English
Related papers

Related papers: Security Assessment Rating Framework for Enterpris…

200 papers

Cyber risk assessment is a fundamental activity for enhancing the protection of an organization, identifying and evaluating the exposure to cyber threats. Currently, this activity is carried out mainly manually and the identification and…

Cryptography and Security · Computer Science 2022-07-08 Marco Angelini , Silvia Bonomi , Alessandro Palma

Detection of malicious activities in corporate environments is a very complex task and much effort has been invested into research of its automation. However, vast majority of existing methods operate only in a narrow scope which limits…

Cryptography and Security · Computer Science 2021-11-11 Jan Kohout , Čeněk Škarda , Kyrylo Shcherbin , Martin Kopp , Jan Brabec

The growing frequency of cyberattacks has heightened the demand for accurate and efficient threat detection systems. SIEM platforms are important for analyzing log data and detecting adversarial activities through rule-based queries, also…

Cryptography and Security · Computer Science 2025-02-05 Prasanna N. Wudali , Moshe Kravchik , Ehud Malul , Parth A. Gandhi , Yuval Elovici , Asaf Shabtai

The document provides an in-depth analysis of the main attack chain models used in cybersecurity, including the Lockheed Martin Cyber Kill Chain framework, the MITER ATT&CK framework, the Diamond model, and the IoTKC, focusing on their…

Cryptography and Security · Computer Science 2023-06-16 Juan Diego Bermudez , Josue Joel Castro , Diego Alejandro Peralta , Pablo Alejandro Guacaneme

The rapid advancement of quantum computing poses a significant threat to many current security algorithms used for secure communication, digital authentication, and information encryption. A sufficiently powerful quantum computer could…

Cryptography and Security · Computer Science 2024-07-19 Basel Halak , Cristian Sebastian Csete , Edward Joyce , Jack Papaioannou , Alexandre Pires , Jin Soma , Betul Gokkaya , Michael Murphy

Security reputation metrics (aka. security metrics) quantify the security levels of organization (e.g., hosting or Internet access providers) relative to comparable entities. They enable benchmarking and are essential tools for decision and…

Cryptography and Security · Computer Science 2023-02-15 Maciej Korczyński , Arman Noroozian

We review the current status and research challenges in the area of cyber security often called continuous monitoring and risk scoring (CMRS). We focus on two most salient aspects of CMRS. First, continuous collection of data through…

Cryptography and Security · Computer Science 2015-12-29 Alexander Kott , Curtis Arnold

This paper is devoted to measuring the security of cyber networks under advanced persistent threats (APTs). First, an APT-based cyber attack-defense process is modeled as an individual-level dynamical system. Second, the dynamic model is…

Cryptography and Security · Computer Science 2017-07-13 Lu-Xing Yang , Pengdeng Li , Xiaofan Yang , Luosheng Wen , Yingbo Wu , Yuan Yan Tang

The rapid adoption of machine learning (ML) technologies has driven organizations across diverse sectors to seek efficient and reliable methods to accelerate model development-to-deployment. Machine Learning Operations (MLOps) has emerged…

Cryptography and Security · Computer Science 2026-01-28 Raj Patel , Himanshu Tripathi , Jasper Stone , Noorbakhsh Amiri Golilarz , Sudip Mittal , Shahram Rahimi , Vini Chaudhary

Background: Timely prioritising and remediating vulnerabilities are paramount in the dynamic cybersecurity field, and one of the most widely used vulnerability scoring systems (CVSS) does not address the increasing likelihood of emerging an…

Cryptography and Security · Computer Science 2024-05-15 Miguel Santana , Vinicius V. Cogo , Alan Oliveira de Sá

Stealth attacks pose potential risks to cyber-physical systems because they are difficult to detect. Assessing the risk of systems under stealth attacks remains an open challenge, especially in nonlinear systems. To comprehensively quantify…

Systems and Control · Electrical Eng. & Systems 2024-05-07 Guang Chen , Zhicong Sun , Yulong Ding , Shuang-hua Yang

Security metrics serve as a powerful tool for organizations to understand the effectiveness of protecting computer networks. However majority of these measurement techniques don't adequately help corporations to make informed risk…

Cryptography and Security · Computer Science 2015-02-14 Subil Abraham , Suku Nair

In today's rapidly evolving digital landscape, organisations face escalating cyber threats that can disrupt operations, compromise sensitive data, and inflict financial and reputational harm. A key reason for this lies in the organisations'…

Cryptography and Security · Computer Science 2025-04-08 Lasini Liyanage , Nalin Arachchilage , Giovanni Russello

This article discusses how the gap between early 5G network threat assessments and an adversarial Tactics, Techniques, Procedures (TTPs) knowledge base for future use in the MITRE ATT&CK threat modelling framework can be bridged. We…

Cryptography and Security · Computer Science 2021-10-15 Robert Pell , Sotiris Moschoyiannis , Emmanouil Panaousis , Ryan Heartfield

Space infrastructures have become an underpinning of modern society, but their associated cyber risks are little understood. This Dissertation advances the state-of-the-art via four contributions. (i) It introduces an innovative framework…

Cryptography and Security · Computer Science 2025-08-26 Ekzhin Ear

At the rapid pace of technological evolution, the emerging cloud computing technology has promoted the digitalization and business innovation of the enterprise in all industries due to its advantages of data storage and service mode.…

Systems and Control · Electrical Eng. & Systems 2025-11-10 Yihong Zou

The MITRE ATT&CK Framework provides a rich and actionable repository of adversarial tactics, techniques, and procedures (TTP). However, this information would be highly useful for attack diagnosis (i.e., forensics) and mitigation (i.e.,…

Cryptography and Security · Computer Science 2020-05-14 Rawan Al-Shaer , Jonathan M. Spring , Eliana Christou

In cloud environments, conventional firewalls rely on predefined rules and manual configurations, limiting their ability to respond effectively to evolving or zero-day threats. As organizations increasingly adopt platforms such as Microsoft…

Cryptography and Security · Computer Science 2025-12-08 Darren Malvern Chin , Bilal Isfaq , Simon Yusuf Enoch

Todays industrial control systems consist of tightly coupled components allowing adversaries to exploit security attack surfaces from the information technology side, and, thus, also get access to automation devices residing at the…

Software Engineering · Computer Science 2023-06-26 Mukund Bhole , Wolfgang Kastner , Thilo Sauter

The importance of security metrics can hardly be overstated. Despite the attention that has been paid by the academia, government and industry in the past decades, this important problem stubbornly remains open. In this survey, we present a…

Cryptography and Security · Computer Science 2016-01-25 Marcus Pendleton , Richard Garcia-Lebron , Shouhuai Xu