGER.info("Rebuilding the demo notebooks...")
+    reset_demo_notebooks.run(overwrite_existing=True)
+
+    _LOGGER.info("Rebuilding the example notebooks...")
+    reset_example_configs.run(overwrite_existing=True)
+
+    _LOGGER.info("Performing a clean-up of previous PrimAITE installations...")
+    old_installation_clean_up.run()
+
+    _LOGGER.info("PrimAITE setup complete!")
+
+
+@app.command()
+def session(tc: Optional[str] = None, ldc: Optional[str] = None, load: Optional[str] = None) -> None:
+    """
+    Run a PrimAITE session.
+
+    tc: The training config filepath. Optional. If no value is passed then
+    example default training config is used from:
+    ~/primaite/2.0.0/config/example_config/training/training_config_main.yaml.
+
+    ldc: The lay down config file path. Optional. If no value is passed then
+    example default lay down config is used from:
+    ~/primaite/2.0.0/config/example_config/lay_down/lay_down_config_3_doc_very_basic.yaml.
+
+    load: The directory of a previous session. Optional. If no value is passed, then the session
+    will use the default training config and laydown config. Inversely, if a training config and laydown config
+    is passed while a session directory is passed, PrimAITE will load the session and ignore the training config
+    and laydown config.
+    """
+    from primaite.config.lay_down_config import dos_very_basic_config_path
+    from primaite.config.training_config import main_training_config_path
+    from primaite.main import run
+
+    if load is not None:
+        # run a loaded session
+        run(session_path=load)
+
+    else:
+        # start a new session using tc and ldc
+        if not tc:
+            tc = main_training_config_path()
+
+        if not ldc:
+            ldc = dos_very_basic_config_path()
+
+        run(training_config_path=tc, lay_down_config_path=ldc)
+
+
+@app.command()
+def plotly_template(template: Annotated[Optional[PlotlyTemplate], typer.Argument()] = None) -> None:
+    """
+    View or set the plotly template for Session plots.
+
+    To View, simply call: primaite plotly-template
+
+    To set, call: primaite plotly-template <desired template>
+
+    For example, to set as plotly_dark, call: primaite plotly-template PLOTLY_DARK
+    """
+    if PRIMAITE_PATHS.app_config_file_path.exists():
+        with open(PRIMAITE_PATHS.app_config_file_path, "r") as file:
+            primaite_config = yaml.safe_load(file)
+
+        if template:
+            primaite_config["session"]["outputs"]["plots"]["template"] = template.value
+            with open(PRIMAITE_PATHS.app_config_file_path, "w") as file:
+                yaml.dump(primaite_config, file)
+            print(f"PrimAITE plotly template: {template.value}")
+        else:
+            template = primaite_config["session"]["outputs"]["plots"]["template"]
+            print(f"PrimAITE plotly template: {template}")

src/primaite/common/__init__.py

@@ -0,0 +1,2 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+"""Objects which are shared between many PrimAITE modules."""

src/primaite/common/custom_typing.py

@@ -0,0 +1,8 @@
+from typing import Union
+
+from primaite.nodes.active_node import ActiveNode
+from primaite.nodes.passive_node import PassiveNode
+from primaite.nodes.service_node import ServiceNode
+
+NodeUnion = Union[ActiveNode, PassiveNode, ServiceNode]
+"""A Union of ActiveNode, PassiveNode, and ServiceNode."""

src/primaite/common/enums.py

@@ -0,0 +1,208 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+"""Enumerations for APE."""
+
+from enum import Enum, IntEnum
+
+
+class NodeType(Enum):
+    """Node type enumeration."""
+
+    CCTV = 1
+    SWITCH = 2
+    COMPUTER = 3
+    LINK = 4
+    MONITOR = 5
+    PRINTER = 6
+    LOP = 7
+    RTU = 8
+    ACTUATOR = 9
+    SERVER = 10
+
+
+class Priority(Enum):
+    """Node priority enumeration."""
+
+    P1 = 1
+    P2 = 2
+    P3 = 3
+    P4 = 4
+    P5 = 5
+
+
+class HardwareState(Enum):
+    """Node hardware state enumeration."""
+
+    NONE = 0
+    ON = 1
+    OFF = 2
+    RESETTING = 3
+    SHUTTING_DOWN = 4
+    BOOTING = 5
+
+
+class SoftwareState(Enum):
+    """Software or Service state enumeration."""
+
+    NONE = 0
+    GOOD = 1
+    PATCHING = 2
+    COMPROMISED = 3
+    OVERWHELMED = 4
+
+
+class NodePOLType(Enum):
+    """Node Pattern of Life type enumeration."""
+
+    NONE = 0
+    OPERATING = 1
+    OS = 2
+    SERVICE = 3
+    FILE = 4
+
+
+class NodePOLInitiator(Enum):
+    """Node Pattern of Life initiator enumeration."""
+
+    DIRECT = 1
+    IER = 2
+    SERVICE = 3
+
+
+class Protocol(Enum):
+    """Service protocol enumeration."""
+
+    LDAP = 0
+    FTP = 1
+    HTTPS = 2
+    SMTP = 3
+    RTP = 4
+    IPP = 5
+    TCP = 6
+    NONE = 7
+
+
+class SessionType(Enum):
+    """The type of PrimAITE Session to be run."""
+
+    TRAIN = 1
+    "Train an agent"
+    EVAL = 2
+    "Evaluate an agent"
+    TRAIN_EVAL = 3
+    "Train then evaluate an agent"
+
+
+class AgentFramework(Enum):
+    """The agent algorithm framework/package."""
+
+    CUSTOM = 0
+    "Custom Agent"
+    SB3 = 1
+    "Stable Baselines3"
+    RLLIB = 2
+    "Ray RLlib"
+
+
+class DeepLearningFramework(Enum):
+    """The deep learning framework."""
+
+    TF = "tf"
+    "Tensorflow"
+    TF2 = "tf2"
+    "Tensorflow 2.x"
+    TORCH = "torch"
+    "PyTorch"
+
+
+class AgentIdentifier(Enum):
+    """The Red Agent algo/class."""
+
+    A2C = 1
+    "Advantage Actor Critic"
+    PPO = 2
+    "Proximal Policy Optimization"
+    HARDCODED = 3
+    "The Hardcoded agents"
+    DO_NOTHING = 4
+    "The DoNothing agents"
+    RANDOM = 5
+    "The RandomAgent"
+    DUMMY = 6
+    "The DummyAgent"
+
+
+class HardCodedAgentView(Enum):
+    """The view the deterministic hard-coded agent has of the environment."""
+
+    BASIC = 1
+    "The current observation space only"
+    FULL = 2
+    "Full environment view with actions taken and reward feedback"
+
+
+class ActionType(Enum):
+    """Action type enumeration."""
+
+    NODE = 0
+    ACL = 1
+    ANY = 2
+
+
+# TODO: this is not used anymore, write a ticket to delete it.
+class ObservationType(Enum):
+    """Observation type enumeration."""
+
+    BOX = 0
+    MULTIDISCRETE = 1
+
+
+class FileSystemState(Enum):
+    """File System State."""
+
+    GOOD = 1
+    CORRUPT = 2
+    DESTROYED = 3
+    REPAIRING = 4
+    RESTORING = 5
+
+
+class NodeHardwareAction(Enum):
+    """Node hardware action."""
+
+    NONE = 0
+    ON = 1
+    OFF = 2
+    RESET = 3
+
+
+class NodeSoftwareAction(Enum):
+    """Node software action."""
+
+    NONE = 0
+    PATCHING = 1
+
+
+class LinkStatus(Enum):
+    """Link traffic status."""
+
+    NONE = 0
+    LOW = 1
+    MEDIUM = 2
+    HIGH = 3
+    OVERLOAD = 4
+
+
+class SB3OutputVerboseLevel(IntEnum):
+    """The Stable Baselines3 learn/eval output verbosity level."""
+
+    NONE = 0
+    INFO = 1
+    DEBUG = 2
+
+
+class RulePermissionType(Enum):
+    """Any firewall rule type."""
+
+    NONE = 0
+    DENY = 1
+    ALLOW = 2

