Using Virtualization to Create and Deploy Computer Security Lab Exercises

Hay, Brian; Dodge, Ronald; Nance, Kara

doi:10.1007/978-0-387-09699-5_40

Cited by 9 publications

(5 citation statements)

References 3 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Several similar projects to utilise virtualisation for diverse ICT security learning environments have been documented [3,4,5,6,7,8,9,10]. Such experiments are encouraging, yet when it comes to implementing our own virtual version of a laboratory we find that there are several general questions that we can identify and that we hope to address: -Pedagogy.…”

Section: Introductionmentioning

confidence: 93%

“…It is common to specify the number of machines that the software is to be installed upon. With easily copyable virtual environments it becomes far more difficult to calculate and control the number of machines that the software is installed upon, and it is a problem that current licenses specify limits on such numbers [4]. It would surely make better sense to have licenses that stipulate the number of copies that may be used concurrently [12].…”

Section: Threatsmentioning

confidence: 99%

See 1 more Smart Citation

A SWOT Analysis of Virtual Laboratories for Security Education

Davidson

Martínez

Huber

2013

Information Assurance and Security Education and Training

View full text Add to dashboard Cite

Abstract. Work is active in many institutes of higher education on utilising virtual computer environments for creating laboratories for practical course-work. Computer Security education is one area where virtual environments are proving to be useful, and where several schools have reported their own schemes for implementing environments for practical exercises. In this study we attempt to take a somewhat broader look at what the use of virtualisation technology can imply terms of a number of factors, i.e. the pedagogy, security, licensing, administration and cost. A simple analysis of the general strengths, weaknesses, opportunities and threats of virtual security laboratories allows us to motivate design choices when implementing yet another of these experimental environments.

show abstract

Section: Introductionmentioning

confidence: 93%

Section: Threatsmentioning

confidence: 99%

A SWOT Analysis of Virtual Laboratories for Security Education

Davidson

Martínez

Huber

2013

Information Assurance and Security Education and Training

View full text Add to dashboard Cite

show abstract

“…As an example of this process, we rewrote a lab exercise (described in [9]) instrumented in a RAVE cluster to follow the SI@T model. The module was originally written to permit other faculty to adopt the module for use in their own institutions.…”

Section: Example 2 -Rave Exercise Using the Si@t Frameworkmentioning

confidence: 99%

Creating Shareable Security Modules

Nance

Taylor

Dodge

et al. 2013

Information Assurance and Security Education and Training

Self Cite

View full text Add to dashboard Cite

Abstract. While there is increased appreciation of the need to provide students with education in computer security, there are significant challenges associated with the creation of shareable computer security modules that can be used by a wide-range of educators. This paper discusses some of the challenges that educators currently face in this area, and presents a means to couple a successful framework and infrastructure environment to address some of the associated issues. Two examples are provided that link the framework and infrastructure followed by suggestions for future research and development in this area.

show abstract

“…Over the past few years, hands on exercises using VMs have been tried successfully in courses related to information, web or computational security (Tao, Chen & Lin, 2010;Gephart & Kuperman, 2010;Hay, Dodge & Nance, 2008;Hickman, 2008;Bullers, Burd & Seazzu, 2006;Adams & Laverell, 2005), operating systems (Nieh & Vaill, 2005;Adams & Laverell, 2005), Windows and Linux system administration (Hickman, 2008;Stackpole et al, 2008), database (Cranitch & Rees, 2009), computer forensics (Hickman, 2008;Bullers, Burd & Seazzu, 2006), data communications (Hickman, 2008) and networking (Stackpole et al, 2008;Bullers, Burd & Seazzu, 2006;Adams & Laverell, 2005;Armitage & Harrop, 2005). Most of these publications describe case studies of the use of VMs in specific IT courses and focus on the content of the exercises and how the lessons were conducted.…”

Section: Related Workmentioning

confidence: 99%

Setting up a low-cost lab management system for a multi-purpose computing laboratory using virtualisation technology

Mok

Lee

Tan

2012

AJET

View full text Add to dashboard Cite

This paper describes how a generic computer laboratory equipped with 52 workstations is set up for teaching IT-related courses and other general purpose usage. The authors have successfully constructed a lab management system based on decentralised, client-side software virtualisation technology using Linux and free software tools from VMware that fulfils the requirements of fast "switch over" time between consecutive lab sessions, the ability to support a wide range of IT courses and usage scenarios, low cost, easy maintenance, and a sandboxed environment for potentially disruptive IT security lab exercises. Sufficient implementation details are provided so that readers can build a similar lab management system. The objective is to share ideas and experiences that may be useful for lab administrators in academic institutions facing the same requirements and budgetary constraints.

show abstract

Using Virtualization to Create and Deploy Computer Security Lab Exercises

Cited by 9 publications

References 3 publications

A SWOT Analysis of Virtual Laboratories for Security Education

A SWOT Analysis of Virtual Laboratories for Security Education

Creating Shareable Security Modules

Setting up a low-cost lab management system for a multi-purpose computing laboratory using virtualisation technology

Contact Info

Product

Resources

About