Threat awareness for critical infrastructures resilience

Gouglidis, Antonios; Green, Ben; Busby, J S; Rouncefield, Mark; Hutchison, David; Schauer, Stefan

doi:10.1109/rndm.2016.7608287

Cited by 6 publications

(3 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…They classify the taxonomy of operational cyber security risks into four main groups: (a) actions of people is considered with actions taken or not taken by individuals in a given situation; (b) systems and technology failures refers to technology assets and specifically in their problematic, abnormal or unexpected functioning; (c) failed internal processes refers to needed or expected performance of internal processes and associations with problematic failures; and (d) external events refers to external events that might affect an organization's control. Therefore, to consider how a system's risk is affected when various type of changes apply to a system, it is required to examine the system under organization, technology, and individual (OTI) viewpoints (Gouglidis, Green, et al, 2016). The organization viewpoint is concerned with the groups of people who work together in an organized way for a shared purpose as well as any type of policies, processes, and procedures in the organization.…”

Section: System Riskmentioning

confidence: 99%

“…As part of our attempt to understand some of the human and organizational factors involved in resilience, we conducted ethnographic observations and interviews in various utility and information organizations in different parts of Europe (Gouglidis, Green, et al, 2016). In our analysis of the ethnographic data and in trying to understand the components of individual and organizational resilience, we were interested in unpacking people's ideas about risk and how these might relate to other notions such as trust or organizational resilience.…”

Section: Resilience and The Mental Models Used In Reasoning About Rismentioning

confidence: 99%

See 1 more Smart Citation

Design and Engineering of Resilience for Networked Computer Systems

Hutchison¹,

Rouncefield²,

Gouglidis³

et al. 2021

Multisystemic Resilience

Self Cite

View full text Add to dashboard Cite

In this chapter, the authors introduce and describe the notion of resilience for networked computer systems. Central to our viewpoint is that such systems need to be designed and engineered to have resilience as a major property. This is in contrast to systems found in nature that may already have resilience, in some cases through a process of evolution. The networked systems on which the authors focus will generally be built using Internet technologies, which the authors briefly introduce. Engineered systems also require attention to their people and organizational aspects to produce a resilient outcome. Therefore, the material we present here is intended to combine the technological, organizational, and people aspects of resilient systems design and operation, with reference to utility networks—specifically to an electricity distribution case study. While the field of engineered resilience is advancing quickly and involves multiple systems, much of what is in this chapter still remains in the research phase, and has yet to be widely adopted in practice.

show abstract

Section: System Riskmentioning

confidence: 99%

Section: Resilience and The Mental Models Used In Reasoning About Rismentioning

confidence: 99%

Design and Engineering of Resilience for Networked Computer Systems

Hutchison¹,

Rouncefield²,

Gouglidis³

et al. 2021

Multisystemic Resilience

Self Cite

View full text Add to dashboard Cite

show abstract

“…These attackers also have intelligence with regard to their resources, executing adaptive attacks [146] that wisely manage their resource limits and at the same time opportunistically seek to compromise an entire system. Kaloudi and Li [81] investigated the AI-powered cyber attacks and mapped them onto a proposed framework with new threats including the classification of several aspects trusted relationship [23] valid account [147] Fake event [105] spear-phishing [53] Execution exploit execution [53] code execution [125] Privilege Escalation unauthorized write [174] Hijack/DoS [174] Elevation of privileges [167] Root access [91] User privileges [174] Root privileges [174] Defense Evasion Backdoor [147] Authentication bypass [91] unauthorized access [174] Persistence Extended privileges [60] Credential Access Phishing [153] Defacement [147] credential leak [152] Password brute force [147] Discovery…”

Section: B Advanced Attacksmentioning

confidence: 99%

A Survey on Threat Situation Awareness Systems: Framework, Techniques, and Insights

Alavizadeh¹,

Jang-Jaccard²,

Enoch³

et al. 2021

Preprint

View full text Add to dashboard Cite

Cyberspace is full of uncertainty in terms of advanced and sophisticated cyber threats which are equipped with novel approaches to learn the system and propagate themselves, such as AI-powered threats. To debilitate these types of threats, a modern and intelligent Cyber Situation Awareness (SA) system need to be developed which has the ability of monitoring and capturing various types of threats, analyzing and devising a plan to avoid further attacks. This paper provides a comprehensive study on the current state-of-the-art in the cyber SA to discuss the following aspects of SA: key design principles, framework, classifications, data collection, and analysis of the techniques, and evaluation methods. Lastly, we highlight misconceptions, insights and limitations of this study and suggest some future work directions to address the limitations.

show abstract