Offensive Cyber Security Trainer for Platform Management Systems

2021 IEEE International Systems Conference (SysCon) Pub Date : 2021-04-15 DOI:10.1109/SysCon48628.2021.9447060

J. Timmins, S. Knight, Brian Lachine

{"title":"Offensive Cyber Security Trainer for Platform Management Systems","authors":"J. Timmins, S. Knight, Brian Lachine","doi":"10.1109/SysCon48628.2021.9447060","DOIUrl":null,"url":null,"abstract":"To protect its platforms against cyber attacks, the Royal Canadian Navy (RCN) must train specialists in platform cyber security. These specialists will need to understand the offensive capabilities of their adversaries in order to defend these platforms and to develop more secure systems. As a result, these specialists will require an environment which can facilitate training in offensive cyber security techniques. Currently, no cyber security trainer exists for the RCN’s Platform Management Systems (PMS), nor does one exist for any of the RCN’s other platform systems.The aim of this research is to develop a PMS environment based on effective training techniques and capable of training RCN personnel in offensive cyber techniques. Effective training techniques in this context will reflect best practices from pedagogical literature. The training environment in this case is an offensive cyber security trainer which facilitates the training of personnel to execute cyber kill chains mapped from real attacker tactics, techniques, and procedures. Training cyber defenders to perform these kill chains will provide them with a greater understanding of how attacks can be executed against RCN platform systems. This in turn will enable the RCN to better defend against such kill chains.In order to accomplish this aim, an offensive cyber security trainer for a PMS is developed which utilizes a combination of simulation, emulation, and virtualization to provide an effective level of control and flexibility while also maintaining a high level of realism. This training also specifically leverages a Capture the Flag (CTF) framework to enhance personnel engagement within the environment. The functionality of this trainer is demonstrated by its ability to facilitate the training program and the execution of multiple kill chains against the PMS. The effectiveness of the trainer is validated on its application of current research methodology in effective gamified training environment design.","PeriodicalId":384949,"journal":{"name":"2021 IEEE International Systems Conference (SysCon)","volume":"515 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-04-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 IEEE International Systems Conference (SysCon)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SysCon48628.2021.9447060","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

To protect its platforms against cyber attacks, the Royal Canadian Navy (RCN) must train specialists in platform cyber security. These specialists will need to understand the offensive capabilities of their adversaries in order to defend these platforms and to develop more secure systems. As a result, these specialists will require an environment which can facilitate training in offensive cyber security techniques. Currently, no cyber security trainer exists for the RCN’s Platform Management Systems (PMS), nor does one exist for any of the RCN’s other platform systems.The aim of this research is to develop a PMS environment based on effective training techniques and capable of training RCN personnel in offensive cyber techniques. Effective training techniques in this context will reflect best practices from pedagogical literature. The training environment in this case is an offensive cyber security trainer which facilitates the training of personnel to execute cyber kill chains mapped from real attacker tactics, techniques, and procedures. Training cyber defenders to perform these kill chains will provide them with a greater understanding of how attacks can be executed against RCN platform systems. This in turn will enable the RCN to better defend against such kill chains.In order to accomplish this aim, an offensive cyber security trainer for a PMS is developed which utilizes a combination of simulation, emulation, and virtualization to provide an effective level of control and flexibility while also maintaining a high level of realism. This training also specifically leverages a Capture the Flag (CTF) framework to enhance personnel engagement within the environment. The functionality of this trainer is demonstrated by its ability to facilitate the training program and the execution of multiple kill chains against the PMS. The effectiveness of the trainer is validated on its application of current research methodology in effective gamified training environment design.

查看原文本刊更多论文

平台管理系统进攻性网络安全培训师

为了保护其平台免受网络攻击，加拿大皇家海军(RCN)必须培训平台网络安全专家。这些专家需要了解对手的进攻能力，以保护这些平台并开发更安全的系统。因此，这些专家将需要一个能够促进攻击性网络安全技术培训的环境。目前，没有针对RCN平台管理系统(PMS)的网络安全培训师，也没有针对RCN其他平台系统的网络安全培训师。本研究的目的是开发一个基于有效训练技术的PMS环境，能够训练RCN人员的进攻性网络技术。在这种情况下，有效的培训技术将反映教学文献中的最佳实践。本案例中的培训环境是一个进攻性的网络安全培训师，它有助于培训人员执行从真实攻击者战术、技术和程序映射的网络杀伤链。培训网络防御者执行这些杀伤链将使他们更好地了解如何对RCN平台系统执行攻击。这反过来将使海军陆战队能够更好地防御这种杀伤链。为了实现这一目标，开发了一种针对PMS的进攻性网络安全培训器，该培训器利用模拟，仿真和虚拟化的组合来提供有效的控制和灵活性，同时保持高水平的真实感。该培训还特别利用了“夺旗”(CTF)框架，以提高人员在环境中的参与度。这款教练机的功能体现在它能够促进训练计划和执行针对PMS的多个杀伤链。将现有的研究方法应用于有效的游戏化训练环境设计，验证了培训器的有效性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2021 IEEE International Systems Conference (SysCon)

自引率

0.00%

发文量