scalable and lightweight ctf infrastructures using
play

Scalable and Lightweight CTF Infrastructures Using Application - PowerPoint PPT Presentation

Feb 08, 2024 •20 likes •400 views

Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Scalable and Lightweight CTF Infrastructures Using Application Containers Arvind S Raj, Bithin Alangot, Seshagiri Prabhu and

  1. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Scalable and Lightweight CTF Infrastructures Using Application Containers Arvind S Raj, Bithin Alangot, Seshagiri Prabhu and Krishnashree Achuthan Amrita Center for Cybersecurity Systems and Networks Amrita Vishwa Vidyapeetham, Kerala, India 2016 USENIX Advances in Security Education Workshop Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 1/38

  2. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Introduction CTFs - an effective means to teach secure coding and computer security. Two popular formats: Jeopardy and Attack-defence. Jeopardy: Self-paced, offence only, non-interactive and more popular. Attack-defence: Real-time, offence and defence, interactive but less popular. Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 2/38

  3. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion CTF event counts Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 3/38

  4. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Participation trends Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 4/38

  5. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Format challenges Both organizers and participants face challenges. Organizers: Complex infrastructure engineering and high resource requirements. Participants: Complex gameplay, infrastructure setup and IT policies. Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 5/38

  6. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Problem Can we build less resource intensive and easily scalable contest infrastructures? Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 6/38

  7. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Solution Replace virtual machines with application containers. Significant reduction in resource usage and engineering required. Eliminates several difficult to setup components. Improves gameplay experience for participants. Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 7/38

  8. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Outline of presentation Challenges in existing attack-defence CTF game 1 format and infrastructures Overview of Docker and associated technologies 2 Container-based attack-defence CTF game 3 infrastructure Performance evaluation 4 Future work 5 Conclusion 6 Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 8/38

  9. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Outline Challenges in existing attack-defence CTF game 1 format and infrastructures Overview of Docker and associated technologies 2 Container-based attack-defence CTF game 3 infrastructure Performance evaluation 4 Future work 5 Conclusion 6 Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 9/38

  10. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Challenges 2 sources: gameplay and game infrastructure. Gameplay affects participants: requires doing too many tasks. Distracts them from primary objective. Infrastructure affects organizers and participants. 2 infrastructure types: distributed and centralized. Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 10/38

  11. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Distributed infrastructure Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 11/38

  12. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Challenges Organizers Infrastructure needs lot of resources, engineering and monitoring. eg: rwthCTF 2012’s VPN server: 16GB RAM, 8 core i7 processor and 8 OpenVPN daemon processes. Participants Difficult to obtain hardware such as computers and network switches/routers. University IT policies prevent connecting to UDP based VPNs. Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 12/38

  13. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Centralized infrastructure Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 13/38

  14. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Challenges Organizers Exponential increase in computing resources required. Setting up exploit sandboxes, installing libraries and executing exploits. Participants Network latency when accessing services. Recreating services locally for analysis and testing is not straightforward. Locked in to a standard exploit environment. Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 14/38

  15. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Outline Challenges in existing attack-defence CTF game 1 format and infrastructures Overview of Docker and associated technologies 2 Container-based attack-defence CTF game 3 infrastructure Performance evaluation 4 Future work 5 Conclusion 6 Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 15/38

  16. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Docker vs Virtual machines Figure : Virtual Machines Figure : Docker containers Images courtesy www.docker.com Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 16/38

  17. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Why Docker? Built-in container image reuse and extend capabilities. Remote API and programming language bindings aid in automation. Easy to share and distribute container images. Third party tools for container and image management. Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 17/38

  18. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Distribution and PORTUS Docker Inc’s Distribution: Tool to manage container images - similar to a Git server. SUSE’s PORTUS: Role-based access control of Distribution’s images. Allows creating namespaces for teams and assigning different access levels to them. Alternatives: GitLab, Dockerhub, Amazon EC2 container service, Google Container Registry and more. Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 18/38

