A DISTRIBUTED VIRTUAL COMPUTER SECURITY LAB

Harald Vranken, Jens Haag, Tobias Horsmann, Stefan Karsch

2011

Abstract

Universities offering courses in the field of analyzing, configuring and safeguarding computer networks, provide specific software and hardware resources to students for practical assignments. At distance universities these resources usually are not physically accessible for remote students. We initially addressed this issue by offering an environment which allows students to build virtual computer networks on their local computer. The environment consists of a preconfigured virtualized software package and is referred to as the virtual lab. This approach reaches its limits when students intend to perform group work similar to typical on-site courses. To remove this limitation, we developed an extended virtual lab, called the Distributed Virtual Computer Security Lab (DVCSL), in which distinct remote virtual labs can be connected across a connection network (e.g., the internet). The DVCSL allows remote students to perform networking and security exercises inside an encapsulated distributed common networking environment. The design of the DVCSL meets two major requirements: establishing a transparent communication path between remote virtual labs and assuring that non-participating systems outside the DVCSL are not affected by the transmitted data. In this paper we present the architecture of the DVCSL and demonstrate its functionality as well as its security by an example setup.

References

  1. Bishop, M. and Heberlein, L. T. (1996). An Isolated Network for Research. 19th National Information Systems Security Conference, 22-25.
  2. Border, C. (2007). The development and deployment of a multi-user, remote access virtualization system for networking, security, and system administration classes. ACM SIGCSE Bull., 39(1), 576-580.
  3. Bullers, W. I., Burd, S. and Seazzu, A. F. (2006). Virtual machines - an idea whose time has returned: application to network, security, and database courses. Proc. SIGCSE Techn. Symp. on Computer Science Education, 102-106.
  4. Comer, D. E. (2001). Computer Networks and Internets, with Internet Application (3rd ed.). New York, Prentice Hall.
  5. Damiani, E., Frati, F. and Rebeccani D. (2006). The Open Source Virtual Lab: a Case Study. Proc. Workshop on Free and Open Source Learning Environments and Tools, 5-12.
  6. Dike, J. (2006). User Mode Linux. New Jersey, Prentice Hall.
  7. Drigas, A. S., Vrettaros, J., Koukianakis, L. G., and Glentzes, J. G. (2005). A Virtual Lab and e-learning system for renewable energy sources. Proc. WSEAS Int. Conf. on Educational Technologies, 149-153.
  8. Gaspar, A., Langevin, S. and Armitage, W. D. (2007). Virtualization technologies in the undergraduate IT curriculum. IEEE IT Professional, 9(4), 10-17.
  9. Hay, B. and Nance, K. L. (2006). Evolution of the ASSERT computer security lab. Proc. Coll. for Information Systems Security Education, 150-156.
  10. Hu, J., Cordel, D. and Meinel, C. (2005). Virtual machine management for Tele-Lab "IT-Security" server. Proc. IEEE Symp. on Computers and Communications. 448- 453.
  11. Jakab, F., Janitor, J. and Nagy, M. (2009). Virtual Lab in a Distributed International Environment - SVC EDINET. Proc. Int. Conf. on Networking and Services, 576-580.
  12. Keller, J. and Naues, R. (2006). Design of a virtual computer security lab. Proc. IASTED Int. Conf. on Communication, Network, and Information Security, 211-215.
  13. Krishna, K., Sun, W., Rana, P., Li, T. and Sekar, R. (2005). V-NetLab: a cost-effective platform to support course projects in computer security. Proc. Annual Coll. for Information Systems Security Education, 1-7.
  14. Lahoud, H. A. and Tang, X. (2006). Information security labs in IDS/IPS for distance education. Proc. Conf. on Information Technology Education, 47-52.
  15. Li, P. (2009). Exploring virtual environments in a decentralized lab. ACM SIGITE Research in IT, 6(1), 4-10.
  16. Mattord, H. J. and Whitman, M. E. (2004). Planning, building and operating the information security and assurance laboratory. Proc. Annual Conf. on Information Security Curriculum Development, 8-14.
  17. O'Leary, M. (2006). A laboratory based capstone course in computer security for undergraduates. Proc. SIGCSE Techn. Symp. on Computer Science Education, 2-6.
  18. Pizzonia, M. and Rimondini, M. (2008). Netkit: easy emulation of complex networks on inexpensive hardware. Proc. Int. Conf. on Testbeds and Research Infrastructures for the Development of Networks & Communities, 1-10.
  19. Rimondini, M. (2007). Interdomain Routing Policies in the Internet: Inference and Analysis. PhD thesis. Rome, Roma Tre University.
  20. Schreiner, R. (2009). Computer-Netzwerke. Munich, Hanser Verlag.
  21. Schürmann, B. (2004). Grundlagen der Rechnerkommunikation, Wiesbaden, Friedr. Vieweg & Sohn Verlag.
  22. Stevens, W. R., Fenner, B. and Rudoff, A. M. (2003). UNIX Network Programming Volume 1: The Sockets Networking (3rd ed.). Boston, Addision-Wesley.
  23. Vranken, H. and Koppelman, H. (2009). A virtual computer security lab for distance education. Proc. IASTED Int. Conf. on Internet and Multimedia Systems and Applications, 21-27.
  24. Yang, T. A., Kwok-Bun, Y., Liaw, M., Collins, G., Venkatraman, J. T., Achar, S. and Sadasivam, K. (2004). Design of a distributed computer security lab. J. of Computing Sciences in College, 20(1), 332-346.
Download


Paper Citation


in Harvard Style

Vranken H., Haag J., Horsmann T. and Karsch S. (2011). A DISTRIBUTED VIRTUAL COMPUTER SECURITY LAB . In Proceedings of the 3rd International Conference on Computer Supported Education - Volume 1: CSEDU, ISBN 978-989-8425-49-2, pages 110-119. DOI: 10.5220/0003343801100119


in Bibtex Style

@conference{csedu11,
author={Harald Vranken and Jens Haag and Tobias Horsmann and Stefan Karsch},
title={A DISTRIBUTED VIRTUAL COMPUTER SECURITY LAB},
booktitle={Proceedings of the 3rd International Conference on Computer Supported Education - Volume 1: CSEDU,},
year={2011},
pages={110-119},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0003343801100119},
isbn={978-989-8425-49-2},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 3rd International Conference on Computer Supported Education - Volume 1: CSEDU,
TI - A DISTRIBUTED VIRTUAL COMPUTER SECURITY LAB
SN - 978-989-8425-49-2
AU - Vranken H.
AU - Haag J.
AU - Horsmann T.
AU - Karsch S.
PY - 2011
SP - 110
EP - 119
DO - 10.5220/0003343801100119