Abstract
The navigation metaphor for cybersecurity merges security architecture models and security economics. By identifying the most efficient routes for gaining access to assets from an attacker's viewpoint, an organization can optimize its defenses along these routes. The well-understood concept of navigation makes it easier to motivate and explain security investment to a wide audience, encouraging strategic security decisions.
Original language | Undefined |
---|---|
Pages (from-to) | 14-21 |
Number of pages | 8 |
Journal | IEEE security & privacy |
Volume | 14 |
Issue number | 3 |
DOIs | |
Publication status | Published - 25 May 2016 |
Keywords
- cyberattacks
- attacker profiles
- attack navigators
- EWI-27181
- security models
- Navigation
- Internet/Web technologies
- hackers
- EC Grant Agreement nr.: FP7/318003
- METIS-318506
- Visualization
- IR-101092
- E-commerce
- Security
- Security Economics
- EC Grant Agreement nr.: FP7/2007-2013