Burke, Ivan DVan Heerden, Renier P2017-09-222017-09-222017-06Burke, I.D. and Van Heerden, R.P. 2017. Treating personal data like digital pollution. 16th European Conference on Cyber Warfare and Security, 29-30 June 2017, Dublin, Ireland978-1-5108-4519-0http://toc.proceedings.com/35467webtoc.pdfhttps://www.researchgate.net/profile/Ivan_Burke/publication/318111002_Treating_Personal_Data_Like_Digital_Pollution/links/595a4813aca2728a137aabce/Treating-Personal-Data-Like-Digital-Pollution.pdfhttp://hdl.handle.net/10204/9593Copyright: 2017 The Authors. 16th European Conference on Cyber Warfare and Security, 29-30 June 2017, Dublin, IrelandDuring the past 10 years data breaches have become more frequent than ever. Large volumes of personal and corporate data are being leaked via these breaches. The corporate responses to these breaches, as well as, the remediation of these breaches are often not sufficient. Similarly to how production companies should be taken to task for polluting the physical environment due to bad business practices, IT institutions should be made aware of their contribution to Cyber pollution. In our article we define the concept of cyber pollution as unmaintained or obsolete devices connect to the internet and corporate networks. This paper breaks down the current state of data breach disclosures within the Europe by providing statistics on large scale data breach disclosures from 2013 till 2016. This paper attempts to model the increase of threat exposure over time similar to that of pollution breaches within the physical environment. Over time small openings or vulnerabilities within systems can lead to exploitation of whole systems. By modelling these breaches as pollution we aim to make the concept of cyber pollution a more tangible concept for IT managers to relay to staff and upper management. The model is validated using anonymised corporate network traffic and Open Source penetration testing software.enPersonal dataDigital pollutionConference PresentationBurke, I. D., & Van Heerden, R. P. (2017). Treating personal data like digital pollution. http://hdl.handle.net/10204/9593Burke, Ivan D, and Renier P Van Heerden. "Treating personal data like digital pollution." (2017): http://hdl.handle.net/10204/9593Burke ID, Van Heerden RP, Treating personal data like digital pollution; 2017. http://hdl.handle.net/10204/9593 .TY - Conference Presentation AU - Burke, Ivan D AU - Van Heerden, Renier P AB - During the past 10 years data breaches have become more frequent than ever. Large volumes of personal and corporate data are being leaked via these breaches. The corporate responses to these breaches, as well as, the remediation of these breaches are often not sufficient. Similarly to how production companies should be taken to task for polluting the physical environment due to bad business practices, IT institutions should be made aware of their contribution to Cyber pollution. In our article we define the concept of cyber pollution as unmaintained or obsolete devices connect to the internet and corporate networks. This paper breaks down the current state of data breach disclosures within the Europe by providing statistics on large scale data breach disclosures from 2013 till 2016. This paper attempts to model the increase of threat exposure over time similar to that of pollution breaches within the physical environment. Over time small openings or vulnerabilities within systems can lead to exploitation of whole systems. By modelling these breaches as pollution we aim to make the concept of cyber pollution a more tangible concept for IT managers to relay to staff and upper management. The model is validated using anonymised corporate network traffic and Open Source penetration testing software. DA - 2017-06 DB - ResearchSpace DP - CSIR KW - Personal data KW - Digital pollution LK - https://researchspace.csir.co.za PY - 2017 SM - 978-1-5108-4519-0 T1 - Treating personal data like digital pollution TI - Treating personal data like digital pollution UR - http://hdl.handle.net/10204/9593 ER -