Sadie Creese

Dimitrios Panagiotakopoulos

Samuel Ayo

Carolina Sanchez-Hernandez

CoRR, 2023

2022

Insider-threat detection: Lessons from deploying the CITD tool in three multinational organisations.

[BibT_eX]

[DOI]

J. Inf. Secur. Appl., 2022

Cybersecurity education, awareness raising, and training initiatives: National level evidence-based results, challenges, and promise.

[BibT_eX]

[DOI]

Ruth Shillair

Patricia Esteve-González

Comput. Secur., 2022

A system to calculate Cyber Value-at-Risk.

[BibT_eX]

[DOI]

Comput. Secur., 2022

2021

Sonification to Support the Monitoring Tasks of Security Operations Centres.

[BibT_eX]

[DOI]

Alastair Janse van Rensburg

Jassim Happa

IEEE Trans. Dependable Secur. Comput., 2021

The current state of research on people, culture and cybersecurity.

[BibT_eX]

[DOI]

Pers. Ubiquitous Comput., 2021

The social and cultural shaping of cybersecurity capacity building: a comparative study of nations and regions.

[BibT_eX]

[DOI]

William H. Dutton

Patricia Esteve-González

Pers. Ubiquitous Comput., 2021

Cyber Crossroads: A Global Research Collaborative on Cyber Risk Governance.

[BibT_eX]

[DOI]

CoRR, 2021

Control Effectiveness: a Capture-the-Flag Study.

[BibT_eX]

[DOI]

Arnau Erola

Alastair Janse van Rensburg

Proceedings of the ARES 2021: The 16th International Conference on Availability, 2021

Practitioners' Views on Cybersecurity Control Adoption and Effectiveness.

[BibT_eX]

[DOI]

Alastair Janse van Rensburg

Arnau Erola

Proceedings of the ARES 2021: The 16th International Conference on Availability, 2021

2020

Data presentation in security operations centres: exploring the potential for sonification to enhance existing practice.

[BibT_eX]

[DOI]

J. Cybersecur., 2020

Cybersecurity in Pacific Island nations.

[BibT_eX]

[DOI]

Carsten Rudolph

Sameer Sharma

Commun. ACM, 2020

Capturing Tacit Knowledge in Security Operation Centers.

[BibT_eX]

[DOI]

Selina Y. Cho

Jassim Happa

IEEE Access, 2020

The Data that Drives Cyber Insurance: A Study into the Underwriting and Claims Processes.

[BibT_eX]

[DOI]

Proceedings of the 2020 International Conference on Cyber Situational Awareness, 2020

2019

<i>(Smart)Watch Out!</i> encouraging privacy-protective behavior through interactive games.

[BibT_eX]

[DOI]

Int. J. Hum. Comput. Stud., 2019

Investigating Malware Campaigns With Semantic Technologies.

[BibT_eX]

[DOI]

Rodrigo Carvalho

IEEE Secur. Priv., 2019

Hearing attacks in network data: An effectiveness study.

[BibT_eX]

[DOI]

Comput. Secur., 2019

Smartwatch games: Encouraging privacy-protective behaviour in a longitudinal study.

[BibT_eX]

[DOI]

Comput. Hum. Behav., 2019

Anomaly Detection Using Pattern-of-Life Visual Metaphors.

[BibT_eX]

[DOI]

Jassim Happa

Thomas Bashford-Rogers

IEEE Access, 2019

Why We Trust Dynamic Consent to Deliver on Privacy.

[BibT_eX]

[DOI]

Arianna Schuler Scott

Proceedings of the Trust Management XIII - 13th IFIP WG 11.11 International Conference, 2019

A Combined Attack-Tree and Kill-Chain Approach to Designing Attack-Detection Strategies for Malicious Insiders in Cloud Computing.

[BibT_eX]

[DOI]

Adrian J. Duncan

Proceedings of the 2019 International Conference on Cyber Security and Protection of Digital Services, 2019

Analysing cyber-insurance claims to design harm-propagation trees.

[BibT_eX]

[DOI]

Proceedings of the International Conference on Cyber Situational Awareness, 2019

2018

Modeling Advanced Persistent Threats to enhance anomaly detection techniques.

[BibT_eX]

[DOI]

Cheyenne Atapour

J. Wirel. Mob. Networks Ubiquitous Comput. Dependable Appl., 2018

A taxonomy of cyber-harms: Defining the impacts of cyber-attacks and understanding how they propagate.

[BibT_eX]

[DOI]

J. Cybersecur., 2018

A Storm in an IoT Cup: The Emergence of Cyber-Physical Social Machines.

[BibT_eX]

[DOI]

CoRR, 2018

Sonification in security operations centres: what do security practitioners think?

[BibT_eX]

[DOI]

CoRR, 2018

If you can't understand it, you can't properly assess it! The reality of assessing security risks in Internet of Things systems.

