platoon a virtual platform for team oriented
play

Platoon: A Virtual Platform for Team-oriented Cybersecurity Training - PowerPoint PPT Presentation

Sep 18, 2023 •279 likes •594 views

Platoon: A Virtual Platform for Team-oriented Cybersecurity Training and Exercises Yanyan Li, Mengjun Xie Department of Computer Science University of Arkansas at Little Rock { yxli5, mxxie } @ualr.edu September 29, 2016 Yanyan Li, Mengjun Xie

  1. Platoon: A Virtual Platform for Team-oriented Cybersecurity Training and Exercises Yanyan Li, Mengjun Xie Department of Computer Science University of Arkansas at Little Rock { yxli5, mxxie } @ualr.edu September 29, 2016 Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 1 / 31

  2. Outline Introduction 1 Cybersecurity Education Problems with Existing Platforms Our Solution System Design 2 Platoon Objectives Platoon Structure Platoon Components Deployment 3 Deployment Requirements Usage 4 Evaluation 5 System Performance User Feedback Conclusion 6 Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 2 / 31

  3. Introduction Cybersecurity Education Cybersecurity Education Methods Regular Lecture - Learns basic security knowledge Case Study - Applies security knowledge to real world scenario Hands-on Exercise - Obtains practical cyber security skills Competition - Works as a corporate cyber security team Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 3 / 31

  4. Introduction Cybersecurity Education Cybersecurity Exercise Platforms In the Cloud and Full-access V-NetLab - Virtual Network Laboratory Platform DETER Lab - Defense Technology Experimental Research Laboratory V-Lab - Cloud-based Resource and Service Sharing Platform Hosted locally and Full-control SEED Labs - Hands-on Laboratory Exercises OCCP - Open Cyber Challenge Platform ISERink - Internet-Scale Event and Attack Generation Environment Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 4 / 31

  5. Introduction Problems with Existing Platforms Problems with Exisitng Platforms Don’t support teamwork - Most of them Don’t support customization - Deployed in cloud Difficult to configure/deploy - OCCP, ISERink Limited to small LAN labs - SEED Lab Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 5 / 31

  6. Introduction Our Solution Our solution - Platoon Platoon Platform Properties Mimics a business network Deployed on a single machine Fit for cybersecurity labs Fit for competitions, projects Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 6 / 31

  7. Introduction Our Solution Our solution - Platoon Platoon Platform Properties Platoon Platform Benefits Mimics a business network Supports teamwork Supports customization Deployed on a single machine Fit for cybersecurity labs Quick, automatic deployment Enhance learning outcomes Fit for competitions, projects Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 7 / 31

  8. System Design Platoon Quickview Designed to be a versatile system for various security education scenarios assisting security courses in high schools or colleges hosting cyber defense competitions creating environments for IT training or security research The network design makes it particularly suitable for team-based exercises Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 8 / 31

  9. System Design Platoon Objectives Platoon Objectives Native support for teamwork Aimed to support labs/projects for multiple teams and individuals Cost-effectiveness Deployed on a regular machine and with one hour labor of a student Functionality Instantiate a typical business network with a common set of services Deployability Deployed in an automatic manner with minimal human intervention Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 9 / 31

  10. System Design Platoon Structure Platoon Structure Figure: Network topology of the Platoon platform Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 10 / 31

  11. System Design Platoon Structure Platoon used in Competition/Exercise A blue team is a group of students or trainees A red team is constituted by professional penetration testers A white team consists of room monitors or onsite judges A gold team is comprised of competition organizers and sponsors Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 11 / 31

  12. System Design Platoon Structure Platoon used in Teaching A blue team is a group of undergraduate/graduate students A red team is not needed A white team is not needed A gold team is comprised of course instructors Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 12 / 31

  13. System Design Platoon Components Platoon Components Five main components Blue team server network Edge router Central vSwitch Scoring engine Perimeter firewall Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 13 / 31

  14. System Design Platoon Components Blue Team Server Network A small business network setting with common application servers, e.g. Web, Email, FTP in DMZ and LAN A pfSense firewall is configured to separate DMZ, LAN from WAN A Ubuntu workstation is provisioned on the “WAN” segment to test client access from the “Internet” Access to the LAN application servers from DMZ is blocked Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 14 / 31

  15. System Design Platoon Components Edge Router Connects to a blue team server network and acts as that network’s gateway Provides one-to-one NAT to map a “public” IP address to the internal IP address for each virtual server Virtual servers can be accessed from outside with different destination IP addresses instead of using the same IP address but different port numbers Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 15 / 31

  16. System Design Platoon Components Central vSwitch Built-in vSwitch provided by VMware vSphere ESXi Used for creating VLANs to separate different network’s traffic A VLAN trunk link is created between central vSwitch and perimeter firewall to carry traffic for VLAN access links Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 16 / 31

