In this paper we present a framework for the dynamic deployment, configuration and orchestration of cyber ranges in a cloud-based environment. We propose a distributed architecture that is composed of a number of interacting components, each looking after a specific facet of the integrated set of requirements coming out of the design phase. The architecture in question is indeed capable of offering environment isolation, remote access management and control, procedures automation, secure operation and accountability. A formal description of the concept of a cyber range is provided in the paper, together with a taxonomy associated with the different kinds of resources it can involve. A complete implementation of the proposed framework through Amazon Web Services is also illustrated, so to help the reader figure out how the overall design can be easily mapped onto a specific provider of cloud resources.
On-demand deployment and orchestration of cyber ranges in the cloud / Luise, A. P.; Perrone, G.; Perrotta, C.; Romano, S. P.. - 2940:(2021), pp. 80-91. (Intervento presentato al convegno 5th Italian Conference on Cybersecurity, ITASEC 2021 nel 2021).
On-demand deployment and orchestration of cyber ranges in the cloud
Perrone G.;Romano S. P.
2021
Abstract
In this paper we present a framework for the dynamic deployment, configuration and orchestration of cyber ranges in a cloud-based environment. We propose a distributed architecture that is composed of a number of interacting components, each looking after a specific facet of the integrated set of requirements coming out of the design phase. The architecture in question is indeed capable of offering environment isolation, remote access management and control, procedures automation, secure operation and accountability. A formal description of the concept of a cyber range is provided in the paper, together with a taxonomy associated with the different kinds of resources it can involve. A complete implementation of the proposed framework through Amazon Web Services is also illustrated, so to help the reader figure out how the overall design can be easily mapped onto a specific provider of cloud resources.I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
