Back to news

February 4, 2021 | International, C4ISR, Security

Qatari research center chooses Leonardo for cyber range

BEIRUT — A Qatari cyber research center has selected Leonardo to provide a cyber range and training system to support security operations, the Italian firm announced Feb. 3.

The Qatar Computing Research Institute, or QCRI, was established by the Qatar Foundation for Education, Science and Community Development. The training platform ordered by the QCRI is capable of simulating cyberattacks so users can assess the resilience of digital infrastructure.

“The training is completely to be performed in Qatar, and it is expected, through an approach oriented to ‘train the trainers,' to provide courses to a significant number of operators involved in the cybersecurity framework,” Tommaso Profeta, managing director of Leonardo's Cyber Security Division, told Defense News.

He noted that training and exercise scenarios can be customized using a drag-and-drop graphical interface. The platform can also analyze and classify the results of simulated attacks based on data collected during real-world offensive campaigns. Scenarios can be used for individual training or classroom experiences, and they provide practice for security operations centers and incident response activities.

This training tool “will allow the QCRI to deliver a complete cyber training process, from the design of the learning path to specific training sessions. Users will be able to practice their skills in simulated attack and defense scenarios, employing both information technology (IT) and operational technology (OT). The training will produce qualified teams of operators equipped with up-to-date knowledge and techniques, ready to face ever-evolving cyber threats,” according to a company statement.

“The best cyber training/testing environments are in theory real production systems. But in practice for such environments, institutions, enterprises and organizations cannot easily experience critical situations without paying high, sometime unaffordable prices,” Profeta said. “Training and testing are therefore the two essential, human-driven processes that can effectively support the overall cyber ‘protection' loop, but only if they can cope with real threats and highly realistic systems in highly realistic situations.”

Cyber ranges provide a controlled environment where cybersecurity experts can practice their technical and soft skills in emulated complex networks and infrastructures to learn how to respond to real-world cyberattacks. In these environments, cyber tools can be stressed to reveal their limits and vulnerabilities before deployment into cyberspace. Leonardo's platform challenges such assets and provides digital twin environments for predeployment testing.

Asked whether other Gulf countries have expressed interest in this training system, Profeta said it “has already been presented to other high-level Middle East stakeholders, and a significant level of interest has been registered for the platform.”

What scenarios are available?

Those using the cyber range will try to defend against simulated but realistic cyberattacks. According to Profeta, these include:

  • Man-in-the-middle attacks.
  • Botnets.
  • Exploitation of client and server vulnerabilities with lateral movements in search of sensitive data.
  • Distributed denial-of-service attacks (HTTP flooding or domain name system reflection) designed to disrupt connections to a targeted server.
  • Ransomware via multiple vectors, such as spear-phishing via email or drive-by downloads, relying on DNS-based covert channels.
  • Data exfiltration of personally identifiable information and intellectual property.

Though it's difficult to measure the potential effectiveness of this platform for Qatar, the company official predicted the system will reduce the cost of and improve the user experience in cyber training.

Leonardo also supplies the NATO Computer Incident Response Capability, a cyber defense product.

https://www.c4isrnet.com/cyber/2021/02/03/qatari-research-center-chooses-leonardo-for-cyber-range

On the same subject

  • Marines will be getting these ‘tacticool’ over-the-ear headsets

    August 16, 2019 | International, Naval

    Marines will be getting these ‘tacticool’ over-the-ear headsets

    By: Shawn Snow The iconic over-the-ear style headsets worn by the Corps' special operations Raiders will soon be in the hands of conventional Marines. The Marine Corps is ordering 4,519 headsets produced by INVISIO to the tune of $4,800,340.89, according to Manny Pacheco, a spokesman with Marine Corps Systems Command. INVISIO is expected to deliver those headsets between this November and March 2020, with the first order going to artillery and recon Marines, according to Pacheco. Pacheco explained that infantry Marines will be fielded new headsets on another contract. Marines will be getting two versions of INVISIO's T5 headset, according to Ray Clarke, a spokesman for INVISIO. One headset will be a stand-alone to provide hearing protection, while the other will interface with Marine Corps radio systems allowing for hearing protection and communications, Clarke said. INVISIO said in a press release that the headsets being delivered to the Corps would be compatible with the enhanced combat helmet. “Infantry, artillery, reconnaissance and combat engineer Marines decided on INVISIO systems based on fit, form, function and comfort,” the release said. Marines will also be getting the V50 controller that will serve as a communications hub and allow Marines to better operate their radio systems. The Marine Corps announced in September that it was ready to order thousands of new headsets and was looking at a range of systems. As part of that effort, the Corps also kicked off testing of various mid to high cut versions of the enhanced combat helmet to gauge the best ballistic and hearing protection fit. For that testing, the Corps ordered nearly 200 ECH helmets from Gentex Corp., the maker of the iconic Ops-Core helmets worn by special operators. The Corps also announced in June that it was also pursuing a new lightweight integrated helmet system for grunts that can better work with the slew of cables and electronic devices carried by infantry Marines. “With the increased number of battery powered optics and other attachments to the helmet, the amount of exposed/unsecure wires and battery packs are increasing,” a June posting on the government's business opportunities website reads. “The Marine Corps is looking for an optimized configuration to allow power and/or data to flow to the attachments while minimizing bulk," the posting reads. Clarke said INVISIO also provides Marine Raiders with the Maritime Communications Accessory Suite that comes with the V60 controller and X5 in-the ear headset. https://www.marinecorpstimes.com/news/your-marine-corps/2019/08/15/marines-will-be-getting-these-tacticool-over-the-ear-headsets/