src/primaite/common/protocol.py

@@ -0,0 +1,47 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+"""The protocol class."""
+
+
+class Protocol(object):
+    """Protocol class."""
+
+    def __init__(self, _name: str) -> None:
+        """
+        Initialise a protocol.
+
+        :param _name: The name of the protocol
+        :type _name: str
+        """
+        self.name: str = _name
+        self.load: int = 0  # bps
+
+    def get_name(self) -> str:
+        """
+        Gets the protocol name.
+
+        Returns:
+             The protocol name
+        """
+        return self.name
+
+    def get_load(self) -> int:
+        """
+        Gets the protocol load.
+
+        Returns:
+             The protocol load (bps)
+        """
+        return self.load
+
+    def add_load(self, _load: int) -> None:
+        """
+        Adds load to the protocol.
+
+        Args:
+            _load: The load to add
+        """
+        self.load += _load
+
+    def clear_load(self) -> None:
+        """Clears the load on this protocol."""
+        self.load = 0

src/primaite/common/service.py

@@ -0,0 +1,28 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+"""The Service class."""
+
+from primaite.common.enums import SoftwareState
+
+
+class Service(object):
+    """Service class."""
+
+    def __init__(self, name: str, port: str, software_state: SoftwareState) -> None:
+        """
+        Initialise a service.
+
+        :param name: The service name.
+        :param port: The service port.
+        :param software_state: The service SoftwareState.
+        """
+        self.name: str = name
+        self.port: str = port
+        self.software_state: SoftwareState = software_state
+        self.patching_count: int = 0
+
+    def reduce_patching_count(self) -> None:
+        """Reduces the patching count for the service."""
+        self.patching_count -= 1
+        if self.patching_count <= 0:
+            self.patching_count = 0
+            self.software_state = SoftwareState.GOOD

src/primaite/config/__init__.py

@@ -0,0 +1,2 @@
+# © Crown-owned copyright 2023, Defence Science and Technology Laboratory UK
+"""Configuration parameters for running experiments."""

