CYBER SECURITY AS AN ESSENTIAL ATTRIBUTE OF MULTILEVEL PROTECTED CYBER SPACE

The development of ICT and the formation of the global information space changed the agenda of national and international security. Such key characteristics of cyberspace as openness, accessibility, anonymity, and identification complexity determined the rise of actors in cyber space and increased the level of cyber threats. Based on the analyses of the U.S. agencies' approach, the author defines three major groups of threats: use of ICT by states, criminals and terrorists. This concept is shared by the majority of the countries involved in the international dialogue on information security issues and is fundamental for providing cyber security policy on both national and international levels. The United States is developing a complex strategy for cyber space that includes maximization of ICT's advantages in all strategically important fields as well as improvement of national information systems and networks security. On the international level the main task for the American diplomacy is to guarantee the U.S. information dominance. The United States is the only country that takes part practically in all international and regional fora dealing with cyber security issues. However process of the development of a global cyber security regime is not going to be fast due to countries' different approaches to key definitions and lack of joint understanding of cyber security issues as well as due to the position of the countries, among all the United States, that are not interested in any new obligatory international norms and principles. Such American policy aims at saving the possibility of using cyberspace capacity in reaching political and military goals, thus keeping the global leadership.

Download Full-text

Government's Dynamic Approach to Addressing Challenges of Cybersecurity in South Africa

Cyber Law, Privacy, and Security ◽

10.4018/978-1-5225-8897-9.ch008 ◽

2019 ◽

pp. 139-156

Author(s):

Thokozani Ian Nzimakwe

Keyword(s):

Cyber Security ◽

Modern Society ◽

Daily Basis ◽

Cyber Crime ◽

Security Strategy ◽

Dynamic Approach ◽

Sensitive Data ◽

Unique Challenge ◽

The Public ◽

Cyber Space

Cybersecurity is the practice of making the networks that constitute cyber space secure against intrusions. The aim is to maintain the confidentiality, the availability and integrity of information, by detecting interferences. Traditionally, cybersecurity has focused on preventing intrusions and monitoring ports. The evolving threat landscape, however, calls for a more dynamic approach. It is increasingly clear that total cybersecurity is impossible, unless government develops a cyber-security strategy. The aim of this chapter is to discuss government's dynamic approach to addressing challenges of cybersecurity. The chapter looks at the co-ordination of cyber-security activities so as to have a coordinated approach to cyber-crime. This chapter also highlights the idea of protecting sensitive data for the public good. It is generally accepted that technology has become indispensable in modern society. Government's cybersecurity presents a unique challenge simply because of the volume of threats that agencies working for government face on a daily basis.

Download Full-text

Cyber Space Security Assessment Case Study

Cyber Security and Threats ◽

10.4018/978-1-5225-5634-3.ch052 ◽

2018 ◽

pp. 1060-1092

Author(s):

Hanaa. M. Said ◽

Rania El Gohary ◽

Mohamed Hamdy ◽

Abdelbadeeh M. Salem

Keyword(s):

Data Mining ◽

Cyber Security ◽

Cyber Attacks ◽

Assessment Procedure ◽

Security Assessment ◽

Reference Measure ◽

Decision Tress ◽

Cyber Space ◽

Reference Measurements

Cyberspace is known as the digital electronic medium for the knowing range of securing in the cyberspace. Therefore the importance of inferring the reference measure in the form of assessment procedure to improve the knowledge and making the decision for the e- government services. A series of the standards build on the application of data mining methods specifically represented as decision tress model, Logistic regression, association rules model, Bayesian network for making reference measurements, to measure the extent of securing the data, and the provided services. The authors discuss various types of cyber-attacks describing how data mining helps in detection and prevention of these attacks. A comparative analysis between a set of selected frameworks is presented. Finally this chapter imparts numbers of applications for the data mining Methodologies in Cyber Security. Results applied on the site of the authority for cleaning and beautifying Cairo governorate in Egypt.

