International politics of non-traditional security issues: Focusing on the strategy against cyber security threat

2019 ◽  
Vol 37 (1) ◽  
pp. 227-250
Author(s):  
Ho-keun Yoo
Keyword(s):  
Cyber Security ◽  
International Politics ◽  
Security Threat ◽  
Security Issues

scholarly journals Cyber security threat modeling based on the MITRE Enterprise ATT&CK Matrix

2021 ◽  
Author(s):  
Wenjun Xiong ◽  
Emeline Legrand ◽  
Oscar Åberg ◽  
Robert Lagerström
Keyword(s):  
Cyber Security ◽  
Enterprise Systems ◽  
Cyber Attacks ◽  
Security Threat ◽  
Threat Modeling ◽  
Security Issues ◽  
It Systems ◽  
Relationship Model ◽  
Attack Surface ◽  
Entity Relationship

AbstractEnterprise systems are growing in complexity, and the adoption of cloud and mobile services has greatly increased the attack surface. To proactively address these security issues in enterprise systems, this paper proposes a threat modeling language for enterprise security based on the MITRE Enterprise ATT&CK Matrix. It is designed using the Meta Attack Language framework and focuses on describing system assets, attack steps, defenses, and asset associations. The attack steps in the language represent adversary techniques as listed and described by MITRE. This entity-relationship model describes enterprise IT systems as a whole; by using available tools, the proposed language enables attack simulations on its system model instances. These simulations can be used to investigate security settings and architectural changes that might be implemented to secure the system more effectively. Our proposed language is tested with a number of unit and integration tests. This is visualized in the paper with two real cyber attacks modeled and simulated.

Flow-Graph and Markovian Methods for Cyber Security Analysis

2018 ◽  
pp. 674-702 ◽  
Author(s):  
Kouroush Jenab ◽  
Sam Khoury ◽  
Kim LaFevor
Keyword(s):  
Cyber Security ◽  
Security Analysis ◽  
Insurance Companies ◽  
Threat Detection ◽  
Security Threats ◽  
Security Threat ◽  
Flow Graph ◽  
Public And Private ◽  
Security Issues ◽  
Private Sector Organizations

A flow-graph depicts the interrelationships among cyber security and security threats/incidents (i.e., internal, external, and accidental). Using a flow-graph, the manner in which security threats may affect systems can be investigated. This paper reports analytical approaches to analyze time to security threats and probability of security threat occurrence. Considering embedded threat detection functions in a safe-guard unit, the proposed approaches use the flow-graph concept, and Markovian method to calculate time to security threat occurrence and its probability. The threat detection functions are featured by incident detection and recovery mechanisms. The results of this study can be used by all parties (public and private sector organizations, service providers, IT, and insurance companies) to better deal with cyber security issues with respect to utilizing technology, investment, and insurance. An illustrative example is demonstrated to present the application of the approach.

Flow-Graph and Markovian Methods for Cyber Security Analysis

2016 ◽  
Vol 12 (1) ◽  
pp. 59-84 ◽  
Author(s):  
Kouroush Jenab ◽  
Sam Khoury ◽  
Kim LaFevor
Keyword(s):  
Cyber Security ◽  
Service Providers ◽  
Security Analysis ◽  
Insurance Companies ◽  
Threat Detection ◽  
Security Threats ◽  
Security Threat ◽  
Flow Graph ◽  
Security Issues ◽  
Analytical Approaches

A flow-graph depicts the interrelationships among cyber security and security threats/incidents (i.e., internal, external, and accidental). Using a flow-graph, the manner in which security threats may affect systems can be investigated. This paper reports analytical approaches to analyze time to security threats and probability of security threat occurrence. Considering embedded threat detection functions in a safe-guard unit, the proposed approaches use the flow-graph concept, and Markovian method to calculate time to security threat occurrence and its probability. The threat detection functions are featured by incident detection and recovery mechanisms. The results of this study can be used by all parties (public and private sector organizations, service providers, IT, and insurance companies) to better deal with cyber security issues with respect to utilizing technology, investment, and insurance. An illustrative example is demonstrated to present the application of the approach.

