Preparation, Modelling, and Visualisation of Cyber Common Operating Pictures for National Cyber Security Centres

Abstract:

Common Operating Pictures (COPs) have long been a common denominator of effective cyber defence operations (for example, in law enforcement and the military). COPs are widely used to represent, visualise, and assess situations. In recent years, Cyber COPs (CCOPs) have become important in establishing cyber situational awareness. This paper describes the information types and sources required for an efficient information management process supporting CCOPs. Following an initial description of CCOPs, the paper next discusses potential decisions supported by them. Finally, it provides an example of the entire process—from the application of the information management process to national decision-making.


AUTHORS

Photo of Timea Pahi

Center for Digital Safety & Security AIT Austrian Institute of Technology Vienna,
Austria

Timea Pahi is a Junior Scientist at the Austrian Institute of Technology and is working on several research projects focusing on national cyber security, the protection of critical infrastructures, and cyber situational awareness.

Photo of Dr. Maria Leitner

Center for Digital Safety & Security AIT Austrian Institute of Technology Vienna,
Austria

Dr. Maria Leitner is a Scientist in the Center for Digital Safety & Security at AIT Austrian Institute of Technology. She earned a doctorate in Computer Science in 2015 from the University of Vienna. Her thesis focused on the integration and life-cycle management of security policies in process- aware information systems in order to ensure holistic security-policy management in organisations. Prior to joining AIT, she was a Researcher at SBA Research and a Research Assistant in the Workflow Systems and Technology Group in the Faculty of Computer Science at the University of Vienna. She is currently coordinating and working on national and international research projects in the areas of situational awareness, cyber defence, ICS security and identity management. She is representing AIT in the European Cyber Security Organisation (ECSO) Working Group 5 (Education, training, awareness, exercise) and in the Cyber Security Platform Austria. She is a member of the ACM and has published more than 25 refereed articles, conference papers, and workshop papers.

Photo of Dr. Florian Skopik

Center for Digital Safety & Security AIT Austrian Institute of Technology Vienna,
Austria

Dr. Florian Skopik is Senior Scientist and Team Lead of the ICT Security Research Group at the Austrian Institute of Technology (AIT), where he coordinates national and largescale international research projects, as well as the overall research direction of the team. His research topics include critical infrastructure protection, smart grid security, and national cyber security and defense. Due to this research focus, the ICT Security Research Team works in close collaboration with national authorities, such as the Ministry of the Interior and the Ministry of Defense. He published more than 100 scientific  conference papers and journal articles and holds some 30 industry-recognized security certifications, including Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), ISA/IEC 62443 Security Specialist, and CCNP Security. In 2017 he finished a professional degree in Advanced Computer Security at Stanford  University.  Mr.  Skopik  is  a  member  of various conference program committees and editorial boards, as well as standardization groups, such as ETSI TC Cyber and OASIS CTI. He frequently serves as a reviewer for numerous high-profile journals, including Elsevier’s  Computers  &  Security.  He  is  registered subject  matter  expert  of  ENISA  (ENISA  M-CEI-17- T01) in the areas of new ICTs and emerging application areas as well as Critical Information Infrastructure Protection (CIIP) and CSIRTs cooperation. As an invited reviewer, he evaluates research project proposals for numerous nation-al research funding agencies, including the Austrian agency for international mobility and cooperation in education (OEAD), the Czech Science Foundation,   and   the  European  Science  Foundation (ESF), as well as the EC’s Horizon 2020 programme. Mr. Skopik is an IEEE Senior Member, a member of the Association for Computing Machinery (ACM), of (ISC)2, of ISACA, and of the International Society of Automation (ISA).

Journal of Information Warfare

The definitive publication for the best and latest research and analysis on information warfare, information operations, and cyber crime. Available in traditional hard copy or online.

Quick Links

View the latest issue of JIW.

Latest Edition

Purchase a subscription to JIW.

Subscribe

Keywords

A

AI
APT

C

C2
C2S
CDX
CIA
CIP
CPS

D

DNS
DoD
DoS

I

IA
ICS

M

P

PDA

S

SOA

X

XRY

Quill Logo

The definitive publication for the best and latest research and analysis on information warfare, information operations, and cyber crime. Available in traditional hard copy or online.

SUBSCRIBE NOW

Get in touch

Registered Agent and Mailing Address

  • Journal of Information Warfare
  •  ArmisteadTEC
  • Dr Leigh Armistead, President
  • 1624 Wakefield Drive
  • Virginia Beach, VA 23455

 757.510.4574

 JIW@ArmisteadTec.com