DIGITAL LIBRARY
CHALLENGES IN DIGITAL LEARNING - CYBERSECURITY TRAINING
National Institute for Research and Development in Informatics - ICI Bucharest (ROMANIA)
About this paper:
Appears in: ICERI2021 Proceedings
Publication year: 2021
Pages: 7174-7181
ISBN: 978-84-09-34549-6
ISSN: 2340-1095
doi: 10.21125/iceri.2021.1612
Conference name: 14th annual International Conference of Education, Research and Innovation
Dates: 8-9 November, 2021
Location: Online Conference
Abstract:
Digitization has brought benefits in addition to a number of disadvantages. Cyberattacks cause considerable damage to the economy but can endanger the safety and even the lives of citizens if the critical infrastructures of society are targeted: energy, transport, health, finances. Cyber attacks can destroy the credibility of an organization, business development, transactions, but also the market for goods through actions such as: blocking the supply of raw materials, blocking various vital systems in the functioning of society.

Thus, a country's economic prosperity and independence may be jeopardized if cybersecurity is not the core of digital transformation policies.
Cybersecurity policy must coordinate government departments, research centers, industrial organizations in order to prevent attacks that harm the democratic values of each country. This process is based on education, culture, technology, digital awareness. The implementation of this policy at the national level ensures dynamism and continuous evolution, by considering the regulations, of geopolitical, social, technological order.

The article aims to study the level of competence in the field of security, achieved in national research programs, staff being engaged in scenarios that intend to achieve training in line with the needs of each state, in the shortest possible time.

The most important characteristics of information security are confidentiality, integrity, and availability. Thus, the information is available for a sufficient period of time, cannot be destroyed/modified, and cannot be without authorization.

Four categories of aspects were considered:
(i) defense infrastructures;
(ii) actions and technologies to increase protection;
(iii) defense technologies;
(iv) training and risk management actions.

The study considered policies and actions undertaken by 4 key nations in the European context: France, Germany, Italy, United Kingdom.
The article presents the approach of developing a cyber range, a virtual environment designed to train security professionals and develop specific technology for detecting and preventing cyberattacks in the real world. The unified functional architecture of CR is done: Scenarios; Learning - Training, Testing; Monitoring; Running medium; Data storage.

The learning module includes:
Cybersecurity: Policies, strategies, minimum security requirements; Cyber incident response capabilities and reducing their impact on resources; Management of vulnerabilities and cybersecurity alerts; Resource management systems.
Critical infrastructure protection: Advanced policies and solutions; Security of data communications in smart environments; Security of networks and computer systems; Adaptive systems for recognizing in early stages cyber attacks on resources; Research, monitoring, forecasting;
Cybersecurity operations: Prevention and reduction of cybersecurity risks and incidents; Management and identification of risks and incidents.
IT infrastructures: Modernization, development, and efficiency of cloud computing services; Optimizing the use of resources.

Creating the conditions for the specialists to acquire top cybersecurity knowledge is the most important benefit of the cyber range.
Keywords:
Learning, Cybersecurity, Critical Infrastructure, Cyber Range, Digitalization.