A Quantitative Methodology for Security Monitor Deployment

Thakore, Uttam; Weaver, Gabriel A.; Sanders, William H.

doi:10.1109/dsn.2016.10

Cited by 5 publications

(4 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [8] Hardy et al proposed a targeted threat index that combined the sophistication of social engineering and technical attacks. In [9] Thakore proposed a set of metrics that included redundancy, confidence, coverage, and the cost to quantitatively evaluate deployments. In [10], Ekelhart et al looked at the attackers' behaviours and the attackers' strategies with a simulation-driven approach.…”

Section: Literature Reviewmentioning

confidence: 99%

A Decision Model on Optimising Cybersecurity Controls Using Organisation Preferences

Ansaria

2024

Preprint

View full text Add to dashboard Cite

Section: Literature Reviewmentioning

confidence: 99%

A Decision Model on Optimising Cybersecurity Controls Using Organisation Preferences

Ansaria

2024

Preprint

View full text Add to dashboard Cite

“…In [8] Hardy et al proposed a targeted threat index that combined the sophistication of social engineering and technical attacks. In [9] Thakore proposed a set of metrics that included redundancy, confidence, coverage, and the cost to quantitatively evaluate deployments. In [10], Ekelhart et al looked at the attackers' behaviors and the attackers' strategies with a simulation-driven approach.…”

Section: Literature Reviewmentioning

confidence: 99%

Evaluation of the cyber security models implemented across common attack vectors: A review of literature

Afra Ansaria

2024

World J. Adv. Eng. Technol. Sci.

View full text Add to dashboard Cite

Cybersecurity is an organizational issue that should be looked at through the lens of various stakeholders. However, it is often treated as a siloed issue in which more is always seen as better. The CISOs, CIOs, and the key decision-makers struggle to understand how much security is enough. Cybersecurity solutions, referred to as controls, more often than not result in a residual risk. To assess this risk better, the security controls should be studied in further detail. The objective of this paper is to educate the audience with the various cyber security controls being used in the academia and in the industry. In order to circumvent the security issues faced by large organization, the tradeoffs of each controls should be studied further. The paper is meant to provide a balanced view providing the positive and the critical aspect of implementing some of the known security solutions. There is no one perfect formula when it comes to selecting security controls. However, picking a security control that are in line with the users’ needs will help reduce some of the risks associated with implementing the controls. An optimal solution requires a balanced approach towards the risk, cost, and benefit of the solution. The aim of the paper is to help the reader assess some of risks and the tradeoff associated with the security controls being practiced in the industry today.

show abstract

“…One of them focuses on anomaly detection, especially increasing its accuracy, in some chosen security domain or part of the system. As an example, there are works on improvement of IDS/IPS [24], [26] or anomaly detection on the basis of network traffic analysis, e.g. [5], [12], [15].…”

Section: Iirelated Workmentioning

confidence: 99%

Load-balanced Integrated Information Security Monitoring System

Klasa

Fray

2017

Annals of Computer Science and Information Systems

View full text Add to dashboard Cite

Abstract-Monitoring is the last step of the information security management process. It is intended to evaluate not the state of security itself, but rather the accuracy and quality of prior security evaluation and risk treatment applied. In other words, it is supposed to provide the answer, whether chosen countermeasures and all other decisions based on the security assessment and evaluation results were accurate, proper and sufficient. If during this phase of the security management process, any significant anomaly is found within the system, it means that either one of the accepted 'as is' risks occurred, or that the applied countermeasures did not provide assumed protection in some point of the system. In such a case it is necessary to identify all the areas that require security audit repeat. As information systems grow in complexity, an integrated solution for security monitoring that will prevent system overload caused by monitoring is proposed in this paper.

show abstract

A Quantitative Methodology for Security Monitor Deployment

Cited by 5 publications

References 16 publications

A Decision Model on Optimising Cybersecurity Controls Using Organisation Preferences

A Decision Model on Optimising Cybersecurity Controls Using Organisation Preferences

Evaluation of the cyber security models implemented across common attack vectors: A review of literature

Load-balanced Integrated Information Security Monitoring System

Contact Info

Product

Resources

About