Show simple item record

dc.contributor.authorOriola, Oluwafemi
dc.contributor.authorAdeyemo, Adesesan Barnabas
dc.contributor.authorPapadaki, Maria
dc.contributor.authorKotzé, Eduan
dc.date.accessioned2021-07-15T14:49:39Z
dc.date.available2021-07-15T14:49:39Z
dc.date.issued2021-06-28
dc.identifier.citationOriola, O., Adeyemo, A.B., Papadaki, M. and Kotzé, E., (2021). 'A collaborative approach for national cybersecurity incident management'. Information & Computer Security, pp 1-28.en_US
dc.identifier.issn2056-4961
dc.identifier.doi10.1108/ics-02-2020-0027
dc.identifier.urihttp://hdl.handle.net/10545/625883
dc.description.abstractCollaborative-based national cybersecurity incident management benefits from the huge size of incident information, large-scale information security devices and aggregation of security skills. However, no existing collaborative approach has been able to cater for multiple regulators, divergent incident views and incident reputation trust issues that national cybersecurity incident management presents. This paper aims to propose a collaborative approach to handle these issues cost-effectively. A collaborative-based national cybersecurity incident management architecture based on ITU-T X.1056 security incident management framework is proposed. It is composed of the cooperative regulatory unit with cooperative and third-party management strategies and an execution unit, with incident handling and response strategies. Novel collaborative incident prioritization and mitigation planning models that are fit for incident handling in national cybersecurity incident management are proposed. Use case depicting how the collaborative-based national cybersecurity incident management would function within a typical information and communication technology ecosystem is illustrated. The proposed collaborative approach is evaluated based on the performances of an experimental cyber-incident management system against two multistage attack scenarios. The results show that the proposed approach is more reliable compared to the existing ones based on descriptive statistics. The approach produces better incident impact scores and rankings than standard tools. The approach reduces the total response costs by 8.33% and false positive rate by 97.20% for the first attack scenario, while it reduces the total response costs by 26.67% and false positive rate by 78.83% for the second attack scenario.en_US
dc.description.sponsorshipN/Aen_US
dc.language.isoenen_US
dc.publisherEmeralden_US
dc.relation.urlhttps://www.emerald.com/insight/content/doi/10.1108/ICS-02-2020-0027/full/htmlen_US
dc.rights.urihttps://www.emerald.com/insight/site-policies
dc.subjectManagement of Technology and Innovationen_US
dc.subjectInformation Systems and Managementen_US
dc.subjectComputer Networks and Communicationsen_US
dc.subjectInformation Systemsen_US
dc.subjectSoftwareen_US
dc.subjectManagement Information Systemsen_US
dc.subjectinformation securityen_US
dc.subjectincident managementen_US
dc.subjectnational cybersecurityen_US
dc.subjectincident handling and responseen_US
dc.titleA collaborative approach for national cybersecurity incident managementen_US
dc.typeArticleen_US
dc.contributor.departmentuniversity of Plymouthen_US
dc.contributor.departmentUniversity of Ibadan, Ibadan, Nigeriaen_US
dc.contributor.departmentUniversity of the Free State, Bloemfontein, South Africaen_US
dc.identifier.journalInformation and Computer Securityen_US
dc.source.journaltitleInformation & Computer Security
dc.source.volumeahead-of-print
dc.source.issueahead-of-print
dcterms.dateAccepted2020-11-25
refterms.dateFOA2021-07-15T14:49:40Z
dc.author.detail300833en_US


Files in this item

Thumbnail
Name:
PDF_Proof (1).PDF
Size:
986.2Kb
Format:
PDF
Description:
Accepted Manuscript

This item appears in the following Collection(s)

Show simple item record