  19. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Outline Challenges in existing attack-defence CTF game 1 format and infrastructures Overview of Docker and associated technologies 2 Container-based attack-defence CTF game 3 infrastructure Performance evaluation 4 Future work 5 Conclusion 6 Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 19/38

  20. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion Components Container registry : Git server like service for container images. Container hosts : Servers which run all the containers. Service related containers : Docker containers which either run a service or an exploit for a service. Flag volume : Docker volumes for persistent storage of flags. Modified versions of components of the iCTF centralized framework. Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 20/38

  21. Existing game infrastructures Docker Container-based game infrastructure Evaluation Future work Conclusion System design Arvind, Bithin, Seshagiri, Krishnashree — Scalable and Lightweight CTF Infrastructures Using Application Containers 21/38

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

IoT-Flows: Lightweight Policy Enforcement of Information Flows in IoT Infrastructures Jos

IoT-Flows: Lightweight Policy Enforcement of Information Flows in IoT Infrastructures Jos

IoT-Flows: Lightweight Policy Enforcement of Information Flows in IoT Infrastructures Jos Augusto Suruagy Monteiro Centro de Informtica - UFPE IoT-Flows: US Subteam (PIs) Prof. Atul Prakash (UMich) Expert on security and IoT Prof. Darko

455 views • 24 slides
Lightweight Operating Systems for Scalable Native and Virtualized Supercomputing April 20, 2009

Lightweight Operating Systems for Scalable Native and Virtualized Supercomputing April 20, 2009

Lightweight Operating Systems for Scalable Native and Virtualized Supercomputing April 20, 2009 ORNL Visit Kevin Pedretti Senior Member of Technical Staff Scalable System Software, Dept. 1423 ktpedre@sandia.gov Sandia is a multiprogram

692 views • 30 slides
Reliable Adaptive Lightweight Multicast Protocol Ken Tang, Scalable Network Technologies Katia

Reliable Adaptive Lightweight Multicast Protocol Ken Tang, Scalable Network Technologies Katia

Reliable Adaptive Lightweight Multicast Protocol Ken Tang, Scalable Network Technologies Katia Obraczka, UC Santa Cruz Sung-Ju Lee, Hewlett-Packard Laboratories Mario Gerla, UCLA Overview Ad hoc network introduction QualNet network

246 views • 21 slides
A Lightweight Library for Building Scalable T ools Emily R. Jacobson , Michael J. Brim, Barton

A Lightweight Library for Building Scalable T ools Emily R. Jacobson , Michael J. Brim, Barton

A Lightweight Library for Building Scalable T ools Emily R. Jacobson , Michael J. Brim, Barton P. Miller Paradyn Project University of Wisconsin jacobson@cs.wisc.edu June 6, 2010 Para 2010: State of the Art in Scientific and Parallel

1.02k views • 45 slides
Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1.

Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1.

Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1. About Think Lightweight 2. What are Lightweight Structures? 3. Industry Applications 4. Product Line Review 5. Think Lightweight Component

832 views • 43 slides
Exploiting Modern Hardware Features via Lightweight Profiling Probir Roy Scalable Tools

Exploiting Modern Hardware Features via Lightweight Profiling Probir Roy Scalable Tools

Exploiting Modern Hardware Features via Lightweight Profiling Probir Roy Scalable Tools Workshop19 1 High performance and challenges IBM POWER 9 CPU Exploiting Modern Hardware Features via Lightweight Profiling 2 High performance and

2.14k views • 150 slides
HPC Infrastructures HPC Infrastructures Moreno Baricevic CNR-INFM DEMOCRITOS, Trieste NETTAB

HPC Infrastructures HPC Infrastructures Moreno Baricevic CNR-INFM DEMOCRITOS, Trieste NETTAB