src/primaite/config/_package_data/lay_down/lay_down_config_1_DDOS_basic.yaml

@@ -0,0 +1,166 @@
+- item_type: PORTS
+  ports_list:
+    - port: '80'
+- item_type: SERVICES
+  service_list:
+    - name: TCP
+- item_type: NODE
+  node_id: '1'
+  name: PC1
+  node_class: SERVICE
+  node_type: COMPUTER
+  priority: P5
+  hardware_state: 'ON'
+  ip_address: 192.168.1.2
+  software_state: GOOD
+  file_system_state: GOOD
+  services:
+    - name: TCP
+      port: '80'
+      state: GOOD
+- item_type: NODE
+  node_id: '2'
+  name: SERVER
+  node_class: SERVICE
+  node_type: SERVER
+  priority: P5
+  hardware_state: 'ON'
+  ip_address: 192.168.1.3
+  software_state: GOOD
+  file_system_state: GOOD
+  services:
+    - name: TCP
+      port: '80'
+      state: GOOD
+- item_type: NODE
+  node_id: '3'
+  name: PC2
+  node_class: SERVICE
+  node_type: COMPUTER
+  priority: P5
+  hardware_state: 'ON'
+  ip_address: 192.168.1.4
+  software_state: GOOD
+  file_system_state: GOOD
+  services:
+    - name: TCP
+      port: '80'
+      state: GOOD
+- item_type: NODE
+  node_id: '4'
+  name: SWITCH1
+  node_class: ACTIVE
+  node_type: SWITCH
+  priority: P2
+  hardware_state: 'ON'
+  ip_address: 192.168.1.5
+  software_state: GOOD
+  file_system_state: GOOD
+- item_type: NODE
+  node_id: '5'
+  name: SWITCH2
+  node_class: ACTIVE
+  node_type: SWITCH
+  priority: P2
+  hardware_state: 'ON'
+  ip_address: 192.168.1.6
+  software_state: GOOD
+  file_system_state: GOOD
+- item_type: NODE
+  node_id: '6'
+  name: SWITCH3
+  node_class: ACTIVE
+  node_type: SWITCH
+  priority: P2
+  hardware_state: 'ON'
+  ip_address: 192.168.1.7
+  software_state: GOOD
+  file_system_state: GOOD
+- item_type: LINK
+  id: '7'
+  name: link1
+  bandwidth: 1000000000
+  source: '1'
+  destination: '4'
+- item_type: LINK
+  id: '8'
+  name: link2
+  bandwidth: 1000000000
+  source: '4'
+  destination: '2'
+- item_type: LINK
+  id: '9'
+  name: link3
+  bandwidth: 1000000000
+  source: '2'
+  destination: '5'
+- item_type: LINK
+  id: '10'
+  name: link4
+  bandwidth: 1000000000
+  source: '2'
+  destination: '6'
+- item_type: LINK
+  id: '11'
+  name: link5
+  bandwidth: 1000000000
+  source: '5'
+  destination: '3'
+- item_type: LINK
+  id: '12'
+  name: link6
+  bandwidth: 1000000000
+  source: '6'
+  destination: '3'
+- item_type: GREEN_IER
+  id: '13'
+  start_step: 1
+  end_step: 128
+  load: 100000
+  protocol: TCP
+  port: '80'
+  source: '3'
+  destination: '2'
+  mission_criticality: 5
+- item_type: RED_POL
+  id: '14'
+  start_step: 50
+  end_step: 50
+  targetNodeId: '1'
+  initiator: DIRECT
+  type: SERVICE
+  protocol: TCP
+  state: COMPROMISED
+  sourceNodeId: NA
+  sourceNodeService: NA
+  sourceNodeServiceState: NA
+- item_type: RED_IER
+  id: '15'
+  start_step: 60
+  end_step: 100
+  load: 1000000
+  protocol: TCP
+  port: '80'
+  source: '1'
+  destination: '2'
+  mission_criticality: 0
+- item_type: RED_POL
+  id: '16'
+  start_step: 80
+  end_step: 80
+  targetNodeId: '2'
+  initiator: IER
+  type: SERVICE
+  protocol: TCP
+  state: COMPROMISED
+  sourceNodeId: NA
+  sourceNodeService: NA
+  sourceNodeServiceState: NA
+- item_type: ACL_RULE
+  id: '17'
+  permission: ALLOW
+  source: ANY
+  destination: ANY
+  protocol: ANY
+  port: ANY
+  position: 0

