Abstract
Cyber Ranges exist to enable hands on training within realistic ICT infrastructures in a sandboxed environment, to investigate attack and defense strategies and to assess the resilience of the infrastructures. To fully exploit their capabilities one has to have access to multi domain exercises, which may combine ICT, naval, electrical grid, telecom or other relevant infrastructures. It can become obvious that no single organization can easily own or sustain a multi domain cyber range and that there is a need to connect multi domain Cyber Ranges from different organizations together. This paper focuses into analyzing the current state of the art on the federation of Cyber Ranges, by focusing on the federated network interconnection. Various methods for interconnecting distributed Cyber Ranges into a single federated Cyber Range are being discussed and their network performance impact is evaluated. VPNs are widely used to interconnect networks together due to their relative low cost and simplistic nature, however, performance of the network must be accounted, alongside the flexibility the VPNs can provide to support multiple scenarios in a multi domain distributed federated Cyber Range. This work focuses on the performance comparison of IPsec and Virtual Tunnels.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Debatty, T., Mees, W.: Building a CR for training CyberDefense situation awareness. In: 2019 International Conference on Military Communications and Information Systems, ICMCIS, pp. 1–6. Budva, Montenegro (2019). https://doi.org/10.1109/icmcis.2019.8842802
Ferguson, B., Tall, A., Olsen, D.: National cyber range overview. In: 2014 IEEE Military Communications Conference, pp. 123–128. IEEE (2014). http://doi.org/10.1109/MILCOM.2014.27
Ellis, R., Mohan, V.: Rewired Cybersecurity Governance. Wiley, Somerset (2019)
Records, C.: Proceedings and debates of the 112th congress. United Stated Government Publishing Office, Washington DC (2012)
Directorate General for Internal Policies: Cybersecurity in the European Union and Beyond: Exploring the Threats and Policy Responses, European Parliament (2015)
FORESIGHT Project Homepage. https://foresight-h2020.eu. Accessed 10 July 2020
Urias, V., Stout, W.M.S., Van Leeuwen, B., Lin, H.: CR infrastructure limitations and needs of tomorrow: a position paper. US (2018). https://doi.org/10.1109/CCST.2018.8585460
IBM, IBM Invests $200Â M. https://www.enterprisetimes.co.uk/2016/11/17/ibm-spends-200m-cyber-range/. Accessed 12 July 2020
Berger, T.: Analysis of current VPN technologies. In: 1st International Conference on Availability, Reliability and Security (ARES 2006), IEEE, pp. 108–115. Vienna (2006). https://doi.org/10.1109/ares.2006.30
Kotuliak, P.R, Trúchly P.: Performance comparison of IPsec and TLS based VPN technologies. In: 9th International Conference on Emerging eLearning Technologies and Applications (ICETA), pp. 217–221. Stara Lesna (2011). https://doi.org/10.1109/iceta.2011.6112567
Dhall, H., Dhall, D., Batra, S., Rani, P.: Implementation of IPsec protocol In: 2nd International Conference on Advanced Computing & Communication Technologies 2011, pp. 176–182. Rohtak, Haryana (2012). https://doi.org/10.1109/acct.2012.64.i
Schneier, B.M.: Cryptanalysis of microsoft’s point-to-point tunneling protocol (PPTP). In: Proceedings of the 5th ACM Conference on Communications and Computer Security, pp. 132–141. ACM Press (1998)
ENISA: Measurement Frameworks and Metrics for Resilient Networks and Services: Challenges and Recommendation. In: European Network and Information Security Agency (ENISA) (2010)
Monakhov, Y.M., Monakhov, M.Y, Luchinkin, S.D., Kuznetsova, A.P., Monakhova, M.M.: Availability as a metric for region-scale telecommunication designs. In: 10th IEEE International Conference on Intelligent Data Acquisition and Advanced Computing Systems: Technology and Applications (IDAACS), pp. 775–779. Metz, France (2019). https://doi.org/10.1109/idaacs.2019.8924390
Narayan, S., Williams, CJ., Hart, D.K., Qualtrough, M.W.: Network performance comparison of VPN protocols on wired and wireless networks. In: 2015 International Conference on Computer Communication and Informatics (ICCCI), pp. 1–7. Coimbatore (2015). https://doi.org/10.1109/iccci.2015.7218077
Kompella, S., et al.: Layer 2 virtual private networks using BGP for auto-discovery and signaling. In: IETF RFC, May 2012, https://tools.ietf.org/html/rfc6624
Metz, C.: The latest in VPNs, part II. In: IEEE Internet Computing, vol. 8, no. 3, pp. 60–65, May-June 2004, https://doi.org/10.1109/mic.2004.1297275 (2004)
Kent, S., Seo, K.: Security Architecture for the Internet Protocol (No. 4301). In: IETF RFC, December 2005. http://www.ietf.org/rfc/rfc430l.txt
Hauser, F., Häberle, M., Schmidt, M., Menth, M.: P4-IPsec: Site-to-Site and Host-to-Site VPN with IPsec in P4-Based SDN. In: IEEE Access (2020). https://doi.org/10.1109/access.2020.3012738
Qu, J., Li, T., Dang, F.: Performance evaluation and analysis of OpenVPN on Android. In: Fourth International Conference on Computational and Information Sciences, pp. 1088–1109. Chongqing (2012). https://doi.org/10.1109/iccis.2012.203
Kivinen, S., et al.: Negotiation of NAT-Traversal in the IKE(No. 3947). In: IETF RFC, January 2005 https://tools.ietf.org/html/rfc3947
Soucy, R.: Network Router Performance Testing How-To. http://soucy.org/vyos/NetworkPerformanceTesting.pdf. Accessed 08 Feb 2020
Vyos Homepage. https://www.vyos.io/. Accessed 13 July 2020
Acknowledgement
The authors would like to acknowledge the FORESIGHT project funded by the European Union’s Horizon 2020 research and innovation programme (grant agreement: 833673), and the partners on the project.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2021 The Author(s), under exclusive license to Springer Nature Switzerland AG
About this paper
Cite this paper
Peratikou, A., Louca, C., Shiaeles, S., Stavrou, S. (2021). On Federated Cyber Range Network Interconnection. In: Ghita, B., Shiaeles, S. (eds) Selected Papers from the 12th International Networking Conference. INC 2020. Lecture Notes in Networks and Systems, vol 180. Springer, Cham. https://doi.org/10.1007/978-3-030-64758-2_9
Download citation
DOI: https://doi.org/10.1007/978-3-030-64758-2_9
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-64757-5
Online ISBN: 978-3-030-64758-2
eBook Packages: EngineeringEngineering (R0)