Human Perception of the Measurement of a Network Attack Taxonomy in Near Real-Time

Abstract : This paper investigates how the measurement of a network attack taxonomy can be related to human perception. Network attacks do not have a time limitation, but the earlier its detected, the more damage can be prevented and the more preventative actions can be taken. This paper evaluate how elements of network attacks can be measured in near real-time(60 seconds). The taxonomy we use was developed by van Heerden et al (2012) with over 100 classes. These classes present the attack and defenders point of view. The degree to which each class can be quantified or measured is determined by investigating the accuracy of various assessment methods. We classify each class as either defined, high, low or not quantifiable. For example, it may not be possible to determine the instigator of an attack (Aggressor), but only that the attack has been launched by a Hacker (Actor). Some classes can only be quantified with a low confidence or not at all in a sort (near real-time) time. The IP address of an attack can easily be faked thus reducing the confidence in the information obtained from it, and thus determining the origin of an attack with a low confidence. This determination itself is subjective. All the evaluations of the classes in this paper is subjective, but due to the very basic grouping (High, Low or Not Quantifiable) a subjective value can be used. The complexity of the taxonomy can be significantly reduced if classes with only a high perceptive accuracy is used.
Type de document :
Communication dans un congrès
Kai Kimppa; Diane Whitehouse; Tiina Kuusela; Jackie Phahlamohlaka. 11th IFIP International Conference on Human Choice and Computers (HCC), Jul 2014, Turku, Finland. Springer, IFIP Advances in Information and Communication Technology, AICT-431, pp.280-292, 2014, ICT and Society. 〈10.1007/978-3-662-44208-1_23〉
Liste complète des métadonnées

Littérature citée [42 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01383065
Contributeur : Hal Ifip <>
Soumis le : mardi 18 octobre 2016 - 09:07:16
Dernière modification le : mardi 18 octobre 2016 - 09:12:51

Fichier

978-3-662-44208-1_23_Chapter.p...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Renier Heerden, Mercia Malan, Francois Mouton, Barry Irwin. Human Perception of the Measurement of a Network Attack Taxonomy in Near Real-Time. Kai Kimppa; Diane Whitehouse; Tiina Kuusela; Jackie Phahlamohlaka. 11th IFIP International Conference on Human Choice and Computers (HCC), Jul 2014, Turku, Finland. Springer, IFIP Advances in Information and Communication Technology, AICT-431, pp.280-292, 2014, ICT and Society. 〈10.1007/978-3-662-44208-1_23〉. 〈hal-01383065〉

Partager

Métriques

Consultations de la notice

30

Téléchargements de fichiers

11