About Me Publications
Sherlock: A Dataset for Process-aware Intrusion Detection Research on Power Grid Networks
CERERE - An Emulation Environment to Evaluate the Resilience of Complex Systems against Cyber Electro-Magnetic Activities
Matteo Attenni, Sara Belluccini, Giordano Colò, Andrea Pompili, Pietro Tedeschi, Lennart Bader, Martin Serror, Eric Wagner, Thorsten Aurisch, Maximilian Prahl-Kamps, Philipp Zißner:
CERERE - An Emulation Environment to Evaluate the Resilience of Complex Systems against Cyber Electro-Magnetic Activities
In 2025 International Conference on Military Communication and Information Systems (ICMCIS), IEEE, 2025
DOI 10.1109/ICMCIS64378.2025.11047556 Cite No Citations
@INPROCEEDINGS{abc+25,
    author={Attenni, Matteo and Belluccini, Sara and Colò, Giordano and Pompili, Andrea and Tedeschi, Pietro and Bader, Lennart and Serror, Martin and Wagner, Eric and Aurisch, Thorsten and Prahl-Kamps, Maximilian and Ziβner, Philipp},
    booktitle={{2025 International Conference on Military Communication and Information Systems (ICMCIS)}}, 
    title={{CERERE - An Emulation Environment to Evaluate the Resilience of Complex Systems against Cyber Electro-Magnetic Activities}}, 
    year={2025},
    volume={},
    number={},
    pages={1-10},
    doi={10.1109/ICMCIS64378.2025.11047556}
}
Back to list

Abstract

Current penetration testing or red-teaming activities to evaluate the cyber resilience of a system mostly rely on subsets of known vulnerabilities or procedures. Despite the use of these techniques, it is hard to assess the process and risks falling into repetitive patterns, which do not effectively validate the resilience of the system against potential zero-day attacks. Countermeasures in the system-under-test are often left out of the cyber resilience evaluation phase. We propose CERERE-an automated framework designed to measure and test the cyber resilience of complex IT systems, such as critical national infrastructure and military networks. CERERE simulates the effects of attacks on the system regardless of exploitation methods. The framework consists of war gaming exercises where attacker and defender modules interact in a simulated test environment to allow a dynamic evaluation of resilience. The attacker module uses heuristic algorithms to generate kill chains, while the defender module leverages AI-based algorithms to simulate defense strategies. CERERE has been validated by evaluating the resilience of a given scenario and identifying the optimal configuration of responses and countermeasures. This paper was originally presented at the NATO Science and Technology Organization Symposium (ICMCIS) organized by the Information Systems Technology (IST)Scientific and Technical Committee, IST-209-RSY- the ICMCIS, held in Oeiras, Portugal, 13–14 May 2025.
Securing Sensing in Supply Chains: Opportunities, Building Blocks, and Designs
© Lennart Bader 2025
Imprint / Impressum