Generating training events for building cyber-physical security skills
ORCID
- Avanthika Vineetha Harish: 0000-0002-7352-5567
- Kimberly Tam: 0000-0003-2840-5715
- Kevin Jones: 0000-0002-7960-0978
Abstract
As the threat of cyber attacks increases, the cyber security sector continues to train professionals as one form of mitigation. Gamification and infrastructure like cyber ranges have been proven useful in training cyber security specialists to detect and react to cyber-attacks in information technology. However, a subset of all digital threats target cyber-physical systems, not just information systems, and these threats have been growing rapidly in recent years. While those threats are increasing, training specific to cyber-physical threats is not growing as quickly as information technology training solutions. While cyber ranges are useful for training and supporting events like cyber defence exercises and capture the flags events, limitations to cyber ranges make it more difficult to make an immersive event for cyber-physical training. This paper demonstrates how to devise a cyber-physical training environment using a combination of cyber ranges and cyber-physical system testbeds,and how to devise an accompanying immersive scenario to improve cyber-physical security skills through cooperative learning. To do this, an example training was created and implemented. This paper concludes with the results of running this event four times.
Publication Date
2024-11-08
Publication Title
Computer Journal
ISSN
0010-4620
Embargo Period
9999-12-31
Recommended Citation
Vineetha Harish, A., Tam, K., & Jones, K. (2024) 'Generating training events for building cyber-physical security skills', Computer Journal, . Retrieved from https://pearl.plymouth.ac.uk/secam-research/1929
