Taxonomy Of Threats Research Articles

Review of intrusion detection system in cyber‐physical system based networks: Characteristics, industrial protocols, attacks, data sets and challenges

AbstractCyber‐Physical Systems (CPSs) provide critical infrastructure for the betterment of human lives thereby integrating cyber and physical components but the fusion of physical and digital components leads to an increase in the attack surface, which in turn provides opportunities for the attackers to intrude on these systems, which can affect the critical services like health care, water treatment facility, the electrical grid, hydropower plant, and so forth. The existing intrusion detection systems (IDSs) in CPSs are facing issues like poor detection accuracy, high false alarm rate and more computation time. Also, existing intrusion detection systems cannot identify new attacks that is, zero‐day assaults. Prerequisite exists for the design of the framework for detecting intrusions using artificial intelligence inspired approaches grounded on the principle of ensemble techniques. Intrusion detection framework assimilating ensemble‐based technique for CPS has been proposed. Since the proposed framework incorporates privileges of multiple techniques for intrusion detection and classification, hence the proposed framework may overcome the limitations of existing IDSs for CPS. Overview of cutting‐edge incursion identification methods for CPSs is presented. Several characteristics of CPS, industrial protocols, and anomaly detection techniques for intrusion detection are analyzed. Taxonomy of IDS for CPS has been proposed, taxonomy of attacks and threats on CPS has been intended. Research challenges for IDS in CPS are also uncovered from this review.

Animal migration in the Anthropocene: threats and mitigation options.

Animal migration has fascinated scientists and the public alike for centuries, yet migratory animals are facing diverse threats that could lead to their demise. The Anthropocene is characterised by the reality that humans are the dominant force on Earth, having manifold negative effects on biodiversity and ecosystem function. Considerable research focus has been given to assessing anthropogenic impacts on the numerical abundance of species/populations, whereas relatively less attention has been devoted to animal migration. However, there are clear linkages, for example, where human-driven impacts on migration behaviour can lead to population/species declines or even extinction. Here, we explore anthropogenic threats to migratory animals (in all domains - aquatic, terrestrial, and aerial) using International Union for the Conservation of Nature (IUCN) Threat Taxonomy classifications. We reveal the diverse threats (e.g. human development, disease, invasive species, climate change, exploitation, pollution) that impact migratory wildlife in varied ways spanning taxa, life stages and type of impact (e.g. from direct mortality to changes in behaviour, health, and physiology). Notably, these threats often interact in complex and unpredictable ways to the detriment of wildlife, further complicating management. Fortunately, we are beginning to identify strategies for conserving and managing migratory animals in the Anthropocene. We provide a set of strategies that, if embraced, have the potential to ensure that migratory animals, and the important ecological functions sustained by migration, persist.

A Comparative Analysis of Cybersecurity Threat Taxonomies for Healthcare Organizations

A Comparative Analysis of Cybersecurity Threat Taxonomies for Healthcare Organizations

A taxonomy of threat and soothing influences in rheumatic and musculoskeletal diseases and central sensitivity syndromes

BackgroundAn imbalance in affect regulation, reflected by a hyperactive threat system and hypoactive soothing system, may impact physical symptoms in people with rheumatic and musculoskeletal diseases (RMD) and central sensitivity syndromes (CSS), including chronic fatigue syndrome, fibromyalgia, and irritable bowel syndrome. This study aimed to identify and structure comprehensive overviews of threat and soothing influences that may worsen or alleviate physical symptoms in people with RMD or CSS. MethodA concept mapping procedure was used. An online open-question survey (N = 686, 641 [93.4%] women) yielded comprehensive sets of 40 threats and 40 soothers that were individually sorted by people with RMD or CSS (N = 115, 112 [97.4%] women). ResultsHierarchical cluster analyses generated eight threat clusters: environmental stimuli, physical symptoms, food and drugs, inactivity, demands, effort, invalidation, and emotional stress. Ten soother clusters were identified: social emotional support, rest and balance, pleasant surroundings, illness understanding, positive mindset and autonomy, spirituality, leisure activity, wellness, treatment and care, and nutrition and treats. ConclusionsOur study provided a comprehensive taxonomy of threats and soothers in people with RMD or CSS. The results can be used in experimental research to label threat and soothing stimuli and in clinical practice to screen and monitor relevant treatment targets.

