Abstract : Large-scale networks consisting of thousands of connected devices are like a living organism, constantly changing and evolving. It is very difficult for a human administrator to orient in such environment and to react to emerging security threats. With such motivation, this PhD proposal aims to find new methods for automatic identification of devices, the services they provide, their dependencies and importance. The main focus of the proposal is to find novel approaches to building cyber situational awareness in an unknown network for the purpose of computer security incident response. Our research is at the initial phase and will contribute to a PhD thesis in four years.
https://hal.inria.fr/hal-01806054
Contributor : Hal Ifip <>
Submitted on : Friday, June 1, 2018 - 4:00:50 PM Last modification on : Wednesday, November 18, 2020 - 6:32:04 PM Long-term archiving on: : Sunday, September 2, 2018 - 4:26:21 PM
Martin Laštovička, Pavel Čeleda. Situational Awareness: Detecting Critical Dependencies and Devices in a Network. 11th IFIP International Conference on Autonomous Infrastructure, Management and Security (AIMS), Jul 2017, Zurich, Switzerland. pp.173-178, ⟨10.1007/978-3-319-60774-0_17⟩. ⟨hal-01806054⟩