Abstract
Risk analysis and management are of fundamental importance in cybersecurity. The core elements of risk are threat, vulnerability, and impact. Risk management has a basis in cybersecurity technical policies, procedures, and practices. Dimensions of risk are also at higher levels, with major interconnections in issues of international relations and trade, safety, economic vitality, health, and human life. The work of this paper is focused on risk and closely related concepts. Details and analyses that pertain to security of cyber-physical systems and the role of intrusion detection and machine learning methodologies are included.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
Wolff, J. (2020, December 16). What we do and don’t know about the massive federal government hack. Slate Archive.
Kanoun, W., Cuppens-Boulahia, N., Cuppens, F., & Autrel, F. (2007). Advanced reaction using risk assessment in intrusion detection systems. In Proceedings of the International Workshop on Critical Information Infrastructures Security.
National Vulnerability Database. Retrieved December 20, 2020, from https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator
Chowdhury, A., Karmakar, G., Kamruzzaman, J., Jolfaei, A., & Das, R. (2020). Attacks on self-driving cars and their countermeasures: A survey. IEEE Access, 8, 207308–207342.
Zaidi, T., & Faisal, S. (2018). An overview: Various attacks in VANET. In Proceedings of the 4th International Conference on Computing Communication and Automation (ICCCA).
Hezam Al Junaid, M., Syed, A., Mohd Warip, M., Fazira Ku Azir, K., & Romli, N. (2018). Classification of security attacks in VANET: A review of requirements and perspectives. In MATEC Web of Conferences (Vol. 150).
Malebary, S., & Xu, W. (2015). A survey on jamming in VANET. International Journal of Scientific Research and Innovative Technology, 2(1).
Xu, W., Yan, C., Jia, W., Ji, X., & Liu, J. (2018). Analyzing and enhancing the security of ultrasonic sensors for autonomous vehicles. IEEE Internet of Things Journal, 5(6).
Bilge, L., & DumitraÅŸ, T. (2012). Before we knew it: An empirical study of zero-day attacks in the real world. In Proceedings of the 2012 ACM Conference on Computer and Communications Security.
Ahsan, M., Gomes, R., & Denton, A. (2018). Smote implementation on phishing data to enhance cybersecurity. In Proceedings of the IEEE International Conference on Electro/Information Technology (EIT).
Ramzan, Z. (2010). Phishing attacks and countermeasures. In Handbook of information and communication security.
Vallivaara, V. A., Sailio, M., & Halunen, K. (2014). Detecting man-in-the-middle attacks on non-mobile systems. In Proceedings of the 4th ACM conference on Data and Application Security and Privacy.
Ahsan, M., & Nygard, K. E. (2020, March). Convolutional neural networks with LSTM for intrusion detection. In Proceedings of the 34th International Conference on Computers and Their Applications.
Bose, S., & Kannan, A. (2008). Detecting denial of service attacks using cross layer based intrusion detection system in wireless ad hoc networks. In Proceedings of the IEEE International Conference on Signal Processing, Communications and Networking.
Tajpour, A., & Shooshtari, M. J. (2010). Evaluation of SQL injection detection and prevention techniques. In Proceedings of the IEEE 2nd International Conference on Computational Intelligence, Communication Systems and Networks
Ahmed, M. R., Kim, H., & Park, M. (2017). Mitigating DNS query-based DDoS attacks with machine learning on software-defined networking. In Proceedings of the IEEE MILCOM Military Communications Conference.
Gomes, R., Ahsan, M., & Denton, A. (2018). Random forest classifier in SDN framework for user-based indoor localization. In Proceedings of the IEEE International Conference on Electro/Information Technology (EIT).
Engelstad, P., Feng, B., & van Do, T. (2017). Detection of DNS tunneling in mobile networks using machine learning. In Proceedings of the International Conference on Information Science and Applications.
Rastogi, A., & Nygard, K. E. (2019). Trust and security in intelligent autonomous systems. International Journal of Computers and their Applications, 26(1).
Abueh, Y. J., & Liu, H. (2016). Message authentication in driverless cars. In Proceedings of the IEEE Symposium on Technologies for Homeland Security (HST).
Alheeti, K. M. A., & McDonald-Maier, K. (2016). Hybrid intrusion detection in connected self-driving vehicles. In Proceedings of the 22nd International Conference on Automation and Computing (ICAC).
Boggs, A., Wali, B., & Khattak, A. (2020). Exploratory analysis of automated vehicle crashes in California: A text analytics & hierarchical Bayesian heterogeneity-based approach. Accident Analysis & Prevention, 135.
Das, S., Dutta, A., & Tsapakis, I. (2020). Automated vehicle collisions in California: Applying Bayesian latent class model. IATSS Research, 44, 300–308.
Dixit, V., Chand, S., & Nair, D. (2016). Autonomous vehicles: Disengagements, accidents and reaction times. PLoS One, 11(12).
Ometov, A., Bezzateev, S., Mäkitalo, N., Andreev, S., Mikkonen, T., & Koucheryavy, Y. (2018). Multi-factor authentication: A survey. Cryptography, 2(1).