src/primaite/config/_package_data/lay_down/lay_down_config_2_DDOS_basic.yaml

@@ -0,0 +1,366 @@
+- item_type: PORTS
+  ports_list:
+    - port: '80'
+- item_type: SERVICES
+  service_list:
+    - name: TCP
+- item_type: NODE
+  node_id: '1'
+  name: PC1
+  node_class: SERVICE
+  node_type: COMPUTER
+  priority: P5
+  hardware_state: 'ON'
+  ip_address: 192.168.10.11
+  software_state: GOOD
+  file_system_state: GOOD
+  services:
+    - name: TCP
+      port: '80'
+      state: GOOD
+- item_type: NODE
+  node_id: '2'
+  name: PC2
+  node_class: SERVICE
+  node_type: COMPUTER
+  priority: P5
+  hardware_state: 'ON'
+  ip_address: 192.168.10.12
+  software_state: GOOD
+  file_system_state: GOOD
+  services:
+    - name: TCP
+      port: '80'
+      state: GOOD
+- item_type: NODE
+  node_id: '3'
+  name: PC3
+  node_class: SERVICE
+  node_type: COMPUTER
+  priority: P5
+  hardware_state: 'ON'
+  ip_address: 192.168.10.13
+  software_state: GOOD
+  file_system_state: GOOD
+  services:
+    - name: TCP
+      port: '80'
+      state: GOOD
+- item_type: NODE
+  node_id: '4'
+  name: PC4
+  node_class: SERVICE
+  node_type: COMPUTER
+  priority: P5
+  hardware_state: 'ON'
+  ip_address: 192.168.20.14
+  software_state: GOOD
+  file_system_state: GOOD
+  services:
+    - name: TCP
+      port: '80'
+      state: GOOD
+- item_type: NODE
+  node_id: '5'
+  name: SWITCH1
+  node_class: ACTIVE
+  node_type: SWITCH
+  priority: P2
+  hardware_state: 'ON'
+  ip_address: 192.168.1.2
+  software_state: GOOD
+  file_system_state: GOOD
+- item_type: NODE
+  node_id: '6'
+  name: IDS
+  node_class: SERVICE
+  node_type: SERVER
+  priority: P5
+  hardware_state: 'ON'
+  ip_address: 192.168.1.4
+  software_state: GOOD
+  file_system_state: GOOD
+  services:
+    - name: TCP
+      port: '80'
+      state: GOOD
+- item_type: NODE
+  node_id: '7'
+  name: SWITCH2
+  node_class: ACTIVE
+  node_type: SWITCH
+  priority: P2
+  hardware_state: 'ON'
+  ip_address: 192.168.1.3
+  software_state: GOOD
+  file_system_state: GOOD
+- item_type: NODE
+  node_id: '8'
+  name: LOP1
+  node_class: SERVICE
+  node_type: LOP
+  priority: P5
+  hardware_state: 'ON'
+  ip_address: 192.168.1.12
+  software_state: GOOD
+  file_system_state: GOOD
+  services:
+    - name: TCP
+      port: '80'
+      state: GOOD
+- item_type: NODE
+  node_id: '9'
+  name: SERVER1
+  node_class: SERVICE
+  node_type: SERVER
+  priority: P5
+  hardware_state: 'ON'
+  ip_address: 192.168.10.14
+  software_state: GOOD
+  file_system_state: GOOD
+  services:
+    - name: TCP
+      port: '80'
+      state: GOOD
+- item_type: NODE
+  node_id: '10'
+  name: SERVER2
+  node_class: SERVICE
+  node_type: SERVER
+  priority: P5
+  hardware_state: 'ON'
+  ip_address: 192.168.20.15
+  software_state: GOOD
+  file_system_state: GOOD
+  services:
+    - name: TCP
+      port: '80'
+      state: GOOD
+- item_type: LINK
+  id: '11'
+  name: link1
+  bandwidth: 1000000000
+  source: '1'
+  destination: '5'
+- item_type: LINK
+  id: '12'
+  name: link2
+  bandwidth: 1000000000
+  source: '2'
+  destination: '5'
+- item_type: LINK
+  id: '13'
+  name: link3
+  bandwidth: 1000000000
+  source: '3'
+  destination: '5'
+- item_type: LINK
+  id: '14'
+  name: link4
+  bandwidth: 1000000000
+  source: '4'
+  destination: '5'
+- item_type: LINK
+  id: '15'
+  name: link5
+  bandwidth: 1000000000
+  source: '5'
+  destination: '6'
+- item_type: LINK
+  id: '16'
+  name: link6
+  bandwidth: 1000000000
+  source: '5'
+  destination: '8'
+- item_type: LINK
+  id: '17'
+  name: link7
+  bandwidth: 1000000000
+  source: '6'
+  destination: '7'
+- item_type: LINK
+  id: '18'
+  name: link8
+  bandwidth: 1000000000
+  source: '8'
+  destination: '7'
+- item_type: LINK
+  id: '19'
+  name: link9
+  bandwidth: 1000000000
+  source: '7'
+  destination: '9'
+- item_type: LINK
+  id: '20'
+  name: link10
+  bandwidth: 1000000000
+  source: '7'
+  destination: '10'
+- item_type: GREEN_IER
+  id: '21'
+  start_step: 1
+  end_step: 128
+  load: 100000
+  protocol: TCP
+  port: '80'
+  source: '1'
+  destination: '9'
+  mission_criticality: 2
+- item_type: GREEN_IER
+  id: '22'
+  start_step: 1
+  end_step: 128
+  load: 100000
+  protocol: TCP
+  port: '80'
+  source: '2'
+  destination: '9'
+  mission_criticality: 2
+- item_type: GREEN_IER
+  id: '23'
+  start_step: 1
+  end_step: 128
+  load: 100000
+  protocol: TCP
+  port: '80'
+  source: '9'
+  destination: '3'
+  mission_criticality: 5
+- item_type: GREEN_IER
+  id: '24'
+  start_step: 1
+  end_step: 128
+  load: 100000
+  protocol: TCP
+  port: '80'
+  source: '4'
+  destination: '10'
+  mission_criticality: 2
+- item_type: ACL_RULE
+  id: '25'
+  permission: ALLOW
+  source: 192.168.10.11
+  destination: 192.168.10.14
+  protocol: TCP
+  port: 80
+  position: 0
+- item_type: ACL_RULE
+  id: '26'
+  permission: ALLOW
+  source: 192.168.10.12
+  destination: 192.168.10.14
+  protocol: TCP
+  port: 80
+  position: 1
+- item_type: ACL_RULE
+  id: '27'
+  permission: ALLOW
+  source: 192.168.10.13
+  destination: 192.168.10.14
+  protocol: TCP
+  port: 80
+  position: 2
+- item_type: ACL_RULE
+  id: '28'
+  permission: ALLOW
+  source: 192.168.20.14
+  destination: 192.168.20.15
+  protocol: TCP
+  port: 80
+  position: 3
+- item_type: ACL_RULE
+  id: '29'
+  permission: ALLOW
+  source: 192.168.10.14
+  destination: 192.168.10.13
+  protocol: TCP
+  port: 80
+  position: 4
+- item_type: ACL_RULE
+  id: '30'
+  permission: DENY
+  source: 192.168.10.11
+  destination: 192.168.20.15
+  protocol: TCP
+  port: 80
+  position: 5
+- item_type: ACL_RULE
+  id: '31'
+  permission: DENY
+  source: 192.168.10.12
+  destination: 192.168.20.15
+  protocol: TCP
+  port: 80
+  position: 6
+- item_type: ACL_RULE
+  id: '32'
+  permission: DENY
+  source: 192.168.10.13
+  destination: 192.168.20.15
+  protocol: TCP
+  port: 80
+  position: 7
+- item_type: ACL_RULE
+  id: '33'
+  permission: DENY
+  source: 192.168.20.14
+  destination: 192.168.10.14
+  protocol: TCP
+  port: 80
+  position: 8
+- item_type: RED_POL
+  id: '34'
+  start_step: 20
+  end_step: 20
+  targetNodeId: '1'
+  initiator: DIRECT
+  type: SERVICE
+  protocol: TCP
+  state: COMPROMISED
+  sourceNodeId: NA
+  sourceNodeService: NA
+  sourceNodeServiceState: NA
+- item_type: RED_POL
+  id: '35'
+  start_step: 20
+  end_step: 20
+  targetNodeId: '2'
+  initiator: DIRECT
+  type: SERVICE
+  protocol: TCP
+  state: COMPROMISED
+  sourceNodeId: NA
+  sourceNodeService: NA
+  sourceNodeServiceState: NA
+- item_type: RED_IER
+  id: '36'
+  start_step: 30
+  end_step: 128
+  load: 440000000
+  protocol: TCP
+  port: '80'
+  source: '1'
+  destination: '9'
+  mission_criticality: 0
+- item_type: RED_IER
+  id: '37'
+  start_step: 30
+  end_step: 128
+  load: 440000000
+  protocol: TCP
+  port: '80'
+  source: '2'
+  destination: '9'
+  mission_criticality: 0
+- item_type: RED_POL
+  id: '38'
+  start_step: 30
+  end_step: 30
+  targetNodeId: '9'
+  initiator: IER
+  type: SERVICE
+  protocol: TCP
+  state: OVERWHELMED
+  sourceNodeId: NA
+  sourceNodeService: NA
+  sourceNodeServiceState: NA

