Loading [a11y]/accessibility-menu.js
Cyber Range Infrastructure Limitations and Needs of Tomorrow: A Position Paper | IEEE Conference Publication | IEEE Xplore
Subscribe
ADVANCED SEARCH
Conferences >2018 International Carnahan C...

Cyber Range Infrastructure Limitations and Needs of Tomorrow: A Position Paper

PDF
Vincent E. Urias; William M.S. Stout; Brian Van Leeuwen; Han Lin
All Authors

Abstract:

Cyber networks are extremely non-deterministic, complex systems. To address this, we must develop foundational research protocols to enable reproducible cyber experiments...Show More

Metadata

Abstract:

Cyber networks are extremely non-deterministic, complex systems. To address this, we must develop foundational research protocols to enable reproducible cyber experiments that can systematically uncover deep understanding of a cyber system's security posture. One core tenant of this approach is to have a test environment to enable a space to create and test hypotheses about systems and reason about results. To date, this has generally been done through cyber testbeds or cyber ranges. National infrastructure supported by various government agencies have all created multi-million dollar ranges, and support other national infrastructure such as the National Cyber Range (NCR) and the Regional Service Delivery Points (RSDP). The thrust of this paper was based on multi-year studies, the culmination of which uncovered gaps and challenges associated with using various national infrastructures to represent a multitude of complex heterogeneous systems. Ranges, such as the NCR, have experiment life-cycle processes to take a cyber experiment from inception to analysis. However, our position is that processes used are not sufficient to address gaps and challenges. In this position paper, we review current range experiment methodologies and our observations of other considerations that should require inclusion.
Published in: 2018 International Carnahan Conference on Security Technology (ICCST)
Date of Conference: 22-25 October 2018
Date Added to IEEE Xplore: 23 December 2018
ISBN Information:

ISSN Information:

DOI: 10.1109/CCST.2018.8585460
Conference Location: Montreal, QC, Canada
Contents

I. Introduction

Cyber security cannot be classified under a formal branch of science, such as physics or chemistry. Cyber security is essentially informed by the mathematical constructs of computer science, to include automata, complexity, and mathematical logic. However, unlike physics, cyber security depends on implementation correctness at the hands of developers and users, whose minuscule errors may result in disproportionate impacts on the security of the system itself. These challenges cause significant non-determinism in the system under study. To address this, practitioners must create foundational research protocols to enable reproducible cyber experiments that can systematically uncover deep understanding of a system's security posture. One core tenant of this approach is to have a test environment that enables a space to hypothesize about systems, execute experiments and observe or reason about the results. To date this has been done through numerous cyber testbeds or cyber ranges. E.g., national infrastructure supported by the DoD (US Cyber Command, Department of Test and Evaluation, Test Resource Management Center) have all created multi-million dollar ranges and support other national infrastructure such as the National Cyber Range (NCR) and the Regional Service Delivery Points (RSDP).

Keywords assist with retrieval of results and provide a means to discovering other relevant content. Learn more.

Contact IEEE to Subscribe
More Like This
An empirical approach to best practice identification and selection: the US Department of Defense acquisition best practices clearinghouse

2005 International Symposium on Empirical Software Engineering, 2005.

Published: 2005

Supporting the Decentralized Development of Large-Scale Distributed Real-Time LVC Simulation Systems with TENA (The Test and Training Enabling Architecture)

2010 IEEE/ACM 14th International Symposium on Distributed Simulation and Real Time Applications

Published: 2010

Show More

References

References is not available for this document.

IEEE Account

Purchase Details

Profile Information

Need Help?

A not-for-profit organization, IEEE is the world's largest technical professional organization dedicated to advancing technology for the benefit of humanity.
© Copyright 2025 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.