Towards a Security Impact Analysis Framework: A Risk-Based and MITRE Attack Approach

Belfadel, Abdelhadi; Boyer, Martin; Letailleur, Jérôme; Petiot, Yohann; Yaich, Mohamed Reda

doi:10.1007/978-3-031-25460-4_12

Cited by 3 publications

(5 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…There are promising avenues for enhancing cyber risk management elicitation processes through a socio-technical approach and fostering a culture of cybersecurity within an organisation supported by a security operational centre (SOC) [79]. Avenues for expansion to international collaboration are essential to develop a common Cyber Threat Intelligence for cadastral data, with medium-term development of tactics, techniques, and procedures (TTP) [88] based on MITRE ATT&CK [89,90] and their sharing between LAS, and with the long-term goal of building dedicated regional and international Computer Security Incident Response Team (CSIRT) Land Administration, as advocated by UNECE [91,92], integrated in multi-stakeholder structure diplomacy for cybersecurity [93].…”

Section: Discussionmentioning

confidence: 99%

A Methodological Approach towards Cyber Risk Management in Land Administrations Systems

Blin,

Aditya,

Santosa

et al. 2023

Land

View full text Add to dashboard Cite

Cybersecurity risk management in land administration systems is crucial for maintaining the integrity of spatial cadastral data, which faces increasing threats owing to the digital transformation of LAS. This research validates the findings of this preliminary step in the form of a cyber risk management methodology that combines BPMN 2.0 with model business processes implemented by a compliance-based approach using EBIOS Risk Manager. A practical case of land parcel subdivision in Indonesia is analysed to serve as a proof of concept for our proposed methodology. Vulnerabilities are identified and are characterised by a concentration of manual tasks and the absence of systematic controls, resulting in significant risks to data integrity. These findings underscore the urgent need for a proactive approach to strengthen the cyber resilience of LAS. This study attempts to develop a fit-for-purpose reference methodology for cyber risk management specifically tailored to LAS to identify and treat vulnerabilities, threats, risks, and impacts.

show abstract

Section: Discussionmentioning

confidence: 99%

A Methodological Approach towards Cyber Risk Management in Land Administrations Systems

Blin,

Aditya,

Santosa

et al. 2023

Land

View full text Add to dashboard Cite

show abstract

“…However, the described methodology does not account explicitly for cyber threat intelligence information and accounts only for vulnerabilities and threat correlation. In [46], a framework is proposed to utilize the MITRE ATT&CK knowledge base in the risk assessment to provide sufficient evidence during the development lifecycle. The framework describes workflows to create strategic, operational, and technical scenarios based on the EBIOS methodology, with explicit consideration for cyber threat intelligence and its continuous information feeds.…”

Section: Cyber Threat Intelligence and Cyber Risk Management Integrationmentioning

confidence: 99%

“…Moreover, with the scenario-based risk evaluation, it incorporates strategic and operational attack paths, that are identified based on threat actors objectives and the existing scope. These attack paths can be constructed based on threat actors' behaviors, as in [46], by considering threat intelligence information. These enhancements improve accuracy and provide realistic results, enhancing risk assessment scenarios and treatment.…”

Section: The Proposed Enhanced Cyber Threat Intelligence Integrated E...mentioning

confidence: 99%

“…Although it dynamically considers new technical information, mainly vulnerabilities, to adapt to analyzed risks, it does not account for other types of new threat intelligence information. SAIF [46] and the Unified Approach Model [47] integrate threat intelligence in cyber risk management but without addressing the adaptation of risks based on new threat intelligence. For instance, the approach of SAIF [46] can be used in phases three and four of our proposed framework to ensure the incorporation of the MITRE knowledge base in the definition of scenarios.…”

Section: Comparative Analysismentioning

confidence: 99%

“…SAIF [46] and the Unified Approach Model [47] integrate threat intelligence in cyber risk management but without addressing the adaptation of risks based on new threat intelligence. For instance, the approach of SAIF [46] can be used in phases three and four of our proposed framework to ensure the incorporation of the MITRE knowledge base in the definition of scenarios. The proposed framework in [48] drives a national risk assessment based on a national vulnerabilities inventory.…”

Section: Comparative Analysismentioning

confidence: 99%

See 2 more Smart Citations

An Integrated Approach to Cyber Risk Management with Cyber Threat Intelligence Framework to Secure Critical Infrastructure

El Amin,

Samhat,

Chamoun

et al. 2024

JCP

View full text Add to dashboard Cite

Emerging cyber threats’ sophistication, impact, and complexity rapidly evolve, confronting organizations with demanding challenges. This severe escalation requires a deeper understanding of adversary dynamics to develop enhanced defensive strategies and capabilities. Cyber threat actors’ advanced techniques necessitate a proactive approach to managing organizations’ risks and safeguarding cyberspace. Cyber risk management is one of the most efficient measures to anticipate cyber threats. However, it often relies on organizations’ contexts and overlooks adversaries, their motives, capabilities, and tactics. A new cyber risk management framework incorporating emergent information about the dynamic threat landscape is needed to overcome these limitations and bridge the knowledge gap between adversaries and security practitioners. Such information is the product of a cyber threat intelligence process that proactively delivers knowledge about cyber threats to inform decision-making and strengthen defenses. In this paper, we overview risk management and threat intelligence frameworks. Then, we highlight the necessity of integrating cyber threat intelligence and assessment in cyber risk management. After that, we propose a novel risk management framework with integrated threat intelligence on top of EBIOS Risk Manager. Finally, we apply the proposed framework in the scope of a national telecommunications organization.

show abstract

Toward Effective Evaluation of Cyber Defense: Threat Based Adversary Emulation Approach

et al. 2023

View full text Add to dashboard Cite

Towards a Security Impact Analysis Framework: A Risk-Based and MITRE Attack Approach

Cited by 3 publications

References 20 publications

A Methodological Approach towards Cyber Risk Management in Land Administrations Systems

A Methodological Approach towards Cyber Risk Management in Land Administrations Systems

An Integrated Approach to Cyber Risk Management with Cyber Threat Intelligence Framework to Secure Critical Infrastructure

Toward Effective Evaluation of Cyber Defense: Threat Based Adversary Emulation Approach

Contact Info

Product

Resources

About