Cyber Space Security Assessment Case Study

2018 ◽  
pp. 1060-1092
Author(s):  
Hanaa. M. Said ◽  
Rania El Gohary ◽  
Mohamed Hamdy ◽  
Abdelbadeeh M. Salem
Keyword(s):  
Data Mining ◽  
Cyber Security ◽  
Cyber Attacks ◽  
Assessment Procedure ◽  
Security Assessment ◽  
Reference Measure ◽  
Decision Tress ◽  
Cyber Space ◽  
Reference Measurements

Cyberspace is known as the digital electronic medium for the knowing range of securing in the cyberspace. Therefore the importance of inferring the reference measure in the form of assessment procedure to improve the knowledge and making the decision for the e- government services. A series of the standards build on the application of data mining methods specifically represented as decision tress model, Logistic regression, association rules model, Bayesian network for making reference measurements, to measure the extent of securing the data, and the provided services. The authors discuss various types of cyber-attacks describing how data mining helps in detection and prevention of these attacks. A comparative analysis between a set of selected frameworks is presented. Finally this chapter imparts numbers of applications for the data mining Methodologies in Cyber Security. Results applied on the site of the authority for cleaning and beautifying Cairo governorate in Egypt.

Cyber Space Security Assessment Case Study

2015 ◽  
pp. 169-198
Author(s):  
Hanaa. M. Said ◽  
Rania El Gohary ◽  
Mohamed Hamdy ◽  
Abdelbadeeh M. Salem
Keyword(s):  
Data Mining ◽  
Cyber Security ◽  
Cyber Attacks ◽  
Assessment Procedure ◽  
Security Assessment ◽  
Reference Measure ◽  
Decision Tress ◽  
Cyber Space ◽  
Reference Measurements

Cyberspace is known as the digital electronic medium for the knowing range of securing in the cyberspace. Therefore the importance of inferring the reference measure in the form of assessment procedure to improve the knowledge and making the decision for the e- government services. A series of the standards build on the application of data mining methods specifically represented as decision tress model, Logistic regression, association rules model, Bayesian network for making reference measurements, to measure the extent of securing the data, and the provided services. The authors discuss various types of cyber-attacks describing how data mining helps in detection and prevention of these attacks. A comparative analysis between a set of selected frameworks is presented. Finally this chapter imparts numbers of applications for the data mining Methodologies in Cyber Security. Results applied on the site of the authority for cleaning and beautifying Cairo governorate in Egypt.

Cyber Security Assessment of NPP I&C Systems

2020 ◽  
pp. 221-238
Author(s):  
Oleksandr Klevtsov ◽  
Artem Symonov ◽  
Serhii Trubchaninov
Keyword(s):  
Control Systems ◽  
Cyber Security ◽  
Nuclear Power ◽  
Power Plants ◽  
Cyber Attacks ◽  
Security Assessment ◽  
Nuclear Facilities ◽  
Security Risks ◽  
Cyber Threats ◽  
And Control

The chapter is devoted to the issues of cyber security assessment of instrumentation and control systems (I&C systems) of nuclear power plants (NPP). The authors examined the main types of potential cyber threats at the stages of development and operation of NPP I&C systems. Examples of real incidents at various nuclear facilities caused by intentional cyber-attacks or unintentional computer errors during the maintenance of the software of NPP I&C systems are given. The approaches to vulnerabilities assessment of NPP I&C systems are described. The scope and content of the assessment and periodic reassessment of cyber security of NPP I&C systems are considered. An approach of assessment to cyber security risks is described.

scholarly journals A lightweight cryptographic solution to secure digital transmissions on resource-constrained environments

2021 ◽  
Vol 10 (2) ◽  
pp. 38-45
Author(s):  
Saiida Lazaar
Keyword(s):  
Cyber Security ◽  
Hash Functions ◽  
Cyber Attacks ◽  
Constrained Systems ◽  
Sensitive Data ◽  
Constrained Environments ◽  
Secure Networks ◽  
Cyber Space ◽  
To Come ◽  
Main Components

The great revolution of technology and its fast growth have led to a cyber space increasingly vulnerable to cyber-attacks. For this reason, cyber security becomes paramount to protect our cyber space by presenting and implementing important solutions to protect sensitive data from malicious persons. Thereby various measures of protection have been developed and aim to minimize the risks and damages of attacks. Among them, cryptography plays a vital and crucial role in protecting sensitive transmissions and electronic exchanges through complex networks. Numerous scientific studies have emerged with the advent of the cloud and the Internet of Things (IoT); all of them have expressed a strong need for building secure, efficient and fast cryptosystems targeting confidentiality, integrity and authentication. The last two objectives are essentially built on hash functions which are the main components of many applications and secure networks. The purpose of this paper is to give recent advances of lightweight cryptographic solutions that meet the requirements of constrained systems, and to present a study, in terms of security, energy-consuming and efficiency, of the main hash functions standardized by NIST (National Institute of Standards and Technology). In the end, the paper will give a comparison between the studied hash functions aiming to come up with a recommendation of good lightweight hash functions suitable for implementation in an IoT framework.

