论文信息 - THE NEED FOR CYBER THREAT INTELLIGENCE FOR DISTANCE LEARNING PROVIDERS AND ONLINE LEARNING SYSTEMS

THE NEED FOR CYBER THREAT INTELLIGENCE FOR DISTANCE LEARNING PROVIDERS AND ONLINE LEARNING SYSTEMS

About 80% of further education and higher education institutes have reported data breach or cyberattacks in the last 12 months. Phishing attacks are being reported as the most common form of cyberattacks on the university networks. These phishing attacks may be from a variety of sources and have as a reason to steal a variety of data within higher education institutes. The consequences of these attacks may be severe, and the potential route taken by these attacks is via the online learning platforms. Online learning systems are faced with a unique challenge as numerous systems (student data, learning content and assessment data, lab resources, research, and IP related data etc) are accessed and managed via the Internet by thousands of users over a variety of networks. As a large distance learning provider, Open University has vast experience of managing online learning systems over the past several years. In this study we aim to investigate the areas of vulnerability within the online learning systems. Then propose a framework of IT security policy and procedures to address the identified threats to a university’ systems.

[1] Carsten Maple,et al. Cyber security in the age of COVID-19: A timeline and analysis of cyber-crime and cyber-attacks during the pandemic , 2020, Computers & Security.

[2] Georgios Kambourakis,et al. A PKI approach for deploying modern secure distributed e-learning and m-learning environments , 2007, Comput. Educ..

[3] Sandeep K. Sood. Phishing Attacks: A Challenge Ahead , 2011 .

[4] Henry Johnson,et al. Dialogue and the Construction of Knowledge in E-Learning: Exploring Students’ Perceptions of Their Learning While Using Blackboard’s Asynchronous Discussion Board , 2007 .

[5] Yılmaz Demirci. Security of learning management systems , 2013 .

[6] Florin Ioras,et al. CYBER SECURITY CONCERNS IN E-LEARNING EDUCATION , 2014 .

[7] Pankaj Sharma,et al. Integrated approach to prevent SQL injection attack and reflected cross site scripting attack , 2012, Int. J. Syst. Assur. Eng. Manag..

[8] Robiah Yusof,et al. Cyber Threat Intelligence – Issue and Challenges , 2018 .

[9] P Gossman,et al. All change for research , 1987, British medical journal.

[10] Emad Abu-Shanab,et al. An examination of susceptibility to spear phishing cyber attacks in non-English speaking communities , 2020, J. Inf. Secur. Appl..

[11] A. García-Pérez,et al. The Severity of Cyber Attacks on Education and Research Institutions: A function of their security posture , 2018 .