CyberCIEGE scenario illustrating secrecy issues through mandatory and discretionary access control policies in a multi-level security network
LaMore, Robert L.
MetadataShow full item record
User training in computer and network security is crucial to the survival of modern networks, yet the methods employed to train users often seem ineffective. One possible reason is that users are not fully engaged during these training sessions and thus they tend to forget the lessons being taught. The CyberCIEGE game introduces a new method of training in computer and network security. The player engages in a simulation-based network security game, that reflects real-world security principles. Each time the CyberCIEGE game runs, it loads a Scenario Definition File (SDF) written to teach specific security concepts. This thesis developed such a scenario definition file for the CyberCIEGE game. The educational purpose of the scenario is to illustrate secrecy issues in the context of mandatory and discretionary access control in a multilevel networked environment. The primary work of this thesis was to construct the scenario definition file such that playing the resulting game would achieve this educational purpose. This thesis also resulted in the construction of scenario definition files to test the CyberCIEGE game engine for expected results. These tests resulted in several recommendations for improvement in the game engine.
RightsThis publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States.
Showing items related by title, author, creator and subject.
Falby, Naomi; Thompson, Michael F.; Irvine, Cynthia E. (IEEE, 2004-06-00);The Center for the Information Systems Studies and Research (CISR) at the Naval Postgraduate School has established a broad program in computer and network security education. The program, founded on a core in traditional ...
A CyberCIEGE scenario to illustrate classified information management in multilevel secure systems for military command and control Ng, Chee Mun (Monterey, California. Naval Postgraduate School, 2005-12);Raising the awareness of information security has been the focus of DOD and other government agencies in recent years. There is a need for an effective means of educating and training personnel in the topic of Information ...
Collier, Anthony R. (Monterey, California: Naval Postgraduate School, 2016-06);The current military reliance on computer networks for operational missions and administrative duties makes network stability and security a high priority for military units. The rapid rate at which technology changes means ...