A cyber investion game
simulSecure
Han Nguyen - Luan Truong
Introduction
In today's world, where technology is everywhere, the fight against cybercrime is getting more intense. Cybercriminals are constantly finding new ways to attack, and we need skilled cyber investigators to defend against them. SimulSecure is not just any game; it is a fun and educational experience that helps people learn how to deal with real-world cyber threats.
As cyberattacks become more serious, it is crucial to prepare the next generation of cybersecurity experts with the right skills to protect our digital world. This project responds to the need for better ways to train people in cybersecurity. Traditional methods often don't keep up with the fast-paced world of cyber threats. SimulSecure is here to change that by offering a hands-on, interactive, and game-based way to learn
Project phases
02
01
03
04
Feasibility Study and Report, Scope of the Project, Interview, Questionaire
Software Process Models, Scrum, Sprints
Software Design
Software Testing, Software Deployment, and Software Maintenence
Phase 1
feasibility overview
Definition
A feasibility study evaluates the practicality and viability of the SimulSecure project.
purpose
Assess the economic, time, and operational feasibility of developing the SimulSecure Cyber Investigation Game.
Feasibility Criteria
Economic Feasibility
-
Time Feasibility
-
Technical Feasibility
-
Operational
Pieces Framework
A Comprehensive evaluation model with six key criteria: Performance, Information, Economics, Control, Efficiency, and Services.
Phase 1 - Feasibility study
Economic feasibility
Definition
Assess by estimating development costs, including hardware, software, personnel, and other expenses, and comparing them to expected benefits and revenue generation.
Expectations
Development cost estimated at 80,000 CAD over 16 months with a team of 5.
Phase 1 - Feasibility study
time feasibility
Definition
Evaluates whether the project can be completed within the allocated timeframe, considering the development schedule, milestones, and deadlines.
Expectations
8 months of development until early access release (2 academic semesters).
Phase 1 - Feasibility study
Technical feasibility
Definition
Provides an overview of hardware, software, and technical requirements.
Expectations
Programming in C# and Python, version control using GitHub or PlasticSCM, project management with Codecks or Jira, and various tools for artists.
Phase 1 - Feasibility study
Operational feasibility
Definition
Assesses the practicality of implementing and maintaining SimulSecure after completion.
Expectations
Smooth integration into existing operations, availability of resources and skills, scalability for future needs, sustainable support and compliance, and minimal disruption during implementation.
Phase 1
Feasibility REPORT
Insights from feasibility study types (Economic, Time, Technical, Operational) & PIECES Framework
Economic Feasibility
Cost estimation: 480,000 CAD for 16 months ~ 2 years with a team of 10.
TIME Feasibility
12 weeks for prototype, 4 months for early access, Ongoing patches over 12 months
Technical Feasibility
Programming languages (C#), tools (Unity, lender), third-party subscriptions (Jira, CSP, AWS), OS and hardware requirements.
Operational Feasibility
Integration into existing operations.
Scalability and sustainability.
Phase 1
Feasibility Justification
Insights from feasibility study types (Economic, Time, Technical, Operational)
Economic Feasibility
Covers tool acquisition, team hiring (10 members), and project-related expenses.
TIME Feasibility
Aligns with industry standards, ensuring timely delivery and
Technical Feasibility
Relies on open-source tools, industry standards, and well-documented platforms.
Operational Feasibility
Successful integration examples (e.g., Fortnite), 20% growth in cybersecurity professionals, scalability, and alignment with industry standards.
Phase 1:
SCOPE OF PROJECT
Project Sign-off
Phase 1: Requirement Elicitation
Definition
Importance
Phase 1:
Requirement Elicitation Techniques
Known Requirements:
Unknown Requirements:
Phase 1:
Chosen Techniques for SimulSecure
Interview and Questionnaire:
Benefits
Phase 1
Interview Insights
User Perspectives on Cybersecurity Education
01
Importance of Interviewing
02
Insights from Interview
Phase 1
questionaire Insights
Normal UseRs & Cyber security students
Phase 1
Proposed System
- According on users feedback -
Game Objective and Focus:
Game Mechanics and Content:
Real-World Relevance:
Phase 1
features re-evaluation
Learning Resources:
Incident Response Training:
Students' Responses Evaluation:
Conclusion:
Phase 2
Software Process Models are methodologies used to plan, design, implement, test, and maintain software systems. They provide a structured framework for managing the entire software development lifecycle
They help to improve the quality, efficiency, and predictability of software development projects by defining activities, tasks, and guidelines.
Phase 2
Types
Phase 2
Agile Development Methodology The Agile processes are a group of methodologies emphasizing iterative development, flexibility, and customer collaboration. Agile processes promote adaptability, customer feedback, and continuous improvement. They are suitable for projects with evolving requirements.
Scrum is an Agile framework with short development cycles called sprints. It focuses on collaboration, adaptability, and delivering a potentially shippable product increment at the end of each sprint.
Phase 2
Sprint 1 - General Interface
Sprint 2 - Establish a vibrant and user-friendly In-Game Market within SimulSecure, allowing players to personalize their experience, purchase skins and loot items, and engage with weekly promotions seamlessly across multiple gaming platforms.
Sprint 3 - Develop a single scalable map for the game in SimulSecure, providing players with an immersive and dynamic environment for cyber investigations.
Phase 3
System Context Diagram
Phase 3
Entity Relationship Diagram
Phase 3
Data Flow Diagram - Sprint 1
Phase 3
Use Case Diagram - Sprint 1
Phase 3
Use Case Diagram - Sprint 1
Phase 3
Equipment/Resources:
Phase 4 - Software Testing
Definition
Software testing is a key activity, both in software development and in software maintenance.
Objectives
Its objectives are opposed to that of development: instead of making the system work, it aims at breaking it, thus revealing the presence of defects. This is the main reason why development and testing teams should be separate.
Phase 4 - Software Testing
Types of software testing
Phase 4 - Testing PLAN
Scrum Sprints and Test Cases Overview
Sprint 1: General Interface (15 Test Cases)
Phase 4 - Testing PLAN
Scrum Sprints and Test Cases Overview
Sprint 2: In-Game Market (6 Test Cases)
Phase 4 - Testing PLAN
Scrum Sprints and Test Cases Overview
Sprint 3: Scalable Map (7 Test Cases)
Phase 4 - Test Procedure
General Interface (15 Test Cases)
Phase 4 - Test Procedure
In-Game Market (6 Test Cases)
Scalable Map (7 Test Cases)
Phase 4 - Test Report
Sprint 2: In-Game Market
*Sprint-wise Test Results
Sprint 1: General Interface
Sprint 3: Scalable Map
Test Report Overview
Phase 4
Software Deployment
Definition
Software deployment refers to the process of making a software application available for use. It involves all the activities and tasks that are performed to prepare, test, and install the software in a specific environment, making it accessible to end-users. Software deployment aims to ensure that the software functions as intended and is ready for use in a production environment
Types
We chose the "Education and Training (People)" approach to ensure participants not only acquire skills from SimulSecure: Cyber Investigation Game but also enjoy the learning process. This method focuses on both theoretical knowledge and practical skills, preparing participants to overcome the game's challenges. It harmonizes with the interactive and skill-oriented aspects of the game, creating a more engaging and effective learning environment.
Phase 4
Software Maintainence
Definition
The process of modifying a software system or component after delivery to correct faults, improve performance or other attributes, or adapt to a changing environment
Type
thank you!