|   | 
Details
   web
Records
Author Gary Eifried
Title A model describing a response to a terrorism incident Type Conference Article
Year 2005 Publication Proceedings of ISCRAM 2005 – 2nd International Conference on Information Systems for Crisis Response and Management Abbreviated Journal ISCRAM 2005
Volume Issue Pages 125-127
Keywords Information systems; Military equipment; Models; Emergency response; Incident response; Information flows; Weapons of mass destructions; Wmd; Terrorism
Abstract Understanding how the response to an incident of terrorism involving a Weapons of Mass Destruction (WMD) transpires is essential to understanding the necessary flow of information within that response. A model describing incident response functions overlaid on a realistic timeline is presented.
Address EAI Corporation, United States
Corporate Author Thesis
Publisher Royal Flemish Academy of Belgium Place of Publication Brussels Editor (up) B. Van de Walle, B. Carle
Language English Summary Language English Original Title
Series Editor Series Title Abbreviated Series Title
Series Volume Series Issue Edition
ISSN 2411-3387 ISBN 9076971099 Medium
Track POSTER SESSION Expedition Conference 2nd International ISCRAM Conference on Information Systems for Crisis Response and Management
Notes Approved no
Call Number Serial 471
Share this record to Facebook
 

 
Author Harrasi, A.A.; Grispos, G.; Gandhi, R.
Title Using Cybersecurity Testbeds to Evaluate (In)Secure Structural Health Monitoring Systems Type Conference Article
Year 2023 Publication Proceedings of the 20th International ISCRAM Conference Abbreviated Journal Iscram 2023
Volume Issue Pages 902-908
Keywords Cybersecurity; Structural Health Monitoring Systems; Incident Response; Testbed
Abstract An increasing amount of technology is being integrated into bridges and other structures, such as dams and buildings, to proactively look for signs of deterioration or damage. These technologies are collectively known as structural health monitoring systems. While the benefits of integrating this technology are attractive, this integration is also creating an environment that is conducive to security vulnerabilities. While previous research has focused on the broader cybersecurity challenges associated with structural health monitoring systems, limited guidance is available for identifying specific security vulnerabilities in these systems and their implications for responding to security incidents. Hence, this paper presents CYBRBridge, a cybersecurity testbed that provides a sacrificial environment to assist in identifying and exploring vulnerabilities associated with structural health monitoring systems. This paper reports ongoing research efforts to develop the CYBRBridge testbed and initial results identifying vulnerabilities within the wireless components of a commercial structural health monitoring system
Address University of Nebraska at Omaha; University of Nebraska at Omaha; University of Nebraska at Omaha
Corporate Author Thesis
Publisher University of Nebraska at Omaha Place of Publication Omaha, USA Editor (up) Jaziar Radianti; Ioannis Dokas; Nicolas Lalone; Deepak Khazanchi
Language English Summary Language Original Title
Series Editor Hosssein Baharmand Series Title Abbreviated Series Title
Series Volume Series Issue Edition 1
ISSN ISBN Medium
Track Cybersecurity and Emergency Management Expedition Conference
Notes http://dx.doi.org/10.59297/CPXU9228 Approved no
Call Number ISCRAM @ idladmin @ Serial 2574
Share this record to Facebook
 

 
Author Jelle Groenendaal; Ira Helsloot; Christian Reuter
Title Towards More Insight into Cyber Incident Response Decision Making and its Implications for Cyber Crisis Management Type Conference Article
Year 2022 Publication ISCRAM 2022 Conference Proceedings – 19th International Conference on Information Systems for Crisis Response and Management Abbreviated Journal Iscram 2022
Volume Issue Pages 1025-1036
Keywords Cyber Incident Response; Cyber Crisis Management; Naturalistic Decision-making
Abstract Organizations affected by a cyber-attack usually rely on external Cyber Incident Response (CIR) consultants to conduct investigations and mitigate the impact. These CIR consultants need to make critical decisions that could have major impact on their clients. This preliminary investigation aims to get a better understanding of CIR decision -making and answers the following questions: (1.) To what extent do experienced CIR consultants use a Recognition-Primed Decision (RPD) Making strategy during their work? (2.) What are the implications for cyber crisis management as well as for training and decision -making? To answer these questions, we conducted a literature review and interviewed six experienced CIR consultants using the Critical Decision Method. Our analysis reveals that CIR consultants recognize situations based on past experiences and apply a course of action that has worked effectively in the past. This course of action is mainly aimed at collecting and evaluating more data. This finding differs from other operational domains, such as the military and fire department, where recognition is usually followed immediately by action. For cyber crisis management, this means that crisis management teams should decide to what extent and in what ways they want to mitigate the risk of responding belatedly to cyber events, which could potentially lead to unnecessary data theft and sustained business disruption. Another implication is that crisis management teams should consider whether additional forensic investigations outweigh the expected benefits throughout the response process. For instance, if the likely entry-point of the attacker has been discovered, how much effort should be devoted to exclude other potential entry-points. Reflecting on the status-quo, several implications for training and decision making are provided.
Address Crisislab, The Netherlands; Science and Technology for Peace and Security (PEASEC), TU Darmstadt
Corporate Author Thesis
Publisher Place of Publication Tarbes, France Editor (up) Rob Grace; Hossein Baharmand
Language English Summary Language Original Title
Series Editor Series Title Abbreviated Series Title
Series Volume Series Issue Edition
ISSN 2411-3387 ISBN 978-82-8427-099-9 Medium
Track Open Track Expedition Conference
Notes Approved no
Call Number ISCRAM @ idladmin @ Serial 2468
Share this record to Facebook
 

