oka okamura - cesnet · 2016. 4. 28. · –sql injection group students study together. advanced...
TRANSCRIPT
Koji OKAMURADirector of Cybersecurity Center, Kyushu University
Cybersecurity Training with Cyber Range
Kyushu University, JAPAN
Fukuoka City
1,543,000
Japan
127,000,000
Tokyo
Fukuoka City
20,000 Students and 10,000 faculties and officials
ASN 2508, 133.5.0.0/1633.5.0.0/16
Google Map
Main Campus
Since 2005Hospital
Old Main Campus
Since 1911
RI2T,
Cybersecurity
Graduate
School of Art
Graduate School
of Engineering
ScienceMain NOC
inside DC
Fukuoka
City
SINET
(Internet)
10G BackBone
Kyushu University
III: Information Infrastructure Initiative
Super Computer Center
Cybersecurity Center
Technicians Group of IT Environment Department
Graduate SchoolIT Operation Research and Education
Research and Education/Supports
• Super Computer
• Campus Networking
• Security Management/CSIRT
• Education System Supports
• Identity Supports
• Engineering
• Science
• Economics
• Law
• Medical
• Pharmacy
• Letters
• Agriculture
• Art Engineering
• Education
• Dental Science
Cybersecurity Primary Course for Fresh Students
2014 Autumn, 2015 Spring and Autumn, 2016 Spring
Fresh Students (2,600) for every undergraduate school– Optional Course (not “All” now)
• 100 Students in 2015
• 220 Students in 2016
– Art Engineering, Economics, Law, Letters, Medical, Pharmacy, Science, Engineering, Education, Agriculture, Dental Science
– Mandatary Course from 2017• 200 x 13
Syllabus (15)– Introduction and
hot topics of Cybersecurity
– Case Studies (3)
– Technical Issues (2)
– Cryptography (1)
– Laws (2)
– Copyright (2)
– Morals of Information and
Research (2)
– Social Science (2)
Cybersecurity Primary Courses 2016
Introduction
– Latest incidents
Case Studies
– General incidents
– Hospital
– Company
Technical Issues
– Computer and Network
– Wireless
Cryptography
Law
– General Laws
– Company
Copyrights
– Primary
– Advanced
Informational Moral
Moral for research
Social Science
– SNS
– Hospital
Cyber Range Overview
Campus Network
Internet
CPU: Intel Xeon E5-2687W v3
(3.1GHz、10core)Memory: 384GB x3 , 256GB x 2
11TB
10Gbps
10Gbps
1Gbps
Cisco ASA 5515Xs
10Gbps1Gbps
Cyber Range System
Basic Middleware
Hardware
Sypris Middleware
TSA (Transportation Security
Administration,USA) Cyber
Range Scenario
Customized Cyber
Range Scenario
BYO Hardware
Beginner Course (TSA) 3weeks
Application base
– Buffer Overflow
– Weak Password
– Weak Authentication
– …
Cryptography
Forensics
Network
– Port Scan
– DOS Attacks
Web base
– Cross-Site Scripting
– Cookie Manipulation
Each student
study by him/her
self.
Beginner Course
Advances Course (TSA) 2weeks
Application base
Cryptography
Forensics
– Wireless Traffic Dump
– Malware Analysis
Network
– Cookie Hijacking
Web base
– SQL Injection
Group students
study together.
Advanced Course
Issues and Future Plan for Cyber Range Course
Actual Course may start 2016 Autumn
Issues
– Knowledge base education in advanced.
– Difference to the real-world
Challenge
– Re-use incident data as customized scenario
• APT(Advanced Persistent Threat)
– Automatic creation of education scenario
• New threat in future
Plan
– Co-use the machine with other organization
– Instructor?