JP2013236687A - Computer game - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a computer game which does not damage a computer and is hard to be used for fraudulent practice.SOLUTION: A computer game 1 is provided with a game site 5 which sets an attacking virtual computer 6 and a non-attacking virtual computer 7 in a computer and obtains prescribed information about the non-attacking virtual computer 7 by using the attacking virtual computer 6. The computer game 1 is provided with: a management means 9a which provides a user interface and attack information and manages the attacking virtual computer 6, the non-attacking virtual computer 7, and the user; an operation means 6a for operating the attacking virtual computer 6; and an attacking means which is provided for the attacking virtual computer 6 and attacks the non-attacking virtual computer 7. The management means 9a finishes a game by being notified of prescribed information or by the elapse of prescribed time.

Description

  The present invention relates to a computer game. More specifically, the present invention relates to a computer game useful for acquiring knowledge on hacking and cracking.

  In recent years, with the spread of the Internet, various services can be easily used. On the other hand, since the Internet is a communication space that anyone can use, secret information is often stolen or a system is damaged due to hacking or cracking.

  In order to solve the above problem, various security software has been developed as described in Patent Document 1. On the other hand, security education for general software development engineers and system users is not sufficient, and human resource development for protecting systems from so-called cyber attacks is delayed.

  In order to solve the above problems, various schools for security education, contests, and the like are being carried out, but these are not easily available and cannot be said to be sufficiently effective.

JP 2006-5503 A

  To learn hacking and cracking techniques, it is effective to try hacking and cracking an actual computer. On the other hand, if an actual computer is hacked or cracked, the computer system will be damaged.

  Moreover, although hacking and cracking are performed via the Internet, when trying to hack or the like via the Internet, there is a possibility that other computers will be attacked by mistake.

  Furthermore, even if it is intended to acquire knowledge against fraudulent acts such as hacking, there is a risk that it will be diverted to the above fraudulent acts.

  The present invention is a computer game that can learn hacking and cracking techniques, solves the above problems, does not damage the computer, and does not accidentally attack other computers. It is an object to provide a computer game that is difficult to divert to.

  The present invention is a computer game in which a game site in which an attacking virtual computer and an attacking virtual computer are set is provided in the computer, and predetermined information of the attacking virtual computer is obtained using the attacking virtual computer. And providing a user interface and attack information, managing means for managing the attacking virtual computer, the attacked virtual computer and the user, operating means for operating the attacking virtual computer, and the attacking computer Provided with a virtual computer, and attack means for attacking the attacked virtual computer, wherein the management means is configured to notify the predetermined information or to end the game when a predetermined time elapses. It is a thing.

  The present invention is configured so that a so-called cyber attack and a defense against this attack are converted into a game, and a technique of hacking and cracking is learned through the game, and a technique of defending it can also be learned.

  The attacking virtual computer and the attacked virtual computer are provided in a game site configured by a program. The attacking virtual computer is operated by operating means. The form and configuration of the operation means are not particularly limited. It is preferable to be configured so that it can be operated in the same manner as operating from a user's computer. Further, it is preferable that a plurality of the operation means are set according to the content and degree of the game so that the user can select them. The operation means can be configured to be provided from the management means.

  It is preferable that the attacked virtual computer is previously provided with a defect that becomes a clue of attack from the attacking virtual computer. It is also possible to set an attacked virtual computer that is considered to be free of defects and use it for the purpose of verifying the possibility of attack.

  The type of defect set in the attacked virtual computer is not particularly limited. Up to now, it is possible to employ various systems or software programs that have been recognized as defects.

  Further, there is no limitation as to which function the defect exists in. For example, the defect can be set in an upper layer of a communication protocol layer such as application software. Moreover, the said defect can also be provided in the lower layer of communication protocols, such as a communication system. Further, the defects include not only communication defects but also application defects. For example, the password for opening a predetermined file can be easily detected.

  It is also possible to provide a defect in a communication system performed between two or more attacked virtual computers. For example, it is possible to set a keyword or the like to be exchanged between two or more attacked virtual computers, and to set a problem to detect the keyword from communication between the attacked virtual computers.