scholarly journals Deterrence by Denial approach for the most known State Cyber Vulnerabilities

2020 ◽  
Author(s):  
Nasser AlAzwani ◽  
Tom Chen
Keyword(s):  
Cyber Security ◽  
Vital Role ◽  
Cyber Attacks ◽  
Nuclear Deterrence ◽  
Space Model ◽  
Security Technologies ◽  
Cyber Threats ◽  
Proposed Model ◽  
Cyber Space ◽  
Cyber Deterrence

Cyber deterrence by denial strategy can be practised by the state by making it hard for adversaries to succeed any attempt of attacking. It was practised during nuclear deterrence strategies as well as in many other conventional deterrence. This paper argues the functionality of cyber deterrence by denial in deterring cyber threats. In this paper, our attempt is to define cyber deterrence by denial, model it, explore operational roles of cyber security technologies in approaching deterrence by denial within cyber space. Model analysis shed lights over practicing deterrence by denial and its vital role in understanding how efficiently denial can work in maximize failure of any attack which will impact in maximizing cost of cyber attacks to the attacker. Due to limitations in cyber security technologies, unknown cyber threat might not be deterred with assumed approach. Proposed model confirmed that deterrence by denial strategy might works in deterring known cyber threats within instrumental model. As for the benefit of enhancing deterrence in cyber space there is a serious need to reduce the tendency to ignore exploring this strategy.

China-US mistrust threatens cyber security

2015 ◽  
Keyword(s):  
Cyber Security ◽  
Bargaining Power ◽  
The United States ◽  
Cyber Attacks ◽  
Content Type ◽  
Governance Regime ◽  
Chinese Policy ◽  
Cyber Space ◽  
The Hague ◽  
Global Conference

Subject China and the global internet governance regime. Significance Cyber security was a leading topic at the Global Conference on Cyberspace that took place on April 16-17 in The Hague. As online tensions escalate and cyber attacks grow in prevalence, the direction of Chinese policy will be crucial in determining the future of the global internet. At the same time, the United States has lost much political capital and bargaining power. Impacts China may try to establish alternative internet structures and systems. China's conception of national sovereignty will hold back the cooperation procedures necessary to manage cyber space incidents. Without international cooperation, countries and companies may seek to retaliate against cyber attacks rather than merely ward them off.

scholarly journals Deterrence by Denial approach for the most known State Cyber Vulnerabilities

2020 ◽  
Author(s):  
Nasser AlAzwani ◽  
Tom Chen
Keyword(s):  
Cyber Security ◽  
Vital Role ◽  
Cyber Attacks ◽  
Nuclear Deterrence ◽  
Space Model ◽  
Security Technologies ◽  
Cyber Threats ◽  
Proposed Model ◽  
Cyber Space ◽  
Cyber Deterrence

Cyber deterrence by denial strategy can be practised by the state by making it hard for adversaries to succeed any attempt of attacking. It was practised during nuclear deterrence strategies as well as in many other conventional deterrence. This paper argues the functionality of cyber deterrence by denial in deterring cyber threats. In this paper, our attempt is to define cyber deterrence by denial, model it, explore operational roles of cyber security technologies in approaching deterrence by denial within cyber space. Model analysis shed lights over practicing deterrence by denial and its vital role in understanding how efficiently denial can work in maximize failure of any attack which will impact in maximizing cost of cyber attacks to the attacker. Due to limitations in cyber security technologies, unknown cyber threat might not be deterred with assumed approach. Proposed model confirmed that deterrence by denial strategy might works in deterring known cyber threats within instrumental model. As for the benefit of enhancing deterrence in cyber space there is a serious need to reduce the tendency to ignore exploring this strategy.

