Cost-Effective Resilience: A Comprehensive Survey and Tutorial on Assessing Open-Source Cybersecurity Tools for Multi-Tiered Defense

In the digital age, cybersecurity threats evolve at a rapid pace, presenting challenges that outstrip traditional defense measures. Despite the breadth of existing proprietary security solutions, these often come with high costs and limited flexibility, constraining their adoption and adaptability t...

Full description

Saved in:
Bibliographic Details
Published in:IEEE access 2024-12, p.1-1
Main Authors: Hadi, Hassan Jalil, Ahmad, Naveed, Aziz, Kamran, Cao, Yue, Alshara, Mohammed Ali
Format: Article
Language:English
Subjects:
Companies
Computer crime
Computer security
Cost-Effective Cybersecurity
Cyber Security
Intrusion Detection System
Multi-Tiered Defense
NIST
Open-Source Defense Solutions
Planning
Prevention and mitigation
Protection
Resilience
Resilience in Cyber Defense
Technological innovation
Training
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
cited_by
cites
container_end_page 1
container_issue
container_start_page 1
container_title IEEE access
container_volume
creator Hadi, Hassan Jalil
Ahmad, Naveed
Aziz, Kamran
Cao, Yue
Alshara, Mohammed Ali
description In the digital age, cybersecurity threats evolve at a rapid pace, presenting challenges that outstrip traditional defense measures. Despite the breadth of existing proprietary security solutions, these often come with high costs and limited flexibility, constraining their adoption and adaptability to dynamic threat landscapes. This highlights a critical gap in the provision of cost-effective and scalable cybersecurity measures, particularly for organizations with limited resources. The research herein underscores the necessity for a comprehensive evaluation of open-source cybersecurity tools to mitigate these constraints. Addressing this need, our work systematically surveys the domain of open-source cybersecurity tools, identifying their potential to offer a resilient, adaptive, and financially accessible multi-tiered defense framework. We propose a novel six-layered model that integrates these tools into a cohesive strategy, covering detection and prevention, endpoint protection, investigation and recovery, SIEM, IAM, and security awareness and training. The model advocates for an open collaborative approach, capitalizing on community-driven innovations to create a sustainable and continually evolving cybersecurity defense posture. Through this research, we aim to empower organizations to construct robust, adaptive, and cost-efficient cyber defenses, thereby enhancing their resilience against an ever-changing array of cyber threats.
doi_str_mv 10.1109/ACCESS.2024.3510533
format article
fullrecord <record><control><sourceid>ieee</sourceid><recordid>TN_cdi_ieee_primary_10772461</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><ieee_id>10772461</ieee_id><sourcerecordid>10772461</sourcerecordid><originalsourceid>FETCH-LOGICAL-i663-9360420d3a73b85931c37d385aca04e09dc4e7babf811323b0fb39973719d94c3</originalsourceid><addsrcrecordid>eNotjNFKwzAYRoMgOOaeQC_yAp1J_7ZpvCtxOmEysL0fafpHI10zknbQex_ciZ6bD84Hh5A7ztacM_lQKbWp63XK0mwNOWc5wBVZpLyQCeRQ3JBVjF_sQnlRuViQb-XjmGysRTO6M9J3jK53OBh8pBVV_ngK-IlD_P3qKZxxpnroaDONPjjdUz_QKkaM0Q0fdH_CIan9FAxSNbcYIpopuHGmjfd9pNYH-jb1o0sahwE7-oT20sZbcm11H3H1v0vSPG8atU12-5dXVe0SVxSQSChYlrIOtIC2zCVwA6KDMtdGswyZ7EyGotWtLTmHFFpmW5BSgOCyk5mBJbn_yzpEPJyCO-owHzgTIs0KDj_OfGAZ</addsrcrecordid><sourcetype>Publisher</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype></control><display><type>article</type><title>Cost-Effective Resilience: A Comprehensive Survey and Tutorial on Assessing Open-Source Cybersecurity Tools for Multi-Tiered Defense</title><source>IEEE Xplore Open Access Journals</source><creator>Hadi, Hassan Jalil ; Ahmad, Naveed ; Aziz, Kamran ; Cao, Yue ; Alshara, Mohammed Ali</creator><creatorcontrib>Hadi, Hassan Jalil ; Ahmad, Naveed ; Aziz, Kamran ; Cao, Yue ; Alshara, Mohammed Ali</creatorcontrib><description>In the digital age, cybersecurity threats evolve at a rapid pace, presenting challenges that outstrip traditional defense measures. Despite the breadth of existing proprietary security solutions, these often come with high costs and limited flexibility, constraining their adoption and adaptability to dynamic threat landscapes. This highlights a critical gap in the provision of cost-effective and scalable cybersecurity measures, particularly for organizations with limited resources. The research herein underscores the necessity for a comprehensive evaluation of open-source cybersecurity tools to mitigate these constraints. Addressing this need, our work systematically surveys the domain of open-source cybersecurity tools, identifying their potential to offer a resilient, adaptive, and financially accessible multi-tiered defense framework. We propose a novel six-layered model that integrates these tools into a cohesive strategy, covering detection and prevention, endpoint protection, investigation and recovery, SIEM, IAM, and security awareness and training. The model advocates for an open collaborative approach, capitalizing on community-driven innovations to create a sustainable and continually evolving cybersecurity defense posture. Through this research, we aim to empower organizations to construct robust, adaptive, and cost-efficient cyber defenses, thereby enhancing their resilience against an ever-changing array of cyber threats.</description><identifier>EISSN: 2169-3536</identifier><identifier>DOI: 10.1109/ACCESS.2024.3510533</identifier><identifier>CODEN: IAECCG</identifier><language>eng</language><publisher>IEEE</publisher><subject>Companies ; Computer crime ; Computer security ; Cost-Effective Cybersecurity ; Cyber Security ; Intrusion Detection System ; Multi-Tiered Defense ; NIST ; Open-Source Defense Solutions ; Planning ; Prevention and mitigation ; Protection ; Resilience ; Resilience in Cyber Defense ; Technological innovation ; Training</subject><ispartof>IEEE access, 2024-12, p.1-1</ispartof><lds50>peer_reviewed</lds50><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed><orcidid>0000-0002-8355-6471 ; 0000-0003-2941-9780 ; 0000-0001-7746-344X</orcidid></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://ieeexplore.ieee.org/document/10772461$$EHTML$$P50$$Gieee$$Hfree_for_read</linktohtml><link.rule.ids>314,780,784,27633,27924,27925,54933</link.rule.ids></links><search><creatorcontrib>Hadi, Hassan Jalil</creatorcontrib><creatorcontrib>Ahmad, Naveed</creatorcontrib><creatorcontrib>Aziz, Kamran</creatorcontrib><creatorcontrib>Cao, Yue</creatorcontrib><creatorcontrib>Alshara, Mohammed Ali</creatorcontrib><title>Cost-Effective Resilience: A Comprehensive Survey and Tutorial on Assessing Open-Source Cybersecurity Tools for Multi-Tiered Defense</title><title>IEEE access</title><addtitle>Access</addtitle><description>In the digital age, cybersecurity threats evolve at a rapid pace, presenting challenges that outstrip traditional defense measures. Despite the breadth of existing proprietary security solutions, these often come with high costs and limited flexibility, constraining their adoption and adaptability to dynamic threat landscapes. This highlights a critical gap in the provision of cost-effective and scalable cybersecurity measures, particularly for organizations with limited resources. The research herein underscores the necessity for a comprehensive evaluation of open-source cybersecurity tools to mitigate these constraints. Addressing this need, our work systematically surveys the domain of open-source cybersecurity tools, identifying their