Show simple item record

dc.contributor.authorRodríguez Hoyos, Ana Fernanda
dc.contributor.authorEstrada Jiménez, José Antonio
dc.contributor.authorRebollo-Monedero, David
dc.contributor.authorForné Muñoz, Jorge
dc.contributor.authorTrapero Burgos, Rubén
dc.contributor.authorÁlvarez Romero, Antonio
dc.contributor.otherUniversitat Politècnica de Catalunya. Doctorat en Enginyeria Telemàtica
dc.contributor.otherUniversitat Politècnica de Catalunya. Departament d'Enginyeria Telemàtica
dc.identifier.citationRodríguez-Hoyos, A. [et al.]. Anonymizing cybersecurity data in critical infrastructures: the CIPSEC approach. A: International Conference on Information Systems for Crisis Response and Management. "ISCRAM 2019: 16th International Conference on Information Systems for Crisis Response and Management: conference proceedings: Valencia (Spain): May 19-22". ISCRAM, 2019, p. 1198-1208.
dc.description.abstractCybersecurity logs are permanently generated by network devices to describe security incidents. With modern computing technology, such logs can be exploited to counter threats in real time or before they gain a foothold. To improve these capabilities, logs are usually shared with external entities. However, since cybersecurity logs might contain sensitive data, serious privacy concerns arise, even more when critical infrastructures (CI), handling strategic data, are involved. We propose a tool to protect privacy by anonymizing sensitive data included in cybersecurity logs. We implement anonymization mechanisms grouped through the definition of a privacy policy. We adapt said approach to the context of the EU project CIPSEC that builds a unified security framework to orchestrate security products, thus offering better protection to a group of CIs. Since this framework collects and processes security-related data from multiple devices of CIs, our work is devoted to protecting privacy by integrating our anonymization approach.
dc.format.extent11 p.
dc.rightsAttribution-NonCommercial-NoDerivs 3.0 Spain
dc.subjectÀrees temàtiques de la UPC::Informàtica::Seguretat informàtica
dc.subject.lcshComputer security
dc.subject.otherCritical infrastructures
dc.subject.otherData anonymization
dc.subject.otherSecurity logs
dc.titleAnonymizing cybersecurity data in critical infrastructures: the CIPSEC approach
dc.typeConference report
dc.subject.lemacSeguretat informàtica
dc.contributor.groupUniversitat Politècnica de Catalunya. SISCOM - Smart Services for Information Systems and Communication Networks
dc.description.peerreviewedPeer Reviewed
dc.rights.accessOpen Access
dc.description.versionPostprint (published version)
dc.relation.projectidinfo:eu-repo/grantAgreement/EC/H2020/700378/EU/Enhancing Critical Infrastructure Protection with innovative SECurity framework/CIPSEC
local.citation.authorRodríguez-Hoyos, A.; Estrada, J.; Rebollo-Monedero, D.; Forne, J.; Trapero, R.; Álvarez, A.
local.citation.contributorInternational Conference on Information Systems for Crisis Response and Management
local.citation.publicationNameISCRAM 2019: 16th International Conference on Information Systems for Crisis Response and Management: conference proceedings: Valencia (Spain): May 19-22

Files in this item


This item appears in the following Collection(s)

Show simple item record

Attribution-NonCommercial-NoDerivs 3.0 Spain
Except where otherwise noted, content on this work is licensed under a Creative Commons license : Attribution-NonCommercial-NoDerivs 3.0 Spain