Focusing on the Recovery Aspects of Cyber Resilience

2020 International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA) Pub Date : 2020-06-01 DOI:10.1109/CyberSA49311.2020.9139685

Cyril Onwubiko

{"title":"Focusing on the Recovery Aspects of Cyber Resilience","authors":"Cyril Onwubiko","doi":"10.1109/CyberSA49311.2020.9139685","DOIUrl":null,"url":null,"abstract":"Advances in technology and emerging cyber security tactics, techniques, and procedures (TTPs) are pillars for the ‘social good’ on the one hand. On the other hand, they have advanced the landscape for adversarial purposes, e.g., the increasing number of cyber incidents and data breaches. This realisation that cyber incidents cannot be completely avoidable has made cyber resilience an extremely important preposition of any comprehensive and reliable cyber security strategy. Despite the importance, very little contributions exist on cyber recovery1 – a core aspect of the cyber resilience, and cyber security standard. In this paper, we develop and present a comprehensive cyber recovery operational framework. An adaptive, robust framework that can be used as it is, or adapted by an organisation to create its own cyber recovery manual or operative. Each aspects of the framework are discussed thoroughly. Further, we show how a cutdown version of the framework is implemented, mindful that not all organisations are of the same size.1 Cyber recovery is used interchangeably with recovery, and in this paper the mean one and the same thing","PeriodicalId":354157,"journal":{"name":"2020 International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA)","volume":"17 04","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-06-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"8","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CyberSA49311.2020.9139685","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 8

Abstract

Advances in technology and emerging cyber security tactics, techniques, and procedures (TTPs) are pillars for the ‘social good’ on the one hand. On the other hand, they have advanced the landscape for adversarial purposes, e.g., the increasing number of cyber incidents and data breaches. This realisation that cyber incidents cannot be completely avoidable has made cyber resilience an extremely important preposition of any comprehensive and reliable cyber security strategy. Despite the importance, very little contributions exist on cyber recovery1 – a core aspect of the cyber resilience, and cyber security standard. In this paper, we develop and present a comprehensive cyber recovery operational framework. An adaptive, robust framework that can be used as it is, or adapted by an organisation to create its own cyber recovery manual or operative. Each aspects of the framework are discussed thoroughly. Further, we show how a cutdown version of the framework is implemented, mindful that not all organisations are of the same size.1 Cyber recovery is used interchangeably with recovery, and in this paper the mean one and the same thing

查看原文本刊更多论文

关注网络弹性的恢复方面

一方面，技术进步和新兴的网络安全策略、技术和程序(TTPs)是“社会公益”的支柱。另一方面，他们也为对抗目的推进了形势，例如，越来越多的网络事件和数据泄露。意识到网络事件不可能完全避免，使得网络弹性成为任何全面可靠的网络安全战略的一个极其重要的前提。尽管网络恢复很重要，但在网络恢复(网络弹性和网络安全标准的核心方面)方面的贡献却很少。在本文中，我们开发并提出了一个全面的网络恢复操作框架。一个自适应的、健壮的框架，可以按原样使用，也可以由组织进行调整，以创建自己的网络恢复手册或操作。对框架的各个方面进行了深入的讨论。此外，我们还展示了该框架的精简版本是如何实现的，并注意到并非所有组织都具有相同的规模网络恢复和恢复可以互换使用，在本文中它们的意思是一样的

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2020 International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA)

自引率

0.00%

发文量