Home // ICIMP 2018, The Thirteenth International Conference on Internet Monitoring and Protection // View article

A New Approach of Network Simulation for Data Generation in Evaluating Security Products

Authors:
Pierre-Marie Bajan
Christophe Kiennert
Herve Debar

Keywords: cybersecurity; simulation; evaluation

Abstract:
Evaluating a security product requires the ability to conduct tests to assert that the product reacts as expected, both in terms of scalability and semantics. However, the production of evaluation data at a large scale with a high semantic is very costly with current methods. Load tests are semantically poor and semantic tests require a testbed environment to be deployed at a large scale. Evaluation data from real world activity need to be anonymized and a compromise must be made between the request of the evaluator and the interest of the real world organization. Moreover, to evaluate the full scope of a security product, the evaluator needs multiple test methods. In this paper, we describe a new methodology to produce evaluation data with a customizable level of realism and the possibility to be deployed at a large scale with lower resource requirements for a network support than a testbed environment. Our prototype relies on this method to generate realistic activity for up to 250 simulated users interacting with a real-world webmail server.

Pages: 35 to 41

Copyright: Copyright (c) IARIA, 2018

Publication date: July 22, 2018

Published in: conference

ISSN: 2308-3980

ISBN: 978-1-61208-652-1

Location: Barcelona, Spain

Dates: from July 22, 2018 to July 26, 2018