src/primaite/config/_package_data/lay_down/lay_down_config_3_DOS_very_basic.yaml

@@ -0,0 +1,164 @@
+- item_type: PORTS
+  ports_list:
+    - port: '80'
+- item_type: SERVICES
+  service_list:
+    - name: TCP
+- item_type: NODE
+  node_id: '1'
+  name: PC1
+  node_class: SERVICE
+  node_type: COMPUTER
+  priority: P5
+  hardware_state: 'ON'
+  ip_address: 192.168.1.2
+  software_state: GOOD
+  file_system_state: GOOD
+  services:
+    - name: TCP
+      port: '80'
+      state: GOOD
+- item_type: NODE
+  node_id: '2'
+  name: PC2
+  node_class: SERVICE
+  node_type: COMPUTER
+  priority: P5
+  hardware_state: 'ON'
+  ip_address: 192.168.1.3
+  software_state: GOOD
+  file_system_state: GOOD
+  services:
+    - name: TCP
+      port: '80'
+      state: GOOD
+- item_type: NODE
+  node_id: '3'
+  name: SWITCH1
+  node_class: ACTIVE
+  node_type: SWITCH
+  priority: P2
+  hardware_state: 'ON'
+  ip_address: 192.168.1.1
+  software_state: GOOD
+  file_system_state: GOOD
+- item_type: NODE
+  node_id: '4'
+  name: SERVER1
+  node_class: SERVICE
+  node_type: SERVER
+  priority: P5
+  hardware_state: 'ON'
+  ip_address: 192.168.1.4
+  software_state: GOOD
+  file_system_state: GOOD
+  services:
+    - name: TCP
+      port: '80'
+      state: GOOD
+- item_type: LINK
+  id: '5'
+  name: link1
+  bandwidth: 1000000000
+  source: '1'
+  destination: '3'
+- item_type: LINK
+  id: '6'
+  name: link2
+  bandwidth: 1000000000
+  source: '2'
+  destination: '3'
+- item_type: LINK
+  id: '7'
+  name: link3
+  bandwidth: 1000000000
+  source: '3'
+  destination: '4'
+- item_type: GREEN_IER
+  id: '8'
+  start_step: 1
+  end_step: 256
+  load: 10000
+  protocol: TCP
+  port: '80'
+  source: '1'
+  destination: '4'
+  mission_criticality: 1
+- item_type: GREEN_IER
+  id: '9'
+  start_step: 1
+  end_step: 256
+  load: 10000
+  protocol: TCP
+  port: '80'
+  source: '2'
+  destination: '4'
+  mission_criticality: 1
+- item_type: GREEN_IER
+  id: '10'
+  start_step: 1
+  end_step: 256
+  load: 10000
+  protocol: TCP
+  port: '80'
+  source: '4'
+  destination: '2'
+  mission_criticality: 5
+- item_type: ACL_RULE
+  id: '11'
+  permission: ALLOW
+  source: 192.168.1.2
+  destination: 192.168.1.4
+  protocol: TCP
+  port: 80
+  position: 0
+- item_type: ACL_RULE
+  id: '12'
+  permission: ALLOW
+  source: 192.168.1.3
+  destination: 192.168.1.4
+  protocol: TCP
+  port: 80
+  position: 1
+- item_type: ACL_RULE
+  id: '13'
+  permission: ALLOW
+  source: 192.168.1.4
+  destination: 192.168.1.3
+  protocol: TCP
+  port: 80
+  position: 2
+- item_type: RED_POL
+  id: '14'
+  start_step: 20
+  end_step: 20
+  targetNodeId: '1'
+  initiator: DIRECT
+  type: SERVICE
+  protocol: TCP
+  state: COMPROMISED
+  sourceNodeId: NA
+  sourceNodeService: NA
+  sourceNodeServiceState: NA
+- item_type: RED_IER
+  id: '15'
+  start_step: 30
+  end_step: 256
+  load: 10000000
+  protocol: TCP
+  port: '80'
+  source: '1'
+  destination: '4'
+  mission_criticality: 0
+- item_type: RED_POL
+  id: '16'
+  start_step: 40
+  end_step: 40
+  targetNodeId: '4'
+  initiator: IER
+  type: SERVICE
+  protocol: TCP
+  state: OVERWHELMED
+  sourceNodeId: NA
+  sourceNodeService: NA
+  sourceNodeServiceState: NA

src/primaite/config/_package_data/lay_down/lay_down_config_5_data_manipulation.yaml

