期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

一种密闭可重构网络安全测试床的设计与实现 被引量:2

Design and Implementation of a Sealed and Reconfigurable Network Security Testbed
在线阅读 下载PDF
导出
摘要 网络安全技术的快速发展对相应的网络安全测评技术提出了新的需求。用于安全技术测试的网络安全测试床,可快速构建各类网络安全实验环境,以缩短网络安全研究周期、提高安全风险响应速度。而现有的网络测试床往往采用实物模拟和进程级虚拟方式构建测试网络,在逼真度、密闭性、可控性等方面难以满足高危险网络安全实验需求。因此,文章借助近年来出现的硬件辅助虚拟化技术,解决了实验环境中节点和连接的密闭构建问题,设计并实现了一种基于Xen的密闭可重构网络安全测试床,实现了密闭网络安全实验环境的灵活构建,并通过实验验证了技术方案的可行性。 The rapid development of network security technologies has raised a new requirement for the network security measuring technology. With the fast establishment of a variety of network security experimental environments,network security testbeds for measuring the network security is capable of shortening the period of network security research and increasing the efficiency of responding to security threats. The existing network testbeds largely structuring test network with physical emulation and process-level virtualization are unable to meet the needs of high-risk network security experiments in fidelity,sealing,and controllability. This paper solves the problem of sealed establishing nodes and links within the experimental environment with a novel technology of Hardware-Assisted Virtualization. It also designs and implements a Xen-based network security testbed which is sealed and reconfigurable. This testbed reaches the goal of flexibly establishing sealed network security experimental environments. Finally,the technological scheme is proved feasible by experiments.
作者 李睿 朱俊虎 王清贤 周天阳
机构地区 数学工程与先进计算国家重点实验室
出处 《信息工程大学学报》 2015年第1期111-116,共6页 Journal of Information Engineering University
基金 国家自然科学基金资助项目(61309007) 国家863计划资助项目(2011AA01A103)
关键词 测试床 密闭 可重构 网络安全实验 testbed sealed reconfigurable network security experiment
分类号 TP391 [自动化与计算机技术—计算机应用技术]
  • 相关文献

参考文献11

  • 1Benzel T, Braden R, Kim D, et al. Experience with DETER: A Testbed for Security Research[ C ]//Proc of the 2nd Interna- tional Conference on Testbeds and Research Infrastructures for the Development of Networks and Communities. 2006: 388 -398.
  • 2White B, Guruprasad S, Newbold M, et al. Netbed: An Integrated Experimental Environment[ J]. ACM SIGCOMM Computer Communication Review, 2002, 32(3): 27-27.
  • 3Vahdat A, Yocum K, Walsh K, et al. Scalability and Accuracy in a Large-Scale Network Emulator[ C ]// Proc of the ACM SIGOPS Operating System Review. 2002: 271-284.
  • 4Benzol T. The Science of Cyber Security experimentation: the DETER Project [ C ]// Proceedings of the Proceedings of the 27th Annual Computer Seeurity Applications Conference. 2011: 137-148.
  • 5Miyachi T, Chinen K-i, Shinoda Y. StarBED and SpringOS: Large-scale General Purpose Network Te bed and Supporting Software [ C ]// Proc of the 1 st international conference on Performance evaluation methodolgies and tools. 2006 : 30-34.
  • 6Chowdhury N M M K, Boutaba R. A Survey of Network Virtualization[ J]. Computer Networks, 2010, 54(5) : 862-876.
  • 7Hermenier F, Ricci R. How to Build a Better Testbed: Lessons from a Decade of Network Experiments on Emulab[ M ]. Ber- lin: Springer, 2012: 287-304.
  • 8Siaterlis C, Masera M, A Review of Available Software for the Creation of Testbeds for Internet Security Research[ C ]// Ad- vances in System Simulation, 2009. SIMUL'09. 2009: 79-87.
  • 9Hibler M, Ricci R, Stoller L, et al. Large-scale Virtualization in the Emulab Network Testbed[ C ]// Proc of the Proceedings of the 2008 USENIX Annual Technical Conferences. 2008 : 113-128.
  • 10Open vSwitch Community. Open vSwiteh : an Open Virtual Switch [ EB/OL ]. (2013-11-29 ). [ 2013-12-09 ]. http ://www. openvswitch, org.

同被引文献9

引证文献2

信息工程大学学报
2015年 第1期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部