Defender-centric Conceptual Cyber Exposure Ontology for Adaptive Cyber Risk Assessment

Lamine Aouad, Muhammad Rizwan Asghar

2020

Abstract

A major gap in cybersecurity studies, especially as it relates to cyber risk, is the lack of comprehensive formal knowledge representation, and often a limited view, mainly based on abstract security concepts with limited context. Additionally, much of the focus is on the attack and the attacker, and a more complete view of risk assessment has been inhibited by the lack of knowledge from the defender landscape, especially in the matter of the impact and performance of compensating controls. In this study, we will start by defining a conceptual ontology that integrates concepts that model all of cybersecurity entities. We will then present an adaptive risk reasoning approach with a particular focus on defender activities. The main purpose is to provide a more complete view, from the defender perspective, that bridges the gap between risk assessment theories and practical cybersecurity operations in real-world deployments.

Download


Paper Citation


in Harvard Style

Aouad L. and Asghar M. (2020). Defender-centric Conceptual Cyber Exposure Ontology for Adaptive Cyber Risk Assessment.In Proceedings of the 17th International Joint Conference on e-Business and Telecommunications - Volume 3: SECRYPT, ISBN 978-989-758-446-6, pages 580-586. DOI: 10.5220/0009826205800586


in Bibtex Style

@conference{secrypt20,
author={Lamine Aouad and Muhammad Asghar},
title={Defender-centric Conceptual Cyber Exposure Ontology for Adaptive Cyber Risk Assessment},
booktitle={Proceedings of the 17th International Joint Conference on e-Business and Telecommunications - Volume 3: SECRYPT,},
year={2020},
pages={580-586},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0009826205800586},
isbn={978-989-758-446-6},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 17th International Joint Conference on e-Business and Telecommunications - Volume 3: SECRYPT,
TI - Defender-centric Conceptual Cyber Exposure Ontology for Adaptive Cyber Risk Assessment
SN - 978-989-758-446-6
AU - Aouad L.
AU - Asghar M.
PY - 2020
SP - 580
EP - 586
DO - 10.5220/0009826205800586