@@ -1,470 +1,483 @@
-- itemType: ACTIONS
-  type: NODE
-- itemType: STEPS
-  steps: 256
-- itemType: PORTS
-  portsList:
-  - port: '80'
-  - port: '1433'
-  - port: '53'
-- itemType: SERVICES
-  serviceList:
-  - name: TCP
-  - name: TCP_SQL
-  - name: UDP
-- itemType: NODE
-  id: '1'
+- item_type: PORTS
+  ports_list:
+    - port: '80'
+    - port: '1433'
+    - port: '53'
+- item_type: SERVICES
+  service_list:
+    - name: TCP
+    - name: TCP_SQL
+    - name: UDP
+- item_type: NODE
+  node_id: '1'
   name: CLIENT_1
-  baseType: SERVICE
-  nodeType: COMPUTER
+  node_class: SERVICE
+  node_type: COMPUTER
   priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.10.11
-  softwareState: GOOD
-  fileSystemState: GOOD
+  hardware_state: 'ON'
+  ip_address: 192.168.10.11
+  software_state: GOOD
+  file_system_state: GOOD
   services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-  - name: UDP
-    port: '53'
-    state: GOOD
-- itemType: NODE
-  id: '2'
+    - name: TCP
+      port: '80'
+      state: GOOD
+    - name: UDP
+      port: '53'
+      state: GOOD
+- item_type: NODE
+  node_id: '2'
   name: CLIENT_2
-  baseType: SERVICE
-  nodeType: COMPUTER
+  node_class: SERVICE
+  node_type: COMPUTER
   priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.10.12
-  softwareState: GOOD
-  fileSystemState: GOOD
+  hardware_state: 'ON'
+  ip_address: 192.168.10.12
+  software_state: GOOD
+  file_system_state: GOOD
   services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-- itemType: NODE
-  id: '3'
+    - name: TCP
+      port: '80'
+      state: GOOD
+- item_type: NODE
+  node_id: '3'
   name: SWITCH_1
-  baseType: ACTIVE
-  nodeType: SWITCH
+  node_class: ACTIVE
+  node_type: SWITCH
   priority: P2
-  hardwareState: 'ON'
-  ipAddress: 192.168.10.1
-  softwareState: GOOD
-  fileSystemState: GOOD
-- itemType: NODE
-  id: '4'
+  hardware_state: 'ON'
+  ip_address: 192.168.10.1
+  software_state: GOOD
+  file_system_state: GOOD
+- item_type: NODE
+  node_id: '4'
   name: SECURITY_SUITE
-  baseType: SERVICE
-  nodeType: SERVER
+  node_class: SERVICE
+  node_type: SERVER
   priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.1.10
-  softwareState: GOOD
-  fileSystemState: GOOD
+  hardware_state: 'ON'
+  ip_address: 192.168.1.10
+  software_state: GOOD
+  file_system_state: GOOD
   services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-  - name: UDP
-    port: '53'
-    state: GOOD
-- itemType: NODE
-  id: '5'
+    - name: TCP
+      port: '80'
+      state: GOOD
+    - name: UDP
+      port: '53'
+      state: GOOD
+- item_type: NODE
+  node_id: '5'
   name: MANAGEMENT_CONSOLE
-  baseType: SERVICE
-  nodeType: SERVER
+  node_class: SERVICE
+  node_type: SERVER
   priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.1.12
-  softwareState: GOOD
-  fileSystemState: GOOD
+  hardware_state: 'ON'
+  ip_address: 192.168.1.12
+  software_state: GOOD
+  file_system_state: GOOD
   services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-  - name: UDP
-    port: '53'
-    state: GOOD
-- itemType: NODE
-  id: '6'
+    - name: TCP
+      port: '80'
+      state: GOOD
+    - name: UDP
+      port: '53'
+      state: GOOD
+- item_type: NODE
+  node_id: '6'
   name: SWITCH_2
-  baseType: ACTIVE
-  nodeType: SWITCH
+  node_class: ACTIVE
+  node_type: SWITCH
   priority: P2
-  hardwareState: 'ON'
-  ipAddress: 192.168.2.1
-  softwareState: GOOD
-  fileSystemState: GOOD
-- itemType: NODE
-  id: '7'
+  hardware_state: 'ON'
+  ip_address: 192.168.2.1
+  software_state: GOOD
+  file_system_state: GOOD
+- item_type: NODE
+  node_id: '7'
   name: WEB_SERVER
-  baseType: SERVICE
-  nodeType: SERVER
+  node_class: SERVICE
+  node_type: SERVER
   priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.2.10
-  softwareState: GOOD
-  fileSystemState: GOOD
+  hardware_state: 'ON'
+  ip_address: 192.168.2.10
+  software_state: GOOD
+  file_system_state: GOOD
   services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-  - name: TCP_SQL
-    port: '1433'
-    state: GOOD
-- itemType: NODE
-  id: '8'
+    - name: TCP
+      port: '80'
+      state: GOOD
+    - name: TCP_SQL
+      port: '1433'
+      state: GOOD
+- item_type: NODE
+  node_id: '8'
   name: DATABASE_SERVER
-  baseType: SERVICE
-  nodeType: SERVER
+  node_class: SERVICE
+  node_type: SERVER
   priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.2.14
-  softwareState: GOOD
-  fileSystemState: GOOD
+  hardware_state: 'ON'
+  ip_address: 192.168.2.14
+  software_state: GOOD
+  file_system_state: GOOD
   services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-  - name: TCP_SQL
-    port: '1433'
-    state: GOOD
-  - name: UDP
-    port: '53'
-    state: GOOD
-- itemType: NODE
-  id: '9'
+    - name: TCP
+      port: '80'
+      state: GOOD
+    - name: TCP_SQL
+      port: '1433'
+      state: GOOD
+    - name: UDP
+      port: '53'
+      state: GOOD
+- item_type: NODE
+  node_id: '9'
   name: BACKUP_SERVER