Provision of Security Services in Public Secondary Schools in Enugu East L.G.A. of Enugu State.

2019 ◽  
pp. 172-176
Author(s):  
Otegbulu M. I. ◽  
Ezeagu A. Agbo ◽  
Agbo Genevieve N.
Keyword(s):  
School Environment ◽  
School Administrators ◽  
Teaching Staff ◽  
Human Beings ◽  
Security Threat ◽  
Culture Of Learning ◽  
Learning And Teaching ◽  
Security Issues ◽  
Security Services ◽  
The Government

Security is pre-requisite for the development of human beings and the society. It is a pre-condition for the survival, development and advancement of individuals and groups. The school is an organization that needs to have a planned safety rules and regulations to protect it components so that the culture of learning and teaching is enhanced. Security threat within the school environment could hamper the peaceful atmosphere in the school, and disrupt academic exercises and panic among the personnel in the school. The government, security agents, parents, school administrators and the community has a lot of role to play to make school environment safe and conducive. However, security gadgets and apparatus should be provided to nip these issues in the bud, as well as train the teaching and non-teaching staff on security issues.

Personal Computer Network Security Prevention Research

2014 ◽  
Vol 971-973 ◽  
pp. 1684-1687
Author(s):  
Xiu Juan Sun
Keyword(s):  
Network Security ◽  
Security Policy ◽  
Computer Network ◽  
Safety Management ◽  
Campus Network ◽  
Defense System ◽  
Security Threat ◽  
Security Technology ◽  
Security Issues ◽  
Security Problem

this article from the various security threats facing the computer network, systematically introduces the network security technology. And in view of the campus network security issues, firstly analyzes the hidden dangers to the safety of network system in colleges and universities, and then from the build two aspects of security defense system and strengthen the safety management design of the campus network security policy. This paper study, the first thing I learned the main threat to the network security problem, and use the knowledge of security network security problems are analyzed. Secondly, based on the research of the network technology, campus network will also be faced with the security threat. Finally, the idea of established with P2DR model to establish campus network security defense system. And it is concluded that the building of a set of effective network security defense system is the solution Campus network main threats and hidden trouble of necessary ways and measures.

Cyber Security: Issues and Current Trends

2022 ◽  
Author(s):  
Nitul Dutta ◽  
Nilesh Jadav ◽  
Sudeep Tanwar ◽  
Hiren Kumar Deva Sarma ◽  
Emil Pricop
Keyword(s):  
Cyber Security ◽  
Security Issues ◽  
Current Trends

scholarly journals Multilevel classification of security threats in cloud computing

2017 ◽  
Vol 7 (1.5) ◽  
pp. 253
Author(s):  
N. Srinivasu ◽  
O. Sree Priyanka ◽  
M. Prudhvi ◽  
G. Meghana
Keyword(s):  
Cloud Computing ◽  
Web Application ◽  
Service Level Agreement ◽  
Service Level ◽  
Security Threats ◽  
Security Threat ◽  
Security Issues ◽  
Network Applications ◽  
Storage Network ◽  
Multilevel Classification

Cloud Security was provided for the services such as storage, network, applications and software through internet. The Security was given at each layer (Saas, Paas, and Iaas), in each layer, there are some security threats which became the major problem in cloud computing. In Saas, the security issues are mainly present in Web Application services and this issue can be overcome by web application scanners and service level agreement(SLA). In Paas, the major problem is Data Transmission. During transmission of data, some data may be lost or modified. The PaaS environment accomplishes proficiency to some extent through duplication of information. The duplication of information makes high accessibility of information for engineers and clients. However, data is never fully deleted instead the pointers to the data are deleted. In order to overcome this problem the techniques that used are encryption[12], data backup. In Iaas the security threat that occurs in is virtualization and the techniques that are used to overcome the threats are Dynamic Security Provisioning(DSC), operational security procedure, for which Cloud Software is available in the market, for e.g. Eucalyptus, Nimbus 6.

Sign in / Sign up

Export Citation Format

Share Document