potential to offer a resilient, adaptive, and financially accessible multi-tiered defense framework. We propose a novel six-layered model that integrates these tools into a cohesive strategy, covering detection and prevention, endpoint protection, investigation and recovery, SIEM, IAM, and security awareness and training. The model advocates for an open collaborative approach, capitalizing on community-driven innovations to create a sustainable and continually evolving cybersecurity defense posture. Through this research, we aim to empower organizations to construct robust, adaptive, and cost-efficient cyber defenses, thereby enhancing their resilience against an ever-changing array of cyber threats.</description><subject>Companies</subject><subject>Computer crime</subject><subject>Computer security</subject><subject>Cost-Effective Cybersecurity</subject><subject>Cyber Security</subject><subject>Intrusion Detection System</subject><subject>Multi-Tiered Defense</subject><subject>NIST</subject><subject>Open-Source Defense Solutions</subject><subject>Planning</subject><subject>Prevention and mitigation</subject><subject>Protection</subject><subject>Resilience</subject><subject>Resilience in Cyber Defense</subject><subject>Technological innovation</subject><subject>Training</subject><issn>2169-3536</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2024</creationdate><recordtype>article</recordtype><sourceid>ESBDL</sourceid><recordid>eNotjNFKwzAYRoMgOOaeQC_yAp1J_7ZpvCtxOmEysL0fafpHI10zknbQex_ciZ6bD84Hh5A7ztacM_lQKbWp63XK0mwNOWc5wBVZpLyQCeRQ3JBVjF_sQnlRuViQb-XjmGysRTO6M9J3jK53OBh8pBVV_ngK-IlD_P3qKZxxpnroaDONPjjdUz_QKkaM0Q0fdH_CIan9FAxSNbcYIpopuHGmjfd9pNYH-jb1o0sahwE7-oT20sZbcm11H3H1v0vSPG8atU12-5dXVe0SVxSQSChYlrIOtIC2zCVwA6KDMtdGswyZ7EyGotWtLTmHFFpmW5BSgOCyk5mBJbn_yzpEPJyCO-owHzgTIs0KDj_OfGAZ</recordid><startdate>20241202</startdate><enddate>20241202</enddate><creator>Hadi, Hassan Jalil</creator><creator>Ahmad, Naveed</creator><creator>Aziz, Kamran</creator><creator>Cao, Yue</creator><creator>Alshara, Mohammed Ali</creator><general>IEEE</general><scope>97E</scope><scope>ESBDL</scope><scope>RIA</scope><scope>RIE</scope><orcidid>https://orcid.org/0000-0002-8355-6471</orcidid><orcidid>https://orcid.org/0000-0003-2941-9780</orcidid><orcidid>https://orcid.org/0000-0001-7746-344X</orcidid></search><sort><creationdate>20241202</creationdate><title>Cost-Effective Resilience: A Comprehensive Survey and Tutorial on Assessing Open-Source Cybersecurity Tools for Multi-Tiered Defense</title><author>Hadi, Hassan Jalil ; Ahmad, Naveed ; Aziz, Kamran ; Cao, Yue ; Alshara, Mohammed Ali</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-i663-9360420d3a73b85931c37d385aca04e09dc4e7babf811323b0fb39973719d94c3</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2024</creationdate><topic>Companies</topic><topic>Computer crime</topic><topic>Computer security</topic><topic>Cost-Effective Cybersecurity</topic><topic>Cyber Security</topic><topic>Intrusion Detection System</topic><topic>Multi-Tiered Defense</topic><topic>NIST</topic><topic>Open-Source Defense Solutions</topic><topic>Planning</topic><topic>Prevention and mitigation</topic><topic>Protection</topic><topic>Resilience</topic><topic>Resilience in Cyber Defense</topic><topic>Technological innovation</topic><topic>Training</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Hadi, Hassan Jalil</creatorcontrib><creatorcontrib>Ahmad, Naveed</creatorcontrib><creatorcontrib>Aziz, Kamran</creatorcontrib><creatorcontrib>Cao, Yue</creatorcontrib><creatorcontrib>Alshara, Mohammed Ali</creatorcontrib><collection>IEEE All-Society Periodicals Package (ASPP) 2005-present</collection><collection>IEEE Xplore Open Access Journals</collection><collection>IEEE All-Society Periodicals Package (ASPP) 1998-Present</collection><collection>IEEE