Internet Security Research Paper
grakee
Depth.docxRunning Head: DEPTH (CYBERSECURITY) 1
DEPTH (CYBERSECURITY) 5
RAKESH PRAKASH GENTYALA
ITS 834 Emerging Threats and Countermeasures
Annotated Bibliography - Depth (Cyber Security)
Dr. Steve Brown
29th March, 2019
Depth –Cyber Security
The paper will provide an overview of the defense in depth strategy as a practical method of attaining information assurance, considering the widespread of the networked environment in today’s modern world. It will look into the purpose of the defense in depth technique and how exactly this strategy works, more importantly, its role as a defensive countermeasure in protecting national infrastructure from cyber-attacks. The different elements of the defense in depth strategy will be explored. It will also give insight on how to measure the effectiveness of the defense in depth strategy and ways to improve its effectiveness in order to ensure that national infrastructure remains secure.
Annotated Bibliography
Harrop, W., & Matteson, A. (2015). Cyber resilience: A review of critical national infrastructure and cyber-security protection measures applied in the UK and USA. In Current and Emerging Trends in Cyber Operations (pp. 149-166). Palgrave Macmillan, London.
This article points out the defense in depth approach as amongst the security measures adopted by the USA and UK to safeguard national infrastructure. The article looks into the possibility of a country’s financial systems suffering from an unexpected malicious downtime, or even the possibility of digital terrorists interfering with power grids and breaching water treatment plants. The article provides the defense in depth strategy as a measure for protecting the basic way of life which is highly dependent on national infrastructure.
Ani, U. P. D., He, H., & Tiwari, A. (2017). Review of cybersecurity issues in industrial critical infrastructure: manufacturing in perspective. Journal of Cyber Security Technology, 1(1), 32-74.
This paper looks into cybersecurity concerns regarding industrial control systems. It offers an insightful review on vulnerabilities, threats and cyber-attack patterns and their impact on the industrial environment. The defense in depth strategy for improving the cybersecurity of industrial control systems is examined in detail. Industrial control systems are quite complex and so lack of defense in depth strategy can result in long term exposure to threats.
Hausken, K., & Levitin, G. (2016). Review of Systems Defense and Attack Models. International Journal of Performability Engineering, 8(4).
This paper highlights the importance of the defense in depth strategy and provides a well-described example of its role in the health care industry. It explores the WannaCry Malware outbreak and the havoc it caused on the healthcare industry. It looks into cybersecurity practices that the health care industry moved into, the defense in depth strategy being one of them. The healthcare industry is charged with the protection of crucial patient data and so adopting the defense in depth strategy was considered a way to exponentially multiply the industry’s cyber defense.
Khattak, M. A., Shaharuddin, M. K. H., Islam, M. S., & Ahmad, M. H. N. (2017). Review of cyber security applications in nuclear power plants. Journal of Advanced Research in Applied Sciences and Engineering Technology, 7(1), 43-54.
This paper reviews the application of the defense in depth strategy for nuclear safety by the International Atomic Energy Agency. It summarizes the historical development of nuclear safety concepts, with a focus on the Defense in depth concept. It describes how the defense in depth strategy can be enhanced for the safety of the nuclear power plants that are currently in operation. It provides the objectives of the defense in depth mechanism for nuclear safety.
Geramiparvar, S., & Modiri, N. (2015). Security as a Serious Challenge for E-Banking: a Review of Emmental Malware. International Journal of Advanced Computer Research, 5(18), 62.
This paper explores electronic payment frauds in financial institutions. Cyber threats are have increased in the financial sector owing to the various innovations on digital payment techniques by banks. The paper recommends the defense in depth strategy as a security measure to combat online payment frauds. The paper also looks into how cyber attackers use Emmental malware to compromise digital banking platforms and gain access to the private information of customers. The paper gives insight into how a defense in depth strategy works to stop fraudulent transactions.
Cherdantseva, Y., Burnap, P., Blyth, A., Eden, P., Jones, K., Soulsby, H., & Stoddart, K. (2016). A review of cybersecurity risk assessment methods for SCADA systems. Computers & security, 56, 1-27.
This paper explores the unprecedented security threats introduced by computer technologies in the SCADA (Supervisory Control And Data Acquisition) systems. SCADA systems are used by the national government to monitor transport processes. The systems are faced with numerous security threats and so traditional security measures are not effective enough. This paper proposes the use of the defense in depth strategy as SCADA defense measure against cyber-attacks and describes its effectiveness in safeguarding SCADA systems.
Tayan, O. (2017). Concepts and tools for protecting sensitive data in its industry: a review of trends, challenges, and mechanisms for data-protection. International Journal of Advanced Computer Science and Applications, 8(2), p46-52.