Chowdhury, M., & Nygard, K. (2018). Machine learning within a con resistant trust model. In Proceedings of the 33rd International Conference on Computers and their Applications.
Soniya, S. S., & Vigila, S. M. C. (2016). Intrusion detection system: Classification and techniques. In Proceedings of the IEEE International Conference on Circuit, Power and Computing Technologies (ICCPCT).
Alamiedy, T. A., Anbar, M., Alqattan, Z. N. M., et al. (2020). Anomaly-based intrusion detection system using multi-objective grey wolf optimization algorithm. Journal of Ambient Intelligent Human Computing, 11.
Ahmad, Z., Khan, A. S., Shiang, C. W., Abdullah, J., & Ahmad, F. (2020). Network intrusion detection system: A systematic study of machine learning and deep learning approaches. Transactions on Emerging Telecommunication Technologies.
Janardhanan, P. S. Human Learning and Machine Learning—How they differ? Retrieved December 2020, from https://www.datasciencecentral.com/profiles/blogs/human-learning-and-machine-learning-how-they-differ
Tuncali, C. E., Fainekos, G., Prokhorov, D., Ito, H., & Kapinski, J. (2020). Requirements-driven test generation for autonomous vehicles with machine learning components. IEEE Transaction on Intelligent Vehicles, 5.
Ors, A. O. (2020, January). The role of machine learning in autonomous vehicles. Retrieved January 2021, from https://www.electronicdesign.com/markets/automotive/article/21147200/nxp-semiconductors-the-role-of-machine-learning-in-autonomous-vehicles
Denton, A. M., Ahsan, M., Franzen, D., & Nowatzki, J. (2016). Multi-scalar analysis of geospatial agricultural data for sustainability. In Proceedings of the IEEE International Conference on Big Data.
Brownlee, J. (2019). A tour of machine learning algorithms. Retrieved December 2020, from https://machinelearningmastery.com/a-tour-of-machine-learning-algorithms
Li, J., & Liu, H. (2017). Challenges of feature selection for big data analytics. IEEE Intelligent Systems, 32(2).
Ahsan, M., Gomes, R., & Denton, A. (2019). Application of a convolutional neural network using transfer learning for tuberculosis detection. In Proceedings of the IEEE International Conference on Electro Information Technology (EIT).
Pavlenco, T. (2003). On feature selection, curse-of-dimensionality and error probability in discriminant analysis. Journal of Statistical Planning and Inference, 115(2).
Zadeh, L. A. (1996). Fuzzy sets, Fuzzy logic, Fuzzy systems. World Scientific Press.
Salome, J., & Ravishankar, R. (2007). Fuzzy data mining and genetic algorithms applied to intrusion detection. i-manager’s Journal on Software Engineering, 1(4).
Tajbakhsh, A., Rahmati, M., & Mirzaei, A. (2009). Intrusion detection using Fuzzy association rules. Applied Soft Computing, 9(2).
Shanmugam, B., & Idris, N. B. (2009). Improved intrusion detection system using fuzzy logic for detecting anomaly and misuse type of attacks. In Proceedings of the IEEE International Conference of Soft Computing and Pattern Recognition.
Yao, J. T., Zhao, S. I., & Saxton, L. V. (2005). A study on Fuzzy intrusion detection. In Data Mining, Intrusion Detection, Information Assurance, and Data Networks Security, International Society for Optics and Photonics (Vol. 5812).
Dickerson, J. E., & Dickerson, J. A. (2000). Fuzzy network profiling for intrusion detection. In Proceedings of the IEEE 19th International Conference of the North American Fuzzy Information Processing Society-NAFIPS.
Shanmugavadivu, R., & Nagarajan, N. (2011). Network intrusion detection system using Fuzzy logic. Indian Journal of Computer Science and Engineering (IJCSE), 2(1).
Greitzer, F. L., & Frincke, D. A. (2010). Combining traditional cyber security audit data with psychosocial data: Towards predictive modeling for insider threat mitigation. In Insider threats in cyber security. Springer.
Ren, K., Wang, Q., Wang, C., Qin, Z., & Lin, X. (2020). The security of autonomous driving: Threats, defenses, and future directions. Proceedings of the IEEE, 108(2).
Sokri, A. (2018). Optimal resource allocation in cyber-security: A game theoretic Approach. Procedia Computer Science, 134.
Khiabani, V., Erdem, K., Farahmand, K., & Nygard, K. E. (2014). Smart grid PMU allocation using genetic algorithm. Journal of Network and Innovative Computing, 2.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2021 The Author(s), under exclusive license to Springer Nature Switzerland AG
About this chapter
Cite this chapter
Nygard, K.E., Rastogi, A., Ahsan, M., Satyal, R. (2021). Dimensions of Cybersecurity Risk Management. In: Daimi, K., Peoples, C. (eds) Advances in Cybersecurity Management. Springer, Cham. https://doi.org/10.1007/978-3-030-71381-2_17
Download citation
DOI: https://doi.org/10.1007/978-3-030-71381-2_17
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-71380-5
Online ISBN: 978-3-030-71381-2
eBook Packages: Computer ScienceComputer Science (R0)