Download Full-text

Get off my cloud: cyber warfare, international humanitarian law, and the protection of civilians

International Review of the Red Cross ◽

10.1017/s1816383113000246 ◽

2012 ◽

Vol 94 (886) ◽

pp. 533-578 ◽

Cited By ~ 45

Author(s):

Cordula Droege

Keyword(s):

Cyber Security ◽

Traffic Control ◽

Armed Conflict ◽

Armed Forces ◽

International Humanitarian Law ◽

Cyber Warfare ◽

Humanitarian Law ◽

Civilian Population ◽

Oil Pipeline ◽

Cyber Space

AbstractCyber warfare figures prominently on the agenda of policymakers and military leaders around the world. New units to ensure cyber security are created at various levels of government, including in the armed forces. But cyber operations in armed conflict situations could have potentially very serious consequences, in particular when their effect is not limited to the data of the targeted computer system or computer. Indeed, cyber operations are usually intended to have an effect in the ‘real world’. For instance, by tampering with the supporting computer systems, one can manipulate an enemy's air traffic control systems, oil pipeline flow systems, or nuclear plants. The potential humanitarian impact of some cyber operations on the civilian population is enormous. It is therefore important to discuss the rules of international humanitarian law (IHL) that govern such operations because one of the main objectives of this body of law is to protect the civilian population from the effects of warfare. This article seeks to address some of the questions that arise when applying IHL – a body of law that was drafted with traditional kinetic warfare in mind – to cyber technology. The first question is: when is cyber war really war in the sense of ‘armed conflict’? After discussing this question, the article goes on to look at some of the most important rules of IHL governing the conduct of hostilities and the interpretation in the cyber realm of those rules, namely the principles of distinction, proportionality, and precaution. With respect to all of these rules, the cyber realm poses a number of questions that are still open. In particular, the interconnectedness of cyber space poses a challenge to the most fundamental premise of the rules on the conduct of hostilities, namely that civilian and military objects can and must be distinguished at all times. Thus, whether the traditional rules of IHL will provide sufficient protection to civilians from the effects of cyber warfare remains to be seen. Their interpretation will certainly need to take the specificities of cyber space into account. In the absence of better knowledge of the potential effects of cyber warfare, it cannot be excluded that more stringent rules might be necessary.

Download Full-text

Enhancing International Cyber Security

Security and Human Rights ◽

10.1163/18750230-02602004 ◽

2015 ◽

Vol 26 (2-4) ◽

pp. 193-205 ◽

Cited By ~ 5

Author(s):

Sico van der Meer

Keyword(s):

Cyber Security ◽

International Security ◽

Arms Race ◽

Short Term ◽

Cyber Aggression ◽

Norms And Values ◽

Cyber Space ◽

Cyber Deterrence ◽

Single Focus

Cyber aggression is an increasing threat to international security and stability. While national policies intended to deter cyber aggression may offer some solution in the short term, their effects in the long term are doubtful. National cyber-deterrence policies entail the risk of an on-going cyber arms race and a cycle of escalation between potential cyber opponents. Diplomacy may offer fewer results in the short term, but it is more promising in the long term. Confidence-building measures and international norms and values may not be easy to reach, but in the end they could be more effective (and cheaper) than a single focus on national cyber-deterrence strategies. In the long term, cooperation between states to establish confidence and commonly accepted norms of behaviour in cyber space are the most promising ways available to achieve enduring cyber security and stability. Enhancing interstate co-operation, transparency and predictability of behaviour in cyberspace will reduce the risks of misperception, escalation and conflict.

Download Full-text

A lightweight cryptographic solution to secure digital transmissions on resource-constrained environments

General Letters in Mathematics ◽

10.31559/glm2021.10.2.4 ◽

2021 ◽

Vol 10 (2) ◽

pp. 38-45

Author(s):

Saiida Lazaar

Keyword(s):

