Ana Rodríguez-Hoyos, José Estrada-Jiménez, David Rebollo-Monedero, Jordi Forné, Rubén Trapero Burgos, Antonio Álvarez Romero, et al. (2019). Anonymizing Cybersecurity Data in Critical Infrastructures: The CIPSEC Approach. In Z. Franco, J. J. González, & J. H. Canós (Eds.), Proceedings of the 16th International Conference on Information Systems for Crisis Response And Management. Valencia, Spain: Iscram.
Abstract: Cybersecurity logs are permanently generated by network devices to describe security incidents. With modern
computing technology, such logs can be exploited to counter threats in real time or before they gain a foothold.
To improve these capabilities, logs are usually shared with external entities. However, since cybersecurity logs
might contain sensitive data, serious privacy concerns arise, even more when critical infrastructures (CI), handling
strategic data, are involved.
We propose a tool to protect privacy by anonymizing sensitive data included in cybersecurity logs. We implement
context of the EU project CIPSEC that builds a unified security framework to orchestrate security products, thus
offering better protection to a group of CIs. Since this framework collects and processes security-related data from
multiple devices of CIs, our work is devoted to protecting privacy by integrating our anonymization approach.
Larissa Aldehoff. (2019). Renouncing Privacy in Crisis Management? People's View on Social Media Monitoring and Surveillance. In Z. Franco, J. J. González, & J. H. Canós (Eds.), Proceedings of the 16th International Conference on Information Systems for Crisis Response And Management. Valencia, Spain: Iscram.
Abstract: Social media is used during crises and disasters by state authorities and citizens to communicate and provide, gain
and analyze information. Monitoring of platforms in such cases is both a well-established practice and a research
area. The question, whether people are willing to renounce privacy in social media during critical incidents, or
even allow surveillance in order to contribute to public security, remains unanswered. Our survey of 1,024 German
inhabitants is the first empirical study on people�s views on social media monitoring and surveillance in crisis
management. We find the willingness to share data during an imminent threat depends mostly on the type of data:
a majority (63% and 67%, respectively) would give access to addresses and telephone numbers, whereas the
willingness to share content of chats or telephone calls is significantly lower (27%). Our analysis reveals diverging
opinions among participants and some effects of sociodemographic variables on the acceptance of invasions into