Eidolon - A System for Dynamically Generating Secure Network Environments to Isolate Compromised Nodes

In recent years the increasing complexity of enterprise network management, with the adoption of cloud computing, IoT, hybrid work environments, and globalized business operations, has increased the attack surface of modern companies and critical infrastructures showing the limitations of traditional perimeter-based network security models. This work explores a host-based micro-segmentation approach based on Zero-Trust principles to enhance network security, scalability, and resilience while offering tools to aid in the management of wide area network. This research introduces Eidolon, a system for dynamically creating and deploying secure overlay networks using Software Defined Networking (SDN), built from Nebula and the previously developed NEST project. Eidolon enables automated isolation of compromised nodes from the network while ensuring seamless network management through declarative configuration using the Dhall language and high security with advanced certificate automation. This research focuses on developing a new framework for secure, adaptable, and reliable enterprise networking, contributing to the advancement of Zero Trust architectures. Eidolon's performance, scalability, and usability are assessed in this research, highlighting its potential as a powerful and adaptable solution for contemporary enterprise networking. This system serves as a base for future projects, such as real-time threat analysis, network simulations, and AI-powered security solutions.