The development of the Stratosphere IPS is divided in two parts. The first one is the Stratosphere IPS for Windows and the other the Stratosphere IPS for Linux. Although both will do the same detection their development is separated.
The Stratosphere Testing Framework (stf) is a network security research framework to analyze the behavioral patterns of network connections in the Stratosphere Project. Its goal is to aid researchers find new malware behavior, to label those behaviors, to create their traffic models and to verify the detection algorithms. Once the best malware behavioral models are created and verified, they will be used in the Stratosphere IPS for detection. Stf works by using machine learning algorithms on the behavioral models.