Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems

Flor Nancy Diaz-Piraquive; Emanuel Ortiz-Ruiz; Jansen Jair González-Aragón; Harlinzo Hernan Avila-Bermeo; Wilmer David Parada-Jaimes

doi:10.1007/978-3-030-81635-3_29

Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems

Flor Nancy Diaz-Piraquive, Emanuel Ortiz-Ruiz, Jansen Jair González-Aragón, Harlinzo Hernan Avila-Bermeo, Wilmer David Parada-Jaimes

Producción científica: Capítulo en Libro/Reporte › Contribución a la conferencia

Resumen

The threats in cyberspace materialize big digital security threats for any organization. New computer incidents are permanently reported, visualizing the advanced technical skills of cybercriminals and the cybersecurity professionals’ response limitations. Most expensive digital security products are based on the treatment of known threats and are vulnerable to new threats known as zero-day attacks. Likewise, the human factor continues to be one of the main weaknesses when deploying IT security strategies and policies. In this way the tests or computer penetration tests are one of the most appropriate techniques to know and establish digital security mechanisms according to each organization. Therefore, the present work analyzes international standards to carry out computer vulnerability tests and proposes a methodology of ethical hacking under the postulates of gratuity and resources availability. Suggestions on the scalability of cybersecurity strategies are presented at the end of the document, considering that each organization is different and requires adaptability in the use of the available infrastructure to manage known and unknown digital risks. IRETE’s research is based on the management that must be carried out in the creation, distribution and appropriation of knowledge, through the methodology that guides the assurance of information through the PenTESTING phases. Likewise, it proposes a process that integrally integrates the collection of information from any operating system, indicating that IRETE generates information more simply and accurately from the inspection, track, examination, testing and exfiltration phases. IRETE presents a complete methodology to approach the knowledge management of a vulnerable system, which allows an in-depth review of the factors that affect the handling of information.

Idioma original	Inglés estadounidense
Título de la publicación alojada	Knowledge Management in Organizations - 15th International Conference, KMO 2021, Proceedings
Editores	Lorna Uden, I-Hsien Ting, Kai Wang
Editorial	Springer Science and Business Media Deutschland GmbH
Páginas	354-365
Número de páginas	12
ISBN (versión impresa)	9783030816346
DOI	https://doi.org/10.1007/978-3-030-81635-3_29
Estado	Publicada - 2021
Publicado de forma externa	Sí
Evento	15th International Conference on Knowledge Management in Organizations, KMO 2021 - Kaohsiung, Taiwán Duración: jul. 20 2021 → jul. 22 2021

Serie de la publicación

Nombre	Communications in Computer and Information Science
Volumen	1438
ISSN (versión impresa)	1865-0929
ISSN (versión digital)	1865-0937

Conferencia

Conferencia	15th International Conference on Knowledge Management in Organizations, KMO 2021
País/Territorio	Taiwán
Ciudad	Kaohsiung
Período	7/20/21 → 7/22/21

Áreas temáticas de ASJC Scopus

Ciencia de la Computación General
Matemáticas General

ODS de las Naciones Unidas

Este resultado contribuye a los siguientes Objetivos de Desarrollo Sostenible

Acceder al documento

10.1007/978-3-030-81635-3_29

Otros archivos y enlaces

Citar esto

Diaz-Piraquive, F. N., Ortiz-Ruiz, E., González-Aragón, J. J., Avila-Bermeo, H. H., & Parada-Jaimes, W. D. (2021). Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems. En L. Uden, I.-H. Ting, & K. Wang (Eds.), Knowledge Management in Organizations - 15th International Conference, KMO 2021, Proceedings (pp. 354-365). (Communications in Computer and Information Science; Vol. 1438). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-030-81635-3_29

Diaz-Piraquive, Flor Nancy ; Ortiz-Ruiz, Emanuel ; González-Aragón, Jansen Jair et al. / Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems. Knowledge Management in Organizations - 15th International Conference, KMO 2021, Proceedings. editor / Lorna Uden ; I-Hsien Ting ; Kai Wang. Springer Science and Business Media Deutschland GmbH, 2021. pp. 354-365 (Communications in Computer and Information Science).

