Four domains of cybersecurity: a risk-based systems approach to cyber decisions

Collier, Zachary A.; Linkov, Igor; Lambert, James H.

doi:10.1007/s10669-013-9484-z

Cited by 17 publications

(10 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The perception of the data, the analysis, and the way data is used in decision-making explain the Cognitive domain. Social domain deals with the norms, ethics, and policies of the organization and the broad social landscape (Collier et al, 2013). The technical implementation of different forms of security involves application security, information security, vulnerability management, network security, cloud security, cryptography, critical infrastructure security, etc.…”

Section: Domains In Cybersecuritymentioning

confidence: 99%

Cyber Security Threats and Countermeasures using Machine and Deep Learning Approaches: A Survey

Manjula¹,

Venkatesh²,

Venugopal³

2023

Journal of Computer Science

View full text Add to dashboard Cite

Recent advancements in e-business, e-healthcare, e-governance, and online digital transactions have brought valuable benefits. Unfortunately, it raises severe cyber-attacks. Cyberattacks disrupt normal operations, try to retrieve confidential information and defense secrets, and subvert the nation's defense systems and Internet-connected devices. Cyber security solutions are required to detect, analyze, defend against threats and protect sensitive data from unauthorized access. This study gives a detailed survey of different cybersecurity attacks, like Denial-of-service attacks, Botnet Evasion Attacks, Malware invasions, Spam and phishing invasion, Spoofing, Domain Generation algorithms, Probing attacks, R2L, and U2R attacks. This research review emphasizes Machine Learning and Deep Learning-based approaches to Cybersecurity problems. This study's key highlights are the research challenges, cybersecurity issues, cyber security domains, and tools for the Intrusion detection system. Data sets play a vital role in cybersecurity research; hence, Private and Publically available datasets are reviewed in this study. Various performance matrices are discussed in this survey which can be used to evaluate the effectiveness of cybersecurity solutions.

show abstract

Section: Domains In Cybersecuritymentioning

confidence: 99%

Cyber Security Threats and Countermeasures using Machine and Deep Learning Approaches: A Survey

Manjula¹,

Venkatesh²,

Venugopal³

2023

Journal of Computer Science

View full text Add to dashboard Cite

show abstract

“…• It allows incorporating the risk-based approach (of cybersecurity) [60], [61], [62] to cybersecurity activities.…”

Section: Cybersecurity Mastermentioning

confidence: 99%

An asset-focused systematic framework to manage cybersecurity from tactical and operational levels

Domínguez-Dorado¹,

Carmona-Murilo²,

Cortés-Polo³

et al. 2022

Preprint

View full text Add to dashboard Cite

<p>The standards and reference models commonly used to administrate cybersecurity are not suitable to manage it at tactical and operational levels. They are sometimes very generic, other times they are focused on information security but not on cybersecurity, and on rare occasions\textcolor{blue}{,} they detail specific methodological and procedural aspects for lower levels. This causes difficulty in keeping cybersecurity adapted to the highly dynamic cyber context with the required holism and strategic alignment. Our proposal defines a process, CyberTOM, to manage cybersecurity from tactical and operational levels, as well as a set of techniques, knowledge bases, and concepts to support it and contribute to its practical application, focusing on the business asset and on maintaining both the holistic vision and strategic alignment. Likewise, our solution provides mechanisms to assess cybersecurity at different levels, being an independent complement of the standard used for higher levels.</p>

show abstract

“…• It allows the incorporation of the risk-based approach (related to cybersecurity) [75]- [78], so that cybersecurity risks requirements can be introduced in the tactical and operational cybersecurity management cycle.…”

Section: ) Bia Requirements For Asset Focus and Business Continuitymentioning

confidence: 99%

CyberTOMP: A Novel Systematic Framework to Manage Asset-Focused Cybersecurity From Tactical and Operational Levels

Manuel¹,

Carmona-Murillo

Cortés-Polo

et al. 2022

IEEE Access

View full text Add to dashboard Cite

Currently different reference models are used to manage cybersecurity, although practically none are applicable "as is" to lower levels as they do not detail specific procedural aspects for them. However, they urge organizations to develop a methodological foundation to manage cybersecurity at those levels. Although they allow organizations to adhere to a recognized standard at the strategic level, this advantage vanishes when organizations must define specific low-level procedures, allowing the appearance of inconsistency at tactical and operational levels between departments of the same organization or between organizations. The design of these elements with the required holism and homogeneity is difficult, and this is why generic processes focused on getting certified regarding a standard are usually originated, but they are insufficient to obtain effective cybersecurity because they are not focused on dealing with real cyber threats. Because of the great responsibility of lower levels to achieve effective cybersecurity, this lack of methodological definition makes it difficult to adapt cybersecurity to the highly dynamic cyber context with the required holism and strategic alignment. Our proposal provides CyberTOMP, a process for managing cybersecurity at lower levels, as well as a set of methodological elements that support it. The novelty of these contributions is that they complement the strategic standard selected by the organization, providing it with a set of procedural elements ready to be used out of the box, contributing those aspects required by high-level frameworks to manage cybersecurity at lower levels, for which there is no alternative with a managerial approach.

show abstract

Four domains of cybersecurity: a risk-based systems approach to cyber decisions

Cited by 17 publications

References 10 publications

Cyber Security Threats and Countermeasures using Machine and Deep Learning Approaches: A Survey

Cyber Security Threats and Countermeasures using Machine and Deep Learning Approaches: A Survey

An asset-focused systematic framework to manage cybersecurity from tactical and operational levels

CyberTOMP: A Novel Systematic Framework to Manage Asset-Focused Cybersecurity From Tactical and Operational Levels

Contact Info

Product

Resources

About