 
Author Stephen C. Fortier
Title Developing an incident response process model for chemical facilities Type Conference Article
Year 2013 Publication ISCRAM 2013 Conference Proceedings – 10th International Conference on Information Systems for Crisis Response and Management Abbreviated Journal ISCRAM 2013
Volume Issue Pages 941-950
Keywords Chemical industry; Emergency services; Hazards; Human resource management; Information systems; Information technology; Requirements engineering; Risk management; Business process modelling; Chemical facility; Emergency management; Emergency response; Hazardous substances; Incident response; Chemical plants
Abstract This research project investigated the incident response mechanism used by the chemical industry for handling extremely hazardous chemicals. The mechanism was described as the policies, procedures, practices, tools, and methods used to conduct incident response. The results from the study determined what technologies, specifically software and information systems, could be utilized to improve the chemical facility incident response mechanism. The chemical industry is responsible for process safety management at all of its facilities, especially those that have off-site consequences in the event of an unplanned release. The processes and procedures of local, regional and national emergency responders have been studied thoroughly. An area of research that is lacking is the study of incident response policies and procedures within the boundaries of a chemical site. Results of the analysis determined that the chemical industry, in general, does not take advantage of available information technology when responding to unplanned releases.
Address George Washington University, United States
Corporate Author Thesis
Publisher Karlsruher Institut fur Technologie Place of Publication KIT; Baden-Baden Editor (up) T. Comes, F. Fiedrich, S. Fortier, J. Geldermann and T. Müller
Language English Summary Language English Original Title
Series Editor Series Title Abbreviated Series Title
Series Volume Series Issue Edition
ISSN 2411-3387 ISBN 9783923704804 Medium
Track Open Track Expedition Conference 10th International ISCRAM Conference on Information Systems for Crisis Response and Management
Notes Approved no
Call Number Serial 502
Share this record to Facebook
 

 
Author Manne Messemaker; Jeroen Wolbers; Willem Treurniet; Kees Boersma
Title Shaping societal impact: Between control and cooperation Type Conference Article
Year 2013 Publication ISCRAM 2013 Conference Proceedings – 10th International Conference on Information Systems for Crisis Response and Management Abbreviated Journal ISCRAM 2013
Volume Issue Pages 901-905
Keywords Information systems; Command and control; Crisis communications; Crisis management; Incident response; Mutual shaping; Security incident; Societal impacts; Concretes
Abstract In our modem society, the impact of large-scale spfety and security incidents can be large and diverse. Yet. this societal impact is makeable and controllable to a limited extent. At best, the effect of concrete response actions is that the direct damage is somewhat reduced and that the recovery is accelerated. Proper crisis communication can make the biggest difference with respect to overall societal impact. We argue that crisis communication must strike a balance between a directive approach of chaos, command and control and a more empathic approach of continuity, coordination and cooperation. On the basis of a concrete case we analyze how crisis communication reflects the incident response approach and how societal impact is affected.
Address VU University Amsterdam, Netherlands; TNO, Netherlands
Corporate Author Thesis
Publisher Karlsruher Institut fur Technologie Place of Publication KIT; Baden-Baden Editor (up) T. Comes, F. Fiedrich, S. Fortier, J. Geldermann and T. Müller
Language English Summary Language English Original Title
Series Editor Series Title Abbreviated Series Title
Series Volume Series Issue Edition
ISSN 2411-3387 ISBN 9783923704804 Medium
Track Social Media Expedition Conference 10th International ISCRAM Conference on Information Systems for Crisis Response and Management
Notes Approved no
Call Number Serial 770
Share this record to Facebook
 

 
Author Kouji Kishi; Naoko Kosaka; Tsuneko Kura; Tomohiro Kokogawa
Title Study on Integrated Risk-Management Support System Application to Emergency Management for Cyber Incidents Type Conference Article
Year 2017 Publication Proceedings of the 14th International Conference on Information Systems for Crisis Response And Management Abbreviated Journal Iscram 2017
Volume Issue Pages 432-444
Keywords Emergency Management; ISO22320; Incident response; Emergency Operations Center
Abstract We have been studying the standardization of an emergency-management support system mainly for natural disasters at the local-government level. The system provides information from three viewpoints, “Plan: What should we do?”, “Do: What are we doing?”, and “See: What kind of situations are we in?” to support decision making at an emergency operations center. Rapid and accurate judgment prevents the occurrence of new damage and the expansion of damage, and as a result resilience will increase. We investigated its applicability to emergency management for cyber incidents through a cyber-defense exercise.
Address NTT Secure Platform Laboratories, Japan
Corporate Author Thesis
Publisher Iscram Place of Publication Albi, France Editor (up) Tina Comes, F.B., Chihab Hanachi, Matthieu Lauras, Aurélie Montarnal, eds
Language English Summary Language English Original Title
Series Editor Series Title Abbreviated Series Title
Series Volume Series Issue Edition
ISSN 2411-3387 ISBN Medium
Track Resilience engineering and management Expedition Conference 14th International Conference on Information Systems for Crisis Response And Management
Notes Approved no
Call Number Serial 2032
Share this record to Facebook