scholarly journals Legal basis of cybersecurity on the background of polish and UE legislation

2020 ◽  
Vol 50 (4) ◽  
pp. 321-329
Author(s):  
Sławomir Dygnatowski ◽  
Włodzimierz Dygnatowski
Keyword(s):  
Cyber Security ◽  
Social Life ◽  
Rapid Development ◽  
Legal Framework ◽  
Cyber Attacks ◽  
Legal Basis ◽  
Progressive Development ◽  
Eu Legislation ◽  
Criminal Groups ◽  
Technical And Organizational Measures

SummaryThe last decades have brought about the rapid development of information technology, which was reflected in all areas of social life and economic. Unfortunately, the ongoing digitization and the presence of individuals, private entities as well as countries in the network makes them exposed to new types of threats that have never been seen before. The perpetrators of these threats may be individuals, organized criminal groups or foreign country interviews. Threats and vectors of attacks has many forms, and their evolution continues all along with the progressive development of broadly understood cyberspace. In order to be able to effectively fight with the increasing threats in cyberspace, not only technical and organizational measures are needed, but also the formal and legal framework to combat cyber-attacks. In this article, the authors discuss the legal comparison of the basics of cyber security against the Polish background and EU legislation.

scholarly journals Application of Bayesian network in risk assessment for website deployment scenarios

2022 ◽  
Vol 2 (14) ◽  
pp. 3-16
Author(s):  
Vu Thi Huong Giang ◽  
Nguyen Manh Tuan
Keyword(s):  
Risk Assessment ◽  
Bayesian Network ◽  
Cyber Security ◽  
Rapid Development ◽  
Cyber Attacks ◽  
Security Risk ◽  
Security Testing ◽  
Security Risks ◽  
Web Based ◽  
Assessment Results

Abstract—The rapid development of web-based systems in the digital transformation era has led to a dramatic increase in the number and the severity of cyber-attacks. Current attack prevention solutions such as system monitoring, security testing and assessment are installed after the system has been deployed, thus requiring more cost and manpower. In that context, the need to assess cyber security risks before the deployment of web-based systems becomes increasingly urgent. This paper introduces a cyber security risk assessment mechanism for web-based systems before deployment. We use the Bayesian network to analyze and quantify the cyber security risks posed by threats to the deployment components of a website. First, the deployment components of potential website deployment scenarios are considered assets, so that their properties are mapped to specific vulnerabilities or threats. Next, the vulnerabilities or threats of each deployment component will be assessed according to the considered risk criteria in specific steps of a deployment process. The risk assessment results for deployment components are aggregated into the risk assessment results for their composed deployment scenario. Based on these results, administrators can compare and choose the least risky deployment scenario. Tóm tắt—Sự phát triển mạnh mẽ của các hệ thống trên nền tảng web trong công cuộc chuyển đổi số kéo theo sự gia tăng nhanh chóng về số lượng và mức độ nguy hiểm của các cuộc tấn công mạng. Các giải pháp phòng chống tấn công hiện nay như theo dõi hoạt động hệ thống, kiểm tra và đánh giá an toàn thông tin mạng được thực hiện khi hệ thống đã được triển khai, do đó đòi hỏi chi phí và nhân lực thực hiện lớn. Trong bối cảnh đó, nhu cầu đánh giá rủi ro an toàn thông tin mạng cho các hệ thống website trước khi triển khai thực tế trở nên cấp thiết. Bài báo này giới thiệu một cơ chế đánh giá rủi ro an toàn thông tin mạng cho các hệ thống website trước khi triển khai thực tế. Chúng tôi sử dụng mạng Bayes để phân tích và định lượng rủi ro về an toàn thông tin do các nguồn đe dọa khác nhau gây ra trên các thành phần triển khai của một website. Đầu tiên, các thành phần triển khai của các kịch bản triển khai website tiềm năng được mô hình hoá dưới dạng các tài sản, sao cho các thuộc tính của chúng đều được ánh xạ với các điểm yếu hoặc nguy cơ cụ thể. Tiếp đó, các điểm yếu, nguy cơ của từng thành phần triển khai sẽ được đánh giá theo các tiêu chí rủi ro đang xét tại mỗi thời điểm cụ thể trong quy trình triển khai. Kết quả đánh giá của các thành phần triển khai được tập hợp lại thành kết quả đánh giá hệ thống trong một kịch bản cụ thể. Căn cứ vào kết quả đánh giá rủi ro, người quản trị có thể so sánh các kịch bản triển khai tiềm năng với nhau để lựa chọn kịch bản triển khai ít rủi ro nhất.