Distributed Applications, Web Services, Tools and GRID Infrastructures for Bioinformatics HPC Infrastructures HPC Infrastructures Moreno Baricevic CNR-INFM DEMOCRITOS, Trieste NETTAB 2006 - Santa Margherita di Pula (CA) - July 10-13, 2006

820 views • 40 slides
The lightweight beam for Heavyweight applications The impact of this lightweight steel beam will

The lightweight beam for Heavyweight applications The impact of this lightweight steel beam will

The lightweight beam for Heavyweight applications The impact of this lightweight steel beam will revolutionise the international high-rise construction industry Tony Zaccarini and Dr Patrick OBrien The lightweight beam for Heavyweight

417 views • 12 slides
The lightweight beam for Heavyweight applications The impact of this lightweight beam concept

The lightweight beam for Heavyweight applications The impact of this lightweight beam concept

The lightweight beam for Heavyweight applications The impact of this lightweight beam concept will revolutionise the aviation industry Tony Zaccarini and Dr Patrick OBrien The lightweight beam for Heavyweight applications Patent Applied For

479 views • 12 slides
Outline Spatial Data Infrastructures Spatial Data Infrastructures Some Questions on SDIs

Outline Spatial Data Infrastructures Spatial Data Infrastructures Some Questions on SDIs

Outline Spatial Data Infrastructures Spatial Data Infrastructures Some Questions on SDIs Value Chain for GI production Is there a Future for World Wide Web and its Impact Spatial Data Infrastructures? The Geospatial Web

214 views • 5 slides
Information Infrastructures Week 1 LBSC 671 Creating Information Infrastructures Tonight

Information Infrastructures Week 1 LBSC 671 Creating Information Infrastructures Tonight

Information Infrastructures Week 1 LBSC 671 Creating Information Infrastructures Tonight Whats this class about? Pieces of the puzzle All the usual stuff (syllabus, grading, ) Information Wisdom Knowledge

368 views • 36 slides
New Lightweight DES Variants Suited for RFID Applications G. Leander, C. Paar, A. Poschmann, K.

New Lightweight DES Variants Suited for RFID Applications G. Leander, C. Paar, A. Poschmann, K.

New Lightweight DES Variants Suited for RFID Applications G. Leander, C. Paar, A. Poschmann, K. Schramm Workshop on Fast Software Encryption 2007 Outline Introduction Why lightweight? Why choose DES? DESL: DES Lightweight Why change DES?

364 views • 12 slides
Scalable Termination Detection for Distributed Actor Systems Dan Plyukhin and Gul Agha UIUC

Scalable Termination Detection for Distributed Actor Systems Dan Plyukhin and Gul Agha UIUC

Scalable Termination Detection for Distributed Actor Systems Dan Plyukhin and Gul Agha UIUC Actor Model Actors are lightweight, stateful, async processes. Used to build low-latency distributed systems (e.g. Riak, Discord, CouchDB). Most popular

1.53k views • 122 slides
Interoperation with Interoperation with Infrastructures: Infrastructures: NDGF-EGEE NDGF-EGEE

Interoperation with Interoperation with Infrastructures: Infrastructures: NDGF-EGEE NDGF-EGEE

Interoperation with Interoperation with Infrastructures: Infrastructures: NDGF-EGEE NDGF-EGEE Michael Grnager, PhD Technical Coordinator, NDGF International Symposium on Grid Computing 08 Taipei , April 11 th 2008 Outline Outline

616 views • 50 slides
e- -Infrastructures Infrastructures Taking stock and looking ahead an European perspective p

e- -Infrastructures Infrastructures Taking stock and looking ahead an European perspective p

e- -Infrastructures Infrastructures Taking stock and looking ahead an European perspective p p p CHAIN EU-IndiaGrid2 Workshop CHAIN EU IndiaGrid2 Workshop on Research Applications of High Speed Connectivity Across Europe, India and

216 views • 20 slides
Hermes: A Language for Lightweight Encryption Torben gidius Mogensen RC 2020 Background:

