Geert Kleinhuis scite author profile

Geert Kleinhuis

5Publications

32Citation Statements Received

81Citation Statements Given

How they've been cited

How they cite others

Affiliations

Netherlands Organisation for Applied Scientific Research, KPN (Netherlands)

Publications

Order By: Most citations

Computer Security Incident Response Team Effectiveness: A Needs Assessment

2017

View full text Add to dashboard Cite

Computer security incident response teams (CSIRTs) respond to a computer security incident when the need arises. Failure of these teams can have far-reaching effects for the economy and national security. CSIRTs often have to work on an ad hoc basis, in close cooperation with other teams, and in time constrained environments. It could be argued that under these working conditions CSIRTs would be likely to encounter problems. A needs assessment was done to see to which extent this argument holds true. We constructed an incident response needs model to assist in identifying areas that require improvement. We envisioned a model consisting of four assessment categories: Organization, Team, Individual and Instrumental. Central to this is the idea that both problems and needs can have an organizational, team, individual, or technical origin or a combination of these levels. To gather data we conducted a literature review. This resulted in a comprehensive list of challenges and needs that could hinder or improve, respectively, the performance of CSIRTs. Then, semi-structured in depth interviews were held with team coordinators and team members of five public and private sector Dutch CSIRTs to ground these findings in practice and to identify gaps between current and desired incident handling practices. This paper presents the findings of our needs assessment and ends with a discussion of potential solutions to problems with performance in incident response.

show abstract

Security Attributes Based Digital Rights Management

Chong

Buuren²,

Hartel

et al. 2002

View full text Add to dashboard Cite

Most real-life systems delegate responsibilities to different authorities. We apply this model to a digital rights management system, to achieve flexible security. In our model a hierarchy of authorities issues certificates that are linked by cryptographic means. This linkage establishes a chain of control, identity-attribute-rights, and allows flexible rights control over content. Typical security objectives, such as identification, authentication, authorization and access control can be realised. Content keys are personalised to detect illegal super distribution. We describe a working prototype, which we develop using standard techniques, such as standard certificates, XML and Java. We present experimental results to evaluate the scalability of the system. A formal analysis demonstrates that our design is able to detect a form of illegal super distribution.

show abstract

Using a privilege management infrastructure for secure web-based e-health applications

Blobel

Hoepner

Joop

et al. 2003

Computer Communications

View full text Add to dashboard Cite

Security analysis of the Dependability, Security Reconfigurability framework

Hartog¹,

Kleinhuis²

2008

View full text Add to dashboard Cite

Introducing security and security functionality in a large scale Communication and Information System will increase the complexity of these systems. Complexity in general is seen as an important aspect of possible insecure systems. In this paper we describe the threats that need to be addressed if a specific security solution like the DESEREC (Dependability and Security by Enhanced Reconfigurability) framework is deployed in a large scale Communication and Information System. Also the necessary minimal countermeasures and corresponding security requirements are described. This work reflects our experiences within the DESEREC project, partly funded by the European Union.

show abstract

Service Brokerage in Prolog

Chong¹,

Etalle²,

Hartel³

et al. 2005

View full text Add to dashboard Cite

Abstract. Service brokerage is a complex problem. At the design stage the semantic gap between user, device and system requirements must be bridged, and at the operational stage the conflicting objectives of many parties in the value chain must be reconciled. For example why should a user who wants to watch a film need to understand that due to limited battery power the film can only be shown in low resolution? Why should the user have to understand the business model of a content provider? To solve these problems we present (1) the concept of a packager who acts as a service broker, (2) a design derived systematically from a semi-formal specification (the CC-model), and (3) an implementation using our Prolog based LicenseScript language.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Geert Kleinhuis

Computer Security Incident Response Team Effectiveness: A Needs Assessment

Security Attributes Based Digital Rights Management

Using a privilege management infrastructure for secure web-based e-health applications

Security analysis of the Dependability, Security Reconfigurability framework

Service Brokerage in Prolog

Contact Info

Product

Resources

About