Estendendo o MENTORED Testbed para a execução de experimentos de cibersegurança multi-cluster e IoT
Resumo
Dispositivos IoT são amplamente utilizados em diversas áreas, mas frequentemente apresentam vulnerabilidades críticas, como senhas simples, serviços expostos e software desatualizado. Comprometidos, podem formar botnets e ameaçar sistemas na Internet. Para mitigar essas fraquezas de forma ética e segura, é necessário um ambiente para experimentação dedicado, um testbed, para o estudo de ataques e desenvolvimento de soluções de segurança. Este trabalho amplia o MENTORED Testbed com integração de dispositivos IoT, criando um testbed multi-cluster para experimentos em diferentes arquiteturas. Dois cenários de ataque foram simulados para avaliar a extensão desenvolvida, demonstrando sua escalabilidade e aplicabilidade na segurança IoT.
Palavras-chave:
Cibersegurança, IoT, Testbed, Aprendizado de Máquina
Referências
Airola, A., Pahikkala, T., Waegeman, W., De Baets, B., and Salakoski, T. (2009). A comparison of auc estimators in small-sample studies. In Machine learning in systems biology, pages 3–13. PMLR.
Al-Hawawreh, M. and Sitnikova, E. (2020). Developing a security testbed for industrial internet of things. IEEE Internet of Things Journal, 8(7):5558–5573.
Aqeel, M., Ali, F., Iqbal, M. W., Rana, T. A., Arif, M., and Auwul, M. R. (2022). A review of security and privacy concerns in the internet of things (iot). Journal of Sensors, 2022(1):5724168.
Grossmann, J. and Duponchelle, J. (2008). Graphical network simulator-3. [link]. [Accessed 20-02-2024].
Imperva (2023). 2023 Imperva Bad Bot Report — Resource Library — imperva.com. [link]. [Accessed 15-02-2024].
Karmada Authors (2025). Open, Multi-Cloud, Multi-Cluster Kubernetes Orchestration — karmada — karmada.io. [link]. [Accessed 20-01-2025].
Koroniotis, N., Moustafa, N., Schiliro, F., Gauravaram, P., and Janicke, H. (2021). The sair-iiot cyber testbed as a service: A novel cybertwins architecture in iiot-based smart airports. IEEE Transactions on Intelligent Transportation Systems.
Koroniotis, N., Moustafa, N., Sitnikova, E., and Turnbull, B. (2019). Towards the development of realistic botnet dataset in the internet of things for network forensic analytics: Bot-iot dataset. Future Generation Computer Systems, 100:779–796.
Meyer, B. H., Gemmer, D. D., Andrade, A. M., de Mello, E. R., Nogueira, M., and Wangham, M. S. (2022). Criação de redes virtuais no mentored testbed: Uma análise experimental. In Anais do I Workshop de Testbeds, pages 24–35. SBC.
Meyer, B. H., Gemmer, D. D., de Santana, K. G., Ferreira, J. V., de Mello, E. R., Nogueira, M., andWangham, M. S. (2024). Criação e análise de datasets de ataque de negação de serviço usando o mentored testbed. In Simpósio Brasileiro de Redes de Computadores e Sistemas Distribuídos (SBRC), pages 812–825. SBC.
Moustafa, N. (2021). A new distributed architecture for evaluating ai-based security systems at the edge: Network ton iot datasets. Sustainable Cities and Society, 72:102994. OWASP (2018). IoT Top 10. Technical report, OWSAP.
Sáez-de Cámara, X., Flores, J. L., Arellano, C., Urbieta, A., and Zurutuza, U. (2023). Gotham testbed: a reproducible iot testbed for security experiments and dataset generation. IEEE Transactions on Dependable and Secure Computing.
Santana, K. G. Q. d., Schwarz, M., and Wangham, M. S. (2024). Cybersecurity testbeds for IoT: A systematic literature review and taxonomy. Journal of Internet Services and Applications, 15(1):450–473.
SentinelOne (2024). Key Cyber Security Statistics for 2025 — sentinelone.com. [link]. [Accessed 24-01-2025].
Siaterlis, C., Garcia, A. P., and Genge, B. (2012). On the use of emulab testbeds for scientifically rigorous experiments. IEEE Communications Surveys & Tutorials, 15(2):929–942.
Siboni, S., Sachidananda, V., Meidan, Y., Bohadana, M., Mathov, Y., Bhairav, S., Shabtai, A., and Elovici, Y. (2018). Security testbed for internet-of-things devices. IEEE transactions on reliability, 68(1):23–44.
Sritharan, K., Elagumeeharan, R., Nakkeeran, S., Mohamed, A., Ganegoda, B., and Yapa, K. (2022). Machine learning based distributed denial-of-services attacks detection and mitigation testbed for sdn-enabled iot devices. In 2022 13th International Conference on Computing Communication and Networking Technologies (ICCCNT), pages 1–6. IEEE.
SUSE Rancher (2025). RKE2. [link]. [Accessed 20-01-2025].
The Admiralty Authors (2024). Multi-Cluster Kubernetes. Simplified. [link]. [Accessed 20-01-2025].
Thom, J., Das, T., Shrestha, B., Sengupta, S., and Arslan, E. (2021). Casting a wide net: An internet of things testbed for cybersecurity education and research. In 2021 International Symposium on Performance Evaluation of Computer and Telecommunication Systems (SPECTS), pages 1–8. IEEE.
Van der Maaten, L. and Hinton, G. (2008). Visualizing data using t-sne. Journal of machine learning research, 9(11).
