A Dutch Approach to Cybersecurity through Participation

Clark, Kas; Stikvoort, Don; Stofbergen, Eelco; Heuvel, E. van den

doi:10.1109/msp.2014.83

Cited by 8 publications

(1 citation statement)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…5) Services: Every CSIRT offers different services or functions based on its nature, culture, environment, expertise available, funding [5] and needs. Services are classified according to 1) reactive (alerts and warnings, incident handling, vulnerability handling and artefact handling); 2) proactive (announcements, security assessments, development of security tools, intrusion detection services and security-related information dissemination); 3) quality management (risk analysis, disaster recovery planning, security consulting, awareness building, education/ training and product evaluation) [5]; and 4) long-term resiliency (knowledge sharing for critical infrastructure guidelines, advisories), research and education, point of contact (responsible disclosure) [13]. 6) Fund: This could be considered as the nucleus of the CSIRT.…”

Section: ) Resourcesmentioning

confidence: 99%

A Model for Afghanistan’s Cyber Security Incident Response Team

Jalal

Yusof

Shukur

et al. 2018

Int. J. Adv. Sci. Eng. Inf. Technol.

View full text Add to dashboard Cite

Persistent cyber threats require effective and efficient mitigation techniques. The cyber security incident response team (CSIRT) is expected to respond to external and internal cyber threats or incidents. Various organizational, national, and international level CSIRTs have been developed for defending and protecting such kinds of threats. Developing countries like Afghanistan have also formed a Computer Emergency Response Team for handling national cyber incidents although it provides limited services to only a few constituencies and depends on funding from foreign donors. Therefore, a new organizational model was proposed to provide guidelines for a specific country, instead of a provision from a constitutional context. Five national CSIRTs were compared to identify their features and characteristics to provide basis for the proposed framework. The study presented the proposed model based on two CSIRT organizational models that incorporated a new funding strategy to achieve a Sustainable National CSIRT for developing countries. Our model combined coordinate and security teams; if consists of constituency's mission, services, resources, organizational framework, and funding strategy. This study employed qualitative method by using document analysis and interview techniques. CSIRT for Afghanistan known as AFCERT was evaluated in terms of structure, services, resources, and funding. AFCERT services level were below the standard of a national CSIRT. Therefore, a more sustainable service need to be provided based on the proposed model components. Findings showed the suitability and potential of the model in controlling and mitigating cyber-attacks, more specifically in the context of Afghanistan.

show abstract

Section: ) Resourcesmentioning

confidence: 99%