-  baseType: SERVICE
-  nodeType: SERVER
+  node_class: SERVICE
+  node_type: SERVER
   priority: P5
-  hardwareState: 'ON'
-  ipAddress: 192.168.2.16
-  softwareState: GOOD
-  fileSystemState: GOOD
+  hardware_state: 'ON'
+  ip_address: 192.168.2.16
+  software_state: GOOD
+  file_system_state: GOOD
   services:
-  - name: TCP
-    port: '80'
-    state: GOOD
-- itemType: LINK
+    - name: TCP
+      port: '80'
+      state: GOOD
+- item_type: LINK
   id: '10'
   name: LINK_1
   bandwidth: 1000000000
   source: '1'
   destination: '3'
-- itemType: LINK
+- item_type: LINK
   id: '11'
   name: LINK_2
   bandwidth: 1000000000
   source: '2'
   destination: '3'
-- itemType: LINK
+- item_type: LINK
   id: '12'
   name: LINK_3
   bandwidth: 1000000000
   source: '3'
   destination: '4'
-- itemType: LINK
+- item_type: LINK
   id: '13'
   name: LINK_4
   bandwidth: 1000000000
   source: '3'
   destination: '5'
-- itemType: LINK
+- item_type: LINK
   id: '14'
   name: LINK_5
   bandwidth: 1000000000
   source: '4'
   destination: '6'
-- itemType: LINK
+- item_type: LINK
   id: '15'
   name: LINK_6
   bandwidth: 1000000000
   source: '5'
   destination: '6'
-- itemType: LINK
+- item_type: LINK
   id: '16'
   name: LINK_7
   bandwidth: 1000000000
   source: '6'
   destination: '7'
-- itemType: LINK
+- item_type: LINK
   id: '17'
   name: LINK_8
   bandwidth: 1000000000
   source: '6'
   destination: '8'
-- itemType: LINK
+- item_type: LINK
   id: '18'
   name: LINK_9
   bandwidth: 1000000000
   source: '6'
   destination: '9'
-- itemType: GREEN_IER
+- item_type: GREEN_IER
   id: '19'
-  startStep: 1
-  endStep: 256
+  start_step: 1
+  end_step: 256
   load: 10000
   protocol: TCP
   port: '80'
   source: '1'
   destination: '7'
-  missionCriticality: 5
-- itemType: GREEN_IER
+  mission_criticality: 5
+- item_type: GREEN_IER
   id: '20'
-  startStep: 1
-  endStep: 256
+  start_step: 1
+  end_step: 256
   load: 10000
   protocol: TCP
   port: '80'
   source: '7'
   destination: '1'
-  missionCriticality: 5
-- itemType: GREEN_IER
+  mission_criticality: 5
+- item_type: GREEN_IER
   id: '21'
-  startStep: 1
-  endStep: 256
+  start_step: 1
+  end_step: 256
   load: 10000
   protocol: TCP
   port: '80'
   source: '2'
   destination: '7'
-  missionCriticality: 5
-- itemType: GREEN_IER
+  mission_criticality: 5
+- item_type: GREEN_IER
   id: '22'
-  startStep: 1
-  endStep: 256
+  start_step: 1
+  end_step: 256
   load: 10000
   protocol: TCP
   port: '80'
   source: '7'
   destination: '2'
-  missionCriticality: 5
-- itemType: GREEN_IER
+  mission_criticality: 5
+- item_type: GREEN_IER
   id: '23'
-  startStep: 1
-  endStep: 256
+  start_step: 1
+  end_step: 256
   load: 5000
   protocol: TCP_SQL
   port: '1433'
   source: '7'
   destination: '8'
-  missionCriticality: 5
-- itemType: GREEN_IER
+  mission_criticality: 5
+- item_type: GREEN_IER
   id: '24'
-  startStep: 1
-  endStep: 256
+  start_step: 1
+  end_step: 256
   load: 100000
   protocol: TCP_SQL
   port: '1433'
   source: '8'
   destination: '7'
-  missionCriticality: 5
-- itemType: GREEN_IER
+  mission_criticality: 5
+- item_type: GREEN_IER
   id: '25'
-  startStep: 1
-  endStep: 256
+  start_step: 1
+  end_step: 256
   load: 50000
   protocol: TCP
   port: '80'
   source: '1'
   destination: '9'
-  missionCriticality: 2
-- itemType: GREEN_IER
+  mission_criticality: 2
+- item_type: GREEN_IER
   id: '26'
-  startStep: 1
-  endStep: 256
+  start_step: 1
+  end_step: 256
   load: 50000
   protocol: TCP
   port: '80'
   source: '2'
   destination: '9'
-  missionCriticality: 2
-- itemType: GREEN_IER
+  mission_criticality: 2
+- item_type: GREEN_IER
   id: '27'
-  startStep: 1
-  endStep: 256
+  start_step: 1
+  end_step: 256
   load: 5000
   protocol: TCP
   port: '80'
   source: '5'
   destination: '7'
-  missionCriticality: 1
-- itemType: GREEN_IER
+  mission_criticality: 1
+- item_type: GREEN_IER
   id: '28'
-  startStep: 1
-  endStep: 256
+  start_step: 1
+  end_step: 256
   load: 5000
   protocol: TCP
   port: '80'
   source: '7'
   destination: '5'
-  missionCriticality: 1
-- itemType: GREEN_IER
+  mission_criticality: 1
+- item_type: GREEN_IER
   id: '29'
-  startStep: 1
-  endStep: 256
+  start_step: 1
+  end_step: 256
   load: 5000
   protocol: TCP
   port: '80'
   source: '5'
   destination: '8'
-  missionCriticality: 1
-- itemType: GREEN_IER
+  mission_criticality: 1
+- item_type: GREEN_IER
   id: '30'
-  startStep: 1
-  endStep: 256
+  start_step: 1
+  end_step: 256
   load: 5000
   protocol: TCP
   port: '80'
   source: '8'
   destination: '5'
-  missionCriticality: 1
-- itemType: GREEN_IER
+  mission_criticality: 1
+- item_type: GREEN_IER
   id: '31'
-  startStep: 1
-  endStep: 256
+  start_step: 1
+  end_step: 256
   load: 5000
   protocol: TCP
   port: '80'
   source: '5'
   destination: '9'
-  missionCriticality: 1
-- itemType: GREEN_IER
+  mission_criticality: 1
+- item_type: GREEN_IER
   id: '32'
