Conceptualising cyber counterintelligence: Two tentative building blocks

Petrus Duvenage, Victor Jaquire, Sebastian Von Solms

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

6 Citations (Scopus)

Abstract

Several escalating trends are affirming the centrality of Cyber Counterintelligence (CCI) in effectively addressing advanced cyber threats of today and tomorrow. Yet, in comparison with the burgeoning academic and commercial literature on the related field of Cyber Threat Intelligence (CTI), CCI remains vastly unexplored. Outside the circles of governments' security apparatus, some large corporates and niche vendors that offer such specialised services, CCI is still obscure. While interest is gradually growing in CCI, this academic discipline is very young and largely uncharted. Leveraging off previous research by the aforementioned authors, this paper advances two further building blocks to contribute towards constructing this emerging discipline. Building block 1 comprises a distinction between CCI and CTI. Such a distinction is necessary for clarity and has the advantages of allowing CCI to benefit from the extensive research work done in the CTI field. Building block 2 consists of a multi-layered framework that explicates the different levels on which CCI functions, namely the strategic, operational and tactical functional levels. This framework progresses building block 1. While these functional levels have been described extensively in CTI literature, no such CCI-specific application could be found in literature within the public domain. Since it expounds CCI on the various levels that it functions, the framework contributes to a more nuanced academic conceptualisation of this discipline of CCI. On a practical level, the framework could serve as a notional guide for performing actual CCI work more effectively. The article concludes by reiterating the importance of CCI in addressing advanced threats and suggesting areas for further research.

Original languageEnglish
Title of host publicationProceedings of the 15th European Conference on Cyber Warfare and Security, ECCWS 2016
EditorsRobert Koch, Gabi Dreo Rodosek
PublisherCurran Associates Inc.
Pages93-103
Number of pages11
ISBN (Electronic)9781910810934
Publication statusPublished - 2016
Event15th European Conference on Cyber Warfare and Security, ECCWS 2016 - Munich, Germany
Duration: 7 Jul 20168 Jul 2016

Publication series

NameEuropean Conference on Information Warfare and Security, ECCWS
Volume2016-January
ISSN (Print)2048-8602
ISSN (Electronic)2048-8610

Conference

Conference15th European Conference on Cyber Warfare and Security, ECCWS 2016
Country/TerritoryGermany
CityMunich
Period7/07/168/07/16

Keywords

  • Cyber Counterintelligence
  • Cyber Threat Intelligence
  • Cyber counterintelligence levels
  • Cyber counterintelligence maturity
  • Offensive cybersecurity

ASJC Scopus subject areas

  • Information Systems
  • Information Systems and Management
  • Safety, Risk, Reliability and Quality

Fingerprint

Dive into the research topics of 'Conceptualising cyber counterintelligence: Two tentative building blocks'. Together they form a unique fingerprint.

Cite this