![[img]](https://epub.uni-regensburg.de/style/images/fileicons/application_pdf.png) | Published Version Download ( PDF | 2MB) | License: Creative Commons Attribution 4.0 |
Operational cyber incident coordination revisited: providing cyber situational awareness across organizations and countries
Leitner, Maria
, Skopik, Florian and Pahi, Timea
(2024)
Operational cyber incident coordination revisited: providing cyber situational awareness across organizations and countries.
Information Security Journal: A Global Perspective 33 (5), pp. 486-507.
Date of publication of this fulltext: 24 Sep 2024 08:14
Article
DOI to cite this document: 10.5283/epub.59245
Abstract
Cyber situational awareness (CSA) is a prerequisite for justified decision-making and to maintain cyber security. This becomes particularly complex when establishing inter-organizational awareness across sectors. For example, computer security incident response teams (CSIRTs) and national cyber security centers need to establish CSA among countries when coordinating regional cyber incident ...
Cyber situational awareness (CSA) is a prerequisite for justified decision-making and to maintain cyber security. This becomes particularly complex when establishing inter-organizational awareness across sectors. For example, computer security incident response teams (CSIRTs) and national cyber security centers need to establish CSA among countries when coordinating regional cyber incident response. Today’s state of the art of information sharing across larger numbers of organizations is often still the least common denominator in the shape of web-based forms and email reports. These are easily applicable by almost everyone who wants to report findings even in stressful situations. However, these do not prove to be efficient for the coordinator that aggregates and merges the data. Therefore, a cyber coordination platform using online surveys is proposed. This approach uses surveys to collect, aggregate and visualize data in a dashboard to support cyber coordination and knowledge management. Furthermore, the online surveys are easy to use and respond to and therefore simplify the participation of stakeholders. We propose an architecture and implement a prototype using popular web application frameworks. The evaluation in a user study revealed promising results with respect to increased efficiency and decreased resource requirements for establishing situational awareness.
Alternative links to fulltext
Involved Institutions
Details
| Item type | Article | ||||
| Journal or Publication Title | Information Security Journal: A Global Perspective | ||||
| Publisher: | Taylor & Francis | ||||
|---|---|---|---|---|---|
| Volume: | 33 | ||||
| Number of Issue or Book Chapter: | 5 | ||||
| Page Range: | pp. 486-507 | ||||
| Date | 18 April 2024 | ||||
| Institutions | Informatics and Data Science > Department Information Systems > Chair of Artificial Inteligence in IT Security (Prof. Dr. Maria Leitner) | ||||
| Identification Number |
| ||||
| Keywords | Coordination and cooperation platform, cyber situational awareness, incident coordination, cyber security | ||||
| Dewey Decimal Classification | 000 Computer science, information & general works > 004 Computer science | ||||
| Status | Published | ||||
| Refereed | Yes, this version has been refereed | ||||
| Created at the University of Regensburg | No | ||||
| URN of the UB Regensburg | urn:nbn:de:bvb:355-epub-592456 | ||||
| Item ID | 59245 |
Export bibliographical data
Owner only: item control page
Download Statistics
Download Statistics