Isolated virtualised clusters: testbeds for high-risk security experimentation and training

Abstract : Adequate testbeds for conducting security experiments and test under controlled, safe, repeatable and asrealistic- as-possible conditions, are a key element for the research and development of adequate security solutions and the training of security personnel and researchers. In this paper, we report on the construction and operations of isolated virtualised testbeds used in two separate security research labs in Canada and France, as part of a joint collaborative effort. The main idea was to use mid- to large-scale isolated computing clusters to obtain high levels of scale, manageability and safety by heavily leveraging virtualisation technology, open-source cluster management tools and a network architecture separating experiment and control traffic. Both facilities have been used for conducting different types of security research experiments, including in-lab reconstructions of botnets, denial-of-service attacks, and virus detection experimentation. They have also been used for teaching and training students in experimental security methods. We describe these facilities and the criteria that we used to design them, the research and training activities that were conducted, and close by discussing the lessons learned and the pros and cons of this approach.
Type de document :
Communication dans un congrès
3rd Workshop on Cyber Security Experimentation and Test (CSET '10), Aug 2010, Washington DC, United States. 2010
Liste complète des métadonnées

Littérature citée [10 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/inria-00536712
Contributeur : Joan Calvet <>
Soumis le : vendredi 19 novembre 2010 - 13:15:34
Dernière modification le : lundi 19 mars 2018 - 22:38:02
Document(s) archivé(s) le : dimanche 20 février 2011 - 02:38:28

Fichier

article5.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : inria-00536712, version 1

Collections

Citation

Joan Calvet, Carlton Davis, José M. Fernandez, Wadie Guizani, Matthieu Kaczmarek, et al.. Isolated virtualised clusters: testbeds for high-risk security experimentation and training. 3rd Workshop on Cyber Security Experimentation and Test (CSET '10), Aug 2010, Washington DC, United States. 2010. 〈inria-00536712〉

Partager

Métriques

Consultations de la notice

446

Téléchargements de fichiers

220