Using an Emulation Testbed for Operational Cyber Security Exercises

Abstract : The detection, coordination and response capabilities of critical infrastructure operators ultimately determine the economic and societal impact of infrastructure disruptions. Operational cyber security exercises are an important element of preparedness activities. Emulation testbeds are a promising approach for conducting multi-party operational cyber exercises. This paper demonstrates how an Emulab-based testbed can be adapted to meet the requirements of operational exercises and human-in-the-loop testing. Three key aspects are considered: (i) enabling secure and remote access by multiple participants; (ii) supporting voice communications during exercises by simulating a public switched telephone network; and (iii) providing exercise moderators with a feature-rich monitoring interface. An exercise scenario involving a man-in-the-middle attack on the Border Gateway Protocol (BGP) is presented to demonstrate the utility of the emulation testbed.
Type de document :
Communication dans un congrès
Jonathan Butts; Sujeet Shenoi. 5th International Conference Critical Infrastructure Protection (ICCIP), Mar 2011, Hanover, NH, United States. Springer, IFIP Advances in Information and Communication Technology, AICT-367, pp.185-199, 2011, Critical Infrastructure Protection V. 〈10.1007/978-3-642-24864-1_13〉
Liste complète des métadonnées

Littérature citée [19 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01571777
Contributeur : Hal Ifip <>
Soumis le : jeudi 3 août 2017 - 15:03:55
Dernière modification le : lundi 29 janvier 2018 - 20:44:01

Fichier

978-3-642-24864-1_13_Chapter.p...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Christos Siaterlis, Andres Perez-Garcia, Marcelo Masera. Using an Emulation Testbed for Operational Cyber Security Exercises. Jonathan Butts; Sujeet Shenoi. 5th International Conference Critical Infrastructure Protection (ICCIP), Mar 2011, Hanover, NH, United States. Springer, IFIP Advances in Information and Communication Technology, AICT-367, pp.185-199, 2011, Critical Infrastructure Protection V. 〈10.1007/978-3-642-24864-1_13〉. 〈hal-01571777〉

Partager

Métriques

Consultations de la notice

277

Téléchargements de fichiers

73