Menges, Florian and Pernul, Guenther (2018) A comparative analysis of incident reporting formats. COMPUTERS & SECURITY, 73. pp. 87-101. ISSN 0167-4048, 1872-6208
Full text not available from this repository. (Request a copy)Abstract
Over the past few years, the number of attacks against IT systems and the resulting incidents has steadily increased. To protect against these attacks, joint approaches, which include the sharing of incident information, are increasingly gaining in importance. Several incident reporting formats build the basis for information sharing. However, it is often not clear how to design the underlying processes and which formats would fit the specific use cases. To close this gap, we have introduced an incident reporting process model and the generic model UPSIDE for basic incident reporting requirements. Subsequently, we have identified state-of-the-art incident reporting formats and used the introduced models to conduct a comparative analysis of these formats. This analysis shows the strengths and weaknesses of the evaluated formats and identifies the use cases for which they are suitable. (C) 2017 Elsevier Ltd. All rights reserved.
Item Type: | Article |
---|---|
Uncontrolled Keywords: | ; Incident reporting; Incident management; Incident response; Reporting formats; STIX; IODEF; IODEF-SCI; VERIS; X-ARF |
Subjects: | 300 Social sciences > 330 Economics |
Divisions: | Business, Economics and Information Systems > Institut für Wirtschaftsinformatik > Lehrstuhl für Wirtschaftsinformatik I - Informationssysteme (Prof. Dr. Günther Pernul) |
Depositing User: | Dr. Gernot Deinzer |
Date Deposited: | 19 Mar 2020 10:17 |
Last Modified: | 19 Mar 2020 10:17 |
URI: | https://pred.uni-regensburg.de/id/eprint/15001 |
Actions (login required)
View Item |