Systems engineering security framework for analyzing and combating cyber threats on big data

Abstract

In this era of Big Data, where substantial proportions of unprecedented complex digital information are generated on daily basis via distinct resources; involving medicine, business, government and social media etc., many complications may arise. This massive volume of data is generated in various forms, making the storage and processing of digital information challenging. Alongside that, the data, as well as the system where the data is stored or processed, are prone to the prevailing cyber-attacks, compromising the confidentiality, privacy, integrity or protection. The security tactics, tools, and systems that are presently being utilized for combating the forthcoming vulnerabilities are either not used in a formalized manner or efficient enough. Thus, the focus of this research is to provide a framework that offers a secure and efficient approach for detecting and analyzing the cyber-attacks causing Big Data infiltrations instigated through social engineering techniques; phishing in particular. Furthermore, it will provide various possible solutions for combating those phishing attacks. The proposed framework is made by employing Systems Security Engineering Framework (2016) [1] and Framework for Improving Critical Infrastructure Cybersecurity (2014) [2] by NIST to warrant systematization to contrast and analyze the existing approaches and form a methodological principled way to combat phishing on Big Data.