-  startStep: 1
-  endStep: 256
+  start_step: 1
+  end_step: 256
   load: 5000
   protocol: TCP
   port: '80'
   source: '9'
   destination: '5'
-  missionCriticality: 1
-- itemType: ACL_RULE
+  mission_criticality: 1
+- item_type: ACL_RULE
   id: '33'
   permission: ALLOW
   source: 192.168.10.11
   destination: 192.168.2.10
   protocol: ANY
   port: ANY
-- itemType: ACL_RULE
+  position: 0
+- item_type: ACL_RULE
   id: '34'
   permission: ALLOW
   source: 192.168.10.11
   destination: 192.168.2.14
   protocol: ANY
   port: ANY
-- itemType: ACL_RULE
+  position: 1
+- item_type: ACL_RULE
   id: '35'
   permission: ALLOW
   source: 192.168.10.12
   destination: 192.168.2.14
   protocol: ANY
   port: ANY
-- itemType: ACL_RULE
+  position: 2
+- item_type: ACL_RULE
   id: '36'
   permission: ALLOW
   source: 192.168.10.12
   destination: 192.168.2.10
   protocol: ANY
   port: ANY
-- itemType: ACL_RULE
+  position: 3
+- item_type: ACL_RULE
   id: '37'
   permission: ALLOW
   source: 192.168.2.10
   destination: 192.168.10.11
   protocol: ANY
   port: ANY
-- itemType: ACL_RULE
+  position: 4
+- item_type: ACL_RULE
   id: '38'
   permission: ALLOW
   source: 192.168.2.10
   destination: 192.168.10.12
   protocol: ANY
   port: ANY
-- itemType: ACL_RULE
+  position: 5
+- item_type: ACL_RULE
   id: '39'
   permission: ALLOW
   source: 192.168.2.10
   destination: 192.168.2.14
   protocol: ANY
   port: ANY
-- itemType: ACL_RULE
+  position: 6
+- item_type: ACL_RULE
   id: '40'
   permission: ALLOW
   source: 192.168.2.14
   destination: 192.168.2.10
   protocol: ANY
   port: ANY
-- itemType: ACL_RULE
+  position: 7
+- item_type: ACL_RULE
   id: '41'
   permission: ALLOW
   source: 192.168.10.11
   destination: 192.168.2.16
   protocol: ANY
   port: ANY
-- itemType: ACL_RULE
+  position: 8
+- item_type: ACL_RULE
   id: '42'
   permission: ALLOW
   source: 192.168.10.12
   destination: 192.168.2.16
   protocol: ANY
   port: ANY
-- itemType: ACL_RULE
+  position: 9
+- item_type: ACL_RULE
   id: '43'
   permission: ALLOW
   source: 192.168.1.12
   destination: 192.168.2.10
   protocol: ANY
   port: ANY
-- itemType: ACL_RULE
+  position: 10
+- item_type: ACL_RULE
   id: '44'
   permission: ALLOW
   source: 192.168.1.12
   destination: 192.168.2.14
   protocol: ANY
   port: ANY
-- itemType: ACL_RULE
+  position: 11
+- item_type: ACL_RULE
   id: '45'
   permission: ALLOW
   source: 192.168.1.12
   destination: 192.168.2.16
   protocol: ANY
   port: ANY
-- itemType: ACL_RULE
+  position: 12
+- item_type: ACL_RULE
   id: '46'
   permission: ALLOW
   source: 192.168.2.10
   destination: 192.168.1.12
   protocol: ANY
   port: ANY
-- itemType: ACL_RULE
+  position: 13
+- item_type: ACL_RULE
   id: '47'
   permission: ALLOW
   source: 192.168.2.14
   destination: 192.168.1.12
   protocol: ANY
   port: ANY
-- itemType: ACL_RULE
+  position: 14
+- item_type: ACL_RULE
   id: '48'
   permission: ALLOW
   source: 192.168.2.16
   destination: 192.168.1.12
   protocol: ANY
   port: ANY
-- itemType: ACL_RULE
+  position: 15
+- item_type: ACL_RULE
   id: '49'
   permission: DENY
   source: ANY
   destination: ANY
   protocol: ANY
   port: ANY
-- itemType: RED_POL
+  position: 16
+- item_type: RED_POL
   id: '50'
-  startStep: 50
-  endStep: 50
+  start_step: 50
+  end_step: 50
   targetNodeId: '1'
   initiator: DIRECT
   type: SERVICE
@@ -473,20 +486,20 @@
   sourceNodeId: NA
   sourceNodeService: NA
   sourceNodeServiceState: NA
-- itemType: RED_IER
+- item_type: RED_IER
   id: '51'
-  startStep: 75
-  endStep: 105
+  start_step: 75
+  end_step: 105
   load: 10000
   protocol: UDP
   port: '53'
   source: '1'
   destination: '8'
-  missionCriticality: 0
-- itemType: RED_POL
+  mission_criticality: 0
+- item_type: RED_POL
   id: '52'
-  startStep: 100
-  endStep: 100
+  start_step: 100
+  end_step: 100
   targetNodeId: '8'
   initiator: IER
   type: SERVICE
@@ -495,10 +508,10 @@
   sourceNodeId: NA
   sourceNodeService: NA
   sourceNodeServiceState: NA
-- itemType: RED_POL
+- item_type: RED_POL
   id: '53'
-  startStep: 105
-  endStep: 105
+  start_step: 105
+  end_step: 105
   targetNodeId: '8'
   initiator: SERVICE
   type: FILE
@@ -507,10 +520,10 @@
   sourceNodeId: '8'
   sourceNodeService: UDP
   sourceNodeServiceState: COMPROMISED
-- itemType: RED_POL
+- item_type: RED_POL
   id: '54'
-  startStep: 105
-  endStep: 105
+  start_step: 105
+  end_step: 105
   targetNodeId: '8'
   initiator: SERVICE
   type: SERVICE
@@ -519,15 +532,15 @@
   sourceNodeId: '8'
   sourceNodeService: UDP
   sourceNodeServiceState: COMPROMISED
-- itemType: RED_POL
+- item_type: RED_POL
   id: '55'
-  startStep: 125
-  endStep: 125
+  start_step: 125
+  end_step: 125
   targetNodeId: '7'
   initiator: SERVICE
   type: SERVICE
   protocol: TCP
   state: OVERWHELMED
   sourceNodeId: '8'
-  sourceNodeService: TCP_SQL 
-  sourceNodeServiceState: COMPROMISED
+  sourceNodeService: TCP_SQL
+  sourceNodeServiceState: COMPROMISED