VISTA: An inclusive insider threat taxonomy, with mitigation strategies

Insiders have the potential to do a great deal of damage, given their legitimate access to organisational assets and the trust they enjoy. Organisations can only mitigate insider threats if they understand what the different kinds of insider threats are, and what tailored measures can be used to mitigate the threat posed by each of them. Here, we derive VISTA (inclusiVeInSiderThreat tAxonomy) based on an extensive literature review and a survey with C-suite executives to ensure that the VISTA taxonomy is not only scientifically grounded, but also meets the needs of organisations and their executives. To this end, we map each VISTA category of insider threat to tailored mitigations that can be deployed to reduce the threat.

A Survey on Digital Twins: Architecture, Enabling Technologies, Security and Privacy, and Future Prospects

By interacting, synchronizing, and cooperating with its physical counterpart in real time, digital twin is promised to promote an intelligent, predictive, and optimized modern city. Via interconnecting massive physical entities and their virtual twins with inter-twin and intra-twin communications, the Internet of digital twins (IoDT) enables free data exchange, dynamic mission cooperation, and efficient information aggregation for composite insights across vast physical/virtual entities. However, as IoDT incorporates various cutting-edge technologies to spawn the new ecology, severe known/unknown security flaws and privacy invasions of IoDT hinders its wide deployment. Besides, the intrinsic characteristics of IoDT such as decentralized structure, information-centric routing and semantic communications entail critical challenges for security service provisioning in IoDT. To this end, this paper presents an in-depth review of the IoDT with respect to system architecture, enabling technologies, and security/privacy issues. Specifically, we first explore a novel distributed IoDT architecture with cyber-physical interactions and discuss its key characteristics and communication modes. Afterward, we investigate the taxonomy of security and privacy threats in IoDT, discuss the key research challenges, and review the state-of-the-art defense approaches. Finally, we point out the new trends and open research directions related to IoDT.

Information Security Threats and Working from Home Culture: Taxonomy, Risk Assessment and Solutions.

During the COVID-19 pandemic, most organizations were forced to implement a work-from-home policy, and in many cases, employees have not been expected to return to the office on a full-time basis. This sudden shift in the work culture was accompanied by an increase in the number of information security-related threats which organizations were unprepared for. The ability to effectively address these threats relies on a comprehensive threat analysis and risk assessment and the creation of relevant asset and threat taxonomies for the new work-from-home culture. In response to this need, we built the required taxonomies and performed a thorough analysis of the threats associated with this new work culture. In this paper, we present our taxonomies and the results of our analysis. We also examine the impact of each threat, indicate when it is expected to occur, describe the various prevention methods available commercially or proposed in academic research, and present specific use cases.

IoTCom: Dissecting Interaction Threats in IoT Systems

Due to the growing presence of Internet of Things (IoT) apps and devices in smart homes and smart cities, there are more and more concerns about their security and privacy risks. IoT apps normally interact with each other and the physical world to offer utility to the users. In this paper, we investigate the safety and security risks brought by the interactive behaviors of IoT apps. Two major challenges ensue in identifying the interaction threats: i) how to discover the threats across both cyber and physical channels; and ii) how to ensure the scalability of the detection approach. To address these challenges, we first provide a taxonomy of interaction threats between IoT apps, which contains seven classes of coordination threats categorized based on their interaction behaviors. Then, we present IoTCOM, a compositional threat detection system capable of automatically detecting and verifying unsafe interactions between IoT apps and devices. IoTCOM applies static analysis to automatically infer relevant apps' behaviors and uses a novel strategy to trim the extracted app's behaviors prior to translating them into analyzable formal specifications. Our experiments with numerous bundles of real-world IoT apps have corroborated IoTCOM's ability to effectively identify a broad spectrum of interaction threats triggered through cyber and physical channels, many of which were previously unknown. Finally, IoTCOM uses an automatic verifier to validate the discovered threats. Our experimental results show that IoTCOM significantly outperforms the existing techniques in terms of computational time, and maintains the capability to perform its analysis across different IoT platforms.

