Towards an enhancement of organizational information security through Threat Factor Profiling (TFP) model
Information security has been identified by organizations as part of internal operations that need to be well implemented and protected. This is because each day the organizations face a high probability of increase of threats to their networks and services that will lead to information security iss...
Saved in:
Main Authors: | , , , , , , , , , , , , |
---|---|
Format: | Article |
Language: | English |
Published: |
IOP Publishing
2017
|
Online Access: | http://psasir.upm.edu.my/id/eprint/63588/1/Towards%20an%20Enhancement%20of%20Organizational%20Information%20Security%20through%20Threat%20Factor%20Profiling%20%28TFP%29%20Model.pdf http://psasir.upm.edu.my/id/eprint/63588/ http://iopscience.iop.org/article/10.1088/1742-6596/892/1/012011 |
Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
Institution: | Universiti Putra Malaysia |
Language: | English |
id |
my.upm.eprints.63588 |
---|---|
record_format |
eprints |
spelling |
my.upm.eprints.635882018-11-07T08:17:04Z http://psasir.upm.edu.my/id/eprint/63588/ Towards an enhancement of organizational information security through Threat Factor Profiling (TFP) model Sidi, Fatimah Daud, Maslina Ahmad, Sabariah Zainuddin, Naqliyah Abdullah, Syafiqa Anneisa Jabar, Marzanah A. Affendey, Lilly Suriani Ishak, Iskandar Sharef, Nurfadhlina Mohd Zolkepli, Maslina Nordin, Fatin Nur Majdina Sejani, Hashimah Amat Hairani, Saiful Ramadzan Information security has been identified by organizations as part of internal operations that need to be well implemented and protected. This is because each day the organizations face a high probability of increase of threats to their networks and services that will lead to information security issues. Thus, effective information security management is required in order to protect their information assets. Threat profiling is a method that can be used by an organization to address the security challenges. Threat profiling allows analysts to understand and organize intelligent information related to threat groups. This paper presents a comparative analysis that was conducted to study the existing threat profiling models. It was found that existing threat models were constructed based on specific objectives, thus each model is limited to only certain components or factors such as assets, threat sources, countermeasures, threat agents, threat outcomes and threat actors. It is suggested that threat profiling can be improved by the combination of components found in each existing threat profiling model/framework. The proposed model can be used by an organization in executing a proactive approach to incident management. IOP Publishing 2017 Article PeerReviewed text en http://psasir.upm.edu.my/id/eprint/63588/1/Towards%20an%20Enhancement%20of%20Organizational%20Information%20Security%20through%20Threat%20Factor%20Profiling%20%28TFP%29%20Model.pdf Sidi, Fatimah and Daud, Maslina and Ahmad, Sabariah and Zainuddin, Naqliyah and Abdullah, Syafiqa Anneisa and Jabar, Marzanah A. and Affendey, Lilly Suriani and Ishak, Iskandar and Sharef, Nurfadhlina Mohd and Zolkepli, Maslina and Nordin, Fatin Nur Majdina and Sejani, Hashimah Amat and Hairani, Saiful Ramadzan (2017) Towards an enhancement of organizational information security through Threat Factor Profiling (TFP) model. Journal of Physics: Conference Series, 892. art. no. 012011. pp. 1-8. ISSN 1742-6588 http://iopscience.iop.org/article/10.1088/1742-6596/892/1/012011 10.1088/1742-6596/892/1/012011 |
institution |
Universiti Putra Malaysia |
building |
UPM Library |
collection |
Institutional Repository |
continent |
Asia |
country |
Malaysia |
content_provider |
Universiti Putra Malaysia |
content_source |
UPM Institutional Repository |
url_provider |
http://psasir.upm.edu.my/ |
language |
English |
description |
Information security has been identified by organizations as part of internal operations that need to be well implemented and protected. This is because each day the organizations face a high probability of increase of threats to their networks and services that will lead to information security issues. Thus, effective information security management is required in order to protect their information assets. Threat profiling is a method that can be used by an organization to address the security challenges. Threat profiling allows analysts to understand and organize intelligent information related to threat groups. This paper presents a comparative analysis that was conducted to study the existing threat profiling models. It was found that existing threat models were constructed based on specific objectives, thus each model is limited to only certain components or factors such as assets, threat sources, countermeasures, threat agents, threat outcomes and threat actors. It is suggested that threat profiling can be improved by the combination of components found in each existing threat profiling model/framework. The proposed model can be used by an organization in executing a proactive approach to incident management. |
format |
Article |
author |
Sidi, Fatimah Daud, Maslina Ahmad, Sabariah Zainuddin, Naqliyah Abdullah, Syafiqa Anneisa Jabar, Marzanah A. Affendey, Lilly Suriani Ishak, Iskandar Sharef, Nurfadhlina Mohd Zolkepli, Maslina Nordin, Fatin Nur Majdina Sejani, Hashimah Amat Hairani, Saiful Ramadzan |
spellingShingle |
Sidi, Fatimah Daud, Maslina Ahmad, Sabariah Zainuddin, Naqliyah Abdullah, Syafiqa Anneisa Jabar, Marzanah A. Affendey, Lilly Suriani Ishak, Iskandar Sharef, Nurfadhlina Mohd Zolkepli, Maslina Nordin, Fatin Nur Majdina Sejani, Hashimah Amat Hairani, Saiful Ramadzan Towards an enhancement of organizational information security through Threat Factor Profiling (TFP) model |
author_facet |
Sidi, Fatimah Daud, Maslina Ahmad, Sabariah Zainuddin, Naqliyah Abdullah, Syafiqa Anneisa Jabar, Marzanah A. Affendey, Lilly Suriani Ishak, Iskandar Sharef, Nurfadhlina Mohd Zolkepli, Maslina Nordin, Fatin Nur Majdina Sejani, Hashimah Amat Hairani, Saiful Ramadzan |
author_sort |
Sidi, Fatimah |
title |
Towards an enhancement of organizational information security through Threat Factor Profiling (TFP) model |
title_short |
Towards an enhancement of organizational information security through Threat Factor Profiling (TFP) model |
title_full |
Towards an enhancement of organizational information security through Threat Factor Profiling (TFP) model |
title_fullStr |
Towards an enhancement of organizational information security through Threat Factor Profiling (TFP) model |
title_full_unstemmed |
Towards an enhancement of organizational information security through Threat Factor Profiling (TFP) model |
title_sort |
towards an enhancement of organizational information security through threat factor profiling (tfp) model |
publisher |
IOP Publishing |
publishDate |
2017 |
url |
http://psasir.upm.edu.my/id/eprint/63588/1/Towards%20an%20Enhancement%20of%20Organizational%20Information%20Security%20through%20Threat%20Factor%20Profiling%20%28TFP%29%20Model.pdf http://psasir.upm.edu.my/id/eprint/63588/ http://iopscience.iop.org/article/10.1088/1742-6596/892/1/012011 |
_version_ |
1643837839063908352 |