  • Two steps President Trump could take now to secure missile defense improvements

    September 25, 2020 | International, C4ISR, Security, Other Defence

    Two steps President Trump could take now to secure missile defense improvements

    Trey Obering and Rebeccah Heinrichs In his acceptance speech for the Republican presidential nomination, President Donald Trump said that in a second term, “We will win the race to 5G, and build the world's best cyber and missile defense.” On the last issue — missile defense — there are actions President Trump can and should take now, with only a few weeks left until election day, to make necessary improvements. First, reverse the Pentagon's decision to give more authority over the Missile Defense Agency to the office of cost assessment and program evaluation (CAPE) while creating more bureaucratic oversight. These moves will create more obstacles to thwart the President's agenda and will drastically slow MDA's ability to develop and field missile defense capabilities to meet rapidly emerging threats. We understand fully the intent to reduce risk in acquisitions, but the purpose of the MDA is to conduct research and development and deliver new and ever-evolving effective defensive systems for the protection of the American people. We must prioritize speed over risk-aversion. Secondly, the President can announce that the United States is moving forward with site preparation for at least one additional homeland interceptor site. The Trump Administration's 2019 Missile Defense Review stated that such a site would protect against future Iranian threats; since the Pentagon released this policy document Iran has only improved its missile program. Especially concerning was the successful satellite launch conducted by the Islamic Revolutionary Guard Corps (IRGC) in April of this year. Vice Chairman of the Joint Chiefs of Staff Gen. John Hyten said the launch vehicle had traveled, “a very long way, which means it has the ability once again to threaten their neighbors, their allies, and we want to make sure they can never threaten the United States.” These developments put more pressure on the United States to make moves in the near term to bolster full coverage of the U.S. homeland. Environmental Impact Studies have already been concluded and military installations in New York, Ohio, and Michigan have been chosen as potential hosts for a third homeland missile defense site. Any of those sites would offer a “shoot-look-shoot” capability when considering the geometry of a potential missile attack from Iran. It might also make sense to pick two sites, perhaps putting a few interceptors in Ohio and in Michigan. If President Trump does decide to move forward with site preparation for an additional homeland interceptor site or sites, he would not need to decide immediately about the kind of interceptor to emplace, whether Next Generation Interceptors (NGIs) or Ground-Based Interceptors. Site preparation can take several years to complete and should not take away investments from development of the NGI, which promises to add significant capability to homeland defense. Either interceptor could be emplaced at the new site. If NGI matures and is ready for deployment by the Pentagon's stated goal of 2027, then the additional location could be home to a few of the interceptors. The threat from Iranian missiles are not the only ones putting pressure on the homeland defense systems. The Trump administration has used a combination of economic pressure, military threats, and talks to pressure North Korea into ending its missile program, but North Korea has not made the decision to forgo its nuclear missile program. Although Kim Jong-un has responded by holding off on further long-range missile tests, he has resumed shorter-range tests, and there is reason to believe Kim has not slowed down his efforts to improve his longer-range missile program. Moreover, North Korea remains a serious missile and illicit arms proliferator and a senior U.S. official recently expressed concern about cooperation between North Korea and Iran on long-range missile development. It would be a mistake to slow down homeland missile defense because the North Korean leader has promised to disarm while showing no real signs of doing so. The Pentagon is wrapping up its budget submission for the next fiscal year, and whoever wins in November will determine the budget's final form. Regardless, the United States must carefully ensure that even as we push ahead to evolve the system, we cannot neglect the defense of the American people against the threats that are here today. If the United States is going to have an effective, cutting edge missile defense architecture to balance near and evolving threats and to adapt as the threats dictate, the MDA must remain agile, and it must have the funding to improve and sustain current programs while investing in advanced technologies to stay ahead of the evolving threat. https://www.defensenews.com/opinion/commentary/2020/09/24/two-steps-president-trump-could-take-now-to-secure-missile-defense-improvements/

  • CACI boosts spending on independent research and development

    December 5, 2022 | International, C4ISR

    CACI boosts spending on independent research and development

    Following several technology-focused acquisitions, CACI International is directing about $35 million annually to IR&D.

All news