Extending a Platform for IT-Security Exercises
Independent thesis Advanced level (degree of Master (One Year)), 20 credits / 30 HE creditsStudent thesis
The Swedish Defence Research Agency, FOI, has developed a platform that is used to train and study IT-security. This platform was used during the cyber Baltic shield, an international cyber security exercise. During the exercise, a number of teams acting as system administrators, tried to secure and defend the system of a fictive power supply company. Another team acted as a terrorist organisation with the goal to compromise the systems of the power supply companies and shut down their power generators.
FOI has also developed a security assessment method, named XMASS, which is implemented in a software tool called SANTA. This can be used to model a networked IT-system and get a picture of its current state of security.
This thesis aims to integrate the tool, SANTA, with the platform for cyber security exercises to get the ability to visualise a system and analyse its security during an IT-security exercise.
The thesis also identifies some problems with XMASS regarding how traffic mediators, for example firewalls, are modelled. A literature review is performed to get a picture of the current state of research on security assessment methods and leads to a proposition of a new model for traffic mediators.
Place, publisher, year, edition, pages
2011. , 36 p.
IT-Security, IT-Security Assessment, IT-Security Exercise, Traffic Filtering, Firewalls
Computer and Information Science
IdentifiersURN: urn:nbn:se:liu:diva-68883ISRN: LiTH-ISY-EX--11/4443--SEOAI: oai:DiVA.org:liu-68883DiVA: diva2:422679
Subject / course
2011-04-05, Algoritmen, Linköpings Universitet, Linköping, 15:00 (Swedish)
Hallberg, JonasBengtsson, Johan