Fostering the Culture of Cyber Security

Abstract

As a side effect of globalisation and massive cyber services the number of crimes both perpetrated at local and global level is growing up. Governments and Law Enforcement Agencies are aware of this and look for potential countermeasures not only following traditional solutions. Technological countermeasures are not enough there is a need to foster the Culture of Cyber Security. The present paper introduces an innovative Cyber Range to be integrated in the foreseen European Cyber Range Network. The proposed solution provides tools to test the resilience of networks and systems by exposing them to realistic nation-state cyber threats in a secure facility with the latest tools, techniques and malware, this facilitate the testing of critical technologies with enhanced agility, flexibility and scalability, it helps to strengthen the stability, security and performance of cyberinfrastructures and IT systems used by government and private organisations. The document describes a platform devoted to easily create virtual environments devoted to cyberwarfare training and cybertechnology development. The solution is in line with typical simulator’s features will be fed by real case study and will create a knowledge base of cyber treats and related extended effects and mitigation/counteractions. A specific features is the identification of the zero-day vulnerabilities in order to reduce or eliminate the Window of Vulnerability (WoV) and identify main attack vectors.Main outcomes are: improved situational awareness of cyber warfare scenarios, rapid identification of zero-day vulnerabilities, environment for the development of countermeasures, training environment for practitioners.