Cyber Security ◽

Hash Functions ◽

Cyber Attacks ◽

Constrained Systems ◽

Sensitive Data ◽

Constrained Environments ◽

Secure Networks ◽

Cyber Space ◽

To Come ◽

Main Components

The great revolution of technology and its fast growth have led to a cyber space increasingly vulnerable to cyber-attacks. For this reason, cyber security becomes paramount to protect our cyber space by presenting and implementing important solutions to protect sensitive data from malicious persons. Thereby various measures of protection have been developed and aim to minimize the risks and damages of attacks. Among them, cryptography plays a vital and crucial role in protecting sensitive transmissions and electronic exchanges through complex networks. Numerous scientific studies have emerged with the advent of the cloud and the Internet of Things (IoT); all of them have expressed a strong need for building secure, efficient and fast cryptosystems targeting confidentiality, integrity and authentication. The last two objectives are essentially built on hash functions which are the main components of many applications and secure networks. The purpose of this paper is to give recent advances of lightweight cryptographic solutions that meet the requirements of constrained systems, and to present a study, in terms of security, energy-consuming and efficiency, of the main hash functions standardized by NIST (National Institute of Standards and Technology). In the end, the paper will give a comparison between the studied hash functions aiming to come up with a recommendation of good lightweight hash functions suitable for implementation in an IoT framework.

Download Full-text

THE CORRESPONDENCE OF THE PERSON'S, SOCIETY'S AND THE STATE'S IMPORTANT INTERESTS THROUGH THE PRISM OF ADMINISTRATIVE AND LEGAL INSURING OF CYBER SECURITY

Bulletin of Taras Shevchenko National University of Kyiv. Legal Studies ◽

10.17721/1728-2195/2020/2.113-10 ◽

2020 ◽

pp. 47-55

Author(s):

M. Pleskach

Keyword(s):

Cyber Security ◽

Personal Data ◽

The State ◽

Legal Method ◽

Legal Nature ◽

Cyber Space ◽

The Law ◽

The Right ◽

Proper Balance

The article is devoted to the issue on balancing the important interests of a person, a society and the state in cyber space by means of administrative law. The purpose of this article is to determine the legal nature and the role of the correspondence of the important interests of a person, a society and the state in cyber space in the context of administrative and legal provision of cyber security. The paper also deals with a proper balance between the law-enforcement interests of the state and the respect for fundamental human rights. The method of analysis has revealed in clarifying some features of concepts "interest", "need", "right". The method of synthesis has been used to define common concepts, for example "person's interest in cyberspace". Comparative legal method has been used in the process of comparison of the legislation of Ukraine and the international legislation that governs the issue on balancing the important interests of a person, a society and the state in cyber space. The author of this research presents the possible structure of person's cyber security through a set of important person's rights and interests in cyberspace, for example, the right to access to the Internet; the right to protect personal data in cyberspace; the right to be protected from aggressive marketing technologies in cyberspace, the prohibition of monitoring, including through cookies, HTTP, HTML5 markers or other technologies; the right to education, the right to access knowledge through the use of cyberspace etc. Conclusions and proposals of this research can be used for further research and for improving the administrative and information legislation of Ukraine, including the Law of Ukraine "On the Fundamental Principles of Cyber Security of Ukraine". Keywords: the balance of interests of the person, society and state, cyber space usage, public interest, private interest.

Download Full-text

Strategi Keamanan Siber Malaysia

Jurnal Kajian Ilmiah ◽

10.31599/jki.v21i1.447 ◽

2021 ◽

Vol 21 (1) ◽

pp. 69-84

Author(s):

Putri Bilqis Oktaviani ◽

Anggraeni Silvia

Keyword(s):

