Extending the MENTORED Testbed to run multi-cluster and IoT cybersecurity experiments
Abstract
IoT devices are widely used in many areas but often present critical vulnerabilities, such as weak passwords, exposed services, and outdated software. If compromised, they can form botnets and threaten systems on the Internet. To mitigate these weaknesses in an ethical and secure manner, a dedicated experimentation environment, a testbed, is needed to study attacks and develop security solutions. This work extends the MENTORED Testbed with the integration of IoT devices, creating a multi-cluster testbed for experiments on different architectures. Two attack scenarios were simulated to evaluate the developed extension, demonstrating its scalability and applicability in IoT security.
Keywords:
Cybersecurity, IoT, Testbed, Machine Learning
References
Airola, A., Pahikkala, T., Waegeman, W., De Baets, B., and Salakoski, T. (2009). A comparison of auc estimators in small-sample studies. In Machine learning in systems biology, pages 3–13. PMLR.
Al-Hawawreh, M. and Sitnikova, E. (2020). Developing a security testbed for industrial internet of things. IEEE Internet of Things Journal, 8(7):5558–5573.
Aqeel, M., Ali, F., Iqbal, M. W., Rana, T. A., Arif, M., and Auwul, M. R. (2022). A review of security and privacy concerns in the internet of things (iot). Journal of Sensors, 2022(1):5724168.
Grossmann, J. and Duponchelle, J. (2008). Graphical network simulator-3. [link]. [Accessed 20-02-2024].
Imperva (2023). 2023 Imperva Bad Bot Report — Resource Library — imperva.com. [link]. [Accessed 15-02-2024].
Karmada Authors (2025). Open, Multi-Cloud, Multi-Cluster Kubernetes Orchestration — karmada — karmada.io. [link]. [Accessed 20-01-2025].
Koroniotis, N., Moustafa, N., Schiliro, F., Gauravaram, P., and Janicke, H. (2021). The sair-iiot cyber testbed as a service: A novel cybertwins architecture in iiot-based smart airports. IEEE Transactions on Intelligent Transportation Systems.
Koroniotis, N., Moustafa, N., Sitnikova, E., and Turnbull, B. (2019). Towards the development of realistic botnet dataset in the internet of things for network forensic analytics: Bot-iot dataset. Future Generation Computer Systems, 100:779–796.
Meyer, B. H., Gemmer, D. D., Andrade, A. M., de Mello, E. R., Nogueira, M., and Wangham, M. S. (2022). Criação de redes virtuais no mentored testbed: Uma análise experimental. In Anais do I Workshop de Testbeds, pages 24–35. SBC.
Meyer, B. H., Gemmer, D. D., de Santana, K. G., Ferreira, J. V., de Mello, E. R., Nogueira, M., andWangham, M. S. (2024). Criação e análise de datasets de ataque de negação de serviço usando o mentored testbed. In Simpósio Brasileiro de Redes de Computadores e Sistemas Distribuídos (SBRC), pages 812–825. SBC.
Moustafa, N. (2021). A new distributed architecture for evaluating ai-based security systems at the edge: Network ton iot datasets. Sustainable Cities and Society, 72:102994. OWASP (2018). IoT Top 10. Technical report, OWSAP.
Sáez-de Cámara, X., Flores, J. L., Arellano, C., Urbieta, A., and Zurutuza, U. (2023). Gotham testbed: a reproducible iot testbed for security experiments and dataset generation. IEEE Transactions on Dependable and Secure Computing.
Santana, K. G. Q. d., Schwarz, M., and Wangham, M. S. (2024). Cybersecurity testbeds for IoT: A systematic literature review and taxonomy. Journal of Internet Services and Applications, 15(1):450–473.
SentinelOne (2024). Key Cyber Security Statistics for 2025 — sentinelone.com. [link]. [Accessed 24-01-2025].
Siaterlis, C., Garcia, A. P., and Genge, B. (2012). On the use of emulab testbeds for scientifically rigorous experiments. IEEE Communications Surveys & Tutorials, 15(2):929–942.
Siboni, S., Sachidananda, V., Meidan, Y., Bohadana, M., Mathov, Y., Bhairav, S., Shabtai, A., and Elovici, Y. (2018). Security testbed for internet-of-things devices. IEEE transactions on reliability, 68(1):23–44.
Sritharan, K., Elagumeeharan, R., Nakkeeran, S., Mohamed, A., Ganegoda, B., and Yapa, K. (2022). Machine learning based distributed denial-of-services attacks detection and mitigation testbed for sdn-enabled iot devices. In 2022 13th International Conference on Computing Communication and Networking Technologies (ICCCNT), pages 1–6. IEEE.
SUSE Rancher (2025). RKE2. [link]. [Accessed 20-01-2025].
The Admiralty Authors (2024). Multi-Cluster Kubernetes. Simplified. [link]. [Accessed 20-01-2025].
Thom, J., Das, T., Shrestha, B., Sengupta, S., and Arslan, E. (2021). Casting a wide net: An internet of things testbed for cybersecurity education and research. In 2021 International Symposium on Performance Evaluation of Computer and Telecommunication Systems (SPECTS), pages 1–8. IEEE.
Van der Maaten, L. and Hinton, G. (2008). Visualizing data using t-sne. Journal of machine learning research, 9(11).
Şenel, B. C., Mouchet, M., Cappos, J., Fourmaux, O., Friedman, T., and McGeer, R. (2021). Edgenet: the global kubernetes cluster testbed. In IEEE INFOCOM 2021 - IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS), pages 1–2.