Hermes: A Language for Lightweight Encryption Torben gidius Mogensen RC 2020 Background:

Hermes: A Language for Lightweight Encryption Torben gidius Mogensen RC 2020 Background: Lightweight Encryption Lightweight: Meant to be fast. Symmetric key: Same key used for encryption and decryption. Used in embedded systems, browsers,

300 views • 12 slides
Containers Today and Beyond Michal Svec Flavio Castelli Product Manager Engineering Manager

Containers Today and Beyond Michal Svec Flavio Castelli Product Manager Engineering Manager

Containers Today and Beyond Michal Svec Flavio Castelli Product Manager Engineering Manager msvec@suse.com fcastelli@suse.com Agenda How it all started Why should I care? What are containers? Gimme more! Show me! 2 How

692 views • 51 slides
SVA Health Insurance Presentation Plan Highlights and Benefits Unlimited Maximum Per Insured

SVA Health Insurance Presentation Plan Highlights and Benefits Unlimited Maximum Per Insured

SVA Health Insurance Presentation Plan Highlights and Benefits Unlimited Maximum Per Insured Person, Per Policy Year for Covered Medical Expenses. $100 Deductible Per Insured Person, Per Policy Year. Whats a deductible? A

496 views • 13 slides
Deprecating jCard in RDAP: why and how Mario Loffredo - IIT-CNR/Registro.it Gavin Brown

Deprecating jCard in RDAP: why and how Mario Loffredo - IIT-CNR/Registro.it Gavin Brown

9 th ROW - Registration Operations Workshop - June 16 th , 2020 Deprecating jCard in RDAP: why and how Mario Loffredo - IIT-CNR/Registro.it Gavin Brown CentralNIC Registry Why to deprecate jCard in RDAP ? jCard is the most frequent

490 views • 11 slides
New Business Card Request System Programmed Layout Just type in information and the layout

New Business Card Request System Programmed Layout Just type in information and the layout

New Business Card Request System Programmed Layout Just type in information and the layout will adjust . Your order is then placed and reviewed . Benefits Get your card quicker . Cost savings in printing . Adjuncts who we

416 views • 14 slides
Operations Summary CONTAINER ARRIVAL Trucks arrive from terminals/depots with empty

Operations Summary CONTAINER ARRIVAL Trucks arrive from terminals/depots with empty

Operations Summary CONTAINER ARRIVAL Trucks arrive from terminals/depots with empty containers. Volumes range from 50-300 per day, depending on street turns or available terminal reservations. Containers are lifted off and placed

402 views • 8 slides
Part 3: Concepts and methods for designing and operating dry ports Peter Hodgkinson, Consultant

Part 3: Concepts and methods for designing and operating dry ports Peter Hodgkinson, Consultant

Capacity building seminar on planning, design, development and operation of intermodal freight interfaces, including dry ports Part 3: Concepts and methods for designing and operating dry ports Peter Hodgkinson, Consultant Transport Economist

409 views • 27 slides
INVESTOR CONFERENCE CALL October 24, 2019 1 DISCLAIMER Forward-Looking Statements Certain

INVESTOR CONFERENCE CALL October 24, 2019 1 DISCLAIMER Forward-Looking Statements Certain

THIRD QUARTER 2019 INVESTOR CONFERENCE CALL October 24, 2019 1 DISCLAIMER Forward-Looking Statements Certain statements in this presentation, other than statements of historical facts, including statements regarding our strategy, future

238 views • 20 slides
Development Code Amendment C ARGO C ONTAINERS Washoe County Planning Commission May 7, 2019 1

Development Code Amendment C ARGO C ONTAINERS Washoe County Planning Commission May 7, 2019 1

Development Code Amendment C ARGO C ONTAINERS Washoe County Planning Commission May 7, 2019 1 What is affected? Cargo containers used as detached accessory structures for storage. (Article 306) 2 What is not affected? Cargo container

175 views • 14 slides

More recommend