Many standards exist to guide the process of risk assessment, particularly in the field of information security. This leads to many, subtly different, definitions of risk analysis, evaluation and assessment. Consequently, researchers often confuse these terms and disciplines, which leads to further confusion within the community. In this sense, it is important to come to a common understanding ...

Industrial Control Systems (ICS) monitor and control industrial processes, and enable automation in industry facilities. Many of these facilities are regarded as Critical Infrastructures (CIs). Due to the increasing use of Commercial-Off-The-Shelf (COTS) IT products and connectivity offerings, CIs have become an attractive target for cyberattacks. A successful attack could have significant cons...

Success of IT security not only depends on the evolution of technologies, but also relies on the knowledge of IT-Personnel and the level of their IT-security education. In order to deliver IT students and professionals hands-on experience of security technologies and tools by electronic means, this paper proposes the concept of a virtual laboratory and discusses its application in practical IT ...

Information security is one of the most important aspects of technology, we cannot protect the best interests of our organizations' assets (be that personnel, data, or other resources), without ensuring that these assetsare protected to the best of their ability. Within the Defense Department, this is vital to the security of not just those assets but also the national security of the United St...

IT security incidents are increasing nearly exponentially. With this increase, the importance of data accessibility, confidentiality, integrity, and authenticity grows. IT-based learning systems are especially endangered through intentional destructive actions. A basic condition to guarantee the security of personal data is the compliance with national laws and international regulations, especi...

103 The major benefits of knowledge management, particularly as it pertains to security measures, makes it critical that organizations have a mechanism for defining and identifying knowledge needs. With the explosion of the Internet and Web technologies as a medium of exchange, issues related to IT security have been growing exponentially. Protecting the organization's IT infrastructure from ha...