Senior Design |
IScorE - An Automated Cyber Defense Competition Scoring FrameworkProject OverviewThe IScorE project is easily one of the toughest, yet the most rewarding projects I have worked on during my undergraduate degree. I worked with a team of 9 individuals to develop a business model, design the interface, develope the system. Working as the technical lead, My team of three wrote over 10,000 lines of code in a month and a half to complete the project. This new system is now used to monitor and score Iowa State Cyber Defense Competitions (CDCs). Every year the Information Assurance department hosts several competitions for students to practice their cyber security and server administration skills in a simulated real world environment known as ISEAGE. Several teams take part in this competition. The blue team, comprised of students, builds the servers and networks that are defended. These blue networks include a mail servers, custom web applications, FTP, RDP, SSH servers, and optionally a firewall. The green team represents normal employees on a network that generate traffic and report on the functionality of the blue team servers. The red team is a group of experienced students and industry professionals that are tasked with hacking into blue team servers. Their goal is to either plant or take flags on the system and score the team accordingly. The white team is tasked with scoring the blue teams based on their network setup documentation and the effectiveness of mitigating the hackers’ break-in attempts. ![]() ![]() Before the IScorE system was implemented, a competition was scored manually through the use of paper documentation and manual entry into excel documents. This often led to human error in reporting and delayed scoring due to the officials being needed for technical help or the lack of people available to help gather and input information. Our project group’s system included the following key functionality that was able to solve this problem. During two competition our team tracked how the administrative team spent their time, one using our system and one without it. By meeting our goal of automated scoring and competition network monitoring, administrators would be able to spend more time helping and teaching students. The results we found were surprising and a great testament to the success of the IScorE system. The graphs below representing the collected data demonstrate this. |
Before IScorE![]() After IScorE![]() |
As you can see, our implementation of the backend systems monitoring and automated scoring produced an enormous improvement in the amount of time that the white team members were able to help and teach the blue teams. Our software was also able to reduce the number of people needed on a specific team to be efficient. The green team simulating normal network traffic and checking functionality typically needed 10-12 people to score the teams, but with the new system this we were able to reduce this to only needing three green team members. The white team also spent far less time compiling scores and reports and were able to do more technical work, help teams, and enjoy the competition. Overall this was a very exciting, unique project to work on. Our entire team shared the same work ethic, which motivated me even more to work countless hours, including several late nights that turned into early mornings. I feel one of the greatest strengths of our project was the outstanding collaboration among our team members and strong support from our stake holder, ISEAGE. |