Al-Hawawreh, M. and Sitnikova, E. (2020). Developing a security testbed for industrial internet of things. IEEE Internet of Things Journal, 8(7):5558–5573.
Aqeel, M., Ali, F., Iqbal, M. W., Rana, T. A., Arif, M., and Auwul, M. R. (2022). A review of security and privacy concerns in the internet of things (iot). Journal of Sensors, 2022(1):5724168.
Grossmann, J. and Duponchelle, J. (2008). Graphical network simulator-3. [link]. [Accessed 20-02-2024].
Imperva (2023). 2023 Imperva Bad Bot Report — Resource Library — imperva.com. [link]. [Accessed 15-02-2024].
Karmada Authors (2025). Open, Multi-Cloud, Multi-Cluster Kubernetes Orchestration — karmada — karmada.io. [link]. [Accessed 20-01-2025].
Koroniotis, N., Moustafa, N., Schiliro, F., Gauravaram, P., and Janicke, H. (2021). The sair-iiot cyber testbed as a service: A novel cybertwins architecture in iiot-based smart airports. IEEE Transactions on Intelligent Transportation Systems.
Koroniotis, N., Moustafa, N., Sitnikova, E., and Turnbull, B. (2019). Towards the development of realistic botnet dataset in the internet of things for network forensic analytics: Bot-iot dataset. Future Generation Computer Systems, 100:779–796.
Meyer, B. H., Gemmer, D. D., Andrade, A. M., de Mello, E. R., Nogueira, M., and Wangham, M. S. (2022). Criação de redes virtuais no mentored testbed: Uma análise experimental. In Anais do I Workshop de Testbeds, pages 24–35. SBC.
Meyer, B. H., Gemmer, D. D., de Santana, K. G., Ferreira, J. V., de Mello, E. R., Nogueira, M., andWangham, M. S. (2024). Criação e análise de datasets de ataque de negação de serviço usando o mentored testbed. In Simpósio Brasileiro de Redes de Computadores e Sistemas Distribuídos (SBRC), pages 812–825. SBC.
Moustafa, N. (2021). A new distributed architecture for evaluating ai-based security systems at the edge: Network ton iot datasets. Sustainable Cities and Society, 72:102994. OWASP (2018). IoT Top 10. Technical report, OWSAP.
Sáez-de Cámara, X., Flores, J. L., Arellano, C., Urbieta, A., and Zurutuza, U. (2023). Gotham testbed: a reproducible iot testbed for security experiments and dataset generation. IEEE Transactions on Dependable and Secure Computing.
Santana, K. G. Q. d., Schwarz, M., and Wangham, M. S. (2024). Cybersecurity testbeds for IoT: A systematic literature review and taxonomy. Journal of Internet Services and Applications, 15(1):450–473.
SentinelOne (2024). Key Cyber Security Statistics for 2025 — sentinelone.com. [link]. [Accessed 24-01-2025].
Siaterlis, C., Garcia, A. P., and Genge, B. (2012). On the use of emulab testbeds for scientifically rigorous experiments. IEEE Communications Surveys & Tutorials, 15(2):929–942.
Siboni, S., Sachidananda, V., Meidan, Y., Bohadana, M., Mathov, Y., Bhairav, S., Shabtai, A., and Elovici, Y. (2018). Security testbed for internet-of-things devices. IEEE transactions on reliability, 68(1):23–44.
Sritharan, K., Elagumeeharan, R., Nakkeeran, S., Mohamed, A., Ganegoda, B., and Yapa, K. (2022). Machine learning based distributed denial-of-services attacks detection and mitigation testbed for sdn-enabled iot devices. In 2022 13th International Conference on Computing Communication and Networking Technologies (ICCCNT), pages 1–6. IEEE.
SUSE Rancher (2025). RKE2. [link]. [Accessed 20-01-2025].
The Admiralty Authors (2024). Multi-Cluster Kubernetes. Simplified. [link]. [Accessed 20-01-2025].
Thom, J., Das, T., Shrestha, B., Sengupta, S., and Arslan, E. (2021). Casting a wide net: An internet of things testbed for cybersecurity education and research. In 2021 International Symposium on Performance Evaluation of Computer and Telecommunication Systems (SPECTS), pages 1–8. IEEE.
Van der Maaten, L. and Hinton, G. (2008). Visualizing data using t-sne. Journal of machine learning research, 9(11).
Şenel, B. C., Mouchet, M., Cappos, J., Fourmaux, O., Friedman, T., and McGeer, R. (2021). Edgenet: the global kubernetes cluster testbed. In IEEE INFOCOM 2021 - IEEE Conference on Computer Communications Workshops (INFOCOM WKSHPS), pages 1–2.
Published
2025-05-19
How to Cite
SANTANA, Khalil G. Q. de; MEYER, Bruno Henrique; GEMMER, Davi Daniel; SCHWARZ, Marcos; WANGHAM, Michelle S..
Extending the MENTORED Testbed to run multi-cluster and IoT cybersecurity experiments. In: BRAZILIAN SYMPOSIUM ON COMPUTER NETWORKS AND DISTRIBUTED SYSTEMS (SBRC), 43. , 2025, Natal/RN.
Anais [...].
Porto Alegre: Sociedade Brasileira de Computação,
2025
.
p. 868-881.
ISSN 2177-9384.
DOI: https://doi.org/10.5753/sbrc.2025.6390.