Wireless sensor network security: A recent review based on state-of-the-art works

Wireless sensor networks (WSNs) are a major part of the telecommunications sector. WSN is applied in many aspects, including surveillance battlefields, patient medical monitoring, building automation, traffic control, environmental monitoring, and building intrusion monitoring. The WSN is made up of a vast number of sensor nodes, which are interconnected through a network. However, despite the growing usage of applications that rely on WSNs, they continue to suffer from restrictions, such as security issues and limited characteristics due to low memory and calculation power. Security issues lead to a lack of communication between sensors, wasting more energy. The need for efficient solutions has increased, especially with the rise of the Internet of Things, which relies on the effectiveness of WSNs. This review focuses on security issues by reviewing and addressing diverse types of WSN assaults that happened on each layer of the WSN that were published in security issues in the previous 3 years. As a consequence, this paper gives a taxonomy of security threats for each layer and different algorithmic solutions that numerous researchers who seek to counter this attack have explored. This study also presents a framework for constructing an intrusion detection system in the WSN by emphasising the drawbacks of each approach suggested by researchers to defend against specific forms of assault. In order to diminish the impact of this attack, this summary shows which attacks the majority of researchers have dealt with as well as which ones they have not yet addressed in their academic work.

An Evaluation of Cyber Threat Taxonomies in the framework of Cyber Activism

The billions of new media platforms available online allow people to represent themselves and meet like-minded people. Thus, a human-based, lively and dynamic public opinion is formed in cyberspace as well. A free and egalitarian representation should be given to all groups in order to ensure the democracy of cyberspace. The states and users who carry the current power struggles to the cyber space restrict cyber democracy. In this study, which is handled within the framework of new media and cyber activism, the motivation of hacktivism, which is a marginal and aggressive type of cyber activism, is accepted as proving its existence and power in the cyber field. DDOS (Distributed Denial of Service)attacks are one of the most preferred attack types by hackers, who are the representatives of the struggle for power and public administration in cyberspace. The aim of the study is to help determine the criteria to distinguish cyber activism from other cybercrimes. The criteria used in DDOS taxonomies are presented in the literature. In order to distinguish cyber activism from other cybercrimes, cyber attacks affecting the public in Turkey were examined and a table containing the messages of hackers and findings were presented. As the result, it has been proposed to include the determining criteria in DDOS taxonomies by making hacktivism motivations visible.

On the privacy of mental health apps

An increasing number of mental health services are now offered through mobile health (mHealth) systems, such as in mobile applications (apps). Although there is an unprecedented growth in the adoption of mental health services, partly due to the COVID-19 pandemic, concerns about data privacy risks due to security breaches are also increasing. Whilst some studies have analyzed mHealth apps from different angles, including security, there is relatively little evidence for data privacy issues that may exist in mHealth apps used for mental health services, whose recipients can be particularly vulnerable. This paper reports an empirical study aimed at systematically identifying and understanding data privacy incorporated in mental health apps. We analyzed 27 top-ranked mental health apps from Google Play Store. Our methodology enabled us to perform an in-depth privacy analysis of the apps, covering static and dynamic analysis, data sharing behaviour, server-side tests, privacy impact assessment requests, and privacy policy evaluation. Furthermore, we mapped the findings to the LINDDUN threat taxonomy, describing how threats manifest on the studied apps. The findings reveal important data privacy issues such as unnecessary permissions, insecure cryptography implementations, and leaks of personal data and credentials in logs and web requests. There is also a high risk of user profiling as the apps’ development do not provide foolproof mechanisms against linkability, detectability and identifiability. Data sharing among 3rd-parties and advertisers in the current apps’ ecosystem aggravates this situation. Based on the empirical findings of this study, we provide recommendations to be considered by different stakeholders of mHealth apps in general and apps developers in particular. We conclude that while developers ought to be more knowledgeable in considering and addressing privacy issues, users and health professionals can also play a role by demanding privacy-friendly apps.

