Teaching Network Security With IP Darkspace Data

Zseby, Tanja; Vazquez, Felix Iglesias; King, Alistair; Claffy, Kimberly C.

doi:10.1109/te.2015.2417512

Cited by 20 publications

(8 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The authors suggested a group-based strategy in which students have access to workstations that have the CommView network analysis and packet sniffing programs installed. A similar proposal, geared towards security auditing practice activities is proposed in [8], which presents a methodology for teaching network traffic anomaly detection techniques utilizing an IP darkspace monitor, resorting to the MATLAB, tcpdump, corsaro, and RapidMiner tools. They also present a concept for a network security laboratory, designed for instructional purposes.…”

Section: A Quick Review Of Testbeds and Cyber Ranges For Training And Researchmentioning

confidence: 99%

Down the Rabbit Hole: Fostering Active Learning through Guided Exploration of a SCADA Cyber Range

Cruz

Simões

2021

Applied Sciences

View full text Add to dashboard Cite

Prior experience from the authors has shown that a heavily theoretical approach for cybersecurity training has multiple shortcomings, mostly due to the demanding and diversified nature of the prerequisites, often involving concepts about operating system design, networking and computer architecture, among others. In such circumstances, the quest for trainee engagement often turns into a delicate balancing act between managing their expectations and providing an adequate progression path. In this perspective, hands-on exercises and contact with high-fidelity environments play a vital part in fostering interest and promoting a rewarding learning experience. Making this possible requires having the ability to design and deploy different use case training scenarios in a flexible way, tailored to the specific needs of classroom-based, blended or e-learning teaching models. This paper presents a flexible framework for the creation of laboratory and cyber range environments for training purposes, detailing the development, implementation and exploration of a cyber range scenario, within the scope of a course on cyber-physical systems security. Moreover, the course structure, curricular aspects and teaching methods are also detailed, as well as the feedback obtained from the students.

show abstract

Section: A Quick Review Of Testbeds and Cyber Ranges For Training And Researchmentioning

confidence: 99%

Down the Rabbit Hole: Fostering Active Learning through Guided Exploration of a SCADA Cyber Range

Cruz

Simões

2021

Applied Sciences

View full text Add to dashboard Cite

show abstract

“…Instructor scored the accepted experimental works; the score was taken as the instantiation of Mark which ranged in [0,2]. The total score of each student taking part in crowdsourcing must range in [3], [5]. If the score exceeds 5, a certain amount of money would be paid to the student, which was the instantiation of Money.…”

Section: ) Fim Instantiation and Analysismentioning

confidence: 99%

“…these experiments from realistic scenarios that are shown to be more popular with the faculties and students [3].…”

Section: Introductionmentioning

confidence: 99%

Crowdsourcing Approach for Developing Hands-On Experiments in Cybersecurity Education

Wang

Tian

et al. 2019

IEEE Access

View full text Add to dashboard Cite

The operational skills are essential for the cybersecurity practitioners and the hands-on experiments can be utilized to train their practical skills. As malicious attacks are continually changing and new vulnerability appears quickly with the increasing number of new software, it has been a challenging problem to develop hands-on experiments rapidly and continuously which are consistent with realistic threat scenarios. Normally, skilled engineers are familiar with threat scenarios and the attack/defense skills, but they have no motivation to develop hands-on experiments for education. In contrast, the faculties are good at teaching and training but they have no resource or experience to deploy lots of hands-on experiments by themselves. In this paper, we propose a framework called RC 2 F by adopting the crowdsourcing approach, which acts as a platform for the engineers and the faculties as well as channels between them for resource exchanging. In the framework, we also introduce two incentive models to motivate the participants, where the constructor-oriented Forward Incentive Model (FIM for short) encourages the engineers by the incentive mechanism and the demand-oriented Backward Incentive Model (BIM for short) balances the educational resources for the faculties. We also provide a comprehensive case based on the practical data to analyze the proposed framework. And the results validate that the proposed framework as well as the FIM and BIM models can address the challenge in developing hands-on experiments. INDEX TERMS Cybersecurity, crowdsourcing, hands-on experiment, education, incentive model.

show abstract

“…For understanding security auditing methods, Zseby et al 5 proposed a project for teaching network traffic anomaly detection methods using a large IP darkspace monitor operated at the University of California, San Diego (UCSD). The exercises are based on four software tools, including, tcpdump, corsaro, MATLAB, and RapidMiner.…”

Section: Related Workmentioning

confidence: 99%

Teaching the process of building an Intrusion Detection System using data from a small‐scale SCADA testbed

Μαγλαράς

Cruz

Ferrag

et al. 2019

Internet Technology Letters

View full text Add to dashboard Cite

Security of Critical National Infrastructures (CNI) is one of the major concerns to countries both in a European and in a worldwide level. Training on scenarios that involve such systems is important to the effective handling of incidents. This article describes a final year module for teaching traffic anomaly detection to Computer Science and Informatics students at the De Montfort University. Students learn how to combine programming, data mining and security skills in order to build their own Intrusion Detection System using data from a small-scale SCADA testbed.

show abstract

Teaching Network Security With IP Darkspace Data

Cited by 20 publications

References 12 publications

Down the Rabbit Hole: Fostering Active Learning through Guided Exploration of a SCADA Cyber Range

Down the Rabbit Hole: Fostering Active Learning through Guided Exploration of a SCADA Cyber Range

Crowdsourcing Approach for Developing Hands-On Experiments in Cybersecurity Education

Teaching the process of building an Intrusion Detection System using data from a small‐scale SCADA testbed

Contact Info

Product

Resources

About