Lessons Learned From Complex Hands-on Defence Exercises in a Cyber Range

Kód výsledku v IS VaVaI

<a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216224%3A14610%2F17%3A00094479" target="_blank" >RIV/00216224:14610/17:00094479 - isvavai.cz</a>

Výsledek na webu

<a href="https://is.muni.cz/repo/1391675/2017-FIE-lessons-learned-exercises-cyber-range-paper.pdf" target="_blank" >https://is.muni.cz/repo/1391675/2017-FIE-lessons-learned-exercises-cyber-range-paper.pdf</a>

DOI - Digital Object Identifier

<a href="http://dx.doi.org/10.1109/FIE.2017.8190713" target="_blank" >10.1109/FIE.2017.8190713</a>

Jazyk výsledku

angličtina

Název v původním jazyce

Lessons Learned From Complex Hands-on Defence Exercises in a Cyber Range

Popis výsledku v původním jazyce

We need more skilled cybersecurity professionals because the number of cyber threats and ingenuity of attackers is ever growing. Knowledge and skills required for cyber defence can be developed and exercised by lectures and lab sessions, or by active learning, which is seen as a promising and attractive alternative. In this paper, we present experience gained from the preparation and execution of cyber defence exercises involving various participants in a cyber range. The exercises follow a Red vs. Blue team format, in which the Red team conducts malicious activities against emulated networks and systems that have to be defended by Blue teams of learners. Although this exercise format is popular and used worldwide by numerous organizers in practice, it has been sparsely researched. We contribute to the topic by describing the general exercise life cycle, covering the exercise's development, dry run, execution, evaluation, and repetition. Each phase brings several challenges that exercise organizers have to deal with. We present lessons learned that can help organizers to prepare, run and repeat successful events systematically, with lower effort and costs, and avoid a trial-and-error approach that is often used.

Název v anglickém jazyce

Lessons Learned From Complex Hands-on Defence Exercises in a Cyber Range

Popis výsledku anglicky

We need more skilled cybersecurity professionals because the number of cyber threats and ingenuity of attackers is ever growing. Knowledge and skills required for cyber defence can be developed and exercised by lectures and lab sessions, or by active learning, which is seen as a promising and attractive alternative. In this paper, we present experience gained from the preparation and execution of cyber defence exercises involving various participants in a cyber range. The exercises follow a Red vs. Blue team format, in which the Red team conducts malicious activities against emulated networks and systems that have to be defended by Blue teams of learners. Although this exercise format is popular and used worldwide by numerous organizers in practice, it has been sparsely researched. We contribute to the topic by describing the general exercise life cycle, covering the exercise's development, dry run, execution, evaluation, and repetition. Each phase brings several challenges that exercise organizers have to deal with. We present lessons learned that can help organizers to prepare, run and repeat successful events systematically, with lower effort and costs, and avoid a trial-and-error approach that is often used.

Druh

D - Stať ve sborníku

CEP obor

—

OECD FORD obor

10201 - Computer sciences, information science, bioinformathics (hardware development to be 2.2, social aspect to be 5.8)

Projekt

<a href="/cs/project/VI20162019014" target="_blank" >VI20162019014: Simulace, detekce a potlačení kybernetických hrozeb ohrožujících kritickou infrastrukturu</a><br>

Návaznosti

P - Projekt vyzkumu a vyvoje financovany z verejnych zdroju (s odkazem do CEP)

Rok uplatnění

2017

Kód důvěrnosti údajů

S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Název statě ve sborníku

2017 IEEE Frontiers in Education Conference

ISBN

9781509059195

ISSN

1539-4565

e-ISSN

—

Počet stran výsledku

8

Strana od-do

1-8

Název nakladatele

IEEE

Místo vydání

Indianapolis, IN, USA

Místo konání akce

Indianapolis, USA

Datum konání akce

1. 1. 2017

Typ akce podle státní příslušnosti

WRD - Celosvětová akce

Kód UT WoS článku

000426974900279