Comparing the Effectivity of Planned Cyber Defense Controls in Order to Support the Selection Process

Paul Tavolato; Robert Luh; Robert Luh; Sebastian Eresheim; Sebastian Eresheim; Simon Gmeiner; Sebastian Schrittwieser

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

Comparing the Effectivity of Planned Cyber Defense Controls in Order to Support the Selection Process

Topics: Risk and Reputation Management; Security and Privacy Metrics

In Proceedings of the 10th International Conference on Information Systems Security and Privacy ICISSP - Volume 1, 211-218, 2024 , Rome, Italy

Authors: Paul Tavolato ¹ ; Robert Luh ^{2

;

1} ; Sebastian Eresheim ^{2

;

1} ; Simon Gmeiner ¹ and Sebastian Schrittwieser ¹

Affiliations: ¹ Faculty of Computer Science, Research Group Security and Privacy, University of Vienna, A-1090 Vienna, Austria ; ² Department of Computer Science, UAS St. Pölten, A-3100 St. Pölten, Austria

Keyword(s): Security Management, Cyber Defense Measures, Security Control Assessment.

Abstract: Being able to compare the effectiveness of security controls on a sound quantitative basis would be of great benefit when it comes to decide which security controls should be implemented under given budget restrictions. This paper introduces a method for such comparisons based on a list of preventive defense actions and a list of attack actions, where the attack actions are supplemented by basic success probabilities; furthermore, a matrix showing the impact of the preventive defense actions on the success probabilities of attack actions is developed. Site specific characteristics are taken into account by the use of weights which must be defined by the security manager. Equipped with these tools a measure for the effectiveness of individual defense controls can be calculated. Comparing the measures provides valuable decision support in selecting defense controls to be implemented. A main focus lies on the easy applicability of the method to real-world situations. This is accomplishe d by incorporating information from several proven tactical and technical knowledge bases well established in the field. (More)

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 3.145.156.204

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Tavolato, P.; Luh, R.; Eresheim, S.; Gmeiner, S. and Schrittwieser, S. (2024). Comparing the Effectivity of Planned Cyber Defense Controls in Order to Support the Selection Process. In Proceedings of the 10th International Conference on Information Systems Security and Privacy - ICISSP; ISBN 978-989-758-683-5; ISSN 2184-4356, SciTePress, pages 211-218. DOI: 10.5220/0012421800003648

@conference{icissp24,
author={Paul Tavolato. and Robert Luh. and Sebastian Eresheim. and Simon Gmeiner. and Sebastian Schrittwieser.},
title={Comparing the Effectivity of Planned Cyber Defense Controls in Order to Support the Selection Process},
booktitle={Proceedings of the 10th International Conference on Information Systems Security and Privacy - ICISSP},
year={2024},
pages={211-218},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0012421800003648},
isbn={978-989-758-683-5},
issn={2184-4356},
}

TY - CONF

JO - Proceedings of the 10th International Conference on Information Systems Security and Privacy - ICISSP
TI - Comparing the Effectivity of Planned Cyber Defense Controls in Order to Support the Selection Process
SN - 978-989-758-683-5
IS - 2184-4356
AU - Tavolato, P.
AU - Luh, R.
AU - Eresheim, S.
AU - Gmeiner, S.
AU - Schrittwieser, S.
PY - 2024
SP - 211
EP - 218
DO - 10.5220/0012421800003648
PB - SciTePress