Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems

Flor Nancy Diaz-Piraquive; Emanuel Ortiz-Ruiz; Jansen Jair González-Aragón; Harlinzo Hernan Avila-Bermeo; Wilmer David Parada-Jaimes

doi:10.1007/978-3-030-81635-3_29

Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems

Flor Nancy Diaz-Piraquive, Emanuel Ortiz-Ruiz, Jansen Jair González-Aragón, Harlinzo Hernan Avila-Bermeo, Wilmer David Parada-Jaimes

Research output: Chapter in Book/Report › Conference contribution

Abstract

The threats in cyberspace materialize big digital security threats for any organization. New computer incidents are permanently reported, visualizing the advanced technical skills of cybercriminals and the cybersecurity professionals’ response limitations. Most expensive digital security products are based on the treatment of known threats and are vulnerable to new threats known as zero-day attacks. Likewise, the human factor continues to be one of the main weaknesses when deploying IT security strategies and policies. In this way the tests or computer penetration tests are one of the most appropriate techniques to know and establish digital security mechanisms according to each organization. Therefore, the present work analyzes international standards to carry out computer vulnerability tests and proposes a methodology of ethical hacking under the postulates of gratuity and resources availability. Suggestions on the scalability of cybersecurity strategies are presented at the end of the document, considering that each organization is different and requires adaptability in the use of the available infrastructure to manage known and unknown digital risks. IRETE’s research is based on the management that must be carried out in the creation, distribution and appropriation of knowledge, through the methodology that guides the assurance of information through the PenTESTING phases. Likewise, it proposes a process that integrally integrates the collection of information from any operating system, indicating that IRETE generates information more simply and accurately from the inspection, track, examination, testing and exfiltration phases. IRETE presents a complete methodology to approach the knowledge management of a vulnerable system, which allows an in-depth review of the factors that affect the handling of information.

Original language	English (US)
Title of host publication	Knowledge Management in Organizations - 15th International Conference, KMO 2021, Proceedings
Editors	Lorna Uden, I-Hsien Ting, Kai Wang
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	354-365
Number of pages	12
ISBN (Print)	9783030816346
DOIs	https://doi.org/10.1007/978-3-030-81635-3_29
State	Published - 2021
Externally published	Yes
Event	15th International Conference on Knowledge Management in Organizations, KMO 2021 - Kaohsiung, Taiwan, Province of China Duration: Jul 20 2021 → Jul 22 2021

Publication series

Name	Communications in Computer and Information Science
Volume	1438
ISSN (Print)	1865-0929
ISSN (Electronic)	1865-0937

Conference

Conference	15th International Conference on Knowledge Management in Organizations, KMO 2021
Country/Territory	Taiwan, Province of China
City	Kaohsiung
Period	7/20/21 → 7/22/21

All Science Journal Classification (ASJC) codes

General Computer Science
General Mathematics

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

Access to Document

10.1007/978-3-030-81635-3_29

Cite this

Diaz-Piraquive, F. N., Ortiz-Ruiz, E., González-Aragón, J. J., Avila-Bermeo, H. H., & Parada-Jaimes, W. D. (2021). Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems. In L. Uden, I.-H. Ting, & K. Wang (Eds.), Knowledge Management in Organizations - 15th International Conference, KMO 2021, Proceedings (pp. 354-365). (Communications in Computer and Information Science; Vol. 1438). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-030-81635-3_29

Diaz-Piraquive, Flor Nancy ; Ortiz-Ruiz, Emanuel ; González-Aragón, Jansen Jair et al. / Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems. Knowledge Management in Organizations - 15th International Conference, KMO 2021, Proceedings. editor / Lorna Uden ; I-Hsien Ting ; Kai Wang. Springer Science and Business Media Deutschland GmbH, 2021. pp. 354-365 (Communications in Computer and Information Science).

@inproceedings{27bbb6f184ce4d79b64ce35a736adf23,

title = "Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems",

abstract = "The threats in cyberspace materialize big digital security threats for any organization. New computer incidents are permanently reported, visualizing the advanced technical skills of cybercriminals and the cybersecurity professionals{\textquoteright} response limitations. Most expensive digital security products are based on the treatment of known threats and are vulnerable to new threats known as zero-day attacks. Likewise, the human factor continues to be one of the main weaknesses when deploying IT security strategies and policies. In this way the tests or computer penetration tests are one of the most appropriate techniques to know and establish digital security mechanisms according to each organization. Therefore, the present work analyzes international standards to carry out computer vulnerability tests and proposes a methodology of ethical hacking under the postulates of gratuity and resources availability. Suggestions on the scalability of cybersecurity strategies are presented at the end of the document, considering that each organization is different and requires adaptability in the use of the available infrastructure to manage known and unknown digital risks. IRETE{\textquoteright}s research is based on the management that must be carried out in the creation, distribution and appropriation of knowledge, through the methodology that guides the assurance of information through the PenTESTING phases. Likewise, it proposes a process that integrally integrates the collection of information from any operating system, indicating that IRETE generates information more simply and accurately from the inspection, track, examination, testing and exfiltration phases. IRETE presents a complete methodology to approach the knowledge management of a vulnerable system, which allows an in-depth review of the factors that affect the handling of information.",

author = "Diaz-Piraquive, {Flor Nancy} and Emanuel Ortiz-Ruiz and Gonz{\'a}lez-Arag{\'o}n, {Jansen Jair} and Avila-Bermeo, {Harlinzo Hernan} and Parada-Jaimes, {Wilmer David}",

note = "Publisher Copyright: {\textcopyright} 2021, Springer Nature Switzerland AG.; 15th International Conference on Knowledge Management in Organizations, KMO 2021 ; Conference date: 20-07-2021 Through 22-07-2021",