  The management means provides a user interface and attack information, and is provided for managing the attack virtual computer and the attacked virtual computer. The user interface relates to various screen styles and input / output means for a user to perform a game. The attack information can be configured to give an attack problem as to what information is acquired in the game, and can be set to give a port number to be attacked by the attacked virtual computer and an attack hint. It is preferable that various attack information can be provided depending on the configuration of the attacked virtual computer, the user, the degree of the determined defect, and the like.

  Further, the management means is configured to perform various management of the attacking virtual computer and the attacking virtual computer. For example, the attack virtual computer and the attacked virtual computer may be damaged by repeating various attacks and defenses. In such a case, the management means can be provided with a reset function of the attacking virtual computer and the attacking virtual computer so that it can be restored to the initial state. Thereby, it is possible to experience hacking, cracking, and the like on the ground without damaging the system other than the game site.

  Further, the management means manages the start and end of the game. That is, when the attack is successful, the game is terminated by notifying the management means of the acquired predetermined information. In addition, when a predetermined time has elapsed from the start of the attack, it can be configured that the game is terminated as an attack failure.

  Further, the management means can be provided with a database function to manage user information, or to be configured to give or subtract a reward when an attack succeeds or fails.

  The attack means is not particularly limited, and various attack means including information collection means regarding the attacked virtual computer can be employed. For example, port scanning means for detecting the open port of the attacked virtual computer, banner check means for identifying the type and version of the software operating at each port, between two or more attacked virtual computers It is possible to use header analysis means for analyzing the header of communication performed in the above.

  Further, it is possible to set as a task to obtain a keyword or the like that is output when a predetermined virus provided by the management unit is adopted as an attack unit and the virus is embedded in a predetermined program of the attacked virtual computer.

  Further, the attack means can be configured so that a user's own work can be used. In this case, it is desirable that the attack means be configured so that the management means can verify whether or not a problem occurs.

  If an attack means according to the present invention is used to attack a computer other than a game site, it may be a crime. For this reason, it is preferable to provide a firewall that restricts at least access from the external computer to the game site and restricts access from the game site to the external computer. Further, the command executed by the user is monitored by the management means, and when it is determined that there is a risk, the game is stopped, and the attack virtual computer and the attacked virtual computer are reset and initialized. It can also be configured to return to the state or reset the entire game site.

  The present invention can be configured as packaged software or an Internet game. When configured as an Internet game, the game site is provided in a website that can be connected from a user computer via the Internet, and the operation means can be operated from the user computer via a remote connection means. can do.

  As the remote connection means, remote connection means such as SSH (Secure Shell) and VNC (Virtual Network Computing) can be adopted. The management means is preferably provided in a game server provided in the website. The management means provided in the game server can be configured to manage users participating in the game via the Internet. For example, it is possible to manage game participation authentication, rewards, and the like based on user participation IDs and passwords. The game server can be provided in the game site or can be provided in a website outside the game site.

  Furthermore, it is preferable that the management unit is provided with a monitoring unit that acquires and monitors an operation command in the remote connection unit and / or the operation unit. As a result, it is possible to prevent the occurrence of a failure in the system by detecting an unauthorized operation of the user and canceling the operation of the remote connection means. In addition, when a failure occurs in the attacking virtual computer or the attacking virtual computer, it can be configured to reset each virtual computer to an initial state.

  The attack means can be configured to be provided from the management server, or the attack means created by the user himself or attack means that can be acquired from the Internet can be used. When using an attack means created by the user himself or an attack means acquired from the Internet or the like, it is preferable to limit the attack means to that permitted by the management means so as not to damage the system.

  In addition, by configuring the computer game according to the present invention so that it can be performed on a website, the latest one is provided as a defect provided in the attacked virtual computer or an attack means provided to the attacking virtual computer It becomes possible to do.

  The attacking virtual computer and / or the attacking virtual computer can be configured to be set by a user. In this case, if the attack by the attack virtual computer set by the user is successful, or if another attack to the attacked virtual computer set by the user fails, a reward larger than the above-described reward will be paid. It is preferable to provide a configuration.

