Using an Emulation Testbed for Operational Cyber Security Exercises

Abstract : The detection, coordination and response capabilities of critical infrastructure operators ultimately determine the economic and societal impact of infrastructure disruptions. Operational cyber security exercises are an important element of preparedness activities. Emulation testbeds are a promising approach for conducting multi-party operational cyber exercises. This paper demonstrates how an Emulab-based testbed can be adapted to meet the requirements of operational exercises and human-in-the-loop testing. Three key aspects are considered: (i) enabling secure and remote access by multiple participants; (ii) supporting voice communications during exercises by simulating a public switched telephone network; and (iii) providing exercise moderators with a feature-rich monitoring interface. An exercise scenario involving a man-in-the-middle attack on the Border Gateway Protocol (BGP) is presented to demonstrate the utility of the emulation testbed.
Document type :
Conference papers
Jonathan Butts; Sujeet Shenoi. 5th International Conference Critical Infrastructure Protection (ICCIP), Mar 2011, Hanover, NH, United States. Springer, IFIP Advances in Information and Communication Technology, AICT-367, pp.185-199, 2011, Critical Infrastructure Protection V. 〈10.1007/978-3-642-24864-1_13〉
Liste complète des métadonnées

Cited literature [19 references]  Display  Hide  Download

https://hal.inria.fr/hal-01571777
Contributor : Hal Ifip <>
Submitted on : Thursday, August 3, 2017 - 3:03:55 PM
Last modification on : Monday, January 29, 2018 - 8:44:01 PM

File

978-3-642-24864-1_13_Chapter.p...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Christos Siaterlis, Andres Perez-Garcia, Marcelo Masera. Using an Emulation Testbed for Operational Cyber Security Exercises. Jonathan Butts; Sujeet Shenoi. 5th International Conference Critical Infrastructure Protection (ICCIP), Mar 2011, Hanover, NH, United States. Springer, IFIP Advances in Information and Communication Technology, AICT-367, pp.185-199, 2011, Critical Infrastructure Protection V. 〈10.1007/978-3-642-24864-1_13〉. 〈hal-01571777〉

Share

Metrics

Record views

277

Files downloads

73