Early Warning Systems for Cyber Defence

Abstract : Cybercriminals ramp up their efforts with sophisticated techniques while defenders gradually update their typical security measures. Attackers often have a long-term interest in their targets. Due to a number of factors such as scale, architecture and nonproductive traffic however it makes difficult to detect them using typical intrusion detection techniques. Cyber early warning systems (CEWS) aim at alerting such attempts in their nascent stages using preliminary indicators. Design and implementation of such systems involves numerous research challenges such as generic set of indicators, intelligence gathering, uncertainty reasoning and information fusion. This paper discusses such challenges and presents the reader with compelling motivation. A carefully deployed empirical analysis using a real world attack scenario and a real network traffic capture is also presented.
Type de document :
Communication dans un congrès
Jan Camenisch; Doğan Kesdoğan. International Workshop on Open Problems in Network Security (iNetSec), Oct 2015, Zurich, Switzerland. Lecture Notes in Computer Science, LNCS-9591, pp.29-42, 2016, Open Problems in Network Security. 〈10.1007/978-3-319-39028-4_3〉
Liste complète des métadonnées

Littérature citée [50 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01445791
Contributeur : Hal Ifip <>
Soumis le : mercredi 25 janvier 2017 - 12:41:32
Dernière modification le : lundi 13 novembre 2017 - 13:20:01
Document(s) archivé(s) le : mercredi 26 avril 2017 - 15:03:22

Fichier

 Accès restreint
Fichier visible le : 2019-01-01

Connectez-vous pour demander l'accès au fichier

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Harsha Kalutarage, Siraj Shaikh, Bu-Sung Lee, Chonho Lee, Yeo Kiat. Early Warning Systems for Cyber Defence. Jan Camenisch; Doğan Kesdoğan. International Workshop on Open Problems in Network Security (iNetSec), Oct 2015, Zurich, Switzerland. Lecture Notes in Computer Science, LNCS-9591, pp.29-42, 2016, Open Problems in Network Security. 〈10.1007/978-3-319-39028-4_3〉. 〈hal-01445791〉

Partager

Métriques

Consultations de la notice

53