Xplore</collection><jtitle>IEEE access</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Hadi, Hassan Jalil</au><au>Ahmad, Naveed</au><au>Aziz, Kamran</au><au>Cao, Yue</au><au>Alshara, Mohammed Ali</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Cost-Effective Resilience: A Comprehensive Survey and Tutorial on Assessing Open-Source Cybersecurity Tools for Multi-Tiered Defense</atitle><jtitle>IEEE access</jtitle><stitle>Access</stitle><date>2024-12-02</date><risdate>2024</risdate><spage>1</spage><epage>1</epage><pages>1-1</pages><eissn>2169-3536</eissn><coden>IAECCG</coden><abstract>In the digital age, cybersecurity threats evolve at a rapid pace, presenting challenges that outstrip traditional defense measures. Despite the breadth of existing proprietary security solutions, these often come with high costs and limited flexibility, constraining their adoption and adaptability to dynamic threat landscapes. This highlights a critical gap in the provision of cost-effective and scalable cybersecurity measures, particularly for organizations with limited resources. The research herein underscores the necessity for a comprehensive evaluation of open-source cybersecurity tools to mitigate these constraints. Addressing this need, our work systematically surveys the domain of open-source cybersecurity tools, identifying their potential to offer a resilient, adaptive, and financially accessible multi-tiered defense framework. We propose a novel six-layered model that integrates these tools into a cohesive strategy, covering detection and prevention, endpoint protection, investigation and recovery, SIEM, IAM, and security awareness and training. The model advocates for an open collaborative approach, capitalizing on community-driven innovations to create a sustainable and continually evolving cybersecurity defense posture. Through this research, we aim to empower organizations to construct robust, adaptive, and cost-efficient cyber defenses, thereby enhancing their resilience against an ever-changing array of cyber threats.</abstract><pub>IEEE</pub><doi>10.1109/ACCESS.2024.3510533</doi><tpages>1</tpages><orcidid>https://orcid.org/0000-0002-8355-6471</orcidid><orcidid>https://orcid.org/0000-0003-2941-9780</orcidid><orcidid>https://orcid.org/0000-0001-7746-344X</orcidid><oa>free_for_read</oa></addata></record>
fulltext fulltext
identifier EISSN: 2169-3536
ispartof IEEE access, 2024-12, p.1-1
issn 2169-3536
language eng
recordid cdi_ieee_primary_10772461
source IEEE Xplore Open Access Journals
subjects Companies
Computer crime
Computer security
Cost-Effective Cybersecurity
Cyber Security
Intrusion Detection System
Multi-Tiered Defense
NIST
Open-Source Defense Solutions
Planning
Prevention and mitigation
Protection
Resilience
Resilience in Cyber Defense
Technological innovation
Training
title Cost-Effective Resilience: A Comprehensive Survey and Tutorial on Assessing Open-Source Cybersecurity Tools for Multi-Tiered Defense
url http://sfxeu10.hosted.exlibrisgroup.com/loughborough?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2024-12-29T10%3A44%3A28IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-ieee&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Cost-Effective%20Resilience:%20A%20Comprehensive%20Survey%20and%20Tutorial%20on%20Assessing%20Open-Source%20Cybersecurity%20Tools%20for%20Multi-Tiered%20Defense&rft.jtitle=IEEE%20access&rft.au=Hadi,%20Hassan%20Jalil&rft.date=2024-12-02&rft.spage=1&rft.epage=1&rft.pages=1-1&rft.eissn=2169-3536&rft.coden=IAECCG&rft_id=info:doi/10.1109/ACCESS.2024.3510533&rft_dat=%3Cieee%3E10772461%3C/ieee%3E%3Cgrp_id%3Ecdi_FETCH-LOGICAL-i663-9360420d3a73b85931c37d385aca04e09dc4e7babf811323b0fb39973719d94c3%3C/grp_id%3E%3Coa%3E%3C/oa%3E%3Curl%3E%3C/url%3E&rft_id=info:oai/&rft_id=info:pmid/&rft_ieee_id=10772461&rfr_iscdi=true