Şenel, B. C., Mouchet, M., Cappos, J., Fourmaux, O., Friedman, T., and McGeer, R. (2021). Edgenet: the global kubernetes cluster testbed. In IEEE INFOCOM 2021 - IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS), pages 1–2.
Al-Hawawreh, M. and Sitnikova, E. (2020). Developing a security testbed for industrial internet of things. IEEE Internet of Things Journal, 8(7):5558–5573.
Aqeel, M., Ali, F., Iqbal, M. W., Rana, T. A., Arif, M., and Auwul, M. R. (2022). A review of security and privacy concerns in the internet of things (iot). Journal of Sensors, 2022(1):5724168.
Grossmann, J. and Duponchelle, J. (2008). Graphical network simulator-3. [link]. [Accessed 20-02-2024].
Imperva (2023). 2023 Imperva Bad Bot Report — Resource Library — imperva.com. [link]. [Accessed 15-02-2024].
Karmada Authors (2025). Open, Multi-Cloud, Multi-Cluster Kubernetes Orchestration — karmada — karmada.io. [link]. [Accessed 20-01-2025].
Koroniotis, N., Moustafa, N., Schiliro, F., Gauravaram, P., and Janicke, H. (2021). The sair-iiot cyber testbed as a service: A novel cybertwins architecture in iiot-based smart airports. IEEE Transactions on Intelligent Transportation Systems.
Koroniotis, N., Moustafa, N., Sitnikova, E., and Turnbull, B. (2019). Towards the development of realistic botnet dataset in the internet of things for network forensic analytics: Bot-iot dataset. Future Generation Computer Systems, 100:779–796.
Meyer, B. H., Gemmer, D. D., Andrade, A. M., de Mello, E. R., Nogueira, M., and Wangham, M. S. (2022). Criação de redes virtuais no mentored testbed: Uma análise experimental. In Anais do I Workshop de Testbeds, pages 24–35. SBC.
Meyer, B. H., Gemmer, D. D., de Santana, K. G., Ferreira, J. V., de Mello, E. R., Nogueira, M., andWangham, M. S. (2024). Criação e análise de datasets de ataque de negação de serviço usando o mentored testbed. In Simpósio Brasileiro de Redes de Computadores e Sistemas Distribuídos (SBRC), pages 812–825. SBC.
Moustafa, N. (2021). A new distributed architecture for evaluating ai-based security systems at the edge: Network ton iot datasets. Sustainable Cities and Society, 72:102994. OWASP (2018). IoT Top 10. Technical report, OWSAP.
Sáez-de Cámara, X., Flores, J. L., Arellano, C., Urbieta, A., and Zurutuza, U. (2023). Gotham testbed: a reproducible iot testbed for security experiments and dataset generation. IEEE Transactions on Dependable and Secure Computing.
Santana, K. G. Q. d., Schwarz, M., and Wangham, M. S. (2024). Cybersecurity testbeds for IoT: A systematic literature review and taxonomy. Journal of Internet Services and Applications, 15(1):450–473.
SentinelOne (2024). Key Cyber Security Statistics for 2025 — sentinelone.com. [link]. [Accessed 24-01-2025].
Siaterlis, C., Garcia, A. P., and Genge, B. (2012). On the use of emulab testbeds for scientifically rigorous experiments. IEEE Communications Surveys & Tutorials, 15(2):929–942.
Siboni, S., Sachidananda, V., Meidan, Y., Bohadana, M., Mathov, Y., Bhairav, S., Shabtai, A., and Elovici, Y. (2018). Security testbed for internet-of-things devices. IEEE transactions on reliability, 68(1):23–44.
Sritharan, K., Elagumeeharan, R., Nakkeeran, S., Mohamed, A., Ganegoda, B., and Yapa, K. (2022). Machine learning based distributed denial-of-services attacks detection and mitigation testbed for sdn-enabled iot devices. In 2022 13th International Conference on Computing Communication and Networking Technologies (ICCCNT), pages 1–6. IEEE.
SUSE Rancher (2025). RKE2. [link]. [Accessed 20-01-2025].
The Admiralty Authors (2024). Multi-Cluster Kubernetes. Simplified. [link]. [Accessed 20-01-2025].
Thom, J., Das, T., Shrestha, B., Sengupta, S., and Arslan, E. (2021). Casting a wide net: An internet of things testbed for cybersecurity education and research. In 2021 International Symposium on Performance Evaluation of Computer and Telecommunication Systems (SPECTS), pages 1–8. IEEE.
Van der Maaten, L. and Hinton, G. (2008). Visualizing data using t-sne. Journal of machine learning research, 9(11).
Şenel, B. C., Mouchet, M., Cappos, J., Fourmaux, O., Friedman, T., and McGeer, R. (2021). Edgenet: the global kubernetes cluster testbed. In IEEE INFOCOM 2021 - IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS), pages 1–2.
Publicado
19/05/2025
Como Citar
SANTANA, Khalil G. Q. de; MEYER, Bruno Henrique; GEMMER, Davi Daniel; SCHWARZ, Marcos; WANGHAM, Michelle S..
Estendendo o MENTORED Testbed para a execução de experimentos de cibersegurança multi-cluster e IoT. In: SIMPÓSIO BRASILEIRO DE REDES DE COMPUTADORES E SISTEMAS DISTRIBUÍDOS (SBRC), 43. , 2025, Natal/RN.
Anais [...].
Porto Alegre: Sociedade Brasileira de Computação,
2025
.
p. 868-881.
ISSN 2177-9384.
DOI: https://doi.org/10.5753/sbrc.2025.6390.
