Building Your Community Cybersecurity Program

2021 ◽  
pp. 193-209
Keyword(s):  
Cyber Security ◽  
Personal Information ◽  
Identity Theft ◽  
Cyber Attacks ◽  
Maturity Model ◽  
Good Information ◽  
Security Framework ◽  
Media Attention

Communities and states are targets of cyber-attacks. Cities are popular because of generally lax cybersecurity postures and the fact that they have money. States and communities also have personal information on citizens, which can be used for identity theft. With the realization they are becoming frequent targets, communities are looking to enhance their cybersecurity programs, but many do not know where or how to start. The community cyber security maturity model is designed for this purpose – to help states and communities to develop their own viable and sustainable cybersecurity programs. There has also been considerable media attention on the NIST Cyber Security Framework. This is a program designed for organizations, and it contains a lot of good information organizations can use to enhance their cybersecurity posture. From a whole community perspective, however, it is not as useful though there are parts of it that are applicable to a community.

scholarly journals Cyber-Attack Scoring Model Based on the Offensive Cybersecurity Framework

2021 ◽  
Vol 11 (16) ◽  
pp. 7738
Author(s):  
Kyounggon Kim ◽  
Faisal Abdulaziz Alfouzan ◽  
Huykang Kim
Keyword(s):  
Cyber Security ◽  
Personal Information ◽  
Cyber Attacks ◽  
The Internet ◽  
Critical Infrastructures ◽  
Cyber Attack ◽  
Security Framework ◽  
Scoring Model ◽  
Advanced Persistent Threats ◽  
The World

Cyber-attacks have become commonplace in the world of the Internet. The nature of cyber-attacks is gradually changing. Early cyber-attacks were usually conducted by curious personal hackers who used simple techniques to hack homepages and steal personal information. Lately, cyber attackers have started using sophisticated cyber-attack techniques that enable them to retrieve national confidential information beyond the theft of personal information or defacing websites. These sophisticated and advanced cyber-attacks can disrupt the critical infrastructures of a nation. Much research regarding cyber-attacks has been conducted; however, there has been a lack of research related to measuring cyber-attacks from the perspective of offensive cybersecurity. This motivated us to propose a methodology for quantifying cyber-attacks such that they are measurable rather than abstract. For this purpose, we identified each element of offensive cybersecurity used in cyber-attacks. We also investigated the extent to which the detailed techniques identified in the offensive cyber-security framework were used, by analyzing cyber-attacks. Based on these investigations, the complexity and intensity of cyber-attacks can be measured and quantified. We evaluated advanced persistent threats (APT) and fileless cyber-attacks that occurred between 2010 and 2020 based on the methodology we developed. Based on our research methodology, we expect that researchers will be able to measure future cyber-attacks.

Efficient Cyber Security Framework for Smart Cities

2019 ◽  
pp. 130-157 ◽  
Author(s):  
Amtul Waheed ◽  
Jana Shafi
Keyword(s):  
Cyber Security ◽  
Smart City ◽  
Smart Cities ◽  
Cost Effective ◽  
Cyber Attacks ◽  
Security And Privacy ◽  
Sensitive Information ◽  
Security Framework ◽  
Smart Transportation ◽  
Security Issues

Smart cities are established on some smart components such as smart governances, smart economy, science and technology, smart politics, smart transportation, and smart life. Each and every smart object is interconnected through the internet, challenging the security and privacy of citizen's sensitive information. A secure framework for smart cities is the only solution for better and smart living. This can be achieved through IoT infrastructure and cloud computing. The combination of IoT and Cloud also increases the storage capacity and computational power and make services pervasive, cost-effective, and accessed from anywhere and any device. This chapter will discuss security issues and challenges of smart city along with cyber security framework and architecture of smart cities for smart infrastructures and smart applications. It also presents a general study about security mechanism for smart city applications and security protection methodology using IOT service to stand against cyber-attacks.