A review of security assessment methodologies in industrial control systems

2019 ◽  
Vol 27 (1) ◽  
pp. 47-61 ◽  
Author(s):  
Qais Saif Qassim ◽  
Norziana Jamil ◽  
Maslina Daud ◽  
Ahmed Patel ◽  
Norhamadi Ja’affar
Keyword(s):  
Control Systems ◽  
Cyber Security ◽  
Electrical Power ◽  
Assessment Method ◽  
Cyber Attacks ◽  
Security Requirements ◽  
Security Assessment ◽  
Industrial Control ◽  
Industrial Control Systems ◽  
Content Type

Purpose The common implementation practices of modern industrial control systems (ICS) has left a window wide open to various security vulnerabilities. As the cyber-threat landscape continues to evolve, the ICS and their underlying architecture must be protected to withstand cyber-attacks. This study aims to review several ICS security assessment methodologies to identify an appropriate vulnerability assessment method for the ICS systems that examine both critical physical and cyber systems so as to protect the national critical infrastructure. Design/methodology/approach This paper reviews several ICS security assessment methodologies and explores whether the existing methodologies are indeed sufficient to meet the cyber security assessment exercise required to validate the security of electrical power control systems. Findings The study showed that most of the examined methodologies seem to concentrate on vulnerability identification and prioritisation techniques, whilst other security techniques received noticeably less attention. The study also showed that the least attention is devoted to patch management process due to the critical nature of the SCADA system. Additionally, this review portrayed that only two security assessment methodologies exhibited absolute fulfilment of all NERC-CIP security requirements, whilst the others only partially fulfilled the essential requirements. Originality/value This paper presents a review and a comparative analysis of several standard SCADA security assessment methodologies and guidelines published by internationally recognised bodies. In addition, it explores the adequacy of the existing methodologies in meeting cyber security assessment practices required for electrical power networks.

scholarly journals Protection of Cyberspace as a Component of Ukraine’s Information Security

2018 ◽  
pp. 57-70
Author(s):  
Pavlo Katerynchuk
Keyword(s):  
Information Security ◽  
Cyber Security ◽  
Banking System ◽  
Cyber Attacks ◽  
Industrial Facilities ◽  
Special Operations ◽  
Public Defense ◽  
The Crimea ◽  
Cyber Space ◽  
The Government

Cyber security and cyber space of Ukraine remained for a long time out of the attention of domestic researchers and, therefore, civil servants. For more than 20 years, the young Ukrainian state did not waste its efforts on the formation of not only effective and reliable troops, but also information security. The government did not endeavored to strengthen the country’s defense, and only weakened its lack of progress in fighting corruption and the dominance of Russian media and intelligence. As a result, in the spring of 2014, after a long confrontation between the regime of Viktor Yanukovych and the citizens of Ukraine, Russia failed to conduct special operations with the aim of annexing the Crimea and facilitate the war in Donbas. Not the least role in this played a raid for information and factors cyber Russian hackers for the purpose of paralyzing government agencies and influence on public opinion in Ukraine through Russian-controlled media. As a result of prolonged and massive cyber attacks, Ukrainian state structures, the banking system, industrial facilities and private business suffered significant material and reputational losses. At the same time in Ukraine began to realize the seriousness of cyber security as a component of national security and contribute to creating cyber police, national cyber security strategy, acceptance of a number of regulations on cyber security, strengthening public defense for the protection of domestic cyber space. At the moment, Ukraine is on the way to rethinking the role of cyber security and the formation of a national system of protection against cyber threats.

scholarly journals Data Mining Application for Cyber Space Users Tendency in Blog Writing: A Case Study

2012 ◽  
Vol 47 (18) ◽  
pp. 40-46 ◽  
Author(s):  
Farhad SoleimanianGharehchopogh ◽  
Seyyed Reza Khaze
Keyword(s):  
Data Mining ◽  
Cyber Space ◽  
Data Mining Application

scholarly journals powerLang: a probabilistic attack simulation language for the power domain

2020 ◽  
Vol 3 (1) ◽  
Author(s):  
Simon Hacks ◽  
Sotirios Katsikeas ◽  
Engla Ling ◽  
Robert Lagerström ◽  
Mathias Ekstedt
Keyword(s):  
Cyber Security ◽  
Cyber Attacks ◽  
Security Assessment ◽  
Cyber Attack ◽  
Industrial Control ◽  
Attack Graphs ◽  
Industrial Control Systems ◽  
Domain Specific ◽  
Simulation Language ◽  
Power Domain

AbstractCyber-attacks these threats, the cyber security assessment of IT and OT infrastructures can foster a higher degree of safety and resilience against cyber-attacks. Therefore, the use of attack simulations based on system architecture models is proposed. To reduce the effort of creating new attack graphs for each system under assessment, domain-specific languages (DSLs) can be employed. DSLs codify the common attack logics of the considered domain.Previously, MAL (the Meta Attack Language) was proposed, which serves as a framework to develop DSLs and generate attack graphs for modeled infrastructures. In this article, powerLang as a MAL-based DSL for modeling IT and OT infrastructures in the power domain is proposed. Further, it allows analyzing weaknesses related to known attacks. To comprise powerLang, two existing MAL-based DSL are combined with a new language focusing on industrial control systems (ICS). Finally, this first version of the language was validated against a known cyber-attack.

Sign in / Sign up

Export Citation Format

Share Document