A comprehensive model of information security factors for decision-makers

Diesch, Rainer; Pfaff, Matthias; Krcmar, Helmut

doi:10.1016/j.cose.2020.101747

Cited by 72 publications

(51 citation statements)

References 90 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Work [20] analyzes different approaches in terms of the mathematical apparatus used in such models. However, the work does not address examples of these models being implemented in practice.…”

Section: Literature Review and Problem Statementmentioning

confidence: 99%

Development of a model for choosing strategies for investing in information security

Lakhno

Malyukov

Akhmetov

et al. 2021

EEJET

View full text Add to dashboard Cite

This paper has proposed a model of the computational core for the decision support system (DSS) when investing in the projects of information security (IS) of the objects of informatization (OBI). Including those OBI that can be categorized as critically important. Unlike existing solutions, the proposed model deals with decision-making issues in the ongoing process of investing in the projects to ensure the OBI IS by a group of investors. The calculations were based on the bilinear differential quality games with several terminal surfaces. Finding a solution to these games is a big challenge. It is due to the fact that the Cauchy formula for bilinear systems with arbitrary strategies of players, including immeasurable functions, cannot be applied in such games. This gives grounds to continue research on finding solutions in the event of a conflict of multidimensional objects. The result was an analytical solution based on a new class of bilinear differential games. The solution describes the interaction of objects investing in OBI IS in multidimensional spaces. The modular software product "Cybersecurity Invest decision support system " (Ukraine) for the Windows platform is described. Applied aspects of visualization of the results of calculations obtained with the help of DSS have been also considered. The Plotly library for the Python algorithmic language was used to visualize the results. It has been shown that the model reported in this work can be transferred to other tasks related to the development of DSS in the process of investing in high-risk projects, such as information technology, cybersecurity, banking, etc.

show abstract

Section: Literature Review and Problem Statementmentioning

confidence: 99%

Development of a model for choosing strategies for investing in information security

Lakhno

Malyukov

Akhmetov

et al. 2021

EEJET

View full text Add to dashboard Cite

show abstract

“…Firstly, they surveyed 136 articles to identify the information security factors, and, secondly, a series of interviews were held with 19 experts from the industry to evaluate the relevancy of these factors. In third step, a complete model was developed [18]. e security identification has significant role in the field like Internet of ings in smart city.…”

Section: Related Workmentioning

confidence: 99%

Convolution Neural Network-Based Higher Accurate Intrusion Identification System for the Network Security and Communication

Gu¹,

Nazir

Hong³

et al. 2020

Security and Communication Networks

View full text Add to dashboard Cite

With the development of communication systems, information securities remain one of the main concerns for the last few years. The smart devices are connected to communicate, process, compute, and monitor diverse real-time scenarios. Intruders are trying to attack the network and capture the organization’s important information for its own benefits. Intrusion detection is a way of identifying security violations and examining unwanted occurrences in a computer network. Building an accurate and effective identification system for intrusion detection or malicious activities can secure the existing system for smooth and secure end-to-end communication. In the proposed research work, a deep learning-based approach is followed for the accurate intrusion detection purposes to ensure the high security of the network. A convolution neural network based approach is followed for the feature classification and malicious data identification purposes. In the end, comparative results are generated after evaluating the performance of the proposed algorithm to other rival algorithms in the proposed field. These comparative algorithms were FGSM, JSMA, C&W, and ENM. After evaluating the performance of these algorithms and the proposed algorithm based on different threshold values ranging, Lp norms, and different parametric values for c, it was concluded that the proposed algorithm outperforms with small Lp values and high Kitsune scores. These results reflect that the proposed research is promising toward the identification of attack on data packets, and it also reflects the applicability of the proposed algorithms in the network security field.

show abstract

“…Initially, 136 articles were surveyed for identifying the factors of information security, and then a sequence of interviews were performed with 19 experts of the industry for evaluating the association of these factors. In the third step, a comprehensive model was developed [24]. e detection and measurement of security have important role in the areas such as IoT in smart city.…”

Section: Related Workmentioning

confidence: 99%

Identification of Attack on Data Packets Using Rough Set Approach to Secure End to End Communication

Nazir

Mukhtar

2020

Complexity

View full text Add to dashboard Cite

Security has become one of the important factors for any network communication and transmission of data packets. An organization with an optimal security system can lead to a successful business and can earn huge profit on the business they are doing. Different network devices are linked to route, compute, monitor, and communicate various real-time developments. The hackers are trying to attack the network and want to draw the organization’s significant information for its own profits. During the communication, if an intrusion or eavesdropping occurs, it will lead to a severe disfigurement of the whole communication network, and the data will be controlled by wrong malicious users. Identification of attack is a way to identify the security violations and analyze the measures in a computer network. An identification system, which is effective and accurate, can add security to the existing system for secure and smooth communication among end to end nodes and can work efficiently in the identification of attack on data packets. The role of information security is to design and protect the entire data of networks and maintain its confidentiality, integrity, and availability for their right users. Therefore, there is a need for end to end security management, which will ensure the security and privacy of the network and will save the data inside networks from malicious users. As the network devices are growing, so the level of threats is also increasing for these devices. The proposed research is an endeavor toward the detection of data packets attack by using the rough set theory for a secure end to end communication. The experimental work was performed by the RSES tool. The accuracy of the K-NN was 88% for the total objects of 8459. For cross validation purposes, the decision rules and decomposition tree algorithms were used. The DR algorithm showed accuracy of 59.1%, while the DT showed accuracy of 61.5%. The experimental results of the proposed study show that the research is capable of detecting data packets attack.

show abstract

A comprehensive model of information security factors for decision-makers

Cited by 72 publications

References 90 publications

Development of a model for choosing strategies for investing in information security

Development of a model for choosing strategies for investing in information security

Convolution Neural Network-Based Higher Accurate Intrusion Identification System for the Network Security and Communication

Identification of Attack on Data Packets Using Rough Set Approach to Secure End to End Communication

Contact Info

Product

Resources

About