Information Sharing

2021 ◽  
pp. 104-130
Keyword(s):  
Information Sharing ◽  
Cyber Security ◽  
San Antonio ◽  
Maturity Model ◽  
Security Framework ◽  
Group Information Sharing ◽  
Group Information ◽  
Geographic Regions ◽  
Program Information

From the first community cybersecurity exercise the CIAS at UTSA conducted in San Antonio in 2002, information sharing has been a key element of the community cybersecurity program. Information sharing is essential in the protection and detection aspects of programs such as the NIST cyber security framework. Information sharing helps to alert other organizations to ongoing reconnaissance and attack efforts by attackers. When it comes to cybersecurity, organizations are not in competition with each other but instead are partners in a mutual defense against attackers. This has not been an easy lesson to learn, and it has taken time, but today, there are many robust information sharing programs that help various sectors and geographic regions to band together to help each other in efforts to thwart attacks against any member of the group. Information sharing is an integral part of the community cyber security maturity model and can in fact help provide a catalyst to launch an overall cybersecurity program for a community.

Reviewing National Cybersecurity Strategies

2018 ◽  
Vol 13 (5) ◽  
pp. 957-966
Author(s):  
Shigeo Mori ◽  
◽  
Atsuhiro Goto
Keyword(s):  
Public Sector ◽  
Cyber Security ◽  
Cyber Attacks ◽  
Maturity Model ◽  
National Strategy ◽  
Global Level ◽  
The Public ◽  
Capacity Enhancement ◽  
National Capacity ◽  
National Campaigns

The damages caused by cyber-attacks are becoming larger, broader and more serious and to include monetary losses and losses of lifeline. Some cyber-attacks are arguably suspected to be parts of national campaigns. Under such circumstances, the public sector must endeavour to enhance the national cybersecurity capacities. There are several benchmarks for national cybersecurity, i.e., a snapshot relative assessment of a nation’s cybersecurity strength at a global level. However, by considering the development of technology, attackers’ skills and capacities of other nations, we believe that it is more important to review the national strategy for cybersecurity capacity enhancement and to ensure that the national capacity advances adequately in the coming years. We propose a method of reviewing national strategies. Additionally, we performed a trial review of the Japanese cybersecurity strategy using the Cybersecurity Capacity Maturity Model for Nations (CSCMMN) developed by the Global Cyber Security Capacity Centre. This trial proved to be workable because it detected various possibly inadequate (insufficient, inappropriate or inefficient, although further investigation is needed) approaches in the Japanese strategy. Moreover, the review also discovered the shortcomings of the capacity areas in the CSCMMN. We plan to improve the reviewing method and develop the improvement process of national strategies for cybersecurity capacity enhancement.

History, Present 2021 and Future of Cyber Attacks

2021 ◽  
pp. 71-83
Author(s):  
Mohammed. I. Alghamdi ◽  
Keyword(s):  
Cyber Security ◽  
Identity Theft ◽  
Cyber Attacks ◽  
Response Measures ◽  
Immediate Response

Cyber-attacks are the attacks that target organizations and individuals either as a tool for other activities like identity theft, stalking, etc. or with a computer as a crime object like phishing, hacking, and spamming. Cyber-attacks are rapidly increasing and making cyber security a major concern currently. When launched successfully, cyber-attacks can cause massive damage to individuals and businesses. Hence, immediate response is mandatory to contain the situation in case cyber-attacks occur. In this paper, we will discuss the history, present and future of cyber-attacks and measures for organizations to prevent those attacks in future. The ever-elusive strategies and suspicious nature of criminals should also be identified. We have outlined some of the practices to prevent those attacks while recommending incidence response measures and updates in enterprises.

An Overview of the Community Cyber Security Maturity Model

2009 ◽  
pp. 306-317
Author(s):  
Gregory B. White ◽  
Mark L. Huson
Keyword(s):  
United States ◽  
Cyber Security ◽  
Weak Link ◽  
National Level ◽  
The United States ◽  
Cyber Attacks ◽  
Critical Infrastructures ◽  
Maturity Model ◽  
Broad Applicability

The protection of cyberspace is essential to ensure that the critical infrastructures a nation relies on are not corrupted or disrupted. Government efforts generally focus on securing cyberspace at the national level. In the United States, states and communities have not seen the same concentrated effort and are now the weak link in the security chain. Until recently there has been no program for states and communities to follow in order to establish a viable security program. Now, however, the Community Cyber Security Maturity Model has been developed to provide a framework for states and communities to follow to prepare for, prevent, detect, respond to, and recover from potential cyber attacks. This model has a broad applicability and can be adapted to be used in other nations as well.

