|
Record |
Links |
|
Author |
Ana Rodríguez-Hoyos; José Estrada-Jiménez; David Rebollo-Monedero; Jordi Forné; Rubén Trapero Burgos; Antonio Álvarez Romero; Rodrigo Diaz Rodríguez |
|
|
Title |
Anonymizing Cybersecurity Data in Critical Infrastructures: The CIPSEC Approach |
Type |
Conference Article |
|
Year |
2019 |
Publication |
Proceedings of the 16th International Conference on Information Systems for Crisis Response And Management |
Abbreviated Journal |
Iscram 2019 |
|
|
Volume |
|
Issue |
|
Pages |
|
|
|
Keywords |
privacy, critical infrastructures, data anonymization, CIPSEC, security logs |
|
|
Abstract |
Cybersecurity logs are permanently generated by network devices to describe security incidents. With modern
computing technology, such logs can be exploited to counter threats in real time or before they gain a foothold.
To improve these capabilities, logs are usually shared with external entities. However, since cybersecurity logs
might contain sensitive data, serious privacy concerns arise, even more when critical infrastructures (CI), handling
strategic data, are involved.
We propose a tool to protect privacy by anonymizing sensitive data included in cybersecurity logs. We implement
anonymization mechanisms grouped through the definition of a privacy policy. We adapt said approach to the
context of the EU project CIPSEC that builds a unified security framework to orchestrate security products, thus
offering better protection to a group of CIs. Since this framework collects and processes security-related data from
multiple devices of CIs, our work is devoted to protecting privacy by integrating our anonymization approach. |
|
|
Address |
Universitat Politécnica de Catalunya (UPC), Barcelona, España;Escuela Politécnica Nacional (EPN), Quito, Ecuador;ATOS, Madrid, España |
|
|
Corporate Author |
|
Thesis |
|
|
|
Publisher |
Iscram |
Place of Publication |
Valencia, Spain |
Editor |
Franco, Z.; González, J.J.; Canós, J.H. |
|
|
Language |
English |
Summary Language |
English |
Original Title |
|
|
|
Series Editor |
|
Series Title |
|
Abbreviated Series Title |
|
|
|
Series Volume |
|
Series Issue |
|
Edition |
|
|
|
ISSN |
2411-3387 |
ISBN |
978-84-09-10498-7 |
Medium |
|
|
|
Track |
T13 - Privacy Risk Management in Critical Infrastructures |
Expedition |
|
Conference |
16th International Conference on Information Systems for Crisis Response and Management (ISCRAM 2019) |
|
|
Notes |
|
Approved |
no |
|
|
Call Number |
|
Serial |
1934 |
|
Share this record to Facebook |