Cyber exercises taxonomy

Since the 80’s, experiments simulation has gained importance as a means for training. It can be said that this learning mechanism constitutes a tool allowing to undertake practices equivalent to real world situations, but safely and within a controlled setting.

Applied to cybernetics, we can define a cyber exercise as a tool to assess the readiness of participants when facing cyber crisis, also facilitating learned lessons and recommendations for the future: areas for improvement against a cyber attack, for increasing cooperation and coordination within the involved sectors, for interdependencies identification, for awareness and training improvement, etc.

The aim of this study is to propose a taxonomy of cyber exercises that can become a useful tool for the national and international cybersecurity community, providing a better understanding of existing cyber exercises, as well as helping to plan future editions.

For this task, the first step has been to gather and analyse publicly available information about the different cyber exercises that have been hold until September 5th, 2014.

Once information has been gathered, a set of metrics and indicators have been defined. The results of applying these metrics have been analysed in order to establish a cyber exercises profiling, which shows different characteristics found in their execution, and facilitates the later taxonomy definition.

On the basis of the cyber exercises analysis and profiling, and taking as reference the studies related to cyber exercises classification carried out by organizations from different geographic scope a taxonomy proposal has been developed.

- Basic Taxonomy Elements -

Finally, the cyber exercises taxonomy has been applied to the relevant cyber exercises that have been identified after applying the metrics. in order to disclose the usefulness of the taxonomy. In turn, this has allowed to reach some conclusions which could lead to a deeper knowledge of the current state of cyber exercises and enhance the planning of future ones.

The study, available in English and Spanish can be downloaded at the following links:

Spanish: Taxonomía de ciberejercicios.
English: Cyber exercises taxonomy.

Last Posts

Cybersecurity in TETRA networks study

Posted on 03/30/2023, by INCIBE

The TETRA (Terrestrial Trunked Radio) network is a standard developed in Europe in the 1990s by ETSI (European Telecommunications Standards Institute), whose emergence came because of the management...
The great robotic crusade

Posted on 03/27/2023, by INCIBE

Within the industrial world, there are some sectors such as robotics, which has evolver considerably. This has led to the need to update all the regulations and standards, both in terms of physical (...
Threat analysis study: LockBit

Posted on 03/23/2023, by INCIBE

En este estudio, se expone brevemente el origen y evolución de la amenaza ransomware LockBit 3.0, a través del análisis de varias muestras maliciosa, con el objetivo de facilitar la información...
ICS’S future is in the space

Posted on 03/20/2023, by INCIBE

There are areas where the deployment of an industrial plant requires satellite communications such as those provided by VSAT (Very-Small-Aperture Terminal) technology. This technology allows the...
Virtual Power Plants: ‘The Internet of Energy’

Posted on 03/16/2023, by INCIBE

Energy efficiency alternatives are nowadays on everyone’s lips given the energy crisis that is plaguing the vast majority of European regions. In Spain, the energetic companies are following...

Corporate access

Cyber exercises taxonomy

Cybersecurity in TETRA networks study

The great robotic crusade

Threat analysis study: LockBit

ICS’S future is in the space

Virtual Power Plants: ‘The Internet of Energy’