TY - GEN
T1 - Security architecture for the protection of digital assets in SMEs
AU - Rubio, Nair
AU - Chavarria, Lurdes
AU - Mauricio Sanchez, David Santos
N1 - Publisher Copyright:
© 2020 IEEE.
Copyright:
Copyright 2020 Elsevier B.V., All rights reserved.
PY - 2020/6
Y1 - 2020/6
N2 - Currently, around 6 billion fake emails are sent around the world, resulting in data leakage losses of approximately 3 million per violated company, despite this, SMEs have reduced their budgets for security, thus being exposed to various threats. The security architectures that support companies are aimed at large organizations that have the resources to implement them, the opposite situation occurs with SMEs. This work proposes a security architecture for the protection of digital assets in SMEs, which seeks to increase the levels of effectiveness in defense mechanisms through the deployment of effective controls. The architecture is based on OSA concepts and SABSA methodology, and considers the contextual and conceptual, logical and physical layers adapted to SME. Also, consider a toolkit to support the controls. Finally, a simulation of the use of architecture for a company is carried out, thus achieving an increase in the security level from 34.90% to 67.86%.
AB - Currently, around 6 billion fake emails are sent around the world, resulting in data leakage losses of approximately 3 million per violated company, despite this, SMEs have reduced their budgets for security, thus being exposed to various threats. The security architectures that support companies are aimed at large organizations that have the resources to implement them, the opposite situation occurs with SMEs. This work proposes a security architecture for the protection of digital assets in SMEs, which seeks to increase the levels of effectiveness in defense mechanisms through the deployment of effective controls. The architecture is based on OSA concepts and SABSA methodology, and considers the contextual and conceptual, logical and physical layers adapted to SME. Also, consider a toolkit to support the controls. Finally, a simulation of the use of architecture for a company is carried out, thus achieving an increase in the security level from 34.90% to 67.86%.
KW - digital asset
KW - OSA
KW - SABSA
KW - security architecture
KW - SME
UR - http://www.scopus.com/inward/record.url?scp=85091926189&partnerID=8YFLogxK
U2 - 10.1109/ICECCE49384.2020.9179422
DO - 10.1109/ICECCE49384.2020.9179422
M3 - Contribución a la conferencia
AN - SCOPUS:85091926189
T3 - 2nd International Conference on Electrical, Communication and Computer Engineering, ICECCE 2020
BT - 2nd International Conference on Electrical, Communication and Computer Engineering, ICECCE 2020
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 12 June 2020 through 13 June 2020
ER -