Cyber Security ◽

Security Strategy ◽

Official Document ◽

Perspective Theory ◽

Cyber Space ◽

The Government ◽

Malaysian Government

This research discusses the analysis of security strategy policies made by the Malaysian government in the protection and development of Malaysian cyberspace. This research will explain in detail the strategy of developing challenges as well as the aspects that support the Malaysian cyber space to be saved by the Malaysian cyber space. This research will further discuss the Malaysian security strategy through the official document of the Malaysian security strategy which will later be analyzed through the MAXQDA and GEPHI applications in order to classify the various categories that support it. This research will use the security concept published by Hao Yeli in Three - Perspective Theory of Cyber Sovereignty to classify ideas and data. This research finds that the security of the Malaysian system needs to be developed from both capacity and capability so that the government needs to work together with various related parties Keywords: Cyber Security, Cybersecurity Challenges, Soveignty Abstrak Penelitian ini membahas tentang analisis kebijakan strategi keamanan siber yang dibuat oleh pemerintah Malaysia dalam perlindungan dan pengembangan keamanan ruang siber Malaysia. Penelitian ini akan menjelaskan secara details strategi, tantangan serta aspek – aspek yang mendukung pengembangan ruang siber Malaysia guna mengamankan ruang siber Malaysia. Penelitian ini akan membahas lebih jauh strategi keamanan Malaysia melalui dokumen resmi strategi keamanan siber Malaysia yang nantinya akan di bedah melalui aplikasi MAXQDA dan GEPHI guna mengklasifikasikan berbagai kategori yang mendukung. Penelitian ini akan menggunakan konsep keamanan yang dipublikasikan oleh Hao Yeli dalam A Three – Perspective Theory of Cyber Sovereignty guna mengkasifikasikan gagasan dan data dengan menggunakan metode penelitian kuantitatif. Penelitian ini menemukan bahwa keamanan siber Malaysia perlu dikembangkan baik dari kapasitas maupun kapabilitas sehingga pemerintah Malasyaia perlu bekerjasama dengan berbagai pihak yang terkait. Kata kunci: Cyber Security, Tantangan Keamanan Cyber, Kedaulatan

Download Full-text

Deterrence by Denial approach for the most known State Cyber Vulnerabilities

10.31124/advance.12480353.v1 ◽

2020 ◽

Author(s):

Nasser AlAzwani ◽

Tom Chen

Keyword(s):

Cyber Security ◽

Vital Role ◽

Cyber Attacks ◽

Nuclear Deterrence ◽

Space Model ◽

Security Technologies ◽

Cyber Threats ◽

Proposed Model ◽

Cyber Space ◽

Cyber Deterrence

Cyber deterrence by denial strategy can be practised by the state by making it hard for adversaries to succeed any attempt of attacking. It was practised during nuclear deterrence strategies as well as in many other conventional deterrence. This paper argues the functionality of cyber deterrence by denial in deterring cyber threats. In this paper, our attempt is to define cyber deterrence by denial, model it, explore operational roles of cyber security technologies in approaching deterrence by denial within cyber space. Model analysis shed lights over practicing deterrence by denial and its vital role in understanding how efficiently denial can work in maximize failure of any attack which will impact in maximizing cost of cyber attacks to the attacker. Due to limitations in cyber security technologies, unknown cyber threat might not be deterred with assumed approach. Proposed model confirmed that deterrence by denial strategy might works in deterring known cyber threats within instrumental model. As for the benefit of enhancing deterrence in cyber space there is a serious need to reduce the tendency to ignore exploring this strategy.

Download Full-text

Down the Cyber Rabbit Hole: Whistleblowing as a Means to Fulfilling Moral Obligations in Cyber Space

Jurnal Undang-Undang dan Masyarakat ◽

10.17576/juum-2020-27-02 ◽

2020 ◽

Vol 2020 (27) ◽

pp. 20-24

Author(s):

Hazlina Shaik Md Noor Alam

Keyword(s):

Cyber Security ◽

The Internet ◽

Moral Obligations ◽

Basic Framework ◽

The Face ◽

Cyber Space

This paper discourses several issues stemming from whistleblowing. These include, but are not limited to, imposition of liability for inaction in the face of wrongdoing, to scrutinising the available legislative protections for whistleblowers. This paper will also discuss whistleblowing in relation to cyber whistleblowing, which essentially means making disclosures on any misconduct that occurs on the internet. Cyber whistleblowing can provide the basic framework for combating misdeeds online, as it forms a central part of cyber security. Whistleblowing has its roots in less than desirable circumstances, often offering little to no benefit to whistleblowers involved. The act of blowing the whistle, all share common traits, to call attention too, and to punish any and all wrongdoings. Legitimising whistleblowing would enormously help to remove the stigma that is often tied to whistleblowers. This would also give rise to more voluntary whistleblowing in relation to cyber security.

Download Full-text