Koji OKAMURADirector of Cybersecurity Center, Kyushu University

Cybersecurity Training with Cyber Range

Kyushu University, JAPAN

Fukuoka City

1,543,000

Japan

127,000,000

Tokyo

Fukuoka City

20,000 Students and 10,000 faculties and officials

ASN 2508, 133.5.0.0/1633.5.0.0/16

Google Map

Main Campus

Since 2005Hospital

Old Main Campus

Since 1911

RI2T,

Cybersecurity

Graduate

School of Art

Graduate School

of Engineering

ScienceMain NOC

inside DC

Fukuoka

City

SINET

(Internet)

10G BackBone

Kyushu University

III: Information Infrastructure Initiative

Super Computer Center

Cybersecurity Center

Technicians Group of IT Environment Department

Graduate SchoolIT Operation Research and Education

Research and Education/Supports

• Super Computer

• Campus Networking

• Security Management/CSIRT

• Education System Supports

• Identity Supports

• Engineering

• Science

• Economics

• Law

• Medical

• Pharmacy

• Letters

• Agriculture

• Art Engineering

• Education

• Dental Science

Cybersecurity Primary Course for Fresh Students

2014 Autumn, 2015 Spring and Autumn, 2016 Spring

Fresh Students (2,600) for every undergraduate school– Optional Course (not “All” now)

• 100 Students in 2015

• 220 Students in 2016

– Art Engineering, Economics, Law, Letters, Medical, Pharmacy, Science, Engineering, Education, Agriculture, Dental Science

– Mandatary Course from 2017• 200 x 13

Syllabus (15)– Introduction and

hot topics of Cybersecurity

– Case Studies (3)

– Technical Issues (2)

– Cryptography (1)

– Laws (2)

– Copyright (2)

– Morals of Information and

Research (2)

– Social Science (2)

Cybersecurity Primary Courses 2016

Introduction

– Latest incidents

Case Studies

– General incidents

– Hospital

– Company

Technical Issues

– Computer and Network

– Wireless

Cryptography

Law

– General Laws

– Company

Copyrights

– Primary

– Advanced

Informational Moral

Moral for research

Social Science

– SNS

– Hospital

Cyber Range Overview

Campus Network

Internet

CPU: Intel Xeon E5-2687W v3

（3.1GHz、10core）Memory: 384GB x3 , 256GB x 2

11TB

10Gbps

10Gbps

1Gbps

Cisco ASA 5515Xs

10Gbps1Gbps

Cyber Range System

Basic Middleware

Hardware

Sypris Middleware

TSA (Transportation Security

Administration,USA) Cyber

Range Scenario

Customized Cyber

Range Scenario

BYO Hardware

Beginner Course (TSA) 3weeks

Application base

– Buffer Overflow

– Weak Password

– Weak Authentication

– …

Cryptography

Forensics

Network

– Port Scan

– DOS Attacks

Web base

– Cross-Site Scripting

– Cookie Manipulation

Each student

study by him/her

self.

Beginner Course

Advances Course (TSA) 2weeks

Application base

Cryptography

Forensics

– Wireless Traffic Dump

– Malware Analysis

Network

– Cookie Hijacking

Web base

– SQL Injection

Group students

study together.

Advanced Course

Issues and Future Plan for Cyber Range Course

Actual Course may start 2016 Autumn

Issues

– Knowledge base education in advanced.

– Difference to the real-world

Challenge

– Re-use incident data as customized scenario

• APT（Advanced Persistent Threat）

– Automatic creation of education scenario

• New threat in future

Plan

– Co-use the machine with other organization

– Instructor?