@inproceedings{9155d42a1c5b4490b080978b57e37cf8,
title = "A framework to improve threat vector analysis through the use of gamification",
abstract = "It is proposed that a Capture the Flag readily adaptable framework can be used to educate the individuals responsible for ensuring the security of the cloud infrastructure. Skills transfer of security principles through gamification facilitates the calculation of a metric concerning the skill level of the players. Gap analysis of essential skills can then be carried out and subsequently addressed by the employer. This CTF gaming framework has been refined through cyber challenge events such as IRISS 2012, Source Dublin 2013, Owasp Latam/EU tours 2013 and Also the OWASP Global CTF 2013. The framework describes a risk assessment process operating at both the network and application layers. It also looks to address security policy aspects and make recommendations based on attack/defence behaviours. Although this is still a work in progress, implementation challenges of the proposed framework when operated in house and when accessible remotely are discussed in this study.",
keywords = "Capture-the-flag, Cyber crime, Cyberwar, Security",
author = "Jason Flood and Anthony Keane",
note = "Publisher Copyright: {\textcopyright} Copyright The Authors, 2014. All Rights Reserved.; 9th International Conference on Cyber Warfare and Security 2014, ICCWS 2014 ; Conference date: 24-03-2014 Through 25-03-2014",
year = "2014",
language = "English",
series = "9th International Conference on Cyber Warfare and Security 2014, ICCWS 2014",
publisher = "Academic Conferences Limited",
pages = "245--253",
editor = "Sam Liles",
booktitle = "9th International Conference on Cyber Warfare and Security 2014, ICCWS 2014",
}