scholarly journals INCREASING YOUR CYBERSECURITY AWARENESS: UNDERSTANDING CYBERCRIME AND FINDING WAYS TO FIGHT IT

Legal Ukraine ◽  
2020 ◽  
pp. 14-29
Author(s):  
Mariana Zhuravel
Keyword(s):  
Cyber Security ◽  
National Level ◽  
Real Life ◽  
Legal Framework ◽  
Cyber Attacks ◽  
Cyber Attack ◽  
Security Measures ◽  
Cyber Terrorism ◽  
The Government ◽  
Business Entities

Dependency on global cyberspace is rapidly increasing nowadays. Virtual reality generates opportunities for enterprises, governments and individuals; however it also poses significant threats to security on different levels including the national level, whereby key state infrastructures can become a target of cyber attacks. This was seen during the Covid-19 pandemic when the healthcare system in a number of countries experienced cyber threats, which in the example of the Czech Republic, led to severe disruption of the medical processes in a hospital. Thus, cybercrime can cause detrimental effects not only to individuals or business entities, but also to a large group of stakeholders. Infinite cyberspace, the anonymous character of cyber attackers, advances in technology and a lack of cyber security measures in place – these all give cybercrime a sophisticated and aggressive nature and as a result, make us more vulnerable to it. This article will consider different categories of cybercrime, namely, crimes against the person; crimes against property, and crimes against the government, drawing examples from real life cases. This will be followed by an exploration of the methods which should be employed in the fight against cybercrime. In addition, the EU legislative framework will be considered as an example of legal measures against cybercrime. Key words: Internet, cyberspace, cybercrime, cyber attack, cyber threat, cybersecurity, ransomware, cyber terrorism, European Union legal framework, NIS Directive, ENISA, ways.

Estonia after the 2007 Cyber Attacks

2011 ◽  
Vol 1 (1) ◽  
pp. 24-34 ◽  
Author(s):  
Christian Czosseck ◽  
Rain Ottis ◽  
Anna-Maria Talihärm
Keyword(s):  
National Security ◽  
Cyber Security ◽  
Security Policy ◽  
Legal Framework ◽  
Cyber Attacks ◽  
Lessons Learned ◽  
Comprehensive Overview ◽  
Nation States ◽  
Information And Communication ◽  
Developed Nations

At the time of the state-wide cyber attacks in 2007, Estonia was one of the most developed nations in Europe regarding the ubiquitous use of information and communication technology (ICT) in all aspects of society. Relaying on the Internet for conducting a range of business transactions is common practice. But naturally, the more a society depends on ICT, the more it becomes vulnerable to cyber attacks. Unlike other research on the Estonian incident, this paper does not focus on the analysis of the events themselves. Instead, the authors examine Estonia’s cyber security policy and subsequent changes made in response to the cyber attacks. As such, the authors provide a comprehensive overview of the strategic, legal, and organisational changes based on lessons learned by Estonia after the 2007 cyber attacks. The analysis is based on a review of national security governing strategies, changes in the Estonia’s legal framework, and organisations with direct impact on cyber security. The paper discusses six important lessons learned and manifested in actual changes: each followed by a set of cyber security policy recommendations appealing to national security analysts as well as nation states developing their own cyber security strategy.

