Ciência-IUL Publicações Descrição Detalhada da Publicação Exportar

Exportar Publicação

A publicação pode ser exportada nos seguintes formatos: referência da APA (American Psychological Association), referência do IEEE (Institute of Electrical and Electronics Engineers), BibTeX e RIS.

Exportar Referência (APA)

Zhao, T., Lechner, U., Pinto-Albuquerque, M., Ata, E. & Gasiba, T. (2023). CATS: A serious game in industry towards stronger cloud security. In Wang, G., Choo, K.-K. R., Wu, J., and Damiani, E. (Ed.), Ubiquitous Security. UbiSec 2022. Communications in Computer and Information Science. (pp. 64-82). Zhangjiajie, China: Springer.

Exportar Referência (IEEE)

T. Zhao et al.,  "CATS: A serious game in industry towards stronger cloud security", in Ubiquitous Security. UbiSec 2022. Communications in Computer and Information Science, Wang, G., Choo, K.-K. R., Wu, J., and Damiani, E., Ed., Zhangjiajie, China, Springer, 2023, vol. 1768, pp. 64-82

Exportar BibTeX

@inproceedings{zhao2023_1715410883091,
	author = "Zhao, T. and Lechner, U. and Pinto-Albuquerque, M. and Ata, E. and Gasiba, T.",
	title = "CATS: A serious game in industry towards stronger cloud security",
	booktitle = "Ubiquitous Security. UbiSec 2022. Communications in Computer and Information Science",
	year = "2023",
	editor = "Wang, G., Choo, K.-K. R., Wu, J., and Damiani, E.",
	volume = "1768",
	number = "",
	series = "",
	doi = "10.1007/978-981-99-0272-9_5",
	pages = "64-82",
	publisher = "Springer",
	address = "Zhangjiajie, China",
	organization = "Guangzhou University; Jishou University",
	url = "https://link.springer.com/book/10.1007/978-981-99-0272-9"
}

Exportar RIS

TY - CPAPER
TI - CATS: A serious game in industry towards stronger cloud security
T2 - Ubiquitous Security. UbiSec 2022. Communications in Computer and Information Science
VL - 1768
AU - Zhao, T.
AU - Lechner, U.
AU - Pinto-Albuquerque, M.
AU - Ata, E.
AU - Gasiba, T.
PY - 2023
SP - 64-82
SN - 1865-0929
DO - 10.1007/978-981-99-0272-9_5
CY - Zhangjiajie, China
UR - https://link.springer.com/book/10.1007/978-981-99-0272-9
AB - Cloud computing has become a widely applied technology in the industry. Broad network access as a characteristic of cloud computing brings business value. It poses threats to cloud assets due to a greater attack surface than on-premises and other service models. Industry standards aim to regulate cloud security by enforcing best practices.
To comply with the standards, practitioners in the industry are mandated to be trained to understand basic concepts of attack and defense mechanisms in cloud security to protect assets in the cloud. This work presents a serious game: Cloud of Assets and Threats (CATS), as an enrichment to the traditional training material to raise awareness about the cloud security challenges. In this paper, we introduce the design elements and implementation details of CATS. We organized eight game events with 94 industrial practitioners to validate our design. We applied a questionnaire and conducted semi-structured interviews with the game participants to evaluate the impact of the game and collect feedback. The evaluation indicates that CATS is a promising innovative method for promoting awareness of cloud security issues among practitioners in the industry, regardless of their technical background. Our main contributions are the design of such a game and the understanding of the
impact of playing the CATS game in the industry.
ER -