  17. System Design Platoon Components Scoring Engine Offers real-time service scores by sending probes to detect service status Includes common services such as DNS, HTTP/HTTPS, POP3, FTP Different teams are distinguished at the scoring board with different IDs Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 17 / 31

  18. System Design Platoon Components Scoring Engine cont. Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 18 / 31

  19. System Design Platoon Components Perimeter Firewall Controls the communications between the platform and the Internet Prevents malicious traffic leaving out of the platform and protects the platform from being attacked from outside Manages VLAN subnets and achieves inter-VLAN communications Manages OpenVPN servers & provides secure access for remote teams Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 19 / 31

  20. Deployment Deployment Requirements Deployment Deployment Features Platoon can be deployed in an easy and automatic manner Platoon can run well on consumer grade off-the-shelf hardware Deployment Requirements ESXi has to be installed before the deployment of Platoon Two physical network cards (NICs) are needed Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 20 / 31

  21. Deployment Deployment Requirements Deployment cont. Once ESXi is installed, we can start deploying Platoon ... Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 21 / 31

  22. Usage Usage Administrator’s Perspective User’s Perspective Create OpenVPN user accounts Establish a VPN connection to on perimeter firewall the Platoon platform Distribute OpenVPN credential Access Linux or Windows servers files (e.g. .ovpn & .key) to users via SSH or RDP Start the built-in scoring system Configure firewall via a browser Network Isolation A blue team member is only allowed to access his blue team server network Servers in different blue team networks can’t talk with each other Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 22 / 31

  23. Evaluation System Performance System Performance Background Info Host a small cyber-defense exercises with 2 blue team networks Platoon was deployed on a Dell Optiplex 990 PC 10 cs undergraduate students who had little security experience formed 2 blue teams with 5 students in each team 4 students who had security experience/skills working as a red team Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 23 / 31

  24. Evaluation System Performance System Performance cont. (a) CPU usage (b) Memory usage Figure: CPU and Memory usage on the ESXi host Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 24 / 31

  25. Evaluation User Feedback User Feedback 1 Rate your experience in Windows server management 2 Rate your experience in Linux server management 3 Rate your experience in network management 4 You have a strong motivation to learn and apply cyber defense 5 Rate your knowledge/skills in hardening servers 6 Rate your knowledge/skills in securing network 7 Rate your knowledge/skills in identifying attacks 8 Teamwork is a critical element for effective cyber defense Yanyan Li, Mengjun Xie (UALR) Platoon Platform September 29, 2016 25 / 31

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Note on Image: Sgt. 1st Class Lance Amsden, platoon sergeant for the 1st Platoon, Company C, 1st

Note on Image: Sgt. 1st Class Lance Amsden, platoon sergeant for the 1st Platoon, Company C, 1st

Note on Image: Sgt. 1st Class Lance Amsden, platoon sergeant for the 1st Platoon, Company C, 1st Battalion, 501st Infantry Regiment, 4th Brigade Combat Team (Airborne), 25th Infantry Division, watches as CH-47 Chinook helicopters circle above

549 views • 23 slides
Maintenance in Vehicle Dynamics For Distributed Vehicle Platoon Networks Ankur Sarker , Chenxi

Maintenance in Vehicle Dynamics For Distributed Vehicle Platoon Networks Ankur Sarker , Chenxi

Quick and Autonomous Platoon Maintenance in Vehicle Dynamics For Distributed Vehicle Platoon Networks Ankur Sarker , Chenxi Qiu , and Haiying Shen Department of Computer Science, University of Virginia Information Science &

317 views • 18 slides
A Tor gatewayed platform for everyday use Using a virtual machine stack with its own virtual

A Tor gatewayed platform for everyday use Using a virtual machine stack with its own virtual

http://infinite.barrel-of-knowledge.info/cryptoparty/ (Surface web) https://yhfitd2wvrz3aybh.onion/cryptoparty/ (Deep web) A Tor gatewayed platform for everyday use Using a virtual machine stack with its own virtual LAN with all traffic

629 views • 9 slides
Towards a Virtual Radiological Platform Towards a Virtual Radiological Platform Based on a Grid

Towards a Virtual Radiological Platform Towards a Virtual Radiological Platform Based on a Grid

CAMARASU Sorina LRMN LRMN Towards a Virtual Radiological Platform Towards a Virtual Radiological Platform Based on a Grid Infrastructure Based on a Grid Infrastructure Sorina Camarasu, Hugues Benoit-Cattin, Laurent Guigues, Patrick Clarysse,

