Government regulations in cyber security:
Framework, standards and
recommendations
Autores: Jangirala Srinivas, Ashok Kumar Das, Neeraj Kumar
Importance of standards in information security and cyber defense
- Improve the efficiency and effectiveness of key processes
- Facilitate the systems integration and interoperability
- Entitle various products or methods, which need to be
compared significantly - Provide a means for users to evaluate new products/services
- Structure the method to deploy new technologies/business
- Simplify complex environments
- Promote economic growth
- Identify: Se encarga de los procesos clave
- Protect: Información no pública
- Detect: Se encarga de detectar ataques
- Respond: Analisis y llevan a cavo plan de respuesta
- Recover: Encargados de recuperar comunicaciones o sistemas
Cyber attacks
- Virus
- Phishing attack
- Trojan horse
- Worm
- Ransomware
- Spyware
- Unauthorized access
- Control system attacks
Cyber security requirements
- Confidentiality (privacy)
- Integrity
- Authentication
- Availability
- Authorization
- Physical theft of devices
- Non-repudiation
- Freshness
Cyber security measures
- Firewalls
- Anti-virus software
- Intrusion detection and prevention systems
- Encryption
- Login credentials
- Operating system updates