An Open-Source Cloud Testbed for Security Experimentation

Francesco Minna, Fabio Massacci

Research output: Chapter in Book / Report / Conference proceedingConference contributionAcademicpeer-review

Abstract

The use of container and orchestration technologies, such as Docker and Kubernetes keeps growing every year. For the purpose of security experimentation and reproducibility of security attacks and defenses, an open-source testbed would also be an important step forward. Yet, while several security experimentation testbeds from web application testing to capture-the-flag (CTF) competitions have been proposed, a similar solution for cloud experiments is wanting. To fill this gap, we propose an open-source cloud testbed that, by using Domain Specific Language (DSL) files (e.g. with JSON or YAML syntax), allows defining experimentation scenarios as configuration files. Using DSL files allows to create, share, customize, automatically deploy, and reproduce different scenarios in a user-friendly manner. We describe the design and the corresponding tools and technologies for different implementations.

Original languageEnglish
Title of host publication2022 22nd IEEE International Symposium on Cluster, Cloud and Internet Computing (CCGrid)
Subtitle of host publication[Proceedings]
EditorsMaria Fazio, Dhabaleswar K. Panda, Radu Prodan, Valeria Cardellini, Burak Kantarci, Omer Rana, Massimo Villari
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages756-759
Number of pages4
ISBN (Electronic)9781665499569
ISBN (Print)9781665499576
DOIs
Publication statusPublished - 19 Jul 2022
Event22nd IEEE/ACM International Symposium on Cluster, Cloud and Internet Computing, CCGrid 2022 - Taormina, Italy
Duration: 16 May 202219 May 2022

Conference

Conference22nd IEEE/ACM International Symposium on Cluster, Cloud and Internet Computing, CCGrid 2022
Country/TerritoryItaly
CityTaormina
Period16/05/2219/05/22

Bibliographical note

Funding Information:
We would like to thank B. Chandrasekaran, K. Tuma, and the anonymous reviewers for useful comments on the idea behind the paper. This work has received funding from the European Union under the H2020 grant 952647 (AssureMOSS). https://assuremoss.eu/en/).

Publisher Copyright:
© 2022 IEEE.

Keywords

  • Containers
  • Docker
  • Kubernetes
  • Microservices
  • Security
  • Testbed

Fingerprint

Dive into the research topics of 'An Open-Source Cloud Testbed for Security Experimentation'. Together they form a unique fingerprint.

Cite this