CIST: a serious game for hardware supply chain
CIST: a serious game for hardware supply chain
The globalisation and outsourcing of the IC supply chain have led to a more complex production cycle. Using threat models to understand the attacks can help engineers build stronger countermeasures and evaluate against different options to create better protection from attacks. Gamification is an alternative to teaching engineers threats using threat models and trying to keep up to date with new threats. Playing a serious game based on the IC hardware supply chain allows players to take control of self-learning and build knowledge through experiences in the gameplay. This paper propose CIST: A serious game for hardware supply chain, designed for hardware security and uses a threat model called CIST, designed to overcome the different requirements for hardware threats and gaps in current generic security threat models. The CIST game covers hardware-related risks through the complete IC life cycle from design, manufacturing, using the IC within a system and finally, recycling the ICs.
Cyber security education, Design, Gamification, Hardware Security, Serious gaming, Threat models, Training effectiveness
Hart, Stephen
d9ad5153-ca09-418a-b3a5-078ea1b48536
Halak, Basel
8221f839-0dfd-4f81-9865-37def5f79f33
Sassone, Vladimiro
df7d3c83-2aa0-4571-be94-9473b07b03e7
16 September 2022
Hart, Stephen
d9ad5153-ca09-418a-b3a5-078ea1b48536
Halak, Basel
8221f839-0dfd-4f81-9865-37def5f79f33
Sassone, Vladimiro
df7d3c83-2aa0-4571-be94-9473b07b03e7
Hart, Stephen, Halak, Basel and Sassone, Vladimiro
(2022)
CIST: a serious game for hardware supply chain.
Computers & Security, 122, [102912].
(doi:10.1016/j.cose.2022.102912).
Abstract
The globalisation and outsourcing of the IC supply chain have led to a more complex production cycle. Using threat models to understand the attacks can help engineers build stronger countermeasures and evaluate against different options to create better protection from attacks. Gamification is an alternative to teaching engineers threats using threat models and trying to keep up to date with new threats. Playing a serious game based on the IC hardware supply chain allows players to take control of self-learning and build knowledge through experiences in the gameplay. This paper propose CIST: A serious game for hardware supply chain, designed for hardware security and uses a threat model called CIST, designed to overcome the different requirements for hardware threats and gaps in current generic security threat models. The CIST game covers hardware-related risks through the complete IC life cycle from design, manufacturing, using the IC within a system and finally, recycling the ICs.
Text
CIST_A_Serious_Game_for_Hardware_Supply_Chain
- Accepted Manuscript
More information
Accepted/In Press date: 6 September 2022
e-pub ahead of print date: 10 September 2022
Published date: 16 September 2022
Keywords:
Cyber security education, Design, Gamification, Hardware Security, Serious gaming, Threat models, Training effectiveness
Identifiers
Local EPrints ID: 470486
URI: http://eprints.soton.ac.uk/id/eprint/470486
ISSN: 0167-4048
PURE UUID: 4526ff09-4ceb-44f0-a18c-7f047c746ae9
Catalogue record
Date deposited: 11 Oct 2022 16:51
Last modified: 12 Nov 2024 05:06
Export record
Altmetrics
Contributors
Author:
Stephen Hart
Author:
Basel Halak
Author:
Vladimiro Sassone
Download statistics
Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.
View more statistics