New approach for threat classification and security risk estimations based on security event management

Sancho, José Carlos; Caro, Andrés; Ávila, Mar; Bravo, Alberto

doi:10.1016/j.future.2020.07.015

Cited by 28 publications

(15 citation statements)

References 18 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…An important feature of such a violation of access to big data is the absence of anomalies in the traffic level. Obtaining the individual characteristics of users [3], the peculiarities of working with the same type of user group with the system, will also increase the efficiency of data storage by structuring the most likely data requests, and will also allow one to form a client-oriented interface based on user preferences.…”

Section: Discussionmentioning

confidence: 99%

Dataset of User Reactions When Filling Out Web Questionnaires

Magomedov

Ilin

Silaeva

et al. 2020

Data

View full text Add to dashboard Cite

This paper presents the dataset and the results of the analysis of user reactions when filling out questionnaires. Based on the analysis of 1980 results of users’ responses to simple questionnaire questions, patterns in user reactions were revealed. Data analysis shows that a user is characterized by reactions when answering a variety of questions, reflecting the individual skills of the interface, reading speed, speed of choosing an answer, which can be used to supplement personal verification in information systems. The built-in reaction time does not significantly load the data volumes for logging and transferring and does not contain confidential information. The data would be of interest for further research by specialists in the field of psychology, information security, and information systems design.

show abstract

Section: Discussionmentioning

confidence: 99%

Dataset of User Reactions When Filling Out Web Questionnaires

Magomedov

Ilin

Silaeva

et al. 2020

Data

View full text Add to dashboard Cite

show abstract

“…To perform the optimization procedure, a computational system was implemented according to the experimental design. The system complied with the secure software development guidelines specified in ( Sancho, Caro & Rodríguez (2020) and the considerations on security risk estimations presented in Sancho et al (2020) . They contributed to the development of a secure system, especially considering the importance and significance of research related to food technology in relation to food safety.…”

Section: Methodsmentioning

confidence: 99%

Optimization of the image acquisition procedure in low-field MRI for non-destructive analysis of loin using predictive models

Caballero

Pérez‐Palacios

Caro

et al. 2021

PeerJ Computer Science

Self Cite

View full text Add to dashboard Cite

The use of low-field magnetic resonance imaging (LF-MRI) scanners has increased in recent years. The low economic cost in comparison to high-field (HF-MRI) scanners and the ease of maintenance make this type of scanner the best choice for nonmedical purposes. However, LF-MRI scanners produce low-quality images, which encourages the identification of optimization procedures to generate the best possible images. In this paper, optimization of the image acquisition procedure for an LF-MRI scanner is presented, and predictive models are developed. The MRI acquisition procedure was optimized to determine the physicochemical characteristics of pork loin in a nondestructive way using MRI, feature extraction algorithms and data processing methods. The most critical parameters (relaxation times, repetition time, and echo time) of the LF-MRI scanner were optimized, presenting a procedure that could be easily reproduced in other environments or for other purposes. In addition, two feature extraction algorithms (gray level co-occurrence matrix (GLCM) and one point fractal texture algorithm (OPFTA)) were evaluated. The optimization procedure was validated by using several evaluation metrics, achieving reliable and accurate results (r > 0.85; weighted absolute percentage error (WAPE) lower than 0.1%; root mean square error of prediction (RMSEP) lower than 0.1%; true standard deviation (TSTD) lower than 2; and mean absolute error (MAE) lower than 2). These results support the high degree of feasibility and accuracy of the optimized procedure of LF-MRI acquisition. No other papers present a procedure to optimize the image acquisition process in LF-MRI. Eventually, the optimization procedure could be applied to other LF-MRI systems.

show abstract

“…Thus, prioritizing alerts is an important task. Sancho et al [148] propose a threat level rating model that evaluates the SIEM output. The authors classify threats and assign four priority levels: critical, important, moderate, and low.…”

Section: Audit Review and Analysismentioning

confidence: 99%

Cybersecurity of Industrial Cyber-Physical Systems: A Review

et al. 2022

View full text Add to dashboard Cite

Industrial cyber-physical systems (ICPSs) manage critical infrastructures by controlling the processes based on the “physics” data gathered by edge sensor networks. Recent innovations in ubiquitous computing and communication technologies have prompted the rapid integration of highly interconnected systems to ICPSs. Hence, the “security by obscurity” principle provided by air-gapping is no longer followed. As the interconnectivity in ICPSs increases, so does the attack surface. Industrial vulnerability assessment reports have shown that a variety of new vulnerabilities have occurred due to this transition. Although there are existing surveys in this context, very little is mentioned regarding the outputs of these reports. While these reports show that the most exploited vulnerabilities occur due to weak boundary protection, these vulnerabilities also occur due to limited or ill defined security policies. However, current literature focuses on intrusion detection systems (IDS), network traffic analysis (NTA) methods, or anomaly detection techniques. Hence, finding a solution for the problems mentioned in these reports is relatively hard. We bridge this gap by defining and reviewing ICPSs from a cybersecurity perspective. In particular, multi-dimensional adaptive attack taxonomy is presented and utilized for evaluating real-life ICPS cyber incidents. Finally, we identify the general shortcomings and highlight the points that cause a gap in existing literature while defining future research directions.

show abstract

New approach for threat classification and security risk estimations based on security event management

Cited by 28 publications

References 18 publications

Dataset of User Reactions When Filling Out Web Questionnaires

Dataset of User Reactions When Filling Out Web Questionnaires

Optimization of the image acquisition procedure in low-field MRI for non-destructive analysis of loin using predictive models

Cybersecurity of Industrial Cyber-Physical Systems: A Review

Contact Info

Product

Resources

About