Rethinking Security Incident Response: The Integration of Agile Principles

In today's globally networked environment, information security incidents can inflict staggering financial losses on organizations. Industry reports indicate that fundamental problems exist with the application of current linear plan-driven security incident response approaches being applied in many organizations. Researchers argue that traditional approaches value containment and eradication over incident learning. While previous security incident response research focused on best practice development, linear plan-driven approaches and the technical aspects of security incident response, very little research investigates the integration of agile principles and practices into the security incident response process. This paper proposes that the integration of disciplined agile principles and practices into the security incident response process is a practical solution to strengthening an organization's security incident response posture.Comment: Paper presented at the 20th Americas Conference on Information Systems (AMCIS 2014), Savannah, Georgi

Fundamentals of Earth Observation Policy: Examples for German and European Missions

Several European countries have developed their national high resolution earth observation systems. Some of them are operated in close cooperation with industrial partners, others are dual-use missions earmarked to fulfil the needs of national security. In addition, the European Space Agency and the European Commission have initiated the Global Monitoring for Environment and Security (GMES) project. Therein, a fleet of satellites (SENTINELs) will deliver data for European wide information services, augmented by data from national and non-European earth observation systems. This new scenario needs clear guidance and regulations. Besides the principles for operations of earth observation missions – as set out in UN principles on earth observation – the operators of very high resolution missions require clear governmental acts which international users can be served and which data might be restricted in distribution. For national science and the SENTINEL-missions, a policy for free and open access is being developed to guarantee a maximum use of the data. Exemplified on the German national missions and the European GMES scenario, data policies and regulations for existing and new earth observation missions will be explained

Formulating a Strategy for Securing High-Speed Rail in the United States, Research Report 12-03

This report presents an analysis of information relating to attacks, attempted attacks, and plots against high-speed rail (HSR) systems. It draws upon empirical data from MTI’s Database of Terrorist and Serious Criminal Attacks Against Public Surface Transportation and from reviews of selected HSR systems, including onsite observations. The report also examines the history of safety accidents and other HSR incidents that resulted in fatalities, injuries, or extensive asset damage to examine the inherent vulnerabilities (and strengths) of HSR systems and how these might affect the consequences of terrorist attacks. The study is divided into three parts: (1) an examination of security principles and measures; (2) an empirical examination of 33 attacks against HSR targets and a comparison of attacks against HSR targets with those against non-HSR targets; and (3) an examination of 73 safety incidents on 12 HRS systems. The purpose of this study is to develop an overall strategy for HSR security and to identify measures that could be applied to HSR systems currently under development in the United States. It is hoped that the report will provide useful guidance to both governmental authorities and transportation operators of current and future HSR systems

Secured and efficient information exchanges in collaborative networks: the singular information system

Information exchange is the object of intensive research from quite separated communities, dealing for instance with connected objects, interoperability of industrial information systems, personal information systems or data security. A unified framework, defining the conditions of interrelations of elementary information systems, could allow to address these problems with a holistic view. In that purpose, we suggest the concept of Singular Information System (SIS) and give the basic principles allowing the connection of two SIS. We show then how exchanges of information between objects, persons and organizations may benefit from such a unified paradigm