|
Cyber Security
Simulation
|
In its interactive
environment, CyberCIEGE
covers significant
aspects of computer and
network security and
defense. Players of this
video game purchase and
configure workstations,
servers, operating
systems, applications,
and network devices.
They make trade offs as
they struggle to
maintain a balance
between budget,
productivity, and
security. In its longer
scenarios, users advance
through a series of
stages and must protect
increasingly valuable
corporate assets against
escalating attacks.
CyberCIEGE includes
configurable firewalls,
VPNs, link encryptors
and access control
mechanisms. It includes
identity management
components such as
biometric scanners and
authentication servers.
Attack types include
corrupt insiders, trap
doors, Trojan horses,
viruses, denial of
service, and
exploitation of weakly
configured systems.
Attacker motives to
compromise assets differ
by asset and scenario,
thereby supporting
scenarios ranging from
e-mail attachment
awareness to cyber
warfare. |
 |
Posters
2007 NPS CyberCIEGE Poster as (PDF) or (PPT)
Publications
Cone, B. D., Irvine, C. E., Thompson, M. F., Nguyen, T. D., "A Video Game for Cyber Security Training and Awareness", Computers & Security 26 (2007) pp. 63-72
Cone, B. D., Thompson, M. F., Irvine, C. E. and Nguyen, T. D., "Cyber Security Training and Awareness Through Game Play," 2006, in IFIP International Federation for Information Processing, Volume 201, Security and Privacy in Dynamic Environments, eds. Fischer-Hubner, S., Rannenberg, K., Yngstrom, L., Lindskog, S., (Boston: Springer), pp. 431-436.
Irvine, C.E., Thompson, M.F., Allen, K.,"CyberCIEGE: Gaming for Information Assurance", Naval Postgraduate Sch., Monterey, CA, USA; Security & Privacy Magazine, IEEE, May-June 2005, Volume: 3, Issue: 3, page(s): 61- 64, ISSN: 1540-7993
Irvine, C.E., Thompson, M.F., Allen, K., "CyberCIEGE: An Extensible Tool for Information Assurance Education" CISSE conference
Irvine, C.E., Thompson, M.F., Allen, K., "CyberCIEGE: An Information Assurance Teaching Tool for Training and Awareness", Federal Information Systems Security Educators' Association Conference, North Bethesda, MD, March 22-23 2005.
Irvine, C.E., Thompson, M.F., "Expressing an Information Security Policy Within a Security Simulation Game", Proceedings of the Sixth Workshop on Education in Computer Security (WECS6), Naval Postgraduate School, Monterey, California , July 12-16 2004, pp. 43-49
Irvine, C.E., Thompson, M.F., "Teaching Objectives of a Simulation Game for Computer Security", Proceedings of the Informing Science and Information Technology Joint Conference, Pori, Finland, June 24-27 2003
Theses
Fielk, K. W., "CyberCIEGE
Scenario Illustrating Integrity Risks to a Military Like Facility", Masters Thesis, Naval Postgraduate School, September 2004 (Abstract, PDF)
Lamorie, J., "A CyberCIEGE Scenario Illustrating Secrecy Issues in an Internal Corporate Network Connected to the Internet", Masters Thesis, Naval Postgraduate School, September 2004 (Abstract, PDF)
LaMore, R.L., "CyberCIEGE Scenario Illustrating Secrecy Issues Through Mandatory and Discretionary Access Control Policies in a Multi-Level Security Network", Masters Thesis, Naval Postgraduate School, June 2004 (Abstract, PDF)
Meyer, M.K., "A CyberCIEGE Scenario Illustrating Multilevel Secrecy Issues in an Air Operations Center Environment", Masters Thesis, Naval Postgraduate School, June 2004 (Abstract, PDF)
Johns, Jr. K. W., "Toward Managing and Automating CyberCIEGE Scenario Definition File Creation", Masters Thesis, Naval Postgraduate School, March 2004 (Abstract, PDF)
Teo, T. L., "Scenario Selection And Student Assessment Modules For CyberCIEGE", Masters Thesis, Naval Postgraduate School, Monterey, December 2003 (Abstract, PDF)
|
