Skip to Main content Skip to Navigation
Conference papers

Early Warning Systems for Cyber Defence

Abstract : Cybercriminals ramp up their efforts with sophisticated techniques while defenders gradually update their typical security measures. Attackers often have a long-term interest in their targets. Due to a number of factors such as scale, architecture and nonproductive traffic however it makes difficult to detect them using typical intrusion detection techniques. Cyber early warning systems (CEWS) aim at alerting such attempts in their nascent stages using preliminary indicators. Design and implementation of such systems involves numerous research challenges such as generic set of indicators, intelligence gathering, uncertainty reasoning and information fusion. This paper discusses such challenges and presents the reader with compelling motivation. A carefully deployed empirical analysis using a real world attack scenario and a real network traffic capture is also presented.
Document type :
Conference papers
Complete list of metadata

Cited literature [50 references]  Display  Hide  Download

https://hal.inria.fr/hal-01445791
Contributor : Hal Ifip <>
Submitted on : Wednesday, January 25, 2017 - 12:41:32 PM
Last modification on : Monday, November 13, 2017 - 1:20:01 PM
Long-term archiving on: : Wednesday, April 26, 2017 - 3:03:22 PM

File

416270_1_En_3_Chapter.pdf
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Harsha Kalutarage, Siraj Shaikh, Bu-Sung Lee, Chonho Lee, Yeo Kiat. Early Warning Systems for Cyber Defence. International Workshop on Open Problems in Network Security (iNetSec), Oct 2015, Zurich, Switzerland. pp.29-42, ⟨10.1007/978-3-319-39028-4_3⟩. ⟨hal-01445791⟩

Share

Metrics

Record views

257

Files downloads

866