Show simple item record

dc.contributor.authorRodríguez Hoyos, Ana Fernanda
dc.contributor.authorEstrada Jiménez, José Antonio
dc.contributor.authorRebollo-Monedero, David
dc.contributor.authorForné Muñoz, Jorge
dc.contributor.authorTrapero Burgos, Rubén
dc.contributor.authorÁlvarez Romero, Antonio
dc.contributor.otherUniversitat Politècnica de Catalunya. Doctorat en Enginyeria Telemàtica
dc.contributor.otherUniversitat Politècnica de Catalunya. Departament d'Enginyeria Telemàtica
dc.date.accessioned2020-01-29T13:49:11Z
dc.date.available2020-01-29T13:49:11Z
dc.date.issued2019
dc.identifier.citationRodríguez-Hoyos, A. [et al.]. Anonymizing cybersecurity data in critical infrastructures: the CIPSEC approach. A: International Conference on Information Systems for Crisis Response and Management. "ISCRAM 2019: 16th International Conference on Information Systems for Crisis Response and Management: conference proceedings: Valencia (Spain): May 19-22". ISCRAM, 2019, p. 1198-1208.
dc.identifier.isbn978-84-09-10498-7
dc.identifier.urihttp://hdl.handle.net/2117/176093
dc.description.abstractCybersecurity logs are permanently generated by network devices to describe security incidents. With modern computing technology, such logs can be exploited to counter threats in real time or before they gain a foothold. To improve these capabilities, logs are usually shared with external entities. However, since cybersecurity logs might contain sensitive data, serious privacy concerns arise, even more when critical infrastructures (CI), handling strategic data, are involved. We propose a tool to protect privacy by anonymizing sensitive data included in cybersecurity logs. We implement anonymization mechanisms grouped through the definition of a privacy policy. We adapt said approach to the context of the EU project CIPSEC that builds a unified security framework to orchestrate security products, thus offering better protection to a group of CIs. Since this framework collects and processes security-related data from multiple devices of CIs, our work is devoted to protecting privacy by integrating our anonymization approach.
dc.format.extent11 p.
dc.language.isoeng
dc.publisherISCRAM
dc.rightsAttribution-NonCommercial-NoDerivs 3.0 Spain
dc.rights.urihttp://creativecommons.org/licenses/by-nc-nd/3.0/es/
dc.subjectÀrees temàtiques de la UPC::Informàtica::Seguretat informàtica
dc.subject.lcshComputer security
dc.subject.otherPrivacy
dc.subject.otherCritical infrastructures
dc.subject.otherData anonymization
dc.subject.otherCIPSEC
dc.subject.otherSecurity logs
dc.titleAnonymizing cybersecurity data in critical infrastructures: the CIPSEC approach
dc.typeConference report
dc.subject.lemacSeguretat informàtica
dc.contributor.groupUniversitat Politècnica de Catalunya. SISCOM - Smart Services for Information Systems and Communication Networks
dc.description.peerreviewedPeer Reviewed
dc.relation.publisherversionhttp://idl.iscram.org/files/anarodriguez-hoyos/2019/1934_AnaRodriguez-Hoyos_etal2019.pdf
dc.rights.accessOpen Access
local.identifier.drac26489858
dc.description.versionPostprint (published version)
dc.relation.projectidinfo:eu-repo/grantAgreement/EC/H2020/700378/EU/Enhancing Critical Infrastructure Protection with innovative SECurity framework/CIPSEC
dc.relation.projectidinfo:eu-repo/grantAgreement/MINECO/1PE/TEC2014-54335-C4-1-R
dc.relation.projectidinfo:eu-repo/grantAgreement/AEI/2PE/TEC2017-84197-C4-3-R
local.citation.authorRodríguez-Hoyos, A.; Estrada, J.; Rebollo-Monedero, D.; Forne, J.; Trapero, R.; Álvarez, A.
local.citation.contributorInternational Conference on Information Systems for Crisis Response and Management
local.citation.publicationNameISCRAM 2019: 16th International Conference on Information Systems for Crisis Response and Management: conference proceedings: Valencia (Spain): May 19-22
local.citation.startingPage1198
local.citation.endingPage1208


Files in this item

Thumbnail

This item appears in the following Collection(s)

Show simple item record

Attribution-NonCommercial-NoDerivs 3.0 Spain
Except where otherwise noted, content on this work is licensed under a Creative Commons license : Attribution-NonCommercial-NoDerivs 3.0 Spain