Skip to main content
SpringerLink
Log in

Alfons: A Mimetic Network Environment Construction System

  • Conference paper
  • First Online:
Testbeds and Research Infrastructures for the Development of Networks and Communities (TridentCom 2016)

Included in the following conference series:

Abstract

Mimetic environments, which mimic actual networks including personal computers, network assets, etc., are required for cyber range or malware analysis. However, constructing various mimetic environments is costly and tedious because each environment has different network assets. Thus, we propose a building block system for constructing mimetic network environments for cyber security experiments. These building blocks provides a fine-grained way to manage disk images and files to reduce the construction cost. In this paper, we describe the design and implementation of the building block system called Alfons.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 34.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 44.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. SecCap: Education network for practical information technologies-security-(only available in japanese) (2015). https://www.seccap.jp

  2. Hardening 10 APAC: A security competition like no other (2014). http://wasforum.jp/hardening-project/hardening-10-apac-en/

  3. Miyachi, T., Nakagawa, T., Chinen, K.i., Miwa, S., Shinoda, Y.: StarBED and SpringOS architectures and their performance. In: TRIDENTCOM, vol. 90, pp. 43–58 (2011)

    Google Scholar 

  4. Yasuda, S., Miura, R., Ota, S., Takano, Y., Miyachi, T.: Building block type construction system for mimetic environment (only available in japanese). In: Proceedings of Internet Conference 2015 JSSST, vol. 77, pp. 69–78, October 2015

    Google Scholar 

  5. Cuckoo Sandbox (2015). http://www.cuckoosandbox.org/

  6. Kruegel, C., Emulation, F.S.: Achieving successful automated dynamic analysis of evasive malware. In: Black Hat (2014)

    Google Scholar 

  7. Miwa, S., Miyachi, T., Eto, M., Yoshizumi, M., Shinoda, Y.: Design and implementation of an isolated sandbox with mimetic internet used to analyze malwares. In: Benzel, T.V., Kesidis, G. (eds.) DETER Community Workshop on Cyber Security Experimentation and Test 2007, Boston, Ma, USA, 6–7 August 2007. USENIX Association (2007)

    Google Scholar 

  8. OpenStack (2015). https://www.openstack.org/

  9. VMWare vSphere (2015). http://www.vmware.com/products/vi/

  10. Vagrant (2015). https://www.vagrantup.com

  11. Ansible (2015). http://www.ansible.com/home

  12. chef (2015). https://www.chef.io

  13. ENCS: European network for cyber security (2015). https://www.encs.eu

  14. ICS-CERT: The industrial control systems cyber emergency response team (2015). https://ics-cert.us-cert.gov

  15. CRIAB. http://www.boeing.com/defense/cybersecurity-information-management/

  16. Lindorfer, M., Kolbitsch, C., Milani Comparetti, P.: Detecting Environment-Sensitive Malware. In: Sommer, R., Balzarotti, D., Maier, G. (eds.) RAID 2011. LNCS, vol. 6961, pp. 338–357. Springer, Heidelberg (2011). doi:10.1007/978-3-642-23644-0_18

    Chapter  Google Scholar 

  17. Detecting Malware and Sandbox Evasion Techniques (2015). https://www.sans.org/reading-room/whitepapers/forensics/detecting-malware-sandbox-evasion-techniques-36667

Download references

Acknowledgment

The authors thank S. Miwa, Ph.D. from the National Institute of Information and Communications Technology and T. Inoue, Ph.D. from the Japan Advanced Institute of Science and Technology for their insightful comments and suggestions. The authors thank H. Nakai and K. Akashi for their generous support. The authors thank the Hardening Project for giving us the opportunity to practice with the system.

Author information

Authors and Affiliations

  1. Hokuriku StarBED Technology Center, National Institute of Information and Communications Technology, 2-12, Nomi, Ishikawa, 923-1211, Japan

    Shingo Yasuda, Ryosuke Miura, Satoshi Ohta, Yuuki Takano & Toshiyuki Miyachi

Authors
  1. Shingo Yasuda
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Ryosuke Miura
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Satoshi Ohta
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Yuuki Takano
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Toshiyuki Miyachi
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Shingo Yasuda .

Editor information

Editors and Affiliations

  1. Hong Kong Polytechnic University, Kowloon, Hong Kong

    Song Guo

  2. Computer and Information Engineering, Zhejiang Gongshang University, Hangzhou, China

    Guiyi Wei

  3. School of Information Technology, Deakin University, Burwood, Victoria, Australia

    Yang Xiang

  4. Faculty of Business and Information, University of Ontario Institute of Technology, Oshawa, Ontario, Canada

    Xiaodong Lin

  5. IUT, University of Haute Alsace, Colmar, France

    Pascal Lorenz

Rights and permissions

Reprints and permissions

Copyright information

© 2017 ICST Institute for Computer Sciences, Social Informatics and Telecommunications Engineering

About this paper

Cite this paper

Yasuda, S., Miura, R., Ohta, S., Takano, Y., Miyachi, T. (2017). Alfons: A Mimetic Network Environment Construction System. In: Guo, S., Wei, G., Xiang, Y., Lin, X., Lorenz, P. (eds) Testbeds and Research Infrastructures for the Development of Networks and Communities. TridentCom 2016. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, vol 177. Springer, Cham. https://doi.org/10.1007/978-3-319-49580-4_6

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-49580-4_6

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-49579-8

  • Online ISBN: 978-3-319-49580-4

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation