|
|
|
| CloudStack Based Virtual Simulation Cloud Platform for Network Attack and Defense Experiment |
Jiantao SHI( ), Xiukun LI, Zhaoxin ZHANG |
| School of Computer Science and Technology, Harbin Institute of Technology, Harbin 150001, China |
|
|
|
|
Abstract Network security experiments often require complex experimental environment. The network attack and defense technology is destructive and irreversible. Setting network security vulnerabilities for teaching will produce huge risk. The setup and maintenance costs for experimental environment are very expensive. Therefore, it is of great significance to use virtualization and SDN technology to build the simulation platform. The virtual experiment platform of network attack and defense is constructed based on CloudStack, open source cloud architecture, and XEN virtualization technology. The platform solves the problems in the network security experiment teaching and can provide IaaS cloud services. The introduction and analysis of a specific experiment show that the cloud experiment platform can effectively improve the quality of experiment teaching and cultivate students' engineering practice ability and innovation ability. The cloud platform itself has broad prospects for development and application.
|
|
Received: 15 August 2016
Published: 10 July 2017
|
|
|
|
|
|
| [1] |
张朝昆,崔勇,唐翯祎,等. 软件定义网络(SDN)研究进展[J]. 软件学报,2015,26(1):62-81.
|
| [2] |
宋平,刘轶,刘驰,等. 一种支持细粒度并行的SDN虚拟化编程框架[J]. 软件学报,2014,25(10):2220-2234.
|
| [3] |
龙艳军,欧阳建权,俞佳曦. 基于GNS3和VMware的虚拟网络集成[J]. 实验技术与管理,2013,30(2):90-93.
|
| [4] |
石磊,邹德清,金海. Xen虚拟化技术[M].武汉:华中科技大学出版社,2009.
|
| [5] |
吴迪,薛政,潘嵘.基于XEN云平台的网络安全实验教学[J].实验室研究与探索,2013,32(7):62-66.
|
| [6] |
吴常清,王慧敏,薛涛. 基于CloudStack的私有云平台的构建与实现[J]. 西安工程大学学报,2014,28(2):220-224.
|
| [7] |
彭红. 基于CloudStack云管理平台的关键技术研究与应用[D].上海:华东理工大学,2013.
|
| [8] |
余志涛. 基于CloudStack云平台的研究与自动系统的实现[D].大连:大连理工大学,2014.
|
| [9] |
董健康,王洪波,李阳阳,等. IaaS环境下改进能源效率和网络性能的虚拟机放置方法[J]. 通信学报,2014,35(1):72-81.
|
| [10] |
孙伟. Snort轻量级入侵检测系统全攻略[M].北京:北京邮电大学出版社,2009.
|
| [11] |
Gregor N P.Linux iptables Pocket Reference[M].California:O’Reilly Media,2004.
|
| [12] |
李晓娜,李庆忠,孔兰菊,等. 基于共享模式的SaaS多租户数据划分机制研究[J]. 通信学报,2012,33(S1):110-120.
|
| [13] |
徐鹏,陈思,苏森. 互联网应用PaaS平台体系结构[J]. 北京邮电大学学报,2012,35(1):120-124.
|
| [1] |
Xu WU, Renan CHEN, Dezhi WEI. Design and Application of Speech Lab under Cloud Computing[J]. Research and Exploration in Laboratory, 2017, 36(5): 239-242. |
| [2] |
LI Da-zhi1,2* (李大志), LIU Jian-hua3 (刘建华), DONG Xin1 (董鑫),LI Lu-qun2 (李鲁群), CHEN Jun-hua2 (陈军华). Application-Oriented Cloud Monitoring Data Distribution Mechanism[J]. Journal of shanghai Jiaotong University (Science), 2015, 20(2): 149-155. |
| [3] |
WANG Liang-liang1* (王亮亮), CHEN Ke-fei2 (陈克非),MAO Xian-ping1 (毛贤平), WANG Yong-tao3 (王永涛). Efficient and Provably-Secure Certificateless Proxy Re-encryption Scheme for Secure Cloud Data Sharing[J]. Journal of shanghai Jiaotong University (Science), 2014, 19(4): 398-405. |
| [4] |
WANG Chih-hung* (王智弘), TU Tai-yuan (涂泰源). Keyword Search Encryption Scheme Resistant Against Keyword-Guessing Attack by the Untrusted Server[J]. Journal of shanghai Jiaotong University (Science), 2014, 19(4): 440-442. |
| [5] |
CHI Ziwena,b,ZHANG Fenga,b,DU Zhenhonga,b,LIU Renyia,b. Parallel Resampling Method of Remote Sensing Data Based on Pre-Partitioning for Cloud Computing[J]. J. Shanghai Jiaotong Univ.(Sci.) , 2014, 48(11): 1627-1632. |
|
|
|
|
2017, Vol. 36 
