Optimization of Cyber Defense Exercises Using Balanced Software Development Methodology

Kód výsledku v IS VaVaI

<a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216224%3A14330%2F21%3A00120611" target="_blank" >RIV/00216224:14330/21:00120611 - isvavai.cz</a>

Výsledek na webu

<a href="https://www.igi-global.com/gateway/article/272763" target="_blank" >https://www.igi-global.com/gateway/article/272763</a>

DOI - Digital Object Identifier

<a href="http://dx.doi.org/10.4018/IJITSA.2021010108" target="_blank" >10.4018/IJITSA.2021010108</a>

Jazyk výsledku

angličtina

Název v původním jazyce

Optimization of Cyber Defense Exercises Using Balanced Software Development Methodology

Popis výsledku v původním jazyce

Cyber defense exercises (CDXs) represent an effective way to train cybersecurity experts. However, their development is lengthy and expensive. The reason lies in current practice where the CDX life cycle is not sufficiently mapped and formalized, and then exercises are developed ad-hoc. However, the CDX development shares many aspects with software development, especially with ERP systems. This paper presents a generic CDX development method that has been derived from existing CDX life cycles using the SPEM standard meta-model. The analysis of the method revealed bottlenecks in the CDX development process. Observations made from the analysis and discussed in the paper indicate that the organization of CDXs can be significantly optimized by applying a balanced mixed approach with agile preparation and plan-driven disciplined evaluation.

Název v anglickém jazyce

Optimization of Cyber Defense Exercises Using Balanced Software Development Methodology

Popis výsledku anglicky

Cyber defense exercises (CDXs) represent an effective way to train cybersecurity experts. However, their development is lengthy and expensive. The reason lies in current practice where the CDX life cycle is not sufficiently mapped and formalized, and then exercises are developed ad-hoc. However, the CDX development shares many aspects with software development, especially with ERP systems. This paper presents a generic CDX development method that has been derived from existing CDX life cycles using the SPEM standard meta-model. The analysis of the method revealed bottlenecks in the CDX development process. Observations made from the analysis and discussed in the paper indicate that the organization of CDXs can be significantly optimized by applying a balanced mixed approach with agile preparation and plan-driven disciplined evaluation.

Druh

J_SC - Článek v periodiku v databázi SCOPUS

CEP obor

—

OECD FORD obor

10201 - Computer sciences, information science, bioinformathics (hardware development to be 2.2, social aspect to be 5.8)

Projekt

<a href="/cs/project/EF16_019%2F0000822" target="_blank" >EF16_019/0000822: Centrum excelence pro kyberkriminalitu, kyberbezpečnost a ochranu kritických informačních infrastruktur</a><br>

Návaznosti

P - Projekt vyzkumu a vyvoje financovany z verejnych zdroju (s odkazem do CEP)

Rok uplatnění

2021

Kód důvěrnosti údajů

S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Název periodika

International Journal of Information Technologies and Systems Approach

ISSN

1935-570X

e-ISSN

1935-5718

Svazek periodika

14

Číslo periodika v rámci svazku

1

Stát vydavatele periodika

US - Spojené státy americké

Počet stran výsledku

20

Strana od-do

136-155

Kód UT WoS článku

000644820000009

EID výsledku v databázi Scopus

2-s2.0-85101423793