Development of the Legal Framework for Regulating Relations for the Training and Retraining of Judges in the Soviet Period (1946–1991)

2020 ◽  
Vol 8 ◽  
pp. 39-47
Author(s):  
S. I. Pukhnarevich ◽  
Keyword(s):  
Professional Development ◽  
Soviet Union ◽  
Legal Framework ◽  
Judicial System ◽  
Soviet Period ◽  
Legal Basis ◽  
The Soviet Union

The article shows the formation of the legal basis for the formation, development and functioning of the system of training and retraining of judicial personnel in the country in the period from 1946 until the end of the USSR. The article also explores the forms and approaches to the organization of improving the quality of the staff of the judicial system. It was concluded that the Soviet Union has formed an ideologically oriented, strictly centralized Federal-Republican system of professional development of court employees.

scholarly journals Design of a dynamic and self-adapting system, supported with artificial intelligence, machine learning and real-time intelligence for predictive cyber risk analytics in extreme environments – cyber risk in the colonisation of Mars

2021 ◽  
Author(s):  
Petar Radanliev ◽  
David De Roure ◽  
Kevin Page ◽  
Max Van Kleek ◽  
Omar Santos ◽  
...  
Keyword(s):  
Artificial Intelligence ◽  
Machine Learning ◽  
Real Time ◽  
Cyber Security ◽  
Extreme Environments ◽  
Learning Technologies ◽  
Cyber Attacks ◽  
Edge Computing ◽  
Mathematical Formulas ◽  
Cyber Risk

AbstractMultiple governmental agencies and private organisations have made commitments for the colonisation of Mars. Such colonisation requires complex systems and infrastructure that could be very costly to repair or replace in cases of cyber-attacks. This paper surveys deep learning algorithms, IoT cyber security and risk models, and established mathematical formulas to identify the best approach for developing a dynamic and self-adapting system for predictive cyber risk analytics supported with Artificial Intelligence and Machine Learning and real-time intelligence in edge computing. The paper presents a new mathematical approach for integrating concepts for cognition engine design, edge computing and Artificial Intelligence and Machine Learning to automate anomaly detection. This engine instigates a step change by applying Artificial Intelligence and Machine Learning embedded at the edge of IoT networks, to deliver safe and functional real-time intelligence for predictive cyber risk analytics. This will enhance capacities for risk analytics and assists in the creation of a comprehensive and systematic understanding of the opportunities and threats that arise when edge computing nodes are deployed, and when Artificial Intelligence and Machine Learning technologies are migrated to the periphery of the internet and into local IoT networks.

Cybersecurity Teamwork: A Review of Current Practices and Suggested Improvements

2020 ◽  
Vol 64 (1) ◽  
pp. 451-455
Author(s):  
Richard J. Simonson ◽  
Joseph R. Keebler ◽  
Mathew Lessmiller ◽  
Tyson Richards ◽  
John C. Lee
Keyword(s):  
Cyber Security ◽  
Cyber Attacks ◽  
Team Science ◽  
The Past ◽  
Insight Into ◽  
Current Practices

As cyber-attacks and their subsequent responses have become more frequent and complex over the past decade, research into the performance and effectiveness of cybersecurity teams has gained an immense amount of traction. However, investigation of teamwork in this domain is lacking due to the exclusion of known team competencies and a lack of reliance on team science. This paper serves to provide insight into the benefit that can be gained from utilizing the extant teamwork literature to improve teams’ research and applications in the domain of cyber-security.

scholarly journals Company Changing Status and Its Linking to Competitiveness

2015 ◽  
Vol 53 (1) ◽  
pp. 1-17
Author(s):  
Dragana Radenković-Jocić ◽  
Ivan Barun
Keyword(s):  
Mergers And Acquisitions ◽  
Legal Framework ◽  
Decision Makers ◽  
Economic Activities ◽  
Economic Interests ◽  
Eu Legislation ◽  
The Republic ◽  
The Right ◽  
A Company ◽  
The Eu