  The management means adopts a point system as the reward, and can be configured to give a predetermined point when the attack is successful or the like, while subtracting the point when the attack is unsuccessful. Further, these points can be configured to be used as a price when obtaining attack means or setting an attacking virtual computer or an attacking virtual computer.

  The management means may include an expression means for expressing the progress of the attack from the attacking virtual computer and the effect of the attack on the attacked virtual computer as an image or a moving image.

  For example, using a figure that changes according to the stage of the attack, it is possible to visually recognize the progress of the attack, or to provide an image that destroys the image of the attacked virtual computer when the attack is successful be able to.

  While playing the game, knowledge of hacking and cracking is acquired, and it becomes possible to counteract actual hacking and cracking.

It is a block diagram which shows the structure of each means of the computer game which concerns on this invention. It is a flowchart which shows the procedure in the case of performing the game shown in FIG. It is a block diagram which shows the 2nd Embodiment of this invention. It is a block diagram which shows the 3rd Embodiment of this invention.

  Embodiments of the present invention will be specifically described below with reference to the drawings. In the following embodiment, the computer game 1 according to the present invention is configured as a net game played via the Internet 8.

  The computer game 1 according to the present embodiment is performed by connecting a user computer 2 and a game site 5 provided on a website set as a host computer via the Internet 8. The game site 5 is provided in a physical server composed of a host computer, and an attack virtual computer 6 and an attacked virtual computer 7 are provided in the game site 5.

  The attacking virtual computer 6 and the attacking virtual computer 7 are operated by VMware (VMware virtualization software), VirtualBox (Oracle virtualization software), and KVM (Linux (registered trademark)) in the physical server. It can be constructed using a virtualization means such as a virtualization function provided in the system.

  The user computer 2 and the attack virtual computer 6 are configured to be connectable via remote connection means 8a such as SSH (Secure Shell) and VNC (Virtual Network Computing). The attacking virtual computer 6 is operated by operating the attacking virtual computer 6a by operating the attacking virtual computer 6a via the Internet 8 from the user computer input unit 3 by the remote connection unit 8a. The attack virtual computer 7 can be attacked.

  The host computer is provided with a game server 9 for managing the game site 5. The game server 9 is provided with management means 9a and a database 9b.

  The management means 9a provides the user computer 2 with a user interface and attack information via the Internet 8, and manages at least the attack virtual computer 6 and the attacked virtual computer 7. Composed.

  As the user interface, an input means 3 for operating the operating means 6a via the remote connecting means 8a is provided to the user computer. Further, the attack information is notified of the attacked virtual computer 7 to be attacked and the port number for accessing it. It also presents issues about information to be acquired. For example, it is configured to acquire a password for opening a file of application software in the attacked virtual computer and distribute it to the browser 4 of the user computer 2.

  The management means 9a can provide predetermined attack means to the attacking virtual computer 6 as necessary or upon request from the user. The attack means can provide various means according to the defect provided in the attacked virtual computer 7, information to be acquired, and the like. For example, port scanning means for detecting an open port of the attacked virtual computer 7, banner check means for specifying the type and version of software operating at each port, two or more attacked virtual computers It is possible to use header analysis means for analyzing the header of communication performed between the two. Furthermore, it is also possible to provide a kind of virus that functions only on the game site according to the present embodiment as the attacking means.

  The game server 9 includes a database 9b that manages information about the user and the user PC. When the user participates in the game, the user is given an ID and manages a password. It has a function to give approval. Moreover, in this embodiment, when an attack is successful, it is comprised so that a point may be provided to a user, and it is comprised so that the said point may be managed.

  Further, the game server is configured to be able to distribute a predetermined image, video or sound to the browser of the user computer according to the progress of the game. As a result, the user's motivation can be enhanced and the game can be enjoyed.

  In the present embodiment, the management means is provided with monitoring means for acquiring and monitoring operation commands in the remote connection means and / or the operation means. The monitoring means is configured to stop or reset the game when the user attempts an unauthorized operation. Thereby, it is possible to prevent the game site from being abused.