469 views • 20 slides
Introduction to Java The Java architecture consists of: a high-level object-oriented

Introduction to Java The Java architecture consists of: a high-level object-oriented

Introduction to Java The Java architecture consists of: a high-level object-oriented programming language, a platform-independent representation of a compiled class, a pre-defined set of run-time libraries, a virtual

257 views • 24 slides
SDG INDONESIA ONE Blended Finance Platform Fakhrul Aufa Team Leader Business Development

SDG INDONESIA ONE Blended Finance Platform Fakhrul Aufa Team Leader Business Development

Presentation Material Public-Private Solution Sandbox: SDG INDONESIA ONE Blended Finance Platform Fakhrul Aufa Team Leader Business Development and Strategic Partnership PT SMI (Persero) - Indonesia AVPN Virtual Conference 2020 Jakarta

344 views • 11 slides
VCON Welcome To The Virtual Era Our team has identified a niche within the virtual event market.

VCON Welcome To The Virtual Era Our team has identified a niche within the virtual event market.

VCON Welcome To The Virtual Era Our team has identified a niche within the virtual event market. Its made up of large scale event organisers who are faced with the task of transferring them into a virtual format. Very often the physical events rely

539 views • 6 slides
236 th AAS Virtual Meeting AAS Meetings Team March 18, 2020 236 th AAS Meeting Goes Virtual

236 th AAS Virtual Meeting AAS Meetings Team March 18, 2020 236 th AAS Meeting Goes Virtual

236 th AAS Virtual Meeting AAS Meetings Team March 18, 2020 236 th AAS Meeting Goes Virtual Considering the current global pandemic, the AAS has decided to cancel the faceto face Madison meeting. As a result, we are proposing a virtual

529 views • 33 slides
FTC Team By Patti Poston FIRST Senior Mentor Virtual Platforms Virtual Platforms Zoom

FTC Team By Patti Poston FIRST Senior Mentor Virtual Platforms Virtual Platforms Zoom

Tips on How to Coach a Virtual FTC Team By Patti Poston FIRST Senior Mentor Virtual Platforms Virtual Platforms Zoom Slack Discord Google Meets Free Teleconference.com Ring Central FTC 2020 Slide 2 FIRST Nevada

287 views • 11 slides
Platoon 2013 Ben Harmony Fish Farms Who am I? Im the husband of one father of two, since I was

Platoon 2013 Ben Harmony Fish Farms Who am I? Im the husband of one father of two, since I was

Aquaculture Boot Camp Platoon 2013 Ben Harmony Fish Farms Who am I? Im the husband of one father of two, since I was a little guy I have wanted to be a farmer. The problem was I wasnt born in to a farming family. So I turned to the family

400 views • 7 slides
Communication & Virtual Classroom Platform Available Office Grade Level Teacher's Name

Communication & Virtual Classroom Platform Available Office Grade Level Teacher's Name

iPrep Academy Grade PK - 2 nd Communication & Virtual Classroom Platform Available Office Grade Level Teacher's Name Subject Area Platform Teacher's Email Times PK Nicole Chau All subjects 8:00 a.m. - 11:00 a.m. Class Dojo

363 views • 10 slides
Data caching in the Virtual Imaging Platform Tristan Glatard 1 1 Creatis, CNRS, INSERM, Universit

Data caching in the Virtual Imaging Platform Tristan Glatard 1 1 Creatis, CNRS, INSERM, Universit

Data caching in the Virtual Imaging Platform Tristan Glatard 1 1 Creatis, CNRS, INSERM, Universit de Lyon, France on behalf of the VIP project consortium EGI technical forum, September 2011 vip@creatis.insa-lyon.fr Virtual Imaging Platform

587 views • 11 slides
Multi-Agent Oriented Programming Introduction The JaCaMo Platform O. Boissier 1 R.H.

Multi-Agent Oriented Programming Introduction The JaCaMo Platform O. Boissier 1 R.H.

Multi-Agent Oriented Programming Introduction The JaCaMo Platform O. Boissier 1 R.H. Bordini 2 J.F. Hbner 3 A. Ricci 4 1. Ecole Nationale Suprieure des Mines (ENSMSE), Saint Etienne, France 2 Pontificia Universidade Catolica do Rio

1.01k views • 76 slides
Putting together technology and dream we introduce first of its kind Virtual online platform.

Putting together technology and dream we introduce first of its kind Virtual online platform.

