"CyberCIEGE is used by government agencies, universities, community colleges and high schools. See who is using CyberCIEGE here:
http://cisr.nps.edu/cyberciege/users.html"
CyberCIEGE is a serious game designed to teach network security concepts. Its development was sponsored by the U.S. Navy, and it is used as an education and training tool by agencies of the U.S. government, universities, community colleges and high schools. The game is freely available to the U.S. Government and a no-cost license is available for educational institutions.
CyberCIEGE covers a broad range of cybersecurity topics. Players purchase and configure computers and network devices to keep demanding users happy (e.g., by providing Internet access) all while protecting assets from a variety of attacks. The game includes a number of different scenarios, some of which focus on basic training and awareness, others on more advanced network security concepts. A "Scenario Development Kit" is available for creating and customizing scenarios.
Network security components include configurable firewalls, VPN gateways, VPN clients, link encryptors and authentication servers. Workstations and servers include access control lists (ACLs) and may be configured with operating systems that enforce label-based mandatory access control policies (e.g., “cross domain solutions”). The game also includes identity management devices such as biometric scanners and card readers to control access to workstations and physical areas.
The CyberCIEGE game engine consumes a “scenario development language” that describes each scenario in terms of users (and their goals), assets (and their values), the initial state of the scenario in terms of pre-existing components, and the conditions and triggers that provide flow to the scenario. The game engine is defined with enough fidelity to host scenarios ranging from e-mail attachment awareness to cyber warfare.