Dynamic Risk Assessment in IT Environments-Reference-Cited by-同舟云学术

Dynamic Risk Assessment in IT Environments

Published:2018 Issue: Volume: Page:234-263
ISSN:1948-9730
Container-title:Handbook of Research on Information and Cyber Security in the Fourth Industrial Revolution
language:
Short-container-title:

Author:

Mirzaei Omid¹,Maria de Fuentes José¹,Manzano Lorena González¹

Affiliation:

1. Universidad Carlos III de Madrid (UC3M), Spain

Abstract

Security and reliability of information technologies have emerged as major concerns nowadays. Risk assessment, an estimation of negative impacts that might be imposed to a network by a series of potential sources, is one of the main tasks to ensure the security and is performed either statically or dynamically. Static risk assessment cannot satisfy the requirements of real-time and ubiquitous computing networks as it is pre-planned and does not consider upcoming changes such as the creation of new attack strategies. However, dynamic risk assessment (DRA) considers real-time evidences, being capable of diagnosing abnormal events in changing environments. Several DRA approaches have been proposed recently, but it is unclear which technique fits best into IT scenarios with different requirements. Thus, this chapter introduces recent trends in DRA, by analyzing 27 works and proposes a decision guide to help IT managers in choosing the most suitable DRA technique considering three illustrative scenarios – regular computer networks, internet of things, and industrial control systems.

Publisher

IGI Global

Reference71 articles.

1. Objective Risk Evaluation for Automated Security Management

2. Risk assessment and analysis through population-based attack graph modelling

3. Årnes, A., Sallhammar, K., Haslum, K., Brekne, T., Moe, M. E. G., & Knapskog, S. J. (2005). Real-time risk assessment with network sensors and intrusion detection systems. In International Conference on Computational and Information Science (pp. 388–397). Academic Press.

4. Using Hidden Markov Models to Evaluate the Risks of Intrusions

5. Identifying cyber risk hotspots: A framework for measuring temporal variance in computer network risk

Cited by 4 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. A Markovian Model of Dynamic Cyber Risk Assessment Based on Questionnaires;2023 16th International Conference on Signal Processing and Communication System (ICSPCS);2023-09-06

2. A Review on Information Security Risk Assessment of Smart Systems: Risk Landscape, Challenges, and Prospective Methods;2023 10th International Conference on ICT for Smart Society (ICISS);2023-09-06

3. Deep Learning for Cyber Security Risk Assessment in IIoT Systems;Encyclopedia of Data Science and Machine Learning;2022-10-14

4. Security Risk Assessments and Shortfalls for Evaluating and Protecting Dynamic Autonomic Systems in Future Internet;Design Innovation and Network Architecture for the Future Internet;2021