Abstract The authors present the issues and challenges related to the changes in status of a company and its impact on competitiveness. Status changes of companies, mostly mergers and acquisitions of companies, are one of the ways in which capital owners and management direct economic activities with the aim of maximizing profits. In order to make the right and justified decision, in terms of achieving the economic interests of the company, it is essential to know the laws and regulations in this area. This paper should provide answers on various questions which will be presented to decision makers in every company, considering status changes. Bearing in mind that the question of status changes often associated with an international element, the authors will pay special attention on the EU legislation and current legal framework in the Republic of Serbia.

An investigation into the effect of cybersecurity on attack prevention strategies

2020 ◽  
pp. 53-60
Author(s):  
Mohammed I. Alghamdi ◽  
Keyword(s):  
Information Technology ◽  
Computer Networks ◽  
Cyber Security ◽  
Information Technologies ◽  
Vital Role ◽  
Cyber Attacks ◽  
Security Threats ◽  
Prevention Strategies ◽  
Sufficient Knowledge ◽  
Simplified Solution

Our economy, infrastructure and societies rely to a large extent on information technology and computer networks solutions. Increasing dependency on information technologies has also multiplied the potential hazards of cyber-attacks. The prime goal of this study is to critically examine how the sufficient knowledge of cyber security threats plays a vital role in detection of any intrusion in simple networks and preventing the attacks. The study has evaluated various literatures and peer reviewed articles to examine the findings obtained by consolidating the outcomes of different studies and present the final findings into a simplified solution.

SARCP - Exploiting Cyber-Attack Prediction Through Socially-Aware Recommendation

2022 ◽  
Vol 14 (1) ◽  
pp. 0-0
Keyword(s):  
Social Network ◽  
Real World ◽  
Cyber Security ◽  
Betweenness Centrality ◽  
Cyber Attacks ◽  
Experimental Results ◽  
Cyber Attack ◽  
Defence Mechanisms ◽  
Network Measure ◽  
Recommender Algorithm

In the domain of cyber security, the defence mechanisms of networks has traditionally been placed in a reactionary role. Cyber security professionals are therefore disadvantaged in a cyber-attack situation due to the fact that it is vital that they maneuver such attacks before the network is totally compromised. In this paper, we utilize the Betweenness Centrality network measure (social property) to discover possible cyber-attack paths and then employ computation of similar personality of nodes/users to generate predictions about possible attacks within the network. Our method proposes a social recommender algorithm called socially-aware recommendation of cyber-attack paths (SARCP), as an attack predictor in the cyber security defence domain. In a social network, SARCP exploits and delivers all possible paths which can result in cyber-attacks. Using a real-world dataset and relevant evaluation metrics, experimental results in the paper show that our proposed method is favorable and effective.

Research on Multimedia Sports Humanistic Information Systems

2014 ◽  
Vol 926-930 ◽  
pp. 2706-2709
Author(s):  
Ming Wen Hu
Keyword(s):  
Information System ◽  
Information Systems ◽  
Program Implementation ◽  
Social Life ◽  
Technology Development ◽  
Rapid Development ◽  
Development Environment ◽  
Sports Culture ◽  
The Core ◽  
Set Up

With the rapid development of social productive forces and increasingly higher level of social life, the sports humanity as the core spirit of sports culture in informational times, which is the sum of the psychological aspects of sports culture from the cultural spirit. Its essence is the pursuit of truth, good and beautiful as the core values and ideals, people's healthy development as the ultimate goal. This paper discusses basic mode ,the basic framework of the multimedia sports humanistic information system, the processing technology, development environment ,tools and methods . Through the analysis program implementation elements and design ideas of multimedia sports humanistic information system, in order to set up multimedia sports humanistic information systems, we proposes a viable framework and models with a theoretical basis and practical value.

Sign in / Sign up

Export Citation Format

Share Document