Putting together technology and dream we introduce first of its kind Virtual online platform. Host an event from where ever you are using Lieux. We create virtual event on our fully customizable stage with Interactive Live Audience. All you need

123 views • 11 slides
Care Delivery: The Role of A Virtual Care Communication Platform at Trilogy Home Healthcare

Care Delivery: The Role of A Virtual Care Communication Platform at Trilogy Home Healthcare

Using Technology to Optimize Care Delivery: The Role of A Virtual Care Communication Platform at Trilogy Home Healthcare January 2019 Confidential Agenda Role of Virtual Care in Home Health Trilogys Objectives for Virtual Care

453 views • 24 slides
GTS Centrex Business Oriented Virtual PBX What is GTS Centrex? GTS Centrex offers hosted unified

GTS Centrex Business Oriented Virtual PBX What is GTS Centrex? GTS Centrex offers hosted unified

GTS Centrex Business Oriented Virtual PBX What is GTS Centrex? GTS Centrex offers hosted unified communication services to enterprises of all sizes and call-centers, allowing for increased compatibility with different network operators and

290 views • 15 slides
Keeping it Green: Strategies for Leading Online Teams #virtualteams LLAMA Webinar | February 17,

Keeping it Green: Strategies for Leading Online Teams #virtualteams LLAMA Webinar | February 17,

Keeping it Green: Strategies for Leading Online Teams #virtualteams LLAMA Webinar | February 17, 2016 POLL: What do you see as the biggest challenge of online teams? Carrie Moran Heidi Steiner Burkhardt University of Central Florida

551 views • 12 slides
Agenda Who is Jon Williams? What is a Virtual

Agenda Who is Jon Williams? What is a Virtual

Agenda Who is Jon Williams? What is a Virtual team? Examples of Virtual teams Pros & Cons Making Virtual teams work Tools

408 views • 29 slides
Managing Virtual Teams Virtual Session Damian McCourt Essentials Go to Training ground rules

Managing Virtual Teams Virtual Session Damian McCourt Essentials Go to Training ground rules

Managing Virtual Teams Virtual Session Damian McCourt Essentials Go to Training ground rules Mics muted by default One mic open at a time Raise your hand icon Or type a question in the text box Contact emails

430 views • 11 slides
Bounded context switching for valence systems Roland Meyer 1 , Sebastian Muskalla 1 , and Georg

Bounded context switching for valence systems Roland Meyer 1 , Sebastian Muskalla 1 , and Georg

Bounded context switching for valence systems Roland Meyer 1 , Sebastian Muskalla 1 , and Georg Zetzsche 2 September 4, CONCUR 2018, Beijing 1 TU Braunschweig, Germany {roland.meyer,s.muskalla}@tu-bs.de 2 IRIF (Universit Paris-Diderot,

2.01k views • 169 slides
ADVANCED INTEGRITY INSPECTIONS DRONE REMOTE VISUAL INSPECTION & REMOTE DIGITAL INSPECTIONS

ADVANCED INTEGRITY INSPECTIONS DRONE REMOTE VISUAL INSPECTION & REMOTE DIGITAL INSPECTIONS

ADVANCED INTEGRITY INSPECTIONS DRONE REMOTE VISUAL INSPECTION & REMOTE DIGITAL INSPECTIONS Presenters: Paul Hughes (Stork), Stewart Wallace (Stork) & Murray Stewart (Air Control Entech). WELCOME & INTRODUCTIONS P a u l H u g h e

320 views • 18 slides
{ Social Web by Adriano & Brbara Summary Encouraging newbies: Encouraging newbies: 1.

{ Social Web by Adriano & Brbara Summary Encouraging newbies: Encouraging newbies: 1.

Encouraging Newbies Without newbies, online communities cant survive! { Social Web by Adriano & Brbara Summary Encouraging newbies: Encouraging newbies: 1. 2. Adrianos point of view Brbaras point of view Introduction A

451 views • 31 slides
FUNDAMENTALS Teamwork Lesson 6 Teamwork Why Teams @ Work Organization? Work in organizations is

FUNDAMENTALS Teamwork Lesson 6 Teamwork Why Teams @ Work Organization? Work in organizations is

MANAGEMENT FUNDAMENTALS Teamwork Lesson 6 Teamwork Why Teams @ Work Organization? Work in organizations is inter-connected HR Fin Prod Mkt IT Admin What is a Team? Two or more An unit of two or more people people who interact and

329 views • 15 slides
MANAGEMENT FUNDAMENTALS Lesson 2 Page 136 Ethics and Social Responsibility Page 136 What are

MANAGEMENT FUNDAMENTALS Lesson 2 Page 136 Ethics and Social Responsibility Page 136 What are

Page 136 MANAGEMENT FUNDAMENTALS Lesson 2 Page 136 Ethics and Social Responsibility Page 136 What are Ethics? (Definition) Ethics are codes of moral principles and values that govern the behaviour of a person or group

351 views • 34 slides

More recommend