[BibT_eX]

[DOI]

CoRR, 2018

Chapter Eight - Privacy Requirements in Cybersecurity Applications of Blockchain.

[BibT_eX]

[DOI]

Adv. Comput., 2018

A State Machine System for Insider Threat Detection.

[BibT_eX]

[DOI]

Proceedings of the 5th International Workshop on Graphical Models for Security, 2018

Run-Time Monitoring of Data-Handling Violations.

[BibT_eX]

[DOI]

Proceedings of the Computer Security - ESORICS 2018 International Workshops, 2018

2017

Automated Insider Threat Detection System Using User and Role-Based Profile Assessment.

[BibT_eX]

[DOI]

IEEE Syst. J., 2017

Formalising Policies for Insider-threat Detection: A Tripwire Grammar.

[BibT_eX]

[DOI]

J. Wirel. Mob. Networks Ubiquitous Comput. Dependable Appl., 2017

Mapping the coverage of security controls in cyber insurance proposal forms.

[BibT_eX]

[DOI]

J. Internet Serv. Appl., 2017

Security Risk Assessment in Internet of Things Systems.

[BibT_eX]

[DOI]

David De Roure

IT Prof., 2017

Privacy is the Boring Bit: User Perceptions and Behaviour in the Internet-of-Things.

[BibT_eX]

[DOI]

Proceedings of the 15th Annual Conference on Privacy, Security and Trust, 2017

An Assessment of the Security and Transparency Procedural Components of the Estonian Internet Voting System.

[BibT_eX]

[DOI]

Proceedings of the Human Aspects of Information Security, Privacy and Trust, 2017

RicherPicture: Semi-automated cyber defence using context-aware data analytics.

[BibT_eX]

[DOI]

Proceedings of the 2017 International Conference On Cyber Situational Awareness, 2017

2016

Analytics for characterising and measuring the naturalness of online personae.

[BibT_eX]

[DOI]

Arnau Erola

Thomas Gibson-Robinson

Secur. Informatics, 2016

Validating an Insider Threat Detection System: A Real Scenario Perspective.

[BibT_eX]

[DOI]

Proceedings of the 2016 IEEE Security and Privacy Workshops, 2016

Future scenarios and challenges for security and privacy.

[BibT_eX]

[DOI]

Proceedings of the 2nd IEEE International Forum on Research and Technologies for Society and Industry Leveraging a better tomorrow, 2016

Privacy Salience: Taxonomies and Research Opportunities.

[BibT_eX]

[DOI]

Proceedings of the Privacy and Identity Management. Facing up to Next Steps, 2016

A Pragmatic System-failure Assessment and Response Model.

[BibT_eX]

[DOI]

Proceedings of the 2nd International Conference on Information Systems Security and Privacy, 2016

A Tripwire Grammar for Insider Threat Detection.

[BibT_eX]

[DOI]

Proceedings of the 8th ACM CCS International Workshop on Managing Insider Security Threats, 2016

The Perfect Storm: The Privacy Paradox and the Internet-of-Things.

[BibT_eX]

[DOI]

Proceedings of the 11th International Conference on Availability, Reliability and Security, 2016

2015

Investigating the leakage of sensitive personal and organisational information in email headers.

[BibT_eX]

[DOI]

J. Internet Serv. Inf. Secur., 2015

An overview of insider attacks in cloud computing.

[BibT_eX]

[DOI]

Adrian J. Duncan

Concurr. Comput. Pract. Exp., 2015

Individual Differences in Cyber Security Behaviors: An Examination of Who Is Sharing Passwords.

[BibT_eX]

[DOI]

Cyberpsychology Behav. Soc. Netw., 2015

Smart Insiders: Exploring the Threat from Insiders Using the Internet-of-Things.

[BibT_eX]

[DOI]

Proceedings of the 2015 International Workshop on Secure Internet of Things, 2015

Predicting Graphical Passwords.

[BibT_eX]

[DOI]

Proceedings of the Human Aspects of Information Security, Privacy, and Trust, 2015

Applying Semantic Technologies to Fight Online Banking Fraud.

[BibT_eX]

[DOI]

Rodrigo Carvalho

Proceedings of the 2015 European Intelligence and Security Informatics Conference, 2015

Technology and Information Trust for Supporting Risky Decisions Based on Social-Media Content.

[BibT_eX]

[DOI]

Proceedings of the 15th IEEE International Conference on Computer and Information Technology, 2015

2014

Pathways to identity: using visualization to aid law enforcement in identification tasks.

[BibT_eX]

[DOI]

Secur. Informatics, 2014

Visual Analytics of E-mail Sociolinguistics for User Behavioural Analysis.

