CyExec*: Automatic Generation of Randomized Cyber Range Scenarios

Ryotaro Nakata, Akira Otsuka

2021

Abstract

With the development of information technology, the need for information security education is increasing, and the effectiveness of cyber range exercises is attracting attention. The cyber range is a system to learn knowledge and skills by experiencing an incident scenario reproduced in a virtual environment. Many scenarios are required to train a security expert through various incident experiences. However, scenario development requires highly specialized expertise. Thus, in practice, only a limited number of scenarios are worn out around. Identical scenarios may decrease the educational effect since the other teams’ actions or write-ups on the internet will hint the students. We propose CyExec*, a cyber range system that automatically generates multiple scenarios based on DAG(Directed Acyclic Graph)-based scenario randomization. Multiple scenarios with the same learning objectives can enhance teaching effectiveness and prevent cheating. We developed the DAGbased scenario randomization technique on a Docker-based cyber range system called CyExec. By taking full advantage of Docker’s system/network configuration power, we can randomize complex scenarios across multiple networks. Comparison with the VM-based scenario generators, CyExec* outperforms, especially in storage usage. Further, CyExec* only consumes 1/3 memories, 1/4 CPU loads, and 1/10 storage usages. Thus, Cyexec* can operate approximately 3-times more complex scenarios than VM-based systems.

Download


Paper Citation


in Harvard Style

Nakata R. and Otsuka A. (2021). CyExec*: Automatic Generation of Randomized Cyber Range Scenarios.In Proceedings of the 7th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-491-6, pages 226-236. DOI: 10.5220/0010324502260236


in Bibtex Style

@conference{icissp21,
author={Ryotaro Nakata and Akira Otsuka},
title={CyExec*: Automatic Generation of Randomized Cyber Range Scenarios},
booktitle={Proceedings of the 7th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2021},
pages={226-236},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010324502260236},
isbn={978-989-758-491-6},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 7th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - CyExec*: Automatic Generation of Randomized Cyber Range Scenarios
SN - 978-989-758-491-6
AU - Nakata R.
AU - Otsuka A.
PY - 2021
SP - 226
EP - 236
DO - 10.5220/0010324502260236