Attack Specification Language: Domain Specific Language for Dynamic Training in Cyber Range

机译：攻击规范语言：网络范围内动态培训的域特定语言

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Cyber education development is a crucial issue considering the human resource and skill shortage in the current cybersecurity arena. A cyber range is a tried and tested hands-on training in cybersecurity education, providing threat simulation of various scenarios. However, the threat scenario development poses crucial challenges that hurt the learning process and trainee’s engagement in training. Firstly, the threat scenarios are static and have limited applicability. Secondly, due to the lack of proper representation of procedures and training scenarios used in attacks, it is hard to recognize redundant procedures. We propose an Attack Specific Language (ASL) based on the Mitre ATT&CK framework. It provides one representation for all threat scenarios. This language will give information about attack techniques in compact ways, which will streamline and automate the cyber range functions of threat and challenge execution. It will help identify and reduce redundancy. ASL will also provide training customization through dynamic threat execution, which will be trainee-aware and will consider the trainee’s performance while executing scenarios. It will provide trainees, better engagement, and training experience.

机译：Cyber教育发展是考虑到当前网络安全竞技场的人力资源和技能短缺的关键问题。网络范围是一项试验和测试的网络安全教育的动手培训，提供各种场景的威胁模拟。然而，威胁情景开发构成了损害学习过程和实习生参与培训的重要挑战。首先，威胁情景是静态的，适用性有限。其次，由于缺乏适当的攻击程序和培训方案的代表性，因此很难识别冗余程序。我们提出了一种基于斜切ATT＆CK框架的攻击特定语言（ASL）。它为所有威胁方案提供了一个表示。这种语言将以紧凑的方式提供有关攻击技术的信息，它将简化和自动化威胁和挑战执行的网络范围功能。它将有助于识别和减少冗余。 ASL还将通过动态威胁执行提供培训定制，这将是实习生感知的，并将在执行场景时考虑实习生的性能。它将提供学员，更好的参与和培训经验。

著录项

来源
《IEEE Global Engineering Education Conference》|2021年|873-879|共7页
会议地点
作者
Sobia Arshad; Masoom Alam; Saif Al-Kuwari; Muhammad Haider Ali Khan;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Training; Conferences; Redundancy; Aerodynamics; Computer security; Engineering education; Domain specific languages;

机译：培训;会议;冗余;空气动力学;计算机安全;工程教育;域特定语言;

相似文献

外文文献
中文文献
专利

1. A Reference Model of CAD System Generation from Various Object Model-Based Specification Description Languages Specific to Individual Domains [J] . Lukman EFENDY, Masaaki HASHIMOTO, Keiichi KATAMINE IEICE Transactions on Information and Systems . 2000,第4期

机译：从各个对象专用的各种基于对象模型的规范描述语言生成CAD系统的参考模型
2. Design and implementation of a domain-specific specification description language for room arrangement design in architectural design [J] . Takeshi Matsuoka, Takahiko Yanari, Masaki Hashimoto, 電子情報通信学会技術研究報告. 知能ソフトウェア工学. Knowledge-Based Software Engineering . 2000,第710期

机译：建筑设计中房间布置设计的域特定规范描述语言的设计与实现
3. Design and implementation of a domain-specific specification description language for room arrangement design in architectural design [J] . Takeshi Matsuoka, Takahiko Yanari, Masaki Hashimoto, 電子情報通信学会技術研究報告. 知能ソフトウェア工学. Knowledge-Based Software Engineering . 2000,第710期

机译：建筑设计中房间布置设计的域特定规范描述语言的设计与实现
4. A Lightweight, Composable Metamodelling Language for Specification and Validation of Internal Domain Specific Languages [C] . Markus Klotzbücher, Herman Bruyninckx MOMPES 2012 . 2013

机译：用于规范和验证内部域特定语言的轻量级，可组合的元素语言
5. Formal Semantic Specification of Domain-Specific Modeling Languages for Cyber-Physical Systems. [D] . Simko, Gabor. 2014

机译：电子物理系统领域特定建模语言的形式语义规范。
6. Advancing Coordinated Cyber-investigations and Tool Interoperability using a Community Developed Specification Language [O] . Eoghan Casey, Sean Barnum, Ryan Griffith, -1

机译：使用社区开发的规范语言推进协调的网络调查和工具互操作性
7. Scientific validation of the training for language-impaired patients using cognitive neuropsychological approach in view of the mechanism of impaired language domain-The temporal lobe involvement in specific language impairment and syntax processing- [O] . Akihiro Kawasaki 2010

机译：鉴于语言域障碍的机制 - 特定语言障碍和语法处理的临时叶和语法处理鉴于语言神经心理学方法的语言受损患者培训培训验证
8. Graph-Based Visualization of Formal Specification and Domain Specific Languages. [R] . Langloss, R. K. 1991

机译：基于图形的形式规范和领域特定语言的可视化。

Attack Specification Language: Domain Specific Language for Dynamic Training in Cyber Range

摘要

著录项

相似文献

相关主题

期刊订阅