Cyber-Security for ICS/SCADA

2016 ◽  
Vol 6 (3) ◽  
pp. 1-16 ◽  
Author(s):  
Barend Pretorius ◽  
Brett van Niekerk
Keyword(s):  
South Africa ◽  
Control Systems ◽  
Cyber Security ◽  
Cyber Attacks ◽  
Security Framework ◽  
Physical Damage ◽  
Industrial Control ◽  
Industrial Control Systems ◽  
Nation States ◽  
National Infrastructure

Industrial control systems (ICS) or supervisory, control, and data acquisition (SCADA) systems drive many key components of the national infrastructure. It makes these control systems targets for cyber-attacks by terrorists and nation-states who wish to damage their target economically and socially, and cyber-criminals who blackmail the companies operating the infrastructure. Despite the high risk of leaving these systems exposed, providing adequate cyber-security is often challenging. The Stuxnet worm illustrated how vulnerable control systems potentially are when it bypassed a number of security mechanisms to cause physical damage to an Iranian nuclear facility. The article focuses on ICS/SCADA in South Africa discussing the unique challenges and legislation relate to securing control system in the South Africa. A governance and security framework for overcoming these challenges are proposed.

scholarly journals A Systematic Literature Review on the Cyber Security

2021 ◽  
Vol 9 (12) ◽  
pp. 669-710
Author(s):  
Dr.Yusuf Perwej ◽  
Syed Qamar Abbas ◽  
Jai Pratap Dixit ◽  
Dr. Nikhat Akhtar ◽  
Anurag Kumar Jaiswal
Keyword(s):  
Cyber Security ◽  
Cyber Attacks ◽  
Smart Phones ◽  
The Internet ◽  
Cyber Attack ◽  
Security Framework ◽  
Rapid Changes ◽  
The World ◽  
Integral Element ◽  
Or Organization

In recent years, the Internet has become an integral element of people's everyday lifestyles all across the world. Online criminality, on the other hand, has risen in tandem with the growth of Internet activity. Cyber security has advanced greatly in recent years in order to keep up with the rapid changes that occur in cyberspace. Cyber security refers to the methods that a country or organization can use to safeguard its products and information in cyberspace.  Two decades ago, the term "cyber security" was barely recognized by the general public. Cyber security isn't just a problem that affects individuals but it also applies to an organization or a government. Everything has recently been digitized, with cybernetics employing a variety of technologies such as cloud computing, smart phones, and Internet of Things techniques, among others. Cyber-attacks are raising concerns about privacy, security, and financial compensation. Cyber security is a set of technologies, processes, and practices aimed at preventing attacks, damage, and illegal access to networks, computers, programmes, and data.  The primary goal of this article is to conduct a thorough examination of cyber security kinds, why cyber security is important, cyber security framework, cyber security tools, and cyber security difficulties. Cyber security safeguards the data and integrity of computing assets that are part of or connected to an organization's network, with the goal of defending such assets from all threat actors throughout the life cycle of a cyber-attack.

scholarly journals A Research on Cyber Security Awareness based on Big Data

2019 ◽  
Vol 8 (2S8) ◽  
pp. 1798-1802
Keyword(s):  
Private Information ◽  
Cyber Security ◽  
Personal Information ◽  
Low Cost ◽  
Cyber Attacks ◽  
Network Resources ◽  
Survey Paper ◽  
Security Issues ◽  
Dynamic Checking ◽  
Wide Usage

In digital word cybersecurity is to help us to prevent attacks on network resources, private information and vital certifications of an association. The fundamental objective of this survey paper is to focus on the various types of cyber-attacks and their quick fix to how we can protect our self from such attacks. Other then, it also gives information about the various forms of cyber-crime and its protection worldwide. These days, with wide usage of internet services with low-cost everyone, is using the net. But many of them don't know about cyber fraud i.e.: how attackers steal their data or personal information and sell to others, this paper helps to create awareness of cybersecurity for such people. So as to determine digital security issues, the security specialist's locale including government segment, the scholarly community, the private part should cooperate to comprehend the rising dangers to the processing scene. This paper presents a specialized, social and moral association uninhibitedly sharing digital assault angle in the soul of worldwide co-task bridging geo-political fringes by conveying dynamic checking.

Sign in / Sign up

Export Citation Format

Share Document