Reference Ontology for Cybersecurity Operational Information

Takahashi, Takeshi; Kadobayashi, Youki

doi:10.1093/comjnl/bxu101

Cited by 37 publications

(26 citation statements)

References 29 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…By separating the information structure into 2 parts, we can keep the category part static while allowing changes to the format part. We used the categories defined in the reference ontology, since they are at an abstract level rather than a concrete or schema level. Likewise, we have used industry specifications for the formats so that we can add new schemata in the future.…”

Section: Discussion and Analysismentioning

confidence: 99%

“…A reference ontology for cybersecurity operational information is presented in Takahashi and Kadobayashi, which appears in ITU‐T Recommendation X.1500 . It was built in close collaboration with organizations that actually consume the information.…”

Section: Related Workmentioning

confidence: 99%

“…The information structure of the metadata manages the category and format of the information separately, and the category and format are linked with each other to incorporate different schemata and maintain extensibility. We used the information types defined by the cybersecurity information ontology for the category, while we used industry specifications defining XML schemata for the format. At present, the categories incorporate the formats shown in Table .…”

Section: Information Structurementioning

confidence: 99%

“…This structure consists of categories and formats that are linked to each other. It uses the reference ontology from Takahashi and Kadobayashi for the categories and industry specifications defining XML schemata for the formats. It makes the mechanism flexible enough to handle schema differences that exist among various information sources and extensible enough to cope with future specifications that define new information schemata.…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Web of cybersecurity: Linking, locating, and discovering structured cybersecurity information

Takahashi

Panta

Kadobayashi

et al. 2017

Int J Communication

Self Cite

View full text Add to dashboard Cite

SummaryCybersecurity is one of the main concerns of many organizations today, and accessibility to cybersecurity information in a timely manner is crucial to maintaining cybersecurity. Various repositories of cybersecurity-related information are publicly available on the Internet. However, users are unaware of many of them, and it is impractical for them to keep track of all of them. Cybersecurity information stored in these repositories must be able to be located and accessed by the parties who need it. To address this issue, this paper proposes a mechanism of linking, locating, and discovering various cybersecurity information to improve its accessibility in a timely manner. This mechanism allows us to locate various cybersecurity information having different schemata by generating metadata with which a list of cybersecurity information is managed. The information structure incorporated in this mechanism is unique, and it makes our mechanism flexible and extensible. The structure consists of categories and formats that are linked to each other. The mechanism can propagate information updates to minimize the risk of obsolete information. This paper also introduces a prototype of the mechanism to demonstrate its feasibility, and it analyzes the mechanism's extensibility, scalability, and information credibility. Through this study, we aim to improve the accessibility of cybersecurity information on the Internet and facilitate information sharing beyond organizational borders, with the eventual goal of creating a web of cybersecurity.

show abstract

Section: Discussion and Analysismentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Information Structurementioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Web of cybersecurity: Linking, locating, and discovering structured cybersecurity information

Takahashi

Panta

Kadobayashi

et al. 2017

Int J Communication

Self Cite

View full text Add to dashboard Cite

show abstract

“…Takahashi and Kadobayashi provide a reference ontology for cybersecurity information and look at cybersecuirty threats from the standpoint of cybersecurity operations [13]. The security systems fail if the professionals responsible for the cybersecurity operations of organization do not respond effectively to the threats.…”

Section: Introductionmentioning

confidence: 99%

An e-ADR (elaborated Action Design Research) Approach Towards Game-based Learning in Cybersecurity Incident Detection and Handling

Rajendran¹,

P²

2020

Proceedings of the Annual Hawaii International Conference on System Sciences

View full text Add to dashboard Cite

The growth of internet has significantly increased the cybersecurity threat instances. Therefore to equip people with skills to mitigate such attacks, this paper provides a Cybersecurity game-based learning artefact designed using the e-ADR approach. The artefact teaches the Incident Detection and Handling procedures that need to be undertaken in the event of a cybersecurity threat. As per NIST's guide to malware incident prevention and handling, an incident response process has four major phases: preparation, detection and analysis, containment/eradication/recovery, and post-incident activity. Our gaming artefact delves into the detection and containment phase to design a game that teaches users to detect and then perform containment actions on the cybersecurity threat.

show abstract

Definitions, Typologies, Taxonomies and Ontologies of Cybersecurity

2020

Cybersecurity in Humanities and Social Sciences

View full text Add to dashboard Cite

Reference Ontology for Cybersecurity Operational Information

Cited by 37 publications

References 29 publications

Web of cybersecurity: Linking, locating, and discovering structured cybersecurity information

Web of cybersecurity: Linking, locating, and discovering structured cybersecurity information

An e-ADR (elaborated Action Design Research) Approach Towards Game-based Learning in Cybersecurity Incident Detection and Handling

Definitions, Typologies, Taxonomies and Ontologies of Cybersecurity

Contact Info

Product

Resources

About