Overcoming information-sharing challenges in cyber defence exercises-Reference-Cited by-同舟云学术

Overcoming information-sharing challenges in cyber defence exercises

Published:2022-01-01 Issue:1 Volume:8 Page:
ISSN:2057-2085
Container-title:Journal of Cybersecurity
language:en
Short-container-title:

Author:

Brilingaitė Agnė¹^ORCID,Bukauskas Linas¹^ORCID,Juozapavičius Aušrius²^ORCID,Kutka Eduardas¹^ORCID

Affiliation:

1. Institute of Computer Science, Vilnius University , Didlaukio str. 47, LT-08303 Vilnius , Lithuania

2. General Jonas Žemaitis Military Academy of Lithuania , Šilo g. 5A., LT-10322 Vilnius , Lithuania

Abstract

Abstract Active usage of threat intelligence information supports effective prevention, mitigation and defence against cyberattacks by threat actors ranging from individual amateurs to state organizations. However, threat intelligence highly depends on security specialists’ ability to share incident data on threat information-sharing platforms. Unfortunately, business managers and educational institutions undervalue the information-sharing aspect when planning the professional development of cybersecurity-related specialists. Consequently, cybersecurity specialists are insufficiently motivated to correctly communicate and propagate relevant information with team members, superiors, relevant institutions and the global community about the impact of the incident. Literature review reveals many technological, legal and psychological obstacles hindering successful information exchange. This research aims to improve threat information sharing by focusing on the educational aspect of the problem and analysing the attitude of cybersecurity specialists during cyber defence exercises (CDX). Our case study disclosed nine factors obstructing both proper reporting to relevant authorities and adequate communication among teams. By addressing these factors, CDX organizers could substantially improve the development of highly beneficial soft skills of the technical specialists.

Publisher

Oxford University Press (OUP)

Subject

Law,Computer Networks and Communications,Political Science and International Relations,Safety, Risk, Reliability and Quality,Social Psychology,Computer Science (miscellaneous)

Link

https://academic.oup.com/cybersecurity/article-pdf/8/1/tyac001/47918854/tyac001.pdf

Reference43 articles.

1. A review and theoretical explanation of the ‘Cyberthreat-Intelligence (CTI) capability’ that needs to be fostered in information security practitioners and how this can be accomplished;Shin;Comput Secur,2020

2. Information sharing in supply chains: an empirical and theoretical valuation;Cui;Manag Sci,2015

3. Detect, share, protect: solutions for improving threat data exchange among CERTs;European Union Agency for Network and Information Security (ENISA),2013

Cited by 6 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Information Sharing for Creating Awareness for Securing Healthcare Ecosystem;2023 19th International Conference on the Design of Reliable Communication Networks (DRCN);2023-04-17

2. Maximizing the benefits from sharing cyber threat intelligence by government agencies and departments;Journal of Cybersecurity;2023-01-01

3. Adapting cybersecurity practice to reduce wildlife cybercrime;Journal of Cybersecurity;2023-01-01

4. FLEXI - A Conceptual Model for Enterprise Cyber Resilience;Procedia Computer Science;2023

5. A Game-Theoretic Approach for Pricing and Determining Quality Levels of Cybersecurity Products Under an Exogenous Information-Sharing Program;Economics of Grids, Clouds, Systems, and Services;2023