| Title | A Framework for Making Effective Responses to Cyberattacks |
| Publication Type | Conference Paper |
| Year of Publication | 2018 |
| Authors | Herald, N. E., David, M. W. |
| Conference Name | 2018 IEEE International Conference on Big Data (Big Data) |
| Date Published | dec |
| Keywords | Analysis, attribution, attribution confidence, Big Data, Companies, composability, Computer crime, Computer hacking, cyberattack, decision makers, decision making, deterrence, effective response decision, Escalation, Government, Human Behavior, human-in-the-loop security center paradigm, Market research, Metrics, national intelligence community, policymakers, private sector, pubcrawl, Response, risk, security of data, suspected attacker, U.S. government, USG |
| Abstract | The process for determining how to respond to a cyberattack involves evaluating many factors, including some with competing risks. Consequentially, decision makers in the private sector and policymakers in the U.S. government (USG) need a framework in order to make effective response decisions. The authors' research identified two competing risks: 1) the risk of not responding forcefully enough to deter a suspected attacker, and 2) responding in a manner that escalates a situation with an attacker. The authors also identified three primary factors that influence these risks: attribution confidence/time, the scale of the attack, and the relationship with the suspected attacker. This paper provides a framework to help decision makers understand how these factors interact to influence the risks associated with potential response options to cyberattacks. The views expressed do not reflect the official policy or position of the National Intelligence University, the Department of Defense, the U.S. Intelligence Community, or the U.S. Government. |
| DOI | 10.1109/BigData.2018.8622537 |
| Citation Key | herald_framework_2018 |
A Framework for Making Effective Responses to Cyberattacks