The intent and extent of collective threats: A data-driven conceptualization of collective threats and their relation to political preferences.

The purpose of the present article is to systematically investigate how people perceive collective threat and how such threat perceptions relate to political preferences. Existing threat taxonomies are mostly derived from top-down analyses and little attempt has been made to examine bottom-up how people spontaneously perceive threats. One area where this is of central importance is the relationship between political preferences and threat perception. Prevailing theories in social psychology primarily study security and stability threats and conclude that conservatives are more sensitive to threats than liberals. Other perspectives, however, have criticized this position and maintain that the relationship between threat and political preferences depends on how both constructs are defined. To resolve this issue, we carried out a systematic, data-driven investigation of how collective threats are perceived. In five preregistered, data-driven studies, carried out on representative cross-cultural samples (aggregate N = 24,341), we show that people tend to categorize collective threats along two dimensions-their intent (omission/commission) and extent (local/global). We show that whereas liberals are more concerned than conservatives by omission-based and global threats, conservatives are more concerned than liberals by commission-based and local threats. These results suggest that collective threat is a multidimensional construct and that political leftists and rightists do not necessarily differ in the extent to which they perceive threats, but rather in the way they prioritize different threats facing society. (PsycInfo Database Record (c) 2022 APA, all rights reserved).

Cyber-threat landscape of border control infrastructures

Various events in recent decades, such as the 9/11 tragedy and the European migration crisis, have highlighted the critical nature of robust borders and the impact of associated attacks on their integrity. However, it is unclear as to the extent to which cyber-attacks can threaten border operations. Interestingly, no extensive research has been conducted into this topic, possibly due to the complexity and diversity of border controls. This paper specifies the cyber-threat landscape of border control infrastructures to assist professionals in assessing the relevant cybersecurity risks. Border control infrastructures are complex environments and relevant risks might not be easily identified. To investigate the cyber-threat landscape of these infrastructures, a mixed research method, combining qualitative and quantitative results, and using border-related expert interviews and risk analysis investigation was chosen. Key contributions of this work include the classification of a widespread set of border assets, the description of the profiles of threat actors and their potential synergies, the specification of a threat taxonomy applicable to all border types, and the identification of potential areas of vulnerability. Moreover, through the risk analysis investigations, exemplary input is developed to guide professionals while applying a risk assessment methodology in the context of border control infrastructures. The paper concludes with future directions addressed to policy makers and border professionals.

The Impact of COVID-19 on the Majority Population, Ethno-Racial Minorities, and Immigrants

Abstract. The COVID-19 pandemic constitutes an unprecedented threat for individuals and societies, revealing stark inequalities in preparedness, exposure, and consequences. The present systematic literature review complements extant knowledge on disasters and pandemic diseases with programmatic research on the COVID-19 pandemic. Building upon an integrative definition of threat, we merge intra-personal threat regulation with group dynamics and inter-group relations. Via streamlined methods of knowledge synthesis, we first map out a broad taxonomy of threats, as appraised by the majority population and ethno-racial and immigrant minorities. Second, we delve into research linking threat appraisals with either conflict or prosociality within and across group boundaries. To conclude, we propose some guidelines for researchers to involve ethno-racial and immigrant minorities actively and for societies to cope cohesively with the impact of COVID-19.