[BibT_eX]

[DOI]

J. Internet Serv. Inf. Secur., 2014

Towards a User and Role-based Sequential Behavioural Analysis Tool for Insider Threat Detection.

[BibT_eX]

[DOI]

J. Internet Serv. Inf. Secur., 2014

Reflecting on the Ability of Enterprise Security Policy to Address Accidental Insider Threat.

[BibT_eX]

[DOI]

Proceedings of the 2014 Workshop on Socio-Technical Aspects in Security and Trust, 2014

Understanding Insider Threat: A Framework for Characterising Attacks.

[BibT_eX]

[DOI]

Proceedings of the 35. IEEE Security and Privacy Workshops, 2014

Inferring social relationships from technology-level device connections.

[BibT_eX]

[DOI]

Jess Pumphrey

Thomas Gibson-Robinson

Proceedings of the 2014 Twelfth Annual International Conference on Privacy, 2014

Image Choice to Represent the Self in Different Online Environments.

[BibT_eX]

[DOI]

Proceedings of the Social Computing and Social Media, 2014

A Critical Reflection on the Threat from Human Insiders - Its Nature, Industry Perceptions, and Detection Approaches.

[BibT_eX]

[DOI]

Proceedings of the Human Aspects of Information Security, Privacy, and Trust, 2014

2013

Towards a Conceptual Model and Reasoning Structure for Insider Threat Detection.

[BibT_eX]

[DOI]

J. Wirel. Mob. Networks Ubiquitous Comput. Dependable Appl., 2013

Building Confidence in Information-Trustworthiness Metrics for Decision Support.

[BibT_eX]

[DOI]

Proceedings of the 12th IEEE International Conference on Trust, 2013

Cloud Computing: Insider Attacks on Virtual Machines during Migration.

[BibT_eX]

[DOI]

Proceedings of the 12th IEEE International Conference on Trust, 2013

NetVis: a Visualization Tool Enabling Multiple Perspectives of Network Traffic Data.

[BibT_eX]

[DOI]

Proceedings of the Theory and Practice of Computer Graphics, 2013

Communicating trustworthiness using radar graphs: A detailed look.

[BibT_eX]

[DOI]

Proceedings of the Eleventh Annual International Conference on Privacy, Security and Trust, 2013

Building a better intelligence machine: A new approach to capability review and development.

[BibT_eX]

[DOI]

Duncan Hodges

Proceedings of the 2013 IEEE International Conference on Intelligence and Security Informatics, 2013

Supporting Human Decision-Making Online Using Information-Trustworthiness Metrics.

[BibT_eX]

[DOI]

Proceedings of the Human Aspects of Information Security, Privacy, and Trust, 2013

Relationships between Password Choices, Perceptions of Risk and Security Expertise.

[BibT_eX]

[DOI]

Proceedings of the Human Aspects of Information Security, Privacy, and Trust, 2013

Breaking the Arc: Risk control for Big Data.

[BibT_eX]

[DOI]

Duncan Hodges

Proceedings of the 2013 IEEE International Conference on Big Data (IEEE BigData 2013), 2013

2012

Virus Propagation in Heterogeneous Bluetooth Networks with Human Behaviors.

[BibT_eX]

[DOI]

Jennifer T. Jackson

IEEE Trans. Dependable Secur. Comput., 2012

Refinement checking for privacy policies.

[BibT_eX]

[DOI]

Nikolaos Papanikolaou

Sci. Comput. Program., 2012

Insider Attacks in Cloud Computing.

[BibT_eX]

[DOI]

Adrian J. Duncan

Proceedings of the 11th IEEE International Conference on Trust, 2012

A Data-Reachability Model for Elucidating Privacy and Security Risks Related to the Use of Online Social Networks.

[BibT_eX]

[DOI]

Proceedings of the 11th IEEE International Conference on Trust, 2012

Using Information Trustworthiness Advice in Decision Making.

[BibT_eX]

[DOI]

Proceedings of the 2nd Workshop on Socio-Technical Aspects in Security and Trust, 2012

An initial usability evaluation of the secure situation awareness system.

[BibT_eX]

[DOI]

Proceedings of the 9th Proceedings of the International Conference on Information Systems for Crisis Response and Management, 2012

A Model for Identity in the Cyber and Natural Universes.

[BibT_eX]

[DOI]

Duncan Hodges

Proceedings of the 2012 European Intelligence and Security Informatics Conference, 2012

Reasoning about Vulnerabilities in Dependent Information Infrastructures: A Cyber Range Experiment.

[BibT_eX]

[DOI]

Adedayo Oyelakin Adetoye

Proceedings of the Critical Information Infrastructures Security, 2012

2011

Accepting Information with a Pinch of Salt: Handling Untrusted Information Sources.

