Please use this identifier to cite or link to this item: http://hdl.handle.net/10071/30101
Full metadata record
DC FieldValueLanguage
dc.contributor.authorZhao, T.-
dc.contributor.authorLechner, U.-
dc.contributor.authorPinto-Albuquerque, M.-
dc.contributor.authorOngu, D.-
dc.contributor.editorVidmar, M.-
dc.date.accessioned2023-12-21T14:40:52Z-
dc.date.issued2023-
dc.identifier.citationZhao, T., Lechner, U., Pinto-Albuquerque, M., & Ongu, D. (2023). An ontology-based model for evaluating cloud attack scenarios in CATS: A serious game in cloud security. In M. Vidmar (Ed.), 2023 IEEE 29th International Conference on Engineering, Technology and Innovation (ICE/ITMC). IEEE. https://doi.org/10.1109/ICE/ITMC58018.2023.10332371-
dc.identifier.isbn979-8-3503-1517-2-
dc.identifier.issn2334-315X-
dc.identifier.urihttp://hdl.handle.net/10071/30101-
dc.description.abstractIn recent years, the market of cloud services has been growing rapidly. Consequently, cloud security has become a heavily discussed topic in the industry. If cloud assets are misconfigured, it can lead to severe security issues and be exposured to cybersecurity attacks. It is of great importance that industry practitioners understand the security challenges and their responsibilities to protect cloud assets. We designed a serious game: Cloud of Assets and Threats (CATS) as an enrichment to the traditional training method to empower users of the cloud infrastructure in terms of cloud security awareness. In this work, we propose a new ontology-based model to support the evaluation of the simulated attack scenarios in CATS. We share the implementation details and the algorithm, based on the Common Vulnerability Scoring System (CVSS), which is used in CATS to evaluate the simulated attack scenarios. With this innovative effort, we maximize the level to which the CATS game reflects real-world facts, and provide a reasonable level of abstraction in the serious game. Our work contributes to the body of knowledge by extending the existing ontology and applying it in the evaluator algorithm, which stands at the core of our serious game CATS. We apply CATS in training in the industry and discovered that CATS is a promising approach to help the industry practitioners to understand cloud security concepts and raise awareness about cloud security. Scholars in the academic world benefit from the work by gaining experience in instantiating the design science paradigm.eng
dc.language.isoeng-
dc.publisherIEEE-
dc.relationinfo:eu-repo/grantAgreement/FCT/6817 - DCRRNI ID/UIDB%2F04466%2F2020/PT-
dc.relationinfo:eu-repo/grantAgreement/FCT/6817 - DCRRNI ID/UIDP%2F04466%2F2020/PT-
dc.relation13N16581-
dc.relation13N16585-
dc.relation.ispartof2023 IEEE 29th International Conference on Engineering, Technology and Innovation (ICE/ITMC)-
dc.rightsembargoedAccess-
dc.subjectTechnology and engineering learningeng
dc.subjectCloud securityeng
dc.subjectAwarenesseng
dc.subjectIndustryeng
dc.subjectSerious gameeng
dc.subjectShared-responsibility modeleng
dc.subjectOntology-based modeleng
dc.titleAn ontology-based model for evaluating cloud attack scenarios in CATS: A serious game in cloud securityeng
dc.typeconferenceObject-
dc.event.title29th International Conference on Engineering, Technology and Innovation (ICE/ITMC)-
dc.event.typeConferênciapt
dc.event.locationEdinburgheng
dc.event.date2023-
dc.peerreviewedyes-
dc.date.updated2023-12-21T14:44:26Z-
dc.description.versioninfo:eu-repo/semantics/acceptedVersion-
dc.identifier.doi10.1109/ICE/ITMC58018.2023.10332371-
dc.date.embargo2025-12-03-
iscte.identifier.cienciahttps://ciencia.iscte-iul.pt/id/ci-pub-98276-
Appears in Collections:ISTAR-CRI - Comunicações a conferências internacionais

Files in This Item:
File SizeFormat 
conferenceobject_98276.pdf
  Restricted Access
496,02 kBAdobe PDFView/Open Request a copy


FacebookTwitterDeliciousLinkedInDiggGoogle BookmarksMySpaceOrkut
Formato BibTex mendeley Endnote Logotipo do DeGóis Logotipo do Orcid 

Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.