A Review on Security of Smart Farming and Precision Agriculture: Security Aspects, Attacks, Threats and Countermeasures

In recent years, Smart Farming (SF) and Precision Agriculture (PA) have attracted attention from both the agriculture industry as well as the research community. Altogether, SF and PA aim to help farmers use inputs (such as fertilizers and pesticides) more efficiently through using Internet of Things (IoT) devices, but in doing so, they create new security threats that can defeat this purpose in the absence of adequate awareness and proper countermeasures. A survey on different security-related challenges is required to raise awareness and pave they way for further research in this area. In this paper, we first itemize the security aspects of SF and PA. Next, we review the types of cyber attacks that can violate each of these aspects. Accordingly, we present a taxonomy on cyber-threats to SF and PA on the basis of their relations to different stages of Cyber-Kill Chain (CKC). Among cyber-threats, we choose Advanced Persistent Threats (APTs) for further study. Finally, we studied related risk mitigation strategies and countermeasure, and developed a future road map for further study in this area. This paper’s main contribution is a categorization of security threats within the SF/PA areas and provide a taxonomy of security threats for SF environments so that we may detect the behavior of APT attacks and any other security threat in SF and PA environments.

NFV security survey in 5G networks: A three-dimensional threat taxonomy

Fifth Generation (5G) networks aim at providing value-added services with advanced performance such as low-latency communications, high reliability, high data rates and capacity to support an increasing number of connected devices. 5G networks are enabled by an automated and flexible provisioning and management of resources and services deployed over a shared infrastructure spanning multiple sites and domains and governed by different business players. This drives towards a complex 5G ecosystem enabled by Network Function Virtualization (NFV) and promoted by multiple business collaborations which draw new threats and vulnerabilities that are yet to be explored. Thus, we explore in this survey the complexity of the 5G ecosystem and derive a 5G telecommunication business model driven by 5G enabling technologies. We use this business model to identify new attack surface and security threats introduced by multiple business collaborations supported by NFV which we overview. Further, we delineate a three dimensional threat taxonomy for NFV-based 5G networks that leverages NFV architecture and deployment use cases in light of different 5G business collaboration scenarios. Finally, we shed light on insightful future research directions towards providing enhanced security in NFV-based 5G networks.

Revealing and Sharing Malware Profile Using Malware Threat Intelligence Platform

Cyber Security is an interchange between attackers and defenders, a non-static balancing force. The increasing trend of novel security threats and security incidents, which does not seem to be stopping, prompts the need to add another line of security defences. This is because the risk management and risk detection has become virtually impossible due to the limited access towards user data and the variations of modern threat taxonomies. The traditional strategy of self-discovery and signature detection which has a static nature is now obsolete in facing threats of the new generation with a dynamic nature; threats which are resilient, complex, and evasive. Therefore, this thesis discusses the use of MISP and The Triad Investigation approach to share the Indicator of Compromise on Cyber Intelligence Sharing Platform to be able to address the newt threats.

Taxonomy of Threats and Vulnerabilities in Smart Grid Networks

Taxonomy of Threats and Vulnerabilities in Smart Grid Networks

Exploring the landscape of psychological threat: A cartography of threats and threat responses.

Over the recent years, research in the field of threat and defense has accumulated evidence on how encounters with various psychological threats influence human behavior, cognition, motivation, affect, and health. Unifying different theoretical threat models, the General Process Model of Threat and Defense claims that different threatening concerns have a similar underlying dynamic. Some years after the publication of this theory, we deem it important to take a comparative look at psychological threat, comparing threats regarding their properties and outcomes on personal and social level. As potential dimensions to describe psychological threats, we discuss the existential nature of concerns, phenomenological worlds involved, and thwarted needs in threat encounters. We also discuss data‐driven approaches to threat classifications, describing first empirical efforts to create threat taxonomies, and suggest directions for future research. This research will enhance our understanding of threat dynamics, and will help us make stronger, more clear‐cut assumptions about human behavior upon experiencing threat.

Вимоги до таксономії кіберзагроз об’єктів критичної інфраструктури та аналіз існуючих підходів

Вимоги до таксономії кіберзагроз об’єктів критичної інфраструктури та аналіз існуючих підходів