A Systematic Mapping Study on Cyber Security Indicator Data

A Systematic Mapping Study on Cyber Security Indicator Data

A security indicator is a sign that shows us what something is like or how a situation is changing and can aid us in making informed estimations on cyber risks. There are many different breeds of security indicators, but, unfortunately, they are not always easy to apply due to a lack of available or...

Full description

Bibliographic Details
Main Authors: Per Håkon Meland, Shukun Tokas, Gencer Erdogan, Karin Bernsmed, Aida Omerovic
Format: Article
Language:English
Published: MDPI AG 2021-05-01
Series:Electronics
Subjects:
threat intelligence
data-driven decision making
risk management
data sources
trends
Online Access:https://www.mdpi.com/2079-9292/10/9/1092
id doaj-f1a95faddae24ba79a1c7ae7f500d24a
record_format Article
spelling doaj-f1a95faddae24ba79a1c7ae7f500d24a2021-05-31T23:15:44ZengMDPI AGElectronics2079-92922021-05-01101092109210.3390/electronics10091092A Systematic Mapping Study on Cyber Security Indicator DataPer Håkon Meland0Shukun Tokas1Gencer Erdogan2Karin Bernsmed3Aida Omerovic4Software Engineering, Safety and Security, SINTEF Digital, Strindvegen 4, NO-7465 Trondheim, NorwaySoftware and Service Innovation, SINTEF Digital, Forskningsveien 1, NO-0314 Oslo, NorwaySoftware and Service Innovation, SINTEF Digital, Forskningsveien 1, NO-0314 Oslo, NorwaySoftware Engineering, Safety and Security, SINTEF Digital, Strindvegen 4, NO-7465 Trondheim, NorwayNorwegian Computing Center, Gaustadalleen 23a, NO-0373 Oslo, NorwayA security indicator is a sign that shows us what something is like or how a situation is changing and can aid us in making informed estimations on cyber risks. There are many different breeds of security indicators, but, unfortunately, they are not always easy to apply due to a lack of available or credible sources of data. This paper undertakes a systematic mapping study on the academic literature related to cyber security indicator data. We identified 117 primary studies from the past five years as relevant to answer our research questions. They were classified according to a set of categories related to research type, domain, data openness, usage, source, type and content. Our results show a linear growth of publications per year, where most indicators are based on free or internal technical data that are domain independent. While these indicators can give valuable information about the contemporary cyber risk, the increasing usage of unconventional data sources and threat intelligence feeds of more strategic and tactical nature represent a more forward-looking trend. In addition, there is a need to take methods and techniques developed by the research community from the conceptual plane and make them practical enough for real-world application.https://www.mdpi.com/2079-9292/10/9/1092threat intelligencedata-driven decision makingrisk managementdata sourcestrends
collection DOAJ
language English
format Article
sources DOAJ
author Per Håkon Meland
Shukun Tokas
Gencer Erdogan
Karin Bernsmed
Aida Omerovic
spellingShingle Per Håkon Meland
Shukun Tokas
Gencer Erdogan
Karin Bernsmed
Aida Omerovic
A Systematic Mapping Study on Cyber Security Indicator Data
Electronics
threat intelligence
data-driven decision making
risk management
data sources
trends
author_facet Per Håkon Meland
Shukun Tokas
Gencer Erdogan
Karin Bernsmed
Aida Omerovic
author_sort Per Håkon Meland
title A Systematic Mapping Study on Cyber Security Indicator Data
title_short A Systematic Mapping Study on Cyber Security Indicator Data
title_full A Systematic Mapping Study on Cyber Security Indicator Data
title_fullStr A Systematic Mapping Study on Cyber Security Indicator Data
title_full_unstemmed A Systematic Mapping Study on Cyber Security Indicator Data
title_sort systematic mapping study on cyber security indicator data
publisher MDPI AG
series Electronics
issn 2079-9292
publishDate 2021-05-01
description A security indicator is a sign that shows us what something is like or how a situation is changing and can aid us in making informed estimations on cyber risks. There are many different breeds of security indicators, but, unfortunately, they are not always easy to apply due to a lack of available or credible sources of data. This paper undertakes a systematic mapping study on the academic literature related to cyber security indicator data. We identified 117 primary studies from the past five years as relevant to answer our research questions. They were classified according to a set of categories related to research type, domain, data openness, usage, source, type and content. Our results show a linear growth of publications per year, where most indicators are based on free or internal technical data that are domain independent. While these indicators can give valuable information about the contemporary cyber risk, the increasing usage of unconventional data sources and threat intelligence feeds of more strategic and tactical nature represent a more forward-looking trend. In addition, there is a need to take methods and techniques developed by the research community from the conceptual plane and make them practical enough for real-world application.
topic threat intelligence
data-driven decision making
risk management
data sources
trends
url https://www.mdpi.com/2079-9292/10/9/1092
work_keys_str_mv AT perhakonmeland asystematicmappingstudyoncybersecurityindicatordata
AT shukuntokas asystematicmappingstudyoncybersecurityindicatordata
AT gencererdogan asystematicmappingstudyoncybersecurityindicatordata
AT karinbernsmed asystematicmappingstudyoncybersecurityindicatordata
AT aidaomerovic asystematicmappingstudyoncybersecurityindicatordata
AT perhakonmeland systematicmappingstudyoncybersecurityindicatordata
AT shukuntokas systematicmappingstudyoncybersecurityindicatordata
AT gencererdogan systematicmappingstudyoncybersecurityindicatordata
AT karinbernsmed systematicmappingstudyoncybersecurityindicatordata
AT aidaomerovic systematicmappingstudyoncybersecurityindicatordata
_version_ 1721418015200772096

Similar Items