Military-Based Cyber Risk Assessment Framework for Supporting Cyber Warfare in Thailand

Hemanidhi, Aniwat; Chimmanee, Sanon

doi:10.32890/jict2017.16.2.8229

Journal of Information and Communication Technology

2017

DOI: 10.32890/jict2017.16.2.8229

|View full text |Cite

Military-Based Cyber Risk Assessment Framework for Supporting Cyber Warfare in Thailand

Aniwat Hemanidhi

Sanon Chimmanee

Abstract: Information Technology (IT) Risk Management is designed to confirm the sufficiency of information security. There are many risk management/assessment standards, e.g. IS0 27005:2011 and NIST SP 800-30rev1, which are mainly designed for general organizations such as governments or businesses. Cyber risk assessment focused on military strategy has been rarely studied. Hence, this paper presents an innovative cyber risk assessment conceptual framework named “Cyber Risk Assessment (CRA)” which is extended from prev… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...

Citation Types

Supporting

Mentioning

Contrasting

Year Published

2019

2024

Publication Types

Select...

Article2

Relationship

Self Cite0

Independent2

Authors

Journals

Cited by 2 publications

References 5 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

Perceptions and dilemmas around cyber-security in a Spanish research center after a cyber-attack

Navajas-Adán,

Badia-Gelabert,

Jiménez-Saurina

et al. 2024

Int. J. Inf. Secur.

View full text Add to dashboard Cite

Information and Communication Technologies and Internet networks are present in all aspects of social reality and are essential elements in research, development and innovation centers (R&D&I). Cyber-security is crucial for the progress of the research activities developed in these centers, especially given the exponential growth of cyber-attacks and incidents. The present study aims to assess from a socio-technical approach, how a serious cyber-attack on a Spanish research center has affected staff’s perceptions of information and communication systems (ICT) security. This study employed a mixed-methods research strategy, combining quantitative and qualitative methods to provide a comprehensive and nuanced understanding of ICT security perceptions among employees. First a quantitative scale was administered to 1,321 employees 3 years before the cyber-attack and 4 months afterward, to measure ICT security perceptions. Then, qualitative techniques (semi-structured interviews, focus groups, and micro-ethnography) were applied to gain a deeper understanding of the arguments underpinning cyber-security at the center after the attack. The results show that the event had an impact on employees’ perceptions, increasing the perceived importance of ICT security, with positive behavioral changes noted, but with doubts about their sustainability over time. Also, the need for cyber-security governance was critically contrasted with organizational reality. Finally, the compatibility of science and cyber-security was a central dilemma, which seems to confront antagonistic poles (research and security ICT) and justify the non-compliance with security protocols by part of the staff.

show abstract

Perceptions and dilemmas around cyber-security in a Spanish research center after a cyber-attack

Navajas-Adán,

Badia-Gelabert,

Jiménez-Saurina

et al. 2024

Int. J. Inf. Secur.

View full text Add to dashboard Cite

show abstract

Applying Empirical Thresholding Algorithm for a Keystroke Dynamics Based Authentication System

Venugopal

Viji²

2019

JICT

View full text Add to dashboard Cite

Through the application of a password-based authentication technique, users are granted permission to access a secure system when the username and password matches with that logged in database of the system. Furthermore, anyone who provides the correct username and password of a valid user will be able to log in to the secure network. In current circumstances, impostors can hack the system to obtain a user's password, while it has also been easy to find out a person's private password. Thus, the existing structure is exceptionally flawed. One way to strengthen the password-based authentication technique, is by keystroke dynamics. In the proposed keystroke dynamics based authentication system, despite the password match, the similarity between the typing pattern of the typed password and password samples in the training database are verified. The timing features of the user's keystroke dynamics are collected to calculate the threshold values. In this paper, a novel algorithm is proposed to authenticate the legal users based on the empirical threshold values. The first step involves the extraction of timing features from the typed password samples. The password training database for each user is constructed using the extracted features. Moreover, the empirical threshold limits are calculated from the timing features in the database. The second step involves user authentication by applying these threshold values.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Military-Based Cyber Risk Assessment Framework for Supporting Cyber Warfare in Thailand

Cited by 2 publications

References 5 publications

Perceptions and dilemmas around cyber-security in a Spanish research center after a cyber-attack

Perceptions and dilemmas around cyber-security in a Spanish research center after a cyber-attack

Applying Empirical Thresholding Algorithm for a Keystroke Dynamics Based Authentication System

Contact Info

Product

Resources

About