  Furthermore, the game site according to the present embodiment is provided with a firewall that restricts at least access from the external computer to the game site 5 and restricts access from the game site 5 to the external computer. As a result, it is possible to prevent a computer existing outside the game site 5 from being attacked or to prevent the game site 5 from being attacked by an external computer.

  Since various attacks are executed between the attacking virtual computer 6 and the attacked virtual computer 7, it is conceivable that a failure occurs in the virtual computers 6 and 7. Therefore, the game server 9 is provided with restoring means for resetting the attacking virtual computer 6 and the attacked virtual computer 7 and returning them to the initial state.

  The progress of the game on the game site 5 having the above configuration will be described with reference to FIG.

  The user logs in to the game site from the browser 4 of the user computer 2 (S101). At this time, the management unit 9a requests the user to input an ID and password, and the user computer 2 is connected to the host computer when an appropriate ID and password are input.

  Next, an attack mission of the game is selected (S102). The said attack mission is comprised including the information and subject of the attacked virtual computer 7 used as attack object. A plurality of attack missions are provided depending on the difficulty of the attack and the like. The attack mission is displayed on the browser of the user computer 2 from the management means 9a via the Internet 8, and the user can select a desired attack mission according to his / her ability or the like.

  After selecting the attack mission, the user connects the user computer 2 to the predetermined attack virtual computer 6 via the remote connection means 8a (S104).

  The user computer 2 is connected to the attack virtual computer 6 in the game site 5 and information on the attacked virtual computer 7 is collected as the first stage of the attack (S105). Attack means for use in collecting the information can be obtained from the management means 9a. For example, port scanning means, banner check means, header analysis means, etc. can be used. The user analyzes the information obtained by the information collecting means and examines the attack method.

  Next, an actual attack is made against the attacked virtual computer 7 (S106). As the attack, for example, an attack such as opening a predetermined file of the attacked virtual computer 7 or stealing a password is performed.

  The time from the start of the game is measured by a timer, and the attack can be performed until a predetermined time elapses. When the attack is successful and the information presented in the mission is acquired, the information is input from the user computer 2 to the management means 9a of the game server 9 (S108). If the input of the information is performed within a predetermined time (No in S107) and the answer is correct (Yes in S109), an animation image of a missile attack is displayed on the browser of the user computer from the management means 9a (S110). ), The game ends.

  On the other hand, if the information cannot be input within a predetermined time (Yes in S107), an animation image that the opponent missile lands on the user side is displayed, and the game ends.

  In the present embodiment, when the attack is successful, a predetermined point is given to the user and an accumulated point is recorded in the server. On the other hand, when the attack fails, a predetermined point is subtracted from the accumulated points. When the game is played for the first time, a predetermined point is given to the user, and the game can be played until the point is eliminated. In addition, it is preferable to purchase the points so that the game can be continued.

  Furthermore, a homepage can be provided in the game server 9 so that the user's score ranking and the like can be viewed. Further, when a predetermined level of mission attack is successful, the user can be given a predetermined title and can be viewed on the homepage in the same manner as the above score ranking.

  The attack mission method and procedure are not particularly limited. Also, the type of information to be acquired is not particularly limited. For example, the content of the attack mission may be to obtain a keyword stored in a predetermined file of the attacked virtual computer.

  In addition, as an attack mission, the IP address of the attacked virtual computer and the hint of the attack method for the set defect (vulnerability) are provided as attack information, and certain information obtained by analyzing this information is acquired. Can be set.

  Further, as in the second embodiment shown in FIG. 3, a plurality of attacked virtual computers 7a and 7b are provided in the game site 5, and pseudo communication is performed between these computers, and this communication is intercepted and attacked. It can also be set as an attack mission.

  The information obtained by intercepting the communication contents is not particularly limited, and can be configured to obtain, for example, a header or a password for breaking through a firewall provided in the attacked virtual computers 7a and 7b. . It can also be configured to acquire a password or the like for using the application software.

  FIG. 4 shows a third embodiment of the present invention. In the first and second embodiments, the attacking virtual computer and the attacking virtual computer are preset in the host computer.

