research-article

Formal threat descriptions for enhancing governmental risk assessment

Authors:

Andreas Ekelhart,

Stefan Fenz,

Thomas Neubauer,

Edgar WeipplAuthors Info & Claims

ICEGOV '07: Proceedings of the 1st international conference on Theory and practice of electronic governance

Pages 40 - 43

https://doi.org/10.1145/1328057.1328067

Published: 10 December 2007 Publication History

Get Access

Abstract

Compared to the last decades, we have recently seen more and more governmental applications which are provided via the Internet directly to the citizens. Due to the long history of IT systems in the governmental sector and the connection of these legacy systems to newer technologies, most governmental institutions are faced with a heterogeneous IT environment. More and more governmental duties and responsibilities rely solely on IT systems which have to be highly dependable to ensure the proper operation of these governmental services. An increasing amount of software vulnerabilities and the generally heightened physical threat level due to terror attacks and natural disasters demand for a holistic IT security approach which captures, manages, and secures the entire governmental IT infrastructure. Our contribution is (1) a novel inventory solution, (2) a mechanism to embed the virtual IT infrastructure data into a physical model provided by our security ontology, and (3) a methodology to automatically identify threatened assets and to reason on the current security status based on formal threat definitions taking software configurations and physical locations into account. A prototypical implementation of the aforementioned concepts shows how these concepts help governmental institutions to secure their IT infrastructure in a holistic and systematic way to fortify their IT systems in an appropriate way against current and future threats.

References

[1]

CERT/CC. Cert/cc statistics 1988-2006. http://www.cert.org/stats/, January 2007.

Google Scholar

[2]

Commission of the European Communities. Communication from the commission to the council, the european parliament, the european economic and social committee and the committee of the regions 'i2010 -- a european information society for growth and employment'. COM(2005) 229 final, June 2005

Google Scholar

[3]

A. Ekelhart, S. Fenz, M. Klemen, and E. Weippl. Security ontologies: Improving quantitative risk analysis. In 40th Hawaii International Conference on System Sciences (HICSS'07), pages 156--162, 2007. IEEE Computer Society.

Digital Library

Google Scholar

[4]

S. Fenz, G. Goluch, A. Ekelhart, and E. Weippl. Information Security Fortification by Ontological Mapping of the ISO/IEC 27001 Standard. In 13th Pacific Rim International Symposium on Dependable Computing, PRDC2007. IEEE Computer Society, December 2007.

Digital Library

Google Scholar

[5]

Hewlett-Packard Development Company. JENA semantic web framework. http://jena.sourceforge.net/, August 2007.

Google Scholar

[6]

International Organization for Standardization and International Electrotechnical Commission. Iso/iec 27001:2005, information technology -- security techniques - information security management systems requirements.

Google Scholar

[7]

I. LLC. Nmap security scanner. http://insecure.org/nmap/, June 2007.

Google Scholar

[8]

Microsoft Corporation. Windows server update services. http://www.microsoft.com/germany/windowsserver2003/technologien/updateservices/default.mspx, June 2007.

Google Scholar

[9]

NIST. An introduction to computer security - the nist handbook. Technical report, NIST (National Institute of Standards and Technology), October 1995. Special Publication 800-12.

Digital Library

Google Scholar

Cited By

View all

Birkholz HSieverdingbeck ISohr KBormann C(2012)IOProceedings of the 2012 Seventh International Conference on Availability, Reliability and Security10.1109/ARES.2012.73(534-541)Online publication date: 20-Aug-2012
https://dl.acm.org/doi/10.1109/ARES.2012.73
KONG WOGATA KFUTATSUGI K(2010)Towards Reliable E-Government Systems with the OTS/CafeOBJ MethodIEICE Transactions on Information and Systems10.1587/transinf.E93.D.974E93-D:5(974-984)Online publication date: 2010
https://doi.org/10.1587/transinf.E93.D.974
Cheremushkin DLyubimov AMakarevich OElçi AOrgun MHuss SBabenko LChefranov AVaradharajan V(2010)An application of integral engineering technique to information security standards analysis and refinementProceedings of the 3rd international conference on Security of information and networks10.1145/1854099.1854106(12-18)Online publication date: 7-Sep-2010
https://dl.acm.org/doi/10.1145/1854099.1854106
Show More Cited By

Index Terms

Formal threat descriptions for enhancing governmental risk assessment
1. Hardware
  1. Communication hardware, interfaces and storage
2. Networks
  1. Network services
    1. Network monitoring

Recommendations

Insider Threat Assessment: a Model-Based Methodology

Security is a major challenge for today's companies, especially ICT ones which manage large scale cyber-critical systems. Amongst the multitude of attacks and threats to which a system is potentially exposed, there are insider attackers i.e., users with ...
A framework for data-driven physical security and insider threat detection
ASONAM '18: Proceedings of the 2018 IEEE/ACM International Conference on Advances in Social Networks Analysis and Mining

