English

NetSecBed: A Container-Native Testbed for Reproducible Cybersecurity Experimentation

Cryptography and Security 2026-04-07 v1 Artificial Intelligence Networking and Internet Architecture Performance

Abstract

Cybersecurity research increasingly depends on reproducible evidence, such as traffic traces, logs, and labeled datasets, yet most public datasets remain static and offer limited support for controlled re-execution and traceability, especially in heterogeneous multi-protocol environments. This paper presents NetSecBed, a container-native, scenario-oriented testbed for reproducible generation of network traffic evidence and execution artifacts under controlled conditions, particularly suitable for IoT, IIoT, and pervasive multi-protocol environments. The framework integrates 60 attack scenarios, 9 target services, and benign traffic generators as single-purpose containers, enabling plug-and-play extensibility and traceability through declarative specifications. Its pipeline automates parametrized execution, packet capture, log collection, service probing, feature extraction, and dataset consolidation. The main contribution is a repeatable, auditable, and extensible framework for cybersecurity experimentation that reduces operational bias and supports continuous dataset generation.

Keywords

Cite

@article{arxiv.2604.04121,
  title  = {NetSecBed: A Container-Native Testbed for Reproducible Cybersecurity Experimentation},
  author = {Leonardo Bitzki and Diego Kreutz and Tiago Heinrich and Douglas Fideles and Leandro Bertholdo and Silvio Quincozes and Angelo Diniz},
  journal= {arXiv preprint arXiv:2604.04121},
  year   = {2026}
}

Comments

8 pages, including 4 figures and 2 tables, submitted to SBCUP 2026

R2 v1 2026-07-01T11:54:29.483Z