Presentation is loading. Please wait.

Presentation is loading. Please wait.

OpenLabs Security Laboratory

Published byJeremy Cannon Modified over 6 years ago

Similar presentations

Presentation on theme: "OpenLabs Security Laboratory"— Presentation transcript:

1 OpenLabs Security Laboratory
The online security experiment platform Johan Zackrisson Charlie Svahnberg

2 Outline Introduction Requirements Laboratory usage Technical solution
Conclusion

3 History Started in 2006 Continuation of an on-campus security laboratory

4 Requirements: The Goals
Provide a secure environment for remote experiments Must allow advanced security experiments off-campus experiments in advanced security

5 Advanced security experiments
Insecure protocols Insufficient access control Software vulnerabilities See effects of computer viruses ...

6 Environment Remote controllable Networked
Experiment with network services One or more machines Start from a known state Any operating system (x86 at least)

7 Secure Environment Isolation Student has exclusive access
No information can leak to the Internet No information can leak between experiments Can not leave information traces

8 Hostile Environment Destructive experiments Reboot
When a machine hangs Reinstall Need to start over

9 Laboratory usage From a students point of view
Web interface Log in Make reservations

10 What to install on each machine
Reservations When and for how long The number of machines What to install on each machine

11 Installations Clone images
Contains the operating system and the tools needed for the experiment Prepared in advance by the teacher

12 Before the experiment starts
Automatic clone installation reminder

13 The experiment starts Before given access, the student has to choose to start the experiment from the web interface Remote control VNC, Remote Desktop, SSH, X Machine management via the web interface Reboot / Reinstall

14 The experiment ends The machines are wiped from all information
Ready to be used by new experiments

15 Technical solution

16 Resources 32 standard rack machines (Xeon, 2.80Ghz, 1Gb RAM)
Experiment network (Gigabit) Service machines Power Distribution Units (PDUs)

17

18 Core functionality Web interface Cloning / Wiping Firewalling
Network switch configuration Power control

19 Web interface Experiment management Administration

20 Cloning / Wiping Booted over the network
Automatic installation of a prepared clone images Overwrite with zeroes

21 Firewalling Access are only allowed from the students machine
All traffic to/from the experiment must be initiated from the students machine No other traffic can leave the laboratory!

22 Network switch configuration
Managed network switch Dedicated LAN per experiment By using Virtual LAN (IEEE 802.1Q) Isolation between experiments

23 Power control Done by remote controllable power outlets, Power Distribution Units (PDUs) Force a machine to reboot By the student during experiments By the cloning system

24 Conclusion Management and reservations Web interface
Isolation / Network environment Firewalling Network switch configuration

25 Automatic installation (and reinstall)
Cloning Ability to restart a machine Power control Information leakage Wiping

26 Other uses Off-campus courses without the possibility to install software Simulations Clustering with LAM/MPI Enable remote access to 3rd party Hardware/Software Antenna Lab

27 Questions?

Download ppt "OpenLabs Security Laboratory"

Similar presentations

An Isolated Network in Support of an Advanced Networks and Security Course LTC Curtis A. Carver Jr. LTC John M.D. Hill Dr. Udo W. Pooch.

An Isolated Network in Support of an Advanced Networks and Security Course LTC Curtis A. Carver Jr. LTC John M.D. Hill Dr. Udo W. Pooch.
WSUS Presented by: Nada Abdullah Ahmed.

WSUS Presented by: Nada Abdullah Ahmed.
Microsoft Windows Server 2008 Software Deployment Chris Rutherford EKU Technology: CEN/CET.

Microsoft Windows Server 2008 Software Deployment Chris Rutherford EKU Technology: CEN/CET.
Nada Abdulla Ahmed.  SmoothWall Express is an open source firewall distribution based on the GNU/Linux operating system. Designed for ease of use, SmoothWall.

Nada Abdulla Ahmed.  SmoothWall Express is an open source firewall distribution based on the GNU/Linux operating system. Designed for ease of use, SmoothWall.
Deliver your Technology-Based Labs with VMware Lab Manager 5/6/2010 Michael Fudge.

Deliver your Technology-Based Labs with VMware Lab Manager 5/6/2010 Michael Fudge.
Network Redesign and Palette 2.0. The Mission of GCIS* Provide all of our users optimal access to GCC’s technology resources. *(GCC Information Services:

Network Redesign and Palette 2.0. The Mission of GCIS* Provide all of our users optimal access to GCC’s technology resources. *(GCC Information Services:
Remote Desktop Security Raghav Chawla, Jon Ussery Group 20.

Remote Desktop Security Raghav Chawla, Jon Ussery Group 20.
1 MASTERING (VIRTUAL) NETWORKS A Case Study of Virtualizing Internet Lab Avin Chen Borokhovich Michael Goldfeld Arik.

1 MASTERING (VIRTUAL) NETWORKS A Case Study of Virtualizing Internet Lab Avin Chen Borokhovich Michael Goldfeld Arik.
16.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 16: Examining Software Update.

16.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 16: Examining Software Update.
1. Outline Introduction Virtualization Platform - Hypervisor High-level NAS Functions Applications Supported NAS models 2.

1. Outline Introduction Virtualization Platform - Hypervisor High-level NAS Functions Applications Supported NAS models 2.
VMWare Workstation Installation. Starting Vmware Workstation Go to the start menu and start the VMware Workstation program. *Note: The following instructions.

VMWare Workstation Installation. Starting Vmware Workstation Go to the start menu and start the VMware Workstation program. *Note: The following instructions.
Customer Sales Presentation Stoneware webNetwork Powered by ThinkServer.

Customer Sales Presentation Stoneware webNetwork Powered by ThinkServer.
© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company www.jblearning.com All rights reserved. Security Strategies in Linux Platforms and.

© 2013 Jones and Bartlett Learning, LLC, an Ascend Learning Company All rights reserved. Security Strategies in Linux Platforms and.
Hands-On Microsoft Windows Server 2008 Chapter 1 Introduction to Windows Server 2008.

Hands-On Microsoft Windows Server 2008 Chapter 1 Introduction to Windows Server 2008.
Chapter 2: Installing and Upgrading to Windows Server 2008 R2 BAI617.

Chapter 2: Installing and Upgrading to Windows Server 2008 R2 BAI617.
About the Presentations The presentations cover the objectives found in the opening of each chapter. All chapter objectives are listed in the beginning.

About the Presentations The presentations cover the objectives found in the opening of each chapter. All chapter objectives are listed in the beginning.
Customized cloud platform for computing on your terms !

Customized cloud platform for computing on your terms !
STAR CBT Tryout Setting Up Your Computer Systems for the STAR CBT Tryout for Technical Coordinators J.

STAR CBT Tryout Setting Up Your Computer Systems for the STAR CBT Tryout for Technical Coordinators J.
An Introduction to IBM Systems Director

An Introduction to IBM Systems Director
© 2006 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice HP CM8060/8050 Color MFP with Edgeline.

© 2006 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice HP CM8060/8050 Color MFP with Edgeline.

Similar presentations

Ads by Google