year = "2021",

doi = "10.1007/978-3-030-81635-3_29",

language = "English (US)",

isbn = "9783030816346",

series = "Communications in Computer and Information Science",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "354--365",

editor = "Lorna Uden and I-Hsien Ting and Kai Wang",

booktitle = "Knowledge Management in Organizations - 15th International Conference, KMO 2021, Proceedings",

address = "Germany",

}

Diaz-Piraquive, FN, Ortiz-Ruiz, E, González-Aragón, JJ, Avila-Bermeo, HH & Parada-Jaimes, WD 2021, Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems. in L Uden, I-H Ting & K Wang (eds), Knowledge Management in Organizations - 15th International Conference, KMO 2021, Proceedings. Communications in Computer and Information Science, vol. 1438, Springer Science and Business Media Deutschland GmbH, pp. 354-365, 15th International Conference on Knowledge Management in Organizations, KMO 2021, Kaohsiung, Taiwan, Province of China, 7/20/21. https://doi.org/10.1007/978-3-030-81635-3_29

Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems. / Diaz-Piraquive, Flor Nancy; Ortiz-Ruiz, Emanuel; González-Aragón, Jansen Jair et al.
Knowledge Management in Organizations - 15th International Conference, KMO 2021, Proceedings. ed. / Lorna Uden; I-Hsien Ting; Kai Wang. Springer Science and Business Media Deutschland GmbH, 2021. p. 354-365 (Communications in Computer and Information Science; Vol. 1438).

Research output: Chapter in Book/Report › Conference contribution

TY - GEN

T1 - Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems

AU - Diaz-Piraquive, Flor Nancy

AU - Ortiz-Ruiz, Emanuel

AU - González-Aragón, Jansen Jair

AU - Avila-Bermeo, Harlinzo Hernan

AU - Parada-Jaimes, Wilmer David

PY - 2021

Y1 - 2021

N2 - The threats in cyberspace materialize big digital security threats for any organization. New computer incidents are permanently reported, visualizing the advanced technical skills of cybercriminals and the cybersecurity professionals’ response limitations. Most expensive digital security products are based on the treatment of known threats and are vulnerable to new threats known as zero-day attacks. Likewise, the human factor continues to be one of the main weaknesses when deploying IT security strategies and policies. In this way the tests or computer penetration tests are one of the most appropriate techniques to know and establish digital security mechanisms according to each organization. Therefore, the present work analyzes international standards to carry out computer vulnerability tests and proposes a methodology of ethical hacking under the postulates of gratuity and resources availability. Suggestions on the scalability of cybersecurity strategies are presented at the end of the document, considering that each organization is different and requires adaptability in the use of the available infrastructure to manage known and unknown digital risks. IRETE’s research is based on the management that must be carried out in the creation, distribution and appropriation of knowledge, through the methodology that guides the assurance of information through the PenTESTING phases. Likewise, it proposes a process that integrally integrates the collection of information from any operating system, indicating that IRETE generates information more simply and accurately from the inspection, track, examination, testing and exfiltration phases. IRETE presents a complete methodology to approach the knowledge management of a vulnerable system, which allows an in-depth review of the factors that affect the handling of information.

AB - The threats in cyberspace materialize big digital security threats for any organization. New computer incidents are permanently reported, visualizing the advanced technical skills of cybercriminals and the cybersecurity professionals’ response limitations. Most expensive digital security products are based on the treatment of known threats and are vulnerable to new threats known as zero-day attacks. Likewise, the human factor continues to be one of the main weaknesses when deploying IT security strategies and policies. In this way the tests or computer penetration tests are one of the most appropriate techniques to know and establish digital security mechanisms according to each organization. Therefore, the present work analyzes international standards to carry out computer vulnerability tests and proposes a methodology of ethical hacking under the postulates of gratuity and resources availability. Suggestions on the scalability of cybersecurity strategies are presented at the end of the document, considering that each organization is different and requires adaptability in the use of the available infrastructure to manage known and unknown digital risks. IRETE’s research is based on the management that must be carried out in the creation, distribution and appropriation of knowledge, through the methodology that guides the assurance of information through the PenTESTING phases. Likewise, it proposes a process that integrally integrates the collection of information from any operating system, indicating that IRETE generates information more simply and accurately from the inspection, track, examination, testing and exfiltration phases. IRETE presents a complete methodology to approach the knowledge management of a vulnerable system, which allows an in-depth review of the factors that affect the handling of information.

UR - http://www.scopus.com/inward/record.url?scp=85113529597&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85113529597&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-81635-3_29

DO - 10.1007/978-3-030-81635-3_29

M3 - Conference contribution

AN - SCOPUS:85113529597

SN - 9783030816346

T3 - Communications in Computer and Information Science

SP - 354

EP - 365

BT - Knowledge Management in Organizations - 15th International Conference, KMO 2021, Proceedings

A2 - Uden, Lorna

A2 - Ting, I-Hsien

A2 - Wang, Kai

PB - Springer Science and Business Media Deutschland GmbH

T2 - 15th International Conference on Knowledge Management in Organizations, KMO 2021

Y2 - 20 July 2021 through 22 July 2021

ER -

Diaz-Piraquive FN, Ortiz-Ruiz E, González-Aragón JJ, Avila-Bermeo HH, Parada-Jaimes WD. Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems. In Uden L, Ting IH, Wang K, editors, Knowledge Management in Organizations - 15th International Conference, KMO 2021, Proceedings. Springer Science and Business Media Deutschland GmbH. 2021. p. 354-365. (Communications in Computer and Information Science). doi: 10.1007/978-3-030-81635-3_29

Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems

Abstract

Publication series

Conference

All Science Journal Classification (ASJC) codes

UN SDGs

Access to Document

Other files and links

Fingerprint

Cite this