Informační systém MU
HUSÁK, Martin, Tomáš JIRSÍK and Shanchieh Jay YANG. SoK: Contemporary Issues and Challenges to Enable Cyber Situational Awareness for Network Security. In Proceedings of the 15th International Conference on Availability, Reliability and Security. New York, NY, United States: Association for Computing Machinery, 2020. p. 1-10. ISBN 978-1-4503-8833-7. doi:10.1145/3407023.3407062.
Other formats:   BibTeX LaTeX RIS
Basic information
Original name SoK: Contemporary Issues and Challenges to Enable Cyber Situational Awareness for Network Security
Authors HUSÁK, Martin (203 Czech Republic, guarantor, belonging to the institution), Tomáš JIRSÍK (203 Czech Republic, belonging to the institution) and Shanchieh Jay YANG.
Edition New York, NY, United States, Proceedings of the 15th International Conference on Availability, Reliability and Security, p. 1-10, 10 pp. 2020.
Publisher Association for Computing Machinery
Other information
Original language English
Type of outcome Proceedings paper
Field of Study 10200 1.2 Computer and information sciences
Country of publisher United States of America
Confidentiality degree is not subject to a state or trade secret
Publication form electronic version available online
WWW URL
RIV identification code RIV/00216224:14610/20:00115826
Organization unit Institute of Computer Science
ISBN 978-1-4503-8833-7
Doi http://dx.doi.org/10.1145/3407023.3407062
Keywords in English Cyber situational awareness;network security;taxonomy
Tags rivok
Tags International impact, Reviewed
Changed by Changed by: Mgr. Alena Mokrá, učo 362754. Changed: 27/4/2021 16:24.
Abstract
Cyber situational awareness is an essential part of cyber defense that allows the cybersecurity operators to cope with the complexity of today's networks and threat landscape. Perceiving and comprehending the situation allow the operator to project upcoming events and make strategic decisions. In this paper, we recapitulate the fundamentals of cyber situational awareness and highlight its unique characteristics in comparison to generic situational awareness known from other fields. Subsequently, we provide an overview of existing research and trends in publishing on the topic, introduce front research groups, and highlight the impact of cyber situational awareness research. Further, we propose an updated taxonomy and enumeration of the components used for achieving cyber situational awareness. The updated taxonomy conforms to the widely-accepted three-level definition of cyber situational awareness and newly includes the projection level. Finally, we identify and discuss contemporary research and operational challenges, such as the need to cope with rising volume, velocity, and variety of cybersecurity data and the need to provide cybersecurity operators with the right data at the right time and increase their value through visualization.
Links
EF16_019/0000822, research and development projectName: Centrum excelence pro kyberkriminalitu, kyberbezpečnost a ochranu kritických informačních infrastruktur
Displayed: 20/10/2021 01:04