Check your blind spot: a new cyber-security metric for measuring incident response readiness

Benjamin Aziz; Ali Malik; Jeyong Jung

doi:10.1007/978-3-319-57858-3_3

Check your blind spot: a new cyber-security metric for measuring incident response readiness

Benjamin Aziz, Ali Malik, Jeyong Jung

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

1113 Downloads (Pure)

Abstract

This paper presents some ideas on defining and implementing a new Cyber-security risk metric for measuring the readiness of organisations, in terms of the availability of their resources, in dealing with new attack incidents launched against their infrastructures whilst recovering from ongoing incidents. Our new metric, the Mean Blind Spot, is defined as the average interval between the recovery time of an existing incident and the occurrence time of a new incident. It is therefore designed to capture those time intervals where the organisation is most vulnerable due to possible lack of available resources. We present an approach for implementing our new metric using open data on security incidents available from the VERIS community dataset.

Original language	English
Title of host publication	Proceedings of the 4th International Workshop on Risk Assessment and Risk-driven Testing
Subtitle of host publication	RISK 2016 Risk Assessment and Risk-driven Quality Assurance
Publisher	Springer
Pages	19-33
Number of pages	16
Volume	10224
DOIs	https://doi.org/10.1007/978-3-319-57858-3_3
Publication status	Early online - 25 Apr 2017
Event	4th International Workshop on Risk Assessment and Risk-driven Quality Assurance: RISK 2016 - Graz, Austria Duration: 18 Oct 2016 → …

Publication series

Name	Lecture Notes in Computer Science
ISSN (Print)	0302-9743

Workshop

Workshop	4th International Workshop on Risk Assessment and Risk-driven Quality Assurance
Country/Territory	Austria
City	Graz
Period	18/10/16 → …

Access to Document

10.1007/978-3-319-57858-3_3

A new cyber-security metric for measuring incident response readiness
The final publication is available at Springer via http://dx.doi.org/10.1007/978-3-319-57858-3_3.
Accepted author manuscript (Post-print), 421 KB

Cite this

Aziz, B., Malik, A., & Jung, J. (2017). Check your blind spot: a new cyber-security metric for measuring incident response readiness. In Proceedings of the 4th International Workshop on Risk Assessment and Risk-driven Testing: RISK 2016 Risk Assessment and Risk-driven Quality Assurance (Vol. 10224, pp. 19-33). (Lecture Notes in Computer Science). Springer. https://doi.org/10.1007/978-3-319-57858-3_3

@inproceedings{498c788dcde1414a8b740c3c165ee5a8,

title = "Check your blind spot: a new cyber-security metric for measuring incident response readiness",

abstract = "This paper presents some ideas on defining and implementing a new Cyber-security risk metric for measuring the readiness of organisations, in terms of the availability of their resources, in dealing with new attack incidents launched against their infrastructures whilst recovering from ongoing incidents. Our new metric, the Mean Blind Spot, is defined as the average interval between the recovery time of an existing incident and the occurrence time of a new incident. It is therefore designed to capture those time intervals where the organisation is most vulnerable due to possible lack of available resources. We present an approach for implementing our new metric using open data on security incidents available from the VERIS community dataset.",

author = "Benjamin Aziz and Ali Malik and Jeyong Jung",

year = "2017",

month = apr,

day = "25",

doi = "10.1007/978-3-319-57858-3_3",

language = "English",

volume = "10224",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "19--33",

booktitle = "Proceedings of the 4th International Workshop on Risk Assessment and Risk-driven Testing",

note = "4th International Workshop on Risk Assessment and Risk-driven Quality Assurance : RISK 2016 ; Conference date: 18-10-2016",

}

Aziz, B, Malik, A & Jung, J 2017, Check your blind spot: a new cyber-security metric for measuring incident response readiness. in Proceedings of the 4th International Workshop on Risk Assessment and Risk-driven Testing: RISK 2016 Risk Assessment and Risk-driven Quality Assurance. vol. 10224, Lecture Notes in Computer Science, Springer, pp. 19-33, 4th International Workshop on Risk Assessment and Risk-driven Quality Assurance, Graz, Austria, 18/10/16. https://doi.org/10.1007/978-3-319-57858-3_3

Check your blind spot: a new cyber-security metric for measuring incident response readiness. / Aziz, Benjamin; Malik, Ali; Jung, Jeyong.
Proceedings of the 4th International Workshop on Risk Assessment and Risk-driven Testing: RISK 2016 Risk Assessment and Risk-driven Quality Assurance. Vol. 10224 Springer, 2017. p. 19-33 (Lecture Notes in Computer Science).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Check your blind spot: a new cyber-security metric for measuring incident response readiness

AU - Aziz, Benjamin

AU - Malik, Ali

AU - Jung, Jeyong

PY - 2017/4/25

Y1 - 2017/4/25

N2 - This paper presents some ideas on defining and implementing a new Cyber-security risk metric for measuring the readiness of organisations, in terms of the availability of their resources, in dealing with new attack incidents launched against their infrastructures whilst recovering from ongoing incidents. Our new metric, the Mean Blind Spot, is defined as the average interval between the recovery time of an existing incident and the occurrence time of a new incident. It is therefore designed to capture those time intervals where the organisation is most vulnerable due to possible lack of available resources. We present an approach for implementing our new metric using open data on security incidents available from the VERIS community dataset.

AB - This paper presents some ideas on defining and implementing a new Cyber-security risk metric for measuring the readiness of organisations, in terms of the availability of their resources, in dealing with new attack incidents launched against their infrastructures whilst recovering from ongoing incidents. Our new metric, the Mean Blind Spot, is defined as the average interval between the recovery time of an existing incident and the occurrence time of a new incident. It is therefore designed to capture those time intervals where the organisation is most vulnerable due to possible lack of available resources. We present an approach for implementing our new metric using open data on security incidents available from the VERIS community dataset.

UR - https://www.fokus.fraunhofer.de/en/events/risk_2016

U2 - 10.1007/978-3-319-57858-3_3

DO - 10.1007/978-3-319-57858-3_3

M3 - Conference contribution

VL - 10224

T3 - Lecture Notes in Computer Science

SP - 19

EP - 33

BT - Proceedings of the 4th International Workshop on Risk Assessment and Risk-driven Testing

PB - Springer

T2 - 4th International Workshop on Risk Assessment and Risk-driven Quality Assurance

Y2 - 18 October 2016

ER -

Aziz B, Malik A, Jung J. Check your blind spot: a new cyber-security metric for measuring incident response readiness. In Proceedings of the 4th International Workshop on Risk Assessment and Risk-driven Testing: RISK 2016 Risk Assessment and Risk-driven Quality Assurance. Vol. 10224. Springer. 2017. p. 19-33. (Lecture Notes in Computer Science). Epub 2017 Apr 25. doi: 10.1007/978-3-319-57858-3_3

Check your blind spot: a new cyber-security metric for measuring incident response readiness

Abstract

Publication series

Workshop

Access to Document

Fingerprint

Cite this