  In the third embodiment, the user B sets the attacked virtual computer 7c in the game site 5 and attacks the attacked virtual computer 7c from the computer 2 of the user A. It is.

  In this case, the user B plans an attack mission and registers attack information and attack means in the management means 9a and provides them to the user A. This makes it possible to incorporate user ideas and increases the types of attack missions.

  Furthermore, it is preferable that when the attack of the user A fails, a predetermined point is given to the user B, while the predetermined point is subtracted from the owned point of the user A. Thereby, a battle-type game in which the user participates is configured, and the enjoyment is also increased.

  The virtual computer that can be set by the user is not limited to the attacked virtual computer, and an attack virtual computer can be set, or both virtual computers can be set. For example, a plurality of attack virtual computers having various attack means are set in the game site, and the attack virtual computer used by the user A can be selected according to the characteristics of the attacked virtual computer. Can do.

  It is preferable that the attacked virtual computer 7c can be set according to the points acquired by the user. This makes it possible to incorporate the ideas of users who have succeeded in many attacks into this game.

  Also, a plurality of attack virtual computers can be set in the game site, and a plurality of users using these attack virtual computers can be configured to jointly attack a predetermined attacked virtual computer. .

  The scope of the present invention is not limited to the embodiment described above. The embodiment disclosed this time should be considered as illustrative in all points and not restrictive. The scope of the present invention is defined not by the above-mentioned meaning but by the scope of the claims, and is intended to include all modifications within the meaning and scope equivalent to the scope of the claims.

  You can learn hacking and cracking knowledge while enjoying the game.

DESCRIPTION OF SYMBOLS 1 Computer game 6a Operation means 5 Game site 6 Attack virtual computer 7 Attacked virtual computer 9a Management means

Claims (13)

A computer game in which a game site in which an attacking virtual computer and an attacking virtual computer are set is provided in the computer, and predetermined information of the attacking virtual computer is obtained using the attacking virtual computer,
A management means for providing a user interface and attack information, managing the attack virtual computer, the attacked virtual computer, and a user;
Operating means for operating the attacking virtual computer;
Provided in the attacking virtual computer, comprising attack means for attacking the attacked virtual computer,
The management means is a computer game configured to notify the predetermined information or to end the game when a predetermined time elapses.   The computer game according to claim 1, wherein the attacked virtual computer is configured to have a preset attack defect.   The computer game according to claim 1, wherein the defect is set in an upper layer of a communication protocol hierarchy.   The computer game according to claim 3, wherein the defect is provided in a lower layer of a communication protocol.   In the game site, two or more attacked virtual computers are provided, pseudo communication is performed between the attacked virtual computers, and the pseudo communication is intercepted to obtain necessary information. The computer game according to claim 1, wherein the computer game is configured to attack a computer. While restricting access from external computers to at least the above game site,
The computer game according to any one of claims 1 to 5, further comprising a firewall that restricts access to an external computer from within the game site. The game site is provided in a website that can be connected from a user computer via the Internet, and the management means is provided in a management server provided in the website,
7. The computer game according to claim 1, wherein the computer game is configured to be operable from the user computer via a remote connection unit.   The computer game according to claim 7, wherein the management unit includes a monitoring unit that acquires and monitors an operation command in the remote connection unit and / or the operation unit.   9. The computer game according to claim 7, wherein the attack means is provided from the management server.   The computer game according to claim 7, wherein the attacking virtual computer and / or the attacked virtual computer is set by a user.   The computer game according to any one of claims 1 to 10, wherein the management means gives a predetermined reward to a user of the attack virtual computer when the attack is successful.   When the attack on the attacked virtual computer set by the user fails, the management means gives a reward to the setter of the attacked virtual computer and The computer game according to claim 11, wherein the computer game is configured to subtract a predetermined reward from the reward awarded.   The said management means is provided with the expression means which expresses the progress of the attack from the said attacking virtual computer, and the effect by the said attack in the said attacked virtual computer with an image or a moving image. The computer game according to claim 1.

Images