A Threat Analysis Methodology for Security Evaluation and Enhancement Planning

Stango, Antonietta; Prasad, Neeli R.; Kyriazanos, Dimitris M.

doi:10.1109/securware.2009.47

Cited by 33 publications

(12 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…(3) to execute performance measurements to better describe the gains obtained with the utilization of the cloud; (4) to evaluate the adoption of URN [17] to describe nonfunctional requirements; (5) to consider cloud security aspects in the development and deployment of business processes in the cloud; and (6) to evaluate this work following other approaches (e.g., evaluation based on threat analysis, based on the methodology presented on [33]). …”

Section: Discussionmentioning

confidence: 99%

Automation of service-based security-aware business processes in the Cloud

et al. 2015

View full text Add to dashboard Cite

The use of business process standards to model and execute business needs is growing rapidly. In addition, Service-oriented Computing has been adopted to realize business processes, which basically consists of executing the process activities using services available in the Internet. In this context, the importance of security is apparent, because sensitive data sent over the Internet may be accessed by unauthorized thirdparties. To prevent security problems, users may associate security requirements that must be enforced in essential tasks of the business process. This fact leads to the need of automation, because both functional and security requirements should be modeled, at high-level, and enforced, at execution level. This work proposes a cloud-based solution named BPA-Sec4Cloud that supports all phases of the security-aware business process automation, from its modeling to its deployment. The use of a cloud-based solution facilitates the deployment process because all needed resources are available in the cloud and ready to be used. In addition, the cloud is also used as a platform in order to provide specific services, such as translators, to support the automation process. In order to evaluate the BPA-Sec4Cloud, the solution was compared against existing solutions through the use of metrics related to the quality of generated artifacts. B Fernando Lins

show abstract

Section: Discussionmentioning

confidence: 99%

Automation of service-based security-aware business processes in the Cloud

et al. 2015

View full text Add to dashboard Cite

show abstract

“…Moreover, the firewall is not considered an efficient approach to fight against viruses and Trojan horses [1]. In addition to these, the immense spread of connected devices in the IoT has raised the requirement for intelligent security measures in response to the increasing demand of millions and billions of connected devices and services globally [2,50,54,80]. Furthermore, efficient security measures are required to fight against the numerous network-centric cyber interventions that are carried out by intelligent agents, such as computer worms and viruses.…”

Section: Introductionmentioning

confidence: 99%

The impacts of artificial intelligence techniques in augmentation of cybersecurity: a comprehensive review

Naik

Mehta

Yagnik³

et al. 2021

Complex Intell. Syst.

View full text Add to dashboard Cite

Given the prevailing state of cybersecurity, it is reasonable to understand why cybersecurity experts are seriously considering artificial intelligence as a potential field that can aid improvements in conventional cybersecurity techniques. Various progressions in the field of technology have helped to mitigate some of the issues relating to cybersecurity. These advancements can be manifested by Big Data, Blockchain technology, Behavioral Analytics, to name but a few. The paper overviews the effects of applications of these technologies in cybersecurity. The central purpose of the paper is to review the application of AI techniques in analyzing, detecting, and fighting various cyberattacks. The effects of the implementation of conditionally classified “distributed” AI methods and conveniently classified “compact” AI methods on different cyber threats have been reviewed. Furthermore, the future scope and challenges of using such techniques in cybersecurity, are discussed. Finally, conclusions have been drawn in terms of evaluating the employment of different AI advancements in improving cybersecurity.

show abstract

“…The vast diffusion of connected devices in the IoT has created enormous demand for robust security in response to the growing demand of millions or perhaps billions of connected devices and services worldwide [3][4][5].…”

Section: Introductionmentioning

confidence: 99%

Cyber Security and the Internet of Things: Vulnerabilities, Threats, Intruders and Attacks

Abomhara

K�ien

2015

JCSM

508

233

View full text Add to dashboard Cite

Internet of Things (IoT) devices are rapidly becoming ubiquitous while IoT services are becoming pervasive. Their success has not gone unnoticed and the number of threats and attacks against IoT devices and services are on the increase as well. Cyber-attacks are not new to IoT, but as IoT will be deeply interwoven in our lives and societies, it is becoming necessary to step up and take cyber defense seriously. Hence, there is a real need to secure IoT, which has consequently resulted in a need to comprehensively understand the threats and attacks on IoT infrastructure. This paper is an attempt to classify threat types, besides analyze and characterize intruders and attacks facing IoT devices and services.

show abstract

A Threat Analysis Methodology for Security Evaluation and Enhancement Planning

Cited by 33 publications

References 8 publications

Automation of service-based security-aware business processes in the Cloud

Automation of service-based security-aware business processes in the Cloud

The impacts of artificial intelligence techniques in augmentation of cybersecurity: a comprehensive review

Cyber Security and the Internet of Things: Vulnerabilities, Threats, Intruders and Attacks

Contact Info

Product

Resources

About