Ethical Principles for Designing Responsible Offensive Cyber Security Training
نویسندگان
چکیده
In this paper we present five principles for designing ethically responsible offensive cyber security training. The can be implemented in existing or new study plans and target both academic non-academic courses. Subject matter experts within various domains were consulted to validate fine tune the principles, together with a literature review of ethical studies related domains. background is continuous popularity (penetration testing, hacking). Offensive means actively trying break compromise system order find its vulnerabilities. If expertise placed wrong hands, person cause severe damage organizations, civilians society at large. proposed are created mitigate these risks while maintaining upsides security. This achieved by incorporating training, facilitate practitioners knowledge how when use their acquired expertise.
منابع مشابه
Guide for Designing Cyber Security Exercises
Cyber security exercises are a very effective way of learning the practical aspects of information security. But designing such exercises is not an easy task and requires the work of several people. This paper presents a number of steps and guidelines that should be followed when designing a new cyber security exercise. The steps include: defining the objectives, choosing an approach, designing...
متن کاملCyber Security Training Perspectives
Building comprehensive cyber security strategies to protect people, infrastructure and assets demands research on methods and practices to reduce risks. Once the methods and practices are identified, there is a need to develop training for the many stakeholders involved, from security experts to the end user. In this paper, we discuss new approaches for training, which includes the development ...
متن کاملGame Based Cyber Security Training: are Serious Games suitable for cyber security training?
Security research and training is attracting a lot of investment and interest from governments and the private sector. Most efforts have focused on physical security, while cyber security or digital security has been given less importance. With recent high-profile attacks it has become clear that training in cyber security is needed. Serious Games have the capability to be effective tools for p...
متن کاملPrinciples of Security: Human, Cyber, and Biological
Cybersecurity attacks are a major and increasing burden to economic and social systems globally. Here we analyze the principles of security in different domains and demonstrate an architectural flaw in current cybersecurity. Cybersecurity is inherently weak because it is missing the ability to defend the overall system instead of individual computers. The current architecture enables all nodes ...
متن کاملCyber Security Education, Qualifications and Training
The rise in significance of cyber security has led to an increase in the range of interesting career paths that can be followed in this area. Inevitably there has also been an explosion in the diversity of available cyber security education, qualifications and training, most of which is targeted at those seeking to engage with this promising job market. In this article, some guidelines are prov...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: IFIP advances in information and communication technology
سال: 2021
ISSN: ['1868-422X', '1868-4238']
DOI: https://doi.org/10.1007/978-3-030-72465-8_2