Galaxy: A Network Emulation Framework for Cybersecurity

Author

Kevin Schoonover
Eric Michalak
Sean Harris
Adam Gausmann
Hannah Reinbolt
Daniel R. Tauritz, Missouri University of Science and TechnologyFollow
Chris Rawlings
Aaron Scott Pope

Abstract

The arms race of cyber warfare is growing increasingly asymmetric as defensive security practitioners struggle to successfully harden their domains without overly restricting their users, profits, and overall mission. Vulnerabilities span across technologies, business policies, and human behaviors, allowing cyber attackers to select the attack surface that best fits their strengths. This paper introduces the first version of Galaxy, a fine-control, high-fidelity computer network emulation framework designed to support rapid, parallel experimentation with the automated design of software agents in mind. Our framework provides a modular environment to experiment with arbitrary defense and attack strategies under a wide variety of business requirements and accounting for the productivity of users, allowing cybersecurity practitioners to consider the unique constraints of their real-world systems. We demonstrate the effectiveness of Galaxy for the use of an evolutionary algorithm to generate enumeration strategies for attacker agents.

Recommended Citation

K. Schoonover et al., "Galaxy: A Network Emulation Framework for Cybersecurity," 11th USENIX Workshop on Cyber Security Experimentation and Test, CSET 2018, co-located with USENIX Security 2018, USENIX, Jan 2018.

Department(s)

Computer Science

Comments

Los Alamos National Laboratory, Grant 259565

Document Type

Article - Conference proceedings

Document Version

Citation

File Type

text

Language(s)

English

Rights

© 2024 USENIX, All rights reserved.

Publication Date

01 Jan 2018