Design and Evaluation of COFELET-based Approaches for Cyber Security Learning and Training

Abstract

Cyber security game-based learning is a new field that lacks design standards and common methodologies. To this end, the Conceptual Framework for eLearning and Training (COFELET) and the COFELET ontology have been proposed. COFELET is a framework that can be used as a guide for the design and evaluation of effective cyber security learning and training approaches, whereas the COFELET ontology describes the key elements that such approaches should embrace to assimilate well known cyber security threat analysis and modeling standards as the means to create interesting educational experiences. Aiming at providing insights on how COFELET compliant approaches can be developed, we propose the life-cycle of a COFELET game, a blueprint illustrating the design aspects and the course of phases for the development of COFELET compliant games (COFELET games). Besides, an extension of the COFELET ontology is also proposed describing the appropriate elements utilized to develop the learning and the instructional aspects of COFELET games. Based on the life-cycle of a COFELET game and the extended COFELET ontology, we elaborate the design of a prototype hacking simulator COFELET game, called HackLearn. An excerpt of the HackLearn's design is methodically presented along with the analysis elaborated according to the Activity Theory Model for Serious Games (ATMSG) and a set of instances of the COFELET ontology objects. Finally, the HackLearn's game design is put on the test of a preliminary evaluation scheme elaborated for the assessment of new cyber security game-based learning approaches. The results of the evaluation show that HackLearn embraces several features of cyber security game-based learning approaches and they also provide reasons to be optimistic about the effectiveness of the cyber security learning and training that it will deliver.