TY - GEN
T1 - Achieving reproducible network environments with INSALATA
AU - Herold, Nadine
AU - Wachs, Matthias
AU - Dorfhuber, Marko
AU - Rudolf, Christoph
AU - Liebald, Stefan
AU - Carle, Georg
N1 - Publisher Copyright:
© The Author(s) 2017.
PY - 2017
Y1 - 2017
N2 - Analyzing network environments for security flaws and assessing new service and infrastructure configurations in general are dangerous and error-prone when done in operational networks. Therefore, cloning such networks into a dedicated test environment is beneficial for comprehensive testing and analysis without impacting the operational network. To automate this reproduction of a network environment in a physical or virtualized testbed, several key features are required: (a) a suitable network model to describe network environments, (b) an automated acquisition process to instantiate this model for the respective network environment, and (c) an automated setup process to deploy the instance to the testbed. With this work, we present INSALATA, an automated and extensible framework to reproduce physical or virtualized network environments in network testbeds. INSALATA employs a modular approach for data acquisition and deployment, resolves interdependencies in the setup process, and supports just-in-time reproduction of network environments. INSALATA is open source and available on Github. To highlight its applicability, we present a real world case study utilizing INSALATA.
AB - Analyzing network environments for security flaws and assessing new service and infrastructure configurations in general are dangerous and error-prone when done in operational networks. Therefore, cloning such networks into a dedicated test environment is beneficial for comprehensive testing and analysis without impacting the operational network. To automate this reproduction of a network environment in a physical or virtualized testbed, several key features are required: (a) a suitable network model to describe network environments, (b) an automated acquisition process to instantiate this model for the respective network environment, and (c) an automated setup process to deploy the instance to the testbed. With this work, we present INSALATA, an automated and extensible framework to reproduce physical or virtualized network environments in network testbeds. INSALATA employs a modular approach for data acquisition and deployment, resolves interdependencies in the setup process, and supports just-in-time reproduction of network environments. INSALATA is open source and available on Github. To highlight its applicability, we present a real world case study utilizing INSALATA.
KW - Automated testbed setup and configuration
KW - Infrastructure information collection
KW - Testbed management
UR - http://www.scopus.com/inward/record.url?scp=85025155446&partnerID=8YFLogxK
U2 - 10.1007/978-3-319-60774-0_3
DO - 10.1007/978-3-319-60774-0_3
M3 - Conference contribution
AN - SCOPUS:85025155446
SN - 9783319607733
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 30
EP - 44
BT - Security of Networks and Services in an All-Connected World - 11th IFIP WG 6.6 International Conference on Autonomous Infrastructure, Management, and Security, AIMS 2017, Proceedings
A2 - Koch, Robert
A2 - Badonnel, Remi
A2 - Stiller, Burkhard
A2 - Tuncer, Daphne
PB - Springer Verlag
T2 - 11th IFIP WG 6.6 International Conference on Autonomous Infrastructure, Management, and Security, AIMS 2017
Y2 - 10 July 2017 through 13 July 2017
ER -