Strategies for Monitoring Website Security against Cyber-Attacks
Author(s): MIHAI, Ioan-Cosmin; GENOE, Ray; PRUNĂ, Ștefan
Author(s) keywords: cyber-attacks, cybersecurity, malware, website security
Reference keywords: cyber-attacks, on-line security, website security
Abstract:
To secure a website you need to engage in three strategies: prevention (before an attack), detection (during an attack) and response (after an attack). To study the effects of cyber-attacks on a website we developed an attack tree, which is useful to explore certain attack paths in depth and to generate intrusion scenarios. The results were used to presents strategies for monitoring website security against cyber-attacks.
References:
[1]. Majority Staff Report, A “Kill Chain” Analysis of the 2013 Target Data Breach, 2014.
[2]. Hutchins, M. Eric., Clopperty, Michael J., and Amin, Rohan M., Intelligence-Driven Computer Network Defense Informed by Analysis of Adversary Campaigns and Intrusion Kill Chains, 2011.
[3]. Schneier, B., Attack Trees: Modeling Security Threats, Dr. Dobb’s Journal, 2003.
[4]. J.A. Lewis. Holistic Approaches to Cybersecurity to Enable Network Centric Operations, April 2008.
[5]. http://www.securitatea-cibernetica.ro/
[6]. https://www.sucuri.net/
[7]. https://www.virustotal.com/
[8]. http://www.webmaster-toolkit.com/link-extractor.shtml
[9]. http://www.cookie-checker.com/
[10]. http://monitor.us/
Article Title: Strategies for Monitoring Website Security against Cyber-Attacks
Author(s): MIHAI, Ioan-Cosmin; GENOE, Ray; PRUNĂ, Ștefan
Date of Publication: 2015-06-29
Publication: International Journal of Information Security and Cybercrime
ISSN: 2285-9225 e-ISSN: 2286-0096
Digital Object Identifier: 10.19107/IJISC.2015.01.01
Issue: Volume 4, Issue 1, Year 2015
Section: Advances in Information Security Research
Page Range: 9-14 (6 pages)
Copyright ©2012-2025
The International Journal of Information Security and Cybercrime (IJISC)
All rights reserved
The International Journal of Information Security and Cybercrime is a trademark of the Romanian Association for Information Security Assurance (RAISA).
No part of this publication may be reproduced, stored in a retrieval system, photocopied, recorded or archived, without the written permission from RAISA. When authors submit their papers for publication, they agree that the copyright for their article be transferred to the Romanian Association for Information Security Assurance, if the articles are accepted for publication. The copyright covers the exclusive rights to reproduce and distribute the article, including reprints and translations.