2020
SoK: Contemporary Issues and Challenges to Enable Cyber Situational Awareness for Network Security
HUSÁK, Martin, Tomáš JIRSÍK a Shanchieh Jay YANGZákladní údaje
Originální název
SoK: Contemporary Issues and Challenges to Enable Cyber Situational Awareness for Network Security
Autoři
HUSÁK, Martin (203 Česká republika, garant, domácí), Tomáš JIRSÍK (203 Česká republika, domácí) a Shanchieh Jay YANG
Vydání
New York, NY, United States, Proceedings of the 15th International Conference on Availability, Reliability and Security, od s. 1-10, 10 s. 2020
Nakladatel
Association for Computing Machinery
Další údaje
Jazyk
angličtina
Typ výsledku
Stať ve sborníku
Obor
10200 1.2 Computer and information sciences
Stát vydavatele
Spojené státy
Utajení
není předmětem státního či obchodního tajemství
Forma vydání
elektronická verze "online"
Odkazy
Kód RIV
RIV/00216224:14610/20:00115826
Organizační jednotka
Ústav výpočetní techniky
ISBN
978-1-4503-8833-7
Klíčová slova anglicky
Cyber situational awareness;network security;taxonomy
Příznaky
Mezinárodní význam, Recenzováno
Změněno: 2. 9. 2024 14:38, RNDr. Pavel Šmerk, Ph.D.
Anotace
V originále
Cyber situational awareness is an essential part of cyber defense that allows the cybersecurity operators to cope with the complexity of today's networks and threat landscape. Perceiving and comprehending the situation allow the operator to project upcoming events and make strategic decisions. In this paper, we recapitulate the fundamentals of cyber situational awareness and highlight its unique characteristics in comparison to generic situational awareness known from other fields. Subsequently, we provide an overview of existing research and trends in publishing on the topic, introduce front research groups, and highlight the impact of cyber situational awareness research. Further, we propose an updated taxonomy and enumeration of the components used for achieving cyber situational awareness. The updated taxonomy conforms to the widely-accepted three-level definition of cyber situational awareness and newly includes the projection level. Finally, we identify and discuss contemporary research and operational challenges, such as the need to cope with rising volume, velocity, and variety of cybersecurity data and the need to provide cybersecurity operators with the right data at the right time and increase their value through visualization.
Návaznosti
EF16_019/0000822, projekt VaV |
|