Process Mining Analysis of Puzzle-Based Cybersecurity Training

D 2022

Process Mining Analysis of Puzzle-Based Cybersecurity Training

MACÁK, Martin, Radek OŠLEJŠEK and Barbora BÜHNOVÁ

Basic information

Original name

Process Mining Analysis of Puzzle-Based Cybersecurity Training

Authors

MACÁK, Martin (703 Slovakia, guarantor, belonging to the institution), Radek OŠLEJŠEK (203 Czech Republic, belonging to the institution) and Barbora BÜHNOVÁ (203 Czech Republic, belonging to the institution)

Edition

New York, NY, USA, Proceedings of the 27th ACM Conference on on Innovation and Technology in Computer Science Education Vol. 1 (ITiCSE '22), p. 449-455, 7 pp. 2022

Publisher

Association for Computing Machinery

Other information

Language

English

Type of outcome

Stať ve sborníku

Field of Study

10201 Computer sciences, information science, bioinformatics

Country of publisher

United Kingdom of Great Britain and Northern Ireland

Confidentiality degree

není předmětem státního či obchodního tajemství

Publication form

electronic version available online

References:

Permalink to the publisher Accepted manuscript (arxiv.org)

RIV identification code

RIV/00216224:14330/22:00125555

Organization unit

Faculty of Informatics

ISBN

978-1-4503-9201-3

ISSN

DOI

http://dx.doi.org/10.1145/3502718.3524819

UT WoS

001037375600068

Keywords (in Czech)

kyberbezpečnostní vzdělávání, CTF hry; procesní modelování, datová analýza

Keywords in English

cybersecurity training; CTF game; process mining; data analysis

Abstract

V originále

The hands-on cybersecurity training quality is crucial to mitigate cyber threats and attacks effectively. However, practical cybersecurity training is strongly process-oriented, making the post-training analysis very difficult. This paper presents process-mining methods applied to the learning analytics workflow. We introduce a unified approach to reconstruct behavioral graphs from sparse event logs of cyber ranges. Furthermore, we discuss significant data features that affect their practical usability for educational process mining. Based on that, methods of dealing with the complexity of process graphs are presented, taking advantage of the puzzle-based gamification of in-class training sessions.

Links

MUNI/A/1230/2021, interní kód MU

Name: Zapojení studentů Fakulty informatiky do mezinárodní vědecké komunity 22 (Acronym: SKOMU)

Investor: Masaryk University

VI20202022158, research and development project

Name: Výzkum nových technologií pro zvýšení schopností odborníků na kyberbezpečnost (Acronym: KYPOLAB)

Investor: Ministry of the Interior of the CR, Research of New Technologies to Increase the Capabilities of Cybersecurity Experts

Files attached

2022-iticse-process-mining-analysis-puzzle-based-cybersecurity-training-presentation.pdf

Find similar documents

2022-iticse-process-mining-analysis-puzzle-based-cybersecurity-training-paper.pdf

Find similar documents

Citovat

MACÁK, Martin, Radek OŠLEJŠEK and Barbora BÜHNOVÁ. Process Mining Analysis of Puzzle-Based Cybersecurity Training. Online. In Proceedings of the 27th ACM Conference on on Innovation and Technology in Computer Science Education Vol. 1 (ITiCSE '22). New York, NY, USA: Association for Computing Machinery, 2022, p. 449-455. ISBN 978-1-4503-9201-3. Available from: https://dx.doi.org/10.1145/3502718.3524819.

@inproceedings{1842421,
   author = {Macák, Martin and Ošlejšek, Radek and Bühnová, Barbora},
   address = {New York, NY, USA},
   booktitle = {Proceedings of the 27th ACM Conference on on Innovation and Technology in Computer Science Education Vol. 1 (ITiCSE '22)},
   doi = {http://dx.doi.org/10.1145/3502718.3524819},
   keywords = {cybersecurity training; CTF game; process mining; data analysis},
   howpublished = {elektronická verze "online"},
   language = {eng},
   location = {New York, NY, USA},
   isbn = {978-1-4503-9201-3},
   pages = {449-455},
   publisher = {Association for Computing Machinery},
   title = {Process Mining Analysis of Puzzle-Based Cybersecurity Training},
   url = {https://dl.acm.org/doi/10.1145/3502718.3524819},
   year = {2022}
}

TY  - JOUR
ID  - 1842421
AU  - Macák, Martin - Ošlejšek, Radek - Bühnová, Barbora
PY  - 2022
TI  - Process Mining Analysis of Puzzle-Based Cybersecurity Training
PB  - Association for Computing Machinery
CY  - New York, NY, USA
SN  - 9781450392013
KW  - cybersecurity training
KW  - CTF game
KW  - process mining
KW  - data analysis
UR  - https://dl.acm.org/doi/10.1145/3502718.3524819
N2  - The hands-on cybersecurity training quality is crucial to mitigate cyber threats and attacks effectively. However, practical cybersecurity training is strongly process-oriented, making the post-training analysis very difficult. This paper presents process-mining methods applied to the learning analytics workflow. We introduce a unified approach to reconstruct behavioral graphs from sparse event logs of cyber ranges. Furthermore, we discuss significant data features that affect their practical usability for educational process mining. Based on that, methods of dealing with the complexity of process graphs are presented, taking advantage of the puzzle-based gamification of in-class training sessions.
ER  -

MACÁK, Martin, Radek OŠLEJŠEK and Barbora BÜHNOVÁ. Process Mining Analysis of Puzzle-Based Cybersecurity Training. Online. In \textit{Proceedings of the 27th ACM Conference on on Innovation and Technology in Computer Science Education Vol. 1 (ITiCSE '22)}. New York, NY, USA: Association for Computing Machinery, 2022, p.~449-455. ISBN~978-1-4503-9201-3. Available from: https://dx.doi.org/10.1145/3502718.3524819.

Detailed Information on Publication Record