|   | 
Details
   web
Record
Author (up) Ana Rodríguez-Hoyos; José Estrada-Jiménez; David Rebollo-Monedero; Jordi Forné; Rubén Trapero Burgos; Antonio Álvarez Romero; Rodrigo Diaz Rodríguez
Title Anonymizing Cybersecurity Data in Critical Infrastructures: The CIPSEC Approach Type Conference Article
Year 2019 Publication Proceedings of the 16th International Conference on Information Systems for Crisis Response And Management Abbreviated Journal Iscram 2019
Volume Issue Pages
Keywords privacy, critical infrastructures, data anonymization, CIPSEC, security logs
Abstract Cybersecurity logs are permanently generated by network devices to describe security incidents. With modern

computing technology, such logs can be exploited to counter threats in real time or before they gain a foothold.

To improve these capabilities, logs are usually shared with external entities. However, since cybersecurity logs

might contain sensitive data, serious privacy concerns arise, even more when critical infrastructures (CI), handling

strategic data, are involved.

We propose a tool to protect privacy by anonymizing sensitive data included in cybersecurity logs. We implement

anonymization mechanisms grouped through the definition of a privacy policy. We adapt said approach to the

context of the EU project CIPSEC that builds a unified security framework to orchestrate security products, thus

offering better protection to a group of CIs. Since this framework collects and processes security-related data from

multiple devices of CIs, our work is devoted to protecting privacy by integrating our anonymization approach.
Address Universitat Politécnica de Catalunya (UPC), Barcelona, España;Escuela Politécnica Nacional (EPN), Quito, Ecuador;ATOS, Madrid, España
Corporate Author Thesis
Publisher Iscram Place of Publication Valencia, Spain Editor Franco, Z.; González, J.J.; Canós, J.H.
Language English Summary Language English Original Title
Series Editor Series Title Abbreviated Series Title
Series Volume Series Issue Edition
ISSN 2411-3387 ISBN 978-84-09-10498-7 Medium
Track T13 - Privacy Risk Management in Critical Infrastructures Expedition Conference 16th International Conference on Information Systems for Crisis Response and Management (ISCRAM 2019)
Notes Approved no
Call Number Serial 1934
Share this record to Facebook