@inproceedings{27bbb6f184ce4d79b64ce35a736adf23,

title = "Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems",

abstract = "The threats in cyberspace materialize big digital security threats for any organization. New computer incidents are permanently reported, visualizing the advanced technical skills of cybercriminals and the cybersecurity professionals{\textquoteright} response limitations. Most expensive digital security products are based on the treatment of known threats and are vulnerable to new threats known as zero-day attacks. Likewise, the human factor continues to be one of the main weaknesses when deploying IT security strategies and policies. In this way the tests or computer penetration tests are one of the most appropriate techniques to know and establish digital security mechanisms according to each organization. Therefore, the present work analyzes international standards to carry out computer vulnerability tests and proposes a methodology of ethical hacking under the postulates of gratuity and resources availability. Suggestions on the scalability of cybersecurity strategies are presented at the end of the document, considering that each organization is different and requires adaptability in the use of the available infrastructure to manage known and unknown digital risks. IRETE{\textquoteright}s research is based on the management that must be carried out in the creation, distribution and appropriation of knowledge, through the methodology that guides the assurance of information through the PenTESTING phases. Likewise, it proposes a process that integrally integrates the collection of information from any operating system, indicating that IRETE generates information more simply and accurately from the inspection, track, examination, testing and exfiltration phases. IRETE presents a complete methodology to approach the knowledge management of a vulnerable system, which allows an in-depth review of the factors that affect the handling of information.",

author = "Diaz-Piraquive, {Flor Nancy} and Emanuel Ortiz-Ruiz and Gonz{\'a}lez-Arag{\'o}n, {Jansen Jair} and Avila-Bermeo, {Harlinzo Hernan} and Parada-Jaimes, {Wilmer David}",

note = "Publisher Copyright: {\textcopyright} 2021, Springer Nature Switzerland AG.; 15th International Conference on Knowledge Management in Organizations, KMO 2021 ; Conference date: 20-07-2021 Through 22-07-2021",

year = "2021",

doi = "10.1007/978-3-030-81635-3_29",

language = "English (US)",

isbn = "9783030816346",

series = "Communications in Computer and Information Science",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "354--365",

editor = "Lorna Uden and I-Hsien Ting and Kai Wang",

booktitle = "Knowledge Management in Organizations - 15th International Conference, KMO 2021, Proceedings",

address = "Germany",

}

Diaz-Piraquive, FN, Ortiz-Ruiz, E, González-Aragón, JJ, Avila-Bermeo, HH & Parada-Jaimes, WD 2021, Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems. En L Uden, I-H Ting & K Wang (eds.), Knowledge Management in Organizations - 15th International Conference, KMO 2021, Proceedings. Communications in Computer and Information Science, vol. 1438, Springer Science and Business Media Deutschland GmbH, pp. 354-365, 15th International Conference on Knowledge Management in Organizations, KMO 2021, Kaohsiung, Taiwán, 7/20/21. https://doi.org/10.1007/978-3-030-81635-3_29

Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems. / Diaz-Piraquive, Flor Nancy; Ortiz-Ruiz, Emanuel; González-Aragón, Jansen Jair et al.
Knowledge Management in Organizations - 15th International Conference, KMO 2021, Proceedings. ed. / Lorna Uden; I-Hsien Ting; Kai Wang. Springer Science and Business Media Deutschland GmbH, 2021. p. 354-365 (Communications in Computer and Information Science; Vol. 1438).

