Skip to main content
SpringerLink
Log in

Dimensions of Cybersecurity Risk Management

  • Chapter
  • First Online:
Advances in Cybersecurity Management

Abstract

Risk analysis and management are of fundamental importance in cybersecurity. The core elements of risk are threat, vulnerability, and impact. Risk management has a basis in cybersecurity technical policies, procedures, and practices. Dimensions of risk are also at higher levels, with major interconnections in issues of international relations and trade, safety, economic vitality, health, and human life. The work of this paper is focused on risk and closely related concepts. Details and analyses that pertain to security of cyber-physical systems and the role of intrusion detection and machine learning methodologies are included.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
eBook
USD 16.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 69.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info
Hardcover Book
USD 99.99
Price excludes VAT (USA)
  • Durable hardcover edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Similar content being viewed by others

References

  1. Wolff, J. (2020, December 16). What we do and don’t know about the massive federal government hack. Slate Archive.

    Google Scholar 

  2. Kanoun, W., Cuppens-Boulahia, N., Cuppens, F., & Autrel, F. (2007). Advanced reaction using risk assessment in intrusion detection systems. In Proceedings of the International Workshop on Critical Information Infrastructures Security.

    Google Scholar 

  3. National Vulnerability Database. Retrieved December 20, 2020, from https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator

  4. Chowdhury, A., Karmakar, G., Kamruzzaman, J., Jolfaei, A., & Das, R. (2020). Attacks on self-driving cars and their countermeasures: A survey. IEEE Access, 8, 207308–207342.

    Article  Google Scholar 

  5. Zaidi, T., & Faisal, S. (2018). An overview: Various attacks in VANET. In Proceedings of the 4th International Conference on Computing Communication and Automation (ICCCA).

    Google Scholar 

  6. Hezam Al Junaid, M., Syed, A., Mohd Warip, M., Fazira Ku Azir, K., & Romli, N. (2018). Classification of security attacks in VANET: A review of requirements and perspectives. In MATEC Web of Conferences (Vol. 150).

    Google Scholar 

  7. Malebary, S., & Xu, W. (2015). A survey on jamming in VANET. International Journal of Scientific Research and Innovative Technology, 2(1).

    Google Scholar 

  8. Xu, W., Yan, C., Jia, W., Ji, X., & Liu, J. (2018). Analyzing and enhancing the security of ultrasonic sensors for autonomous vehicles. IEEE Internet of Things Journal, 5(6).

    Google Scholar 

  9. Bilge, L., & DumitraÅŸ, T. (2012). Before we knew it: An empirical study of zero-day attacks in the real world. In Proceedings of the 2012 ACM Conference on Computer and Communications Security.

    Google Scholar 

  10. Ahsan, M., Gomes, R., & Denton, A. (2018). Smote implementation on phishing data to enhance cybersecurity. In Proceedings of the IEEE International Conference on Electro/Information Technology (EIT).

    Google Scholar 

  11. Ramzan, Z. (2010). Phishing attacks and countermeasures. In Handbook of information and communication security.

    Google Scholar 

  12. Vallivaara, V. A., Sailio, M., & Halunen, K. (2014). Detecting man-in-the-middle attacks on non-mobile systems. In Proceedings of the 4th ACM conference on Data and Application Security and Privacy.

    Google Scholar 

  13. Ahsan, M., & Nygard, K. E. (2020, March). Convolutional neural networks with LSTM for intrusion detection. In Proceedings of the 34th International Conference on Computers and Their Applications.

    Google Scholar 

  14. Bose, S., & Kannan, A. (2008). Detecting denial of service attacks using cross layer based intrusion detection system in wireless ad hoc networks. In Proceedings of the IEEE International Conference on Signal Processing, Communications and Networking.

    Google Scholar 

  15. Tajpour, A., & Shooshtari, M. J. (2010). Evaluation of SQL injection detection and prevention techniques. In Proceedings of the IEEE 2nd International Conference on Computational Intelligence, Communication Systems and Networks

    Google Scholar 

  16. Ahmed, M. R., Kim, H., & Park, M. (2017). Mitigating DNS query-based DDoS attacks with machine learning on software-defined networking. In Proceedings of the IEEE MILCOM Military Communications Conference.