[BibT_eX]

[DOI]

Syed Sadiqur Rahman

Proceedings of the Security and Trust Management - 7th International Workshop, 2011

Trustworthy and effective communication of cybersecurity risks: A review.

[BibT_eX]

[DOI]

Proceedings of the 1st Workshop on Socio-Technical Aspects in Security and Trust, 2011

Formalising Requirements for a Biobank Case Study Using a Logic for Consent and Revocation.

[BibT_eX]

[DOI]

Proceedings of the Privacy and Identity Management for Life, 2011

Developing a Strategy for Automated Privacy Testing Suites.

[BibT_eX]

[DOI]

Proceedings of the Privacy and Identity Management for Life, 2011

Guidelines for usable cybersecurity: Past and present.

[BibT_eX]

[DOI]

Proceedings of the Third International Workshop on Cyberspace Safety and Security, 2011

A logical high-level framework for Critical Infrastructure resilience and risk assessment.

[BibT_eX]

[DOI]

Adedayo Adetoye

Proceedings of the Third International Workshop on Cyberspace Safety and Security, 2011

Analysis of Dependencies in Critical Infrastructures.

[BibT_eX]

[DOI]

Adedayo Oyelakin Adetoye

Proceedings of the Critical Information Infrastructure Security, 2011

Biodiversity: A security approach for ad hoc networks.

[BibT_eX]

[DOI]

Jennifer T. Jackson

Mark S. Leeson

Proceedings of the 2011 IEEE Symposium on Computational Intelligence in Cyber Security, 2011

2010

Refinement-Friendly Bigraphs and Spygraphs.

[BibT_eX]

[DOI]

Proceedings of the 8th IEEE International Conference on Software Engineering and Formal Methods, 2010

EnCoRe: Towards a Holistic Approach to Privacy.

[BibT_eX]

Proceedings of the SECRYPT 2010, 2010

A Conceptual Model for Privacy Policies with Consent and Revocation Requirements.

[BibT_eX]

[DOI]

Proceedings of the Privacy and Identity Management for Life, 2010

Applying Formal Methods to Detect and Resolve Ambiguities in Privacy Requirements.

[BibT_eX]

[DOI]

Proceedings of the Privacy and Identity Management for Life, 2010

A Modelling Approach for Interdependency in Digital Systems-of-Systems Security - Extended Abstract.

[BibT_eX]

[DOI]

Proceedings of the Critical Information Infrastructures Security, 2010

Inadequacies of Current Risk Controls for the Cloud.

[BibT_eX]

[DOI]

Proceedings of the Cloud Computing, Second International Conference, 2010

2009

Can Cognitive Science Help Us Make Online Risk More Tangible?.

[BibT_eX]

[DOI]

Koen Lamberts

IEEE Intell. Syst., 2009

Reaching for Informed Revocation: Shutting Off the Tap on Personal Data.

[BibT_eX]

[DOI]

Proceedings of the Privacy and Identity Management for Life, 2009

Data Protection-Aware Design for Cloud Services.

[BibT_eX]

[DOI]

Proceedings of the Cloud Computing, First International Conference, CloudCom 2009, Beijing, 2009

2008

Requirements and Concepts for Information Assurance and Pervasive Adaptation Co-design.

[BibT_eX]

[DOI]

Proceedings of the Second IEEE International Conference on Self-Adaptive and Self-Organizing Systems, 2008

2006

Bootstrapping multi-party ad-hoc security.

[BibT_eX]

[DOI]

Proceedings of the 2006 ACM Symposium on Applied Computing (SAC), 2006

2005

Exploiting Empirical Engagement in Authentication Protocol Design.

[BibT_eX]

[DOI]

Proceedings of the Security in Pervasive Computing, Second International Conference, 2005

2004

Industrial Strength CSP: Opportunities and Challenges in Model-Checking.

[BibT_eX]

[DOI]

Proceedings of the Communicating Sequential Processes: The First 25 Years, 2004

2003

Authentication for Pervasive Computing.

[BibT_eX]

[DOI]

Proceedings of the Security in Pervasive Computing, 2003

2001

Data independent induction : CSP model checking or arbitary sized networks.

[BibT_eX]

[DOI]

PhD thesis, 2001

2000

Data Independent Induction over Structured Networks.

[BibT_eX]

A. W. Roscoe

Proceedings of the International Conference on Parallel and Distributed Processing Techniques and Applications, 2000

1999

Formal Verification of Arbitrary Network Topologies.

[BibT_eX]

A. W. Roscoe

Proceedings of the International Conference on Parallel and Distributed Processing Techniques and Applications, 1999

Verifying End-to-End Protocols using Induction with CSP/FDR.

[BibT_eX]

[DOI]

Joy N. Reed

Proceedings of the Parallel and Distributed Processing, 1999

Verifying an infinite family of inductions simultaneously using data independence and FDR.

[BibT_eX]