Abstract
Strategic units at the various levels of the cyberspace, from the personal level to the world level, through the enterprise and the country levels, need to protect their information security. In this respect, cybersecurity metrics for such units are important for continuous monitoring, assessment, and response to the various security challenges that they may face. This paper explores the development of such metrics and provides a framework that establishes a common base for the development of such metrics for different strategic units. The paper identifies cybersecurity and strategic units; elaborates on cybersecurity issues; discusses strategic units’ cybersecurity problems that require metrics; introduces a generic framework for such metrics; and considers future use of the framework. The paper hopes to highlight the issue of cybersecurity metrics for strategic units, and to help researchers identify related problems for future work.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Merriam-Webster’s Dictionary, https://www.merriam-webster.com/dictionary/cyberspace, last accessed 2018/1/1
ITU-T X.1205: Overview of Cybersecurity, Series X: Data Networks, Open System Communications and Security, Telecommunication Security (2008)
ISO/IEC 27032: Guidelines for Cybersecurity, Information Technology-Security Techniques (2012)
NIST: A Framework for Improving Critical Infrastructure Cybersecurity. National Institute of Standards and Technology (2014)
Bakry, S.H.: Building the Culture of Responsibility into the Knowledge Society, Global Knowledge Society Forum. ARAMCO, Dhahran, Saudi Arabia (2013)
ISO/IEC 27000: Information Technology-Security Techniques-Information Security Management System—Overview and Vocabulary. International Standards Organization, Switzerland (2009)
CERT, Computer Emergency Response Team, Carniegie-Mellon University, https://www.cert.org/, last accessed 2018/1/1
ISO/IEC 27001: Information Security Management: System Requirements, Security Techniques. Information Technology, International Standards Organization, Switzerland (2013)
Uma, M., Padmavathi, G.: A survey on various cyber attacks and their classification. Int. J. Netw. Secur. 15(6), 391–397 (2013)
Bresciani, M., Gardner, M., Hickmott, J.: Demonstrating Student Success: A Practical Guide to Outcomes-Based Assessment of Learning and Development in Student Affairs. Stylus Publishing, Sterling, Virginia (2009)
HM Government, Small Business: What do you need to know about cybersecurity, UK (2015)
Biga, N., Jovanovic, M., Perkovic, M., Mitic, D.: Modern business environment: information technology as a shield against cyber security threats. In: Proceedings of the 8th International Conference on Business Information Security, BISEC 2016, Belgrade, Serbia (2016)
Statista (online): Statistics and studies from more that 18000 sources, https://www.statista.com/statistics/330695/number-of-smartphone-users-worldwide/, last accessed 2018/1/1
Wang, Y., Vangury, K., Nikolai, J.: MobileGuardian: a security policy enforcement framework for mobile devices. In: 2014 International Conference on Collaboration Technologies and Systems (CTS), pp. 197–202 (2014)
La Polla, M., Martinelli, F., Sgandurra, D.: A survey on security for mobile devices. IEEE Commun. Surv. Tutor. 15(1), 446–471 (2013)
Bakry, S.H.: Developing security policies for private networks. Int. J. Netw. Manag. 13(3), 203–210 (2003)
De Feo, J.A., Barnard, W.W.: Six-Sigma: Breakthrough and Beyond: Quality Performance Breakthrough Methods, Juran Institute. Mc-Graw-Hill, New York (2004)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2020 Springer Nature Switzerland AG
About this paper
Cite this paper
Arafah, M., Bakry, S.H., Al-Dayel, R., Faheem, O. (2020). Exploring Cybersecurity Metrics for Strategic Units: A Generic Framework for Future Work. In: Arai, K., Bhatia, R. (eds) Advances in Information and Communication. FICC 2019. Lecture Notes in Networks and Systems, vol 70. Springer, Cham. https://doi.org/10.1007/978-3-030-12385-7_60
Download citation
DOI: https://doi.org/10.1007/978-3-030-12385-7_60
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-12384-0
Online ISBN: 978-3-030-12385-7
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)