    Google Scholar 

  17. Gomes, R., Ahsan, M., & Denton, A. (2018). Random forest classifier in SDN framework for user-based indoor localization. In Proceedings of the IEEE International Conference on Electro/Information Technology (EIT).

    Google Scholar 

  18. Engelstad, P., Feng, B., & van Do, T. (2017). Detection of DNS tunneling in mobile networks using machine learning. In Proceedings of the International Conference on Information Science and Applications.

    Google Scholar 

  19. Rastogi, A., & Nygard, K. E. (2019). Trust and security in intelligent autonomous systems. International Journal of Computers and their Applications, 26(1).

    Google Scholar 

  20. Abueh, Y. J., & Liu, H. (2016). Message authentication in driverless cars. In Proceedings of the IEEE Symposium on Technologies for Homeland Security (HST).

    Google Scholar 

  21. Alheeti, K. M. A., & McDonald-Maier, K. (2016). Hybrid intrusion detection in connected self-driving vehicles. In Proceedings of the 22nd International Conference on Automation and Computing (ICAC).

    Google Scholar 

  22. Boggs, A., Wali, B., & Khattak, A. (2020). Exploratory analysis of automated vehicle crashes in California: A text analytics & hierarchical Bayesian heterogeneity-based approach. Accident Analysis & Prevention, 135.

    Google Scholar 

  23. Das, S., Dutta, A., & Tsapakis, I. (2020). Automated vehicle collisions in California: Applying Bayesian latent class model. IATSS Research, 44, 300–308.

    Article  Google Scholar 

  24. Dixit, V., Chand, S., & Nair, D. (2016). Autonomous vehicles: Disengagements, accidents and reaction times. PLoS One, 11(12).

    Google Scholar 

  25. Ometov, A., Bezzateev, S., Mäkitalo, N., Andreev, S., Mikkonen, T., & Koucheryavy, Y. (2018). Multi-factor authentication: A survey. Cryptography, 2(1).

    Google Scholar 

  26. Chowdhury, M., & Nygard, K. (2018). Machine learning within a con resistant trust model. In Proceedings of the 33rd International Conference on Computers and their Applications.

    Google Scholar 

  27. Soniya, S. S., & Vigila, S. M. C. (2016). Intrusion detection system: Classification and techniques. In Proceedings of the IEEE International Conference on Circuit, Power and Computing Technologies (ICCPCT).

    Google Scholar 

  28. Alamiedy, T. A., Anbar, M., Alqattan, Z. N. M., et al. (2020). Anomaly-based intrusion detection system using multi-objective grey wolf optimization algorithm. Journal of Ambient Intelligent Human Computing, 11.

    Google Scholar 

  29. Ahmad, Z., Khan, A. S., Shiang, C. W., Abdullah, J., & Ahmad, F. (2020). Network intrusion detection system: A systematic study of machine learning and deep learning approaches. Transactions on Emerging Telecommunication Technologies.

    Google Scholar 

  30. Janardhanan, P. S. Human Learning and Machine Learning—How they differ? Retrieved December 2020, from https://www.datasciencecentral.com/profiles/blogs/human-learning-and-machine-learning-how-they-differ

  31. Tuncali, C. E., Fainekos, G., Prokhorov, D., Ito, H., & Kapinski, J. (2020). Requirements-driven test generation for autonomous vehicles with machine learning components. IEEE Transaction on Intelligent Vehicles, 5.

    Google Scholar 

  32. Ors, A. O. (2020, January). The role of machine learning in autonomous vehicles. Retrieved January 2021, from https://www.electronicdesign.com/markets/automotive/article/21147200/nxp-semiconductors-the-role-of-machine-learning-in-autonomous-vehicles

  33. Denton, A. M., Ahsan, M., Franzen, D., & Nowatzki, J. (2016). Multi-scalar analysis of geospatial agricultural data for sustainability. In Proceedings of the IEEE International Conference on Big Data.

