Publikationer och rapporter
CRATE och de arrangemang som anordnats med hjälp av CRATE har gett underlag i form av data och idéer till forskning både på och utanför FOI. Nedan listas rapporter och forskningspublikationer som antingen handlar om CRATE eller baseras på underlag från genomförda arrangemang.
2020
- Almroth, J., Gustafsson, T. (2020) CRATE Exercise Control -A cyber defense exercise management and support tool. 2020 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW),
Genoa, Italy - Lif, P., Varga, S., Wedlin, M., Lindahl, D. and M. Persson. (2020) Evaluation of Information Elements in a Cyber Incident Report. 2020 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW), Genoa, Italy
- Gustafsson, T., Almroth, J. (2020) Cyber range automation overview with a case study of CRATE. The 25th Nordic Conference on Secure IT Systems (Nordsec 2020)
2019
- Olsson, H., Nilsson, P., 2019. Utvecklingen av ett verktyg för att automatisera konfiguration av plattformar i taktiska simuleringar. Linköping, Sweden.
- Hätty, N., 2019. Representing attacks in a cyber range. Linköping Sweden.
- Steinvall, D., 2019. Utvärdering av signaturdatabaser i systemet Snort. Karlstad, Sweden.
- Hyllienmark, E., 2019. Evaluation of two vulnerability scanners accuracy and consistency in a cyber range. Linköping, Sweden.
- Lif, P., Sommestad, T., Granåsen, D., 2018. Development and evaluation of information elements for simplified cyber-incident reports. In: CyberSA, 2018. Glasgow, UK.
- Almgren, M., Andersson, P., Björkman, G., Ekstedt, M., Hallberg, J., Nadjm-Tehrani, S., & Westring, E. RICS-el: Building a National Testbed for Research and Training on SCADA Security. 13th International Conference on Critical Information Infrastructures Security (CRITIS), Springer, 2018.
- Wolpher, M. (2018). Anomaly Detection in Unstructured Time Series Datausing an LSTM Autoencoder. KTH Royal Institute of Technology. TRITA-EECS-EX;2018:303.
2017
- Sommestad, T., Holm, H., 2017. Alert verification through alert correlation—An empirical test of SnIPS, Information Security Journal: A Global Perspective.
- Holm, H., Sommestad, T., 2017. So long, and thanks for only using readily available scripts, Information and Computer Security.
- Motzek, A., & Möller, R. Context-and bias-free probabilistic mission impact assessment. Computers & Security, 65, 166-186.
- Lif, P., Granåsen, M., Sommestad, T., 2017. Development and validation of technique to measure cyber situation awareness, International Conference on Cyber Situational Awareness, Data Analytics and Assessment (Cyber SA 2017). London, UK.
2016
- Lif, P., Holm, H., Sommestad, T., Granåsen, M., Westring, E. Genomförd försöksverksamhet inom logganalys för cybersäkerhet. Linköping, Sweden.
- Sommestad, T., Holm, H., 2016. Test av logganalysverktyget SnIPS. Linköping, Sweden.
- Estgren, M. Lightweight User Agents. Linköping University, LIU-IDA/LITH-EX-G--16/036--SE.
- Holm, H., Sommestad, T. SVED: Scanning, Vulnerabilities, Exploits and Detection, MILCOM 2016. IEEE, Baltimore, MD.
2015
- Sommestad, T., 2015. Experimentation on operational cyber security in CRATE. In: NATO STO-MP-IST-133 Specialist Meeting. Copenhagen, Denmark, p. 7.1-7.12.
- M. Granåsen and D. Andersson, “Measuring team effectiveness in cyber-defense exercises: a cross-disciplinary case study”, Cognition, Technology & Work, pp. 1-23, doi:10.1007/s10111-015-0350-2
- T. Sommestad and F. Sandström, "An Empirical Test of the Accuracy of an Attack Graph Analysis Tool," Information & Computer Security, In press
- T. Sommestad and U. Franke, "A Test of Intrusion Alert Filtering Based on Network Information," Security and Communication Networks 8 (3): 2291–2301. doi:10.1002/sec.1173
2014
- Ahlberg, G. (2014). Generating web applications containing XSS and CSRF vulnerabilities. Linköping University. LIU-IDA/LITH-EX-A--14/054--SE.
- Norström, A. (2014). Measuring Accurancy of Vulnerability Scanners: An Evaluation with SQL Injections. Linköping University. LiTH-ISY-EX--14/4748--SE.
2013
- T. Sommestad and A. Hunstad, “Intrusion detection and the role of the system administrator,” Information Management & Computer Security, vol. 21, no. 1, pp. 30-40
- T. Gustafsson, "The CRATE network generator -an automated method for building the dynamic and scalable network architecture of a cyber-range", 9th Swedish National Computer Networking Workshop (SNCNW 2013), Lund, Sweden
2012
- T. Sommestad and J. Hallberg, “Cyber security exercises and competitions as a platform for cyber security experiments”, Proceedings of NordSec
- T. Sommestad and K. Lundholm, “Detektering av IT-attacker - Intrångsdetekteringssystem och systemadministratörens roll (FOI-R--3419--SE),” Linköping, Sweden
- H. Holm, “Baltic Cyber Shield: Research from a Red Team versus Blue Team Exercise,” Pentest magazine, vol. 2012, no. 9, pp. 80–86
- H. Holm, M. Ekstedt, and D. Andersson, “Empirical Analysis of System-Level Vulnerability Metrics through Actual Attacks,” IEEE Transactions on Dependable and Secure Computing, vol. 9, no. 6, pp. 825–837
- H. Holm, T. Sommestad, U. Franke, and M. Ekstedt, “Success rate of remote code execution attacks – expert assessments and observations,” Journal of Universal Computer Science, vol. 18, no. 6, pp. 732–749
- H. Holm, “Performance of Automated Network Vulnerability Scanning at Remediating Security Issues.” Computers & Security, vol. 31, no. 2, pp. 164–175