A collaborative approach for national cybersecurity incident management

Journal article


Oriola, Oluwafemi, Adeyemo, Adesesan Barnabas, Papadaki, Maria and Kotzé, Eduan 2021. A collaborative approach for national cybersecurity incident management. Information and Computer Security. 29 (3), pp. 1-28. https://doi.org/10.1108/ics-02-2020-0027
AuthorsOriola, Oluwafemi, Adeyemo, Adesesan Barnabas, Papadaki, Maria and Kotzé, Eduan
Abstract

Collaborative-based national cybersecurity incident management benefits from the huge size of incident information, large-scale information security devices and aggregation of security skills. However, no existing collaborative approach has been able to cater for multiple regulators, divergent incident views and incident reputation trust issues that national cybersecurity incident management presents. This paper aims to propose a collaborative approach to handle these issues cost-effectively. A collaborative-based national cybersecurity incident management architecture based on ITU-T X.1056 security incident management framework is proposed. It is composed of the cooperative regulatory unit with cooperative and third-party management strategies and an execution unit, with incident handling and response strategies. Novel collaborative incident prioritization and mitigation planning models that are fit for incident handling in national cybersecurity incident management are proposed. Use case depicting how the collaborative-based national cybersecurity incident management would function within a typical information and communication technology ecosystem is illustrated. The proposed collaborative approach is evaluated based on the performances of an experimental cyber-incident management system against two multistage attack scenarios. The results show that the proposed approach is more reliable compared to the existing ones based on descriptive statistics. The approach produces better incident impact scores and rankings than standard tools. The approach reduces the total response costs by 8.33% and false positive rate by 97.20% for the first attack scenario, while it reduces the total response costs by 26.67% and false positive rate by 78.83% for the second attack scenario.

KeywordsManagement of Technology and Innovation; Information Systems and Management; Computer Networks and Communications; Information Systems; Software; Management Information Systems; information security; incident management; national cybersecurity; incident handling and response
Year2021
JournalInformation and Computer Security
Journal citation29 (3), pp. 1-28
PublisherEmerald
ISSN2056-4961
Digital Object Identifier (DOI)https://doi.org/10.1108/ics-02-2020-0027
Web address (URL)https://www.emerald.com/insight/content/doi/10.1108/ICS-02-2020-0027/full/html
hdl:10545/625883
Output statusPublished
Publication dates28 Jun 2021
Publication process dates
Deposited15 Jul 2021, 14:49
Accepted26 Nov 2020
Contributorsuniversity of Plymouth, University of Ibadan, Ibadan, Nigeria and University of the Free State, Bloemfontein, South Africa
File
File Access Level
Restricted
File
License
File Access Level
Open
Permalink -

https://repository.derby.ac.uk/item/94640/a-collaborative-approach-for-national-cybersecurity-incident-management

Download files

  • 58
    total views
  • 15
    total downloads
  • 2
    views this month
  • 0
    downloads this month

Export as

Related outputs

Evaluating the Risks of Human Factors Associated with Social Media Cybersecurity Threats
Salamah, F. B., Palomino, M. A., Maria Papadaki, Craven, M. and Furnell, S. 2023. Evaluating the Risks of Human Factors Associated with Social Media Cybersecurity Threats. 17th IFIP WG 11.12 International Symposium, HAISA 2023, Kent, UK, July 4–6, 2023, Proceedings. Springer. https://doi.org/10.1007/978-3-031-38530-8_28
An empirical analysis of the information security culture key factors framework
Tolah, Alaa, Furnell, Steven and Papadaki, Maria 2021. An empirical analysis of the information security culture key factors framework. Computers & Security. https://doi.org/10.1016/j.cose.2021.102354