A Flexible Cyber Security Experimentation Platform Architecture Based on Docker

摘要

With the rising trends in interconnectivity, ensuring cyber security is of paramount importance. Cyber security experimentation platform can help researchers simulate real-world cyber topologies, analyze various attacks and experiment defense strategies. While traditional platforms does not scale well with the evolving cyber topologies and does not have much flexibility in-terms of functionalities. This paper presents a new architecture for experimentation platform of cyber security, based on Docker. It possesses the scalability factor necessary for large cyber simulations and also provides a flexible extension mechanism. This feature enables users to customize cyber node's topologies, software environment, and also support the customization of important experiment indicators. Kubernetes enables virtual nodes to be deployed on distributed servers readily, and the important experiment indicators can be relayed back in real-time which reduces the overall cost and helps speedup the experimental analysis.