This paper presents PS0, an ontological framework and a methodology for improving physical security and insider threat detection. PS0 can facilitate forensic data analysis and proactively mitigate insider threats by leveraging rule-based anomaly ...
Risk Centric Threat Modeling: Process for Attack Simulation and Threat Analysis

Comments

Information & Contributors

Information

Published In

ICEGOV '07: Proceedings of the 1st international conference on Theory and practice of electronic governance

December 2007

471 pages

ISBN:9781595938220

DOI:10.1145/1328057

Editors:
Tomasz Janowski
United Nations University
,
Theresa A. Pardo
Center for Technology in Government

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 10 December 2007

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Conference

ICEGOV '07

ICEGOV '07: International conference on theory and practice in electronic governance

December 10 - 13, 2007

Macao, China

Acceptance Rates

ICEGOV '07 Paper Acceptance Rate 33 of 130 submissions, 25%;

Overall Acceptance Rate 350 of 865 submissions, 40%

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

9
Total Citations
View Citations
649
Total Downloads

Downloads (Last 12 months)4
Downloads (Last 6 weeks)1

Reflects downloads up to 25 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Birkholz HSieverdingbeck ISohr KBormann C(2012)IOProceedings of the 2012 Seventh International Conference on Availability, Reliability and Security10.1109/ARES.2012.73(534-541)Online publication date: 20-Aug-2012
https://dl.acm.org/doi/10.1109/ARES.2012.73
KONG WOGATA KFUTATSUGI K(2010)Towards Reliable E-Government Systems with the OTS/CafeOBJ MethodIEICE Transactions on Information and Systems10.1587/transinf.E93.D.974E93-D:5(974-984)Online publication date: 2010
https://doi.org/10.1587/transinf.E93.D.974
Cheremushkin DLyubimov AMakarevich OElçi AOrgun MHuss SBabenko LChefranov AVaradharajan V(2010)An application of integral engineering technique to information security standards analysis and refinementProceedings of the 3rd international conference on Security of information and networks10.1145/1854099.1854106(12-18)Online publication date: 7-Sep-2010
https://dl.acm.org/doi/10.1145/1854099.1854106
Ekelhart ANeubauer TFenz S(2009)Automated Risk and Utility ManagementProceedings of the 2009 Sixth International Conference on Information Technology: New Generations10.1109/ITNG.2009.23(393-398)Online publication date: 27-Apr-2009
https://dl.acm.org/doi/10.1109/ITNG.2009.23
Ekelhart AFenz SNeubauer T(2009)Ontology-Based Decision Support for Information Security Risk ManagementProceedings of the 2009 Fourth International Conference on Systems10.1109/ICONS.2009.8(80-85)Online publication date: 1-Mar-2009
https://dl.acm.org/doi/10.1109/ICONS.2009.8
(2009)Efficient Topic-Based File Sharing in Hybrid Wireless NetworksProceedings of the 42nd Hawaii International Conference on System Sciences10.1109/HICSS.2009.180(1-9)Online publication date: 5-Jan-2009
https://dl.acm.org/doi/10.1109/HICSS.2009.180
Tabatabai Irani MWeippl E(2009)Automation of post‐exploitationInternational Journal of Web Information Systems10.1108/174400809110062345:4(518-536)Online publication date: 20-Nov-2009
https://doi.org/10.1108/17440080911006234
Neubauer THeurix J(2008)Objective Types for the Valuation of Secure Business ProcessesProceedings of the Seventh IEEE/ACIS International Conference on Computer and Information Science (icis 2008)10.1109/ICIS.2008.64(231-236)Online publication date: 14-May-2008
https://dl.acm.org/doi/10.1109/ICIS.2008.64
Neubauer THeurix J(2008)Defining Secure Business Processes with Respect to Multiple ObjectivesProceedings of the 2008 Third International Conference on Availability, Reliability and Security10.1109/ARES.2008.174(187-194)Online publication date: 4-Mar-2008
https://dl.acm.org/doi/10.1109/ARES.2008.174

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Abstract

References

Cited By

Index Terms

Recommendations

Insider Threat Assessment: a Model-Based Methodology

A framework for data-driven physical security and insider threat detection

Risk Centric Threat Modeling: Process for Attack Simulation and Threat Analysis

Comments

Information

Published In

Publisher

Publication History

Permissions

Check for updates

Author Tags

Qualifiers

Conference

Acceptance Rates

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Login options

Full Access

View options

PDF

eReader

Share

Share this Publication link

Share on social media

Affiliations