Producción científica: Capítulo en Libro/Reporte › Contribución a la conferencia

TY - GEN

T1 - Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems

AU - Diaz-Piraquive, Flor Nancy

AU - Ortiz-Ruiz, Emanuel

AU - González-Aragón, Jansen Jair

AU - Avila-Bermeo, Harlinzo Hernan

AU - Parada-Jaimes, Wilmer David

PY - 2021

Y1 - 2021

N2 - The threats in cyberspace materialize big digital security threats for any organization. New computer incidents are permanently reported, visualizing the advanced technical skills of cybercriminals and the cybersecurity professionals’ response limitations. Most expensive digital security products are based on the treatment of known threats and are vulnerable to new threats known as zero-day attacks. Likewise, the human factor continues to be one of the main weaknesses when deploying IT security strategies and policies. In this way the tests or computer penetration tests are one of the most appropriate techniques to know and establish digital security mechanisms according to each organization. Therefore, the present work analyzes international standards to carry out computer vulnerability tests and proposes a methodology of ethical hacking under the postulates of gratuity and resources availability. Suggestions on the scalability of cybersecurity strategies are presented at the end of the document, considering that each organization is different and requires adaptability in the use of the available infrastructure to manage known and unknown digital risks. IRETE’s research is based on the management that must be carried out in the creation, distribution and appropriation of knowledge, through the methodology that guides the assurance of information through the PenTESTING phases. Likewise, it proposes a process that integrally integrates the collection of information from any operating system, indicating that IRETE generates information more simply and accurately from the inspection, track, examination, testing and exfiltration phases. IRETE presents a complete methodology to approach the knowledge management of a vulnerable system, which allows an in-depth review of the factors that affect the handling of information.

AB - The threats in cyberspace materialize big digital security threats for any organization. New computer incidents are permanently reported, visualizing the advanced technical skills of cybercriminals and the cybersecurity professionals’ response limitations. Most expensive digital security products are based on the treatment of known threats and are vulnerable to new threats known as zero-day attacks. Likewise, the human factor continues to be one of the main weaknesses when deploying IT security strategies and policies. In this way the tests or computer penetration tests are one of the most appropriate techniques to know and establish digital security mechanisms according to each organization. Therefore, the present work analyzes international standards to carry out computer vulnerability tests and proposes a methodology of ethical hacking under the postulates of gratuity and resources availability. Suggestions on the scalability of cybersecurity strategies are presented at the end of the document, considering that each organization is different and requires adaptability in the use of the available infrastructure to manage known and unknown digital risks. IRETE’s research is based on the management that must be carried out in the creation, distribution and appropriation of knowledge, through the methodology that guides the assurance of information through the PenTESTING phases. Likewise, it proposes a process that integrally integrates the collection of information from any operating system, indicating that IRETE generates information more simply and accurately from the inspection, track, examination, testing and exfiltration phases. IRETE presents a complete methodology to approach the knowledge management of a vulnerable system, which allows an in-depth review of the factors that affect the handling of information.

UR - http://www.scopus.com/inward/record.url?scp=85113529597&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85113529597&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-81635-3_29

DO - 10.1007/978-3-030-81635-3_29

M3 - Conference contribution

AN - SCOPUS:85113529597

SN - 9783030816346

T3 - Communications in Computer and Information Science

SP - 354

EP - 365

BT - Knowledge Management in Organizations - 15th International Conference, KMO 2021, Proceedings

A2 - Uden, Lorna

A2 - Ting, I-Hsien

A2 - Wang, Kai

PB - Springer Science and Business Media Deutschland GmbH

T2 - 15th International Conference on Knowledge Management in Organizations, KMO 2021

Y2 - 20 July 2021 through 22 July 2021

ER -

Diaz-Piraquive FN, Ortiz-Ruiz E, González-Aragón JJ, Avila-Bermeo HH, Parada-Jaimes WD. Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems. En Uden L, Ting IH, Wang K, editores, Knowledge Management in Organizations - 15th International Conference, KMO 2021, Proceedings. Springer Science and Business Media Deutschland GmbH. 2021. p. 354-365. (Communications in Computer and Information Science). doi: 10.1007/978-3-030-81635-3_29

Knowledge Management Applied in the Comparative Study of the IRETE Intrusion Methodology to Access to the Computer Systems

Resumen

Serie de la publicación

Conferencia

Áreas temáticas de ASJC Scopus

ODS de las Naciones Unidas

Acceder al documento

Otros archivos y enlaces

Huella

Citar esto