Cybersecurity situational awareness taxonomy

Antti Evesti, Teemu Kanstrén, Tapio Frantti

    Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

    5 Citations (Scopus)

    Abstract

    Ensuring cost-efficient cybersecurity for a networked system is a challenging task. In this task, cybersecurity situational awareness is a cornerstone to ensure that systems are protected in a meaningful way. However, cybersecurity situational awareness can be built in various ways. Firstly, several monitoring and analysing techniques can be applied, and secondly, a time window for the usage of situational awareness varies from short-term operational to long-term strategic decision making. Understanding differences and purposes of these aspects is an essential part to research and develop cybersecurity situational awareness. In this paper, we build a taxonomy of cybersecurity situational awareness. The taxonomy categorises terminology, makes it possible to recognise missing areas, and to understand the area in a uniform way. Moreover, the taxonomy helps to select the most effective techniques to be used in a specific situation awareness implementation.
    Original languageEnglish
    Title of host publication2017 International Conference On Cyber Situational Awareness, Data Analytics And Assessment, Cyber SA 2017
    PublisherInstitute of Electrical and Electronic Engineers IEEE
    Number of pages8
    ISBN (Electronic)978-1-5090-5060-4
    ISBN (Print)978-1-5090-5061-1
    DOIs
    Publication statusPublished - 18 Oct 2017
    MoE publication typeA4 Article in a conference publication
    EventInternational Conference on Cyber Situational Awareness, Data Analytics and Assessment, Cyber SA 2017 - London, United Kingdom
    Duration: 19 Jun 201720 Jun 2017

    Conference

    ConferenceInternational Conference on Cyber Situational Awareness, Data Analytics and Assessment, Cyber SA 2017
    Abbreviated titleCyber SA 2017
    CountryUnited Kingdom
    CityLondon
    Period19/06/1720/06/17

    Fingerprint

    Taxonomies
    Terminology
    Decision making
    Monitoring
    Costs

    Keywords

    • taxonomy
    • security
    • monitoring
    • decision making
    • analytics
    • risk analysis

    Cite this

    Evesti, A., Kanstrén, T., & Frantti, T. (2017). Cybersecurity situational awareness taxonomy. In 2017 International Conference On Cyber Situational Awareness, Data Analytics And Assessment, Cyber SA 2017 [8073386] Institute of Electrical and Electronic Engineers IEEE. https://doi.org/10.1109/CyberSA.2017.8073386
    Evesti, Antti ; Kanstrén, Teemu ; Frantti, Tapio. / Cybersecurity situational awareness taxonomy. 2017 International Conference On Cyber Situational Awareness, Data Analytics And Assessment, Cyber SA 2017. Institute of Electrical and Electronic Engineers IEEE, 2017.
    @inproceedings{24847184eb674acca0f2417a85992446,
    title = "Cybersecurity situational awareness taxonomy",
    abstract = "Ensuring cost-efficient cybersecurity for a networked system is a challenging task. In this task, cybersecurity situational awareness is a cornerstone to ensure that systems are protected in a meaningful way. However, cybersecurity situational awareness can be built in various ways. Firstly, several monitoring and analysing techniques can be applied, and secondly, a time window for the usage of situational awareness varies from short-term operational to long-term strategic decision making. Understanding differences and purposes of these aspects is an essential part to research and develop cybersecurity situational awareness. In this paper, we build a taxonomy of cybersecurity situational awareness. The taxonomy categorises terminology, makes it possible to recognise missing areas, and to understand the area in a uniform way. Moreover, the taxonomy helps to select the most effective techniques to be used in a specific situation awareness implementation.",
    keywords = "taxonomy, security, monitoring, decision making, analytics, risk analysis",
    author = "Antti Evesti and Teemu Kanstr{\'e}n and Tapio Frantti",
    year = "2017",
    month = "10",
    day = "18",
    doi = "10.1109/CyberSA.2017.8073386",
    language = "English",
    isbn = "978-1-5090-5061-1",
    booktitle = "2017 International Conference On Cyber Situational Awareness, Data Analytics And Assessment, Cyber SA 2017",
    publisher = "Institute of Electrical and Electronic Engineers IEEE",
    address = "United States",

    }

    Evesti, A, Kanstrén, T & Frantti, T 2017, Cybersecurity situational awareness taxonomy. in 2017 International Conference On Cyber Situational Awareness, Data Analytics And Assessment, Cyber SA 2017., 8073386, Institute of Electrical and Electronic Engineers IEEE, International Conference on Cyber Situational Awareness, Data Analytics and Assessment, Cyber SA 2017, London, United Kingdom, 19/06/17. https://doi.org/10.1109/CyberSA.2017.8073386

    Cybersecurity situational awareness taxonomy. / Evesti, Antti; Kanstrén, Teemu; Frantti, Tapio.

    2017 International Conference On Cyber Situational Awareness, Data Analytics And Assessment, Cyber SA 2017. Institute of Electrical and Electronic Engineers IEEE, 2017. 8073386.

    Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

    TY - GEN

    T1 - Cybersecurity situational awareness taxonomy

    AU - Evesti, Antti

    AU - Kanstrén, Teemu

    AU - Frantti, Tapio

    PY - 2017/10/18

    Y1 - 2017/10/18

    N2 - Ensuring cost-efficient cybersecurity for a networked system is a challenging task. In this task, cybersecurity situational awareness is a cornerstone to ensure that systems are protected in a meaningful way. However, cybersecurity situational awareness can be built in various ways. Firstly, several monitoring and analysing techniques can be applied, and secondly, a time window for the usage of situational awareness varies from short-term operational to long-term strategic decision making. Understanding differences and purposes of these aspects is an essential part to research and develop cybersecurity situational awareness. In this paper, we build a taxonomy of cybersecurity situational awareness. The taxonomy categorises terminology, makes it possible to recognise missing areas, and to understand the area in a uniform way. Moreover, the taxonomy helps to select the most effective techniques to be used in a specific situation awareness implementation.

    AB - Ensuring cost-efficient cybersecurity for a networked system is a challenging task. In this task, cybersecurity situational awareness is a cornerstone to ensure that systems are protected in a meaningful way. However, cybersecurity situational awareness can be built in various ways. Firstly, several monitoring and analysing techniques can be applied, and secondly, a time window for the usage of situational awareness varies from short-term operational to long-term strategic decision making. Understanding differences and purposes of these aspects is an essential part to research and develop cybersecurity situational awareness. In this paper, we build a taxonomy of cybersecurity situational awareness. The taxonomy categorises terminology, makes it possible to recognise missing areas, and to understand the area in a uniform way. Moreover, the taxonomy helps to select the most effective techniques to be used in a specific situation awareness implementation.

    KW - taxonomy

    KW - security

    KW - monitoring

    KW - decision making

    KW - analytics

    KW - risk analysis

    UR - http://www.scopus.com/inward/record.url?scp=85039932096&partnerID=8YFLogxK

    U2 - 10.1109/CyberSA.2017.8073386

    DO - 10.1109/CyberSA.2017.8073386

    M3 - Conference article in proceedings

    SN - 978-1-5090-5061-1

    BT - 2017 International Conference On Cyber Situational Awareness, Data Analytics And Assessment, Cyber SA 2017

    PB - Institute of Electrical and Electronic Engineers IEEE

    ER -

    Evesti A, Kanstrén T, Frantti T. Cybersecurity situational awareness taxonomy. In 2017 International Conference On Cyber Situational Awareness, Data Analytics And Assessment, Cyber SA 2017. Institute of Electrical and Electronic Engineers IEEE. 2017. 8073386 https://doi.org/10.1109/CyberSA.2017.8073386