    Google Scholar 

  34. Brownlee, J. (2019). A tour of machine learning algorithms. Retrieved December 2020, from https://machinelearningmastery.com/a-tour-of-machine-learning-algorithms

  35. Li, J., & Liu, H. (2017). Challenges of feature selection for big data analytics. IEEE Intelligent Systems, 32(2).

    Google Scholar 

  36. Ahsan, M., Gomes, R., & Denton, A. (2019). Application of a convolutional neural network using transfer learning for tuberculosis detection. In Proceedings of the IEEE International Conference on Electro Information Technology (EIT).

    Google Scholar 

  37. Pavlenco, T. (2003). On feature selection, curse-of-dimensionality and error probability in discriminant analysis. Journal of Statistical Planning and Inference, 115(2).

    Google Scholar 

  38. Zadeh, L. A. (1996). Fuzzy sets, Fuzzy logic, Fuzzy systems. World Scientific Press.

    Book  Google Scholar 

  39. Salome, J., & Ravishankar, R. (2007). Fuzzy data mining and genetic algorithms applied to intrusion detection. i-manager’s Journal on Software Engineering, 1(4).

    Google Scholar 

  40. Tajbakhsh, A., Rahmati, M., & Mirzaei, A. (2009). Intrusion detection using Fuzzy association rules. Applied Soft Computing, 9(2).

    Google Scholar 

  41. Shanmugam, B., & Idris, N. B. (2009). Improved intrusion detection system using fuzzy logic for detecting anomaly and misuse type of attacks. In Proceedings of the IEEE International Conference of Soft Computing and Pattern Recognition.

    Google Scholar 

  42. Yao, J. T., Zhao, S. I., & Saxton, L. V. (2005). A study on Fuzzy intrusion detection. In Data Mining, Intrusion Detection, Information Assurance, and Data Networks Security, International Society for Optics and Photonics (Vol. 5812).

    Google Scholar 

  43. Dickerson, J. E., & Dickerson, J. A. (2000). Fuzzy network profiling for intrusion detection. In Proceedings of the IEEE 19th International Conference of the North American Fuzzy Information Processing Society-NAFIPS.

    Google Scholar 

  44. Shanmugavadivu, R., & Nagarajan, N. (2011). Network intrusion detection system using Fuzzy logic. Indian Journal of Computer Science and Engineering (IJCSE), 2(1).

    Google Scholar 

  45. Greitzer, F. L., & Frincke, D. A. (2010). Combining traditional cyber security audit data with psychosocial data: Towards predictive modeling for insider threat mitigation. In Insider threats in cyber security. Springer.

    Google Scholar 

  46. Ren, K., Wang, Q., Wang, C., Qin, Z., & Lin, X. (2020). The security of autonomous driving: Threats, defenses, and future directions. Proceedings of the IEEE, 108(2).

    Google Scholar 

  47. Sokri, A. (2018). Optimal resource allocation in cyber-security: A game theoretic Approach. Procedia Computer Science, 134.

    Google Scholar 

  48. Khiabani, V., Erdem, K., Farahmand, K., & Nygard, K. E. (2014). Smart grid PMU allocation using genetic algorithm. Journal of Network and Innovative Computing, 2.

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. North Dakota State University, Fargo, ND, USA

    Kendall E. Nygard, Aakanksha Rastogi, Mostofa Ahsan & Rashmi Satyal

Authors
  1. Kendall E. Nygard
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Aakanksha Rastogi
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Mostofa Ahsan
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Rashmi Satyal
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Kendall E. Nygard .

Editor information

Editors and Affiliations

  1. University of Detroit Mercy, Detroit, MI, USA

    Kevin Daimi

  2. Ulster University, Newtownabbey, UK

    Cathryn Peoples

Rights and permissions

Reprints and permissions

Copyright information

© 2021 The Author(s), under exclusive license to Springer Nature Switzerland AG

About this chapter

Check for updates. Verify currency and authenticity via CrossMark

Cite this chapter

Nygard, K.E., Rastogi, A., Ahsan, M., Satyal, R. (2021). Dimensions of Cybersecurity Risk Management. In: Daimi, K., Peoples, C. (eds) Advances in Cybersecurity Management. Springer, Cham. https://doi.org/10.1007/978-3-030-71381-2_17

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-71381-2_17

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-71380-5

  • Online ISBN: 978-3-030-71381-2

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation