Terrain and behavior modeling for projecting multistage cyber attaacks

Show simple item record

dc.contributor.author Fava, Daniel
dc.contributor.author Holsopple, Jared
dc.contributor.author Yang, Shanchieh
dc.contributor.author Argauer, Brian
dc.date.accessioned 2009-11-11T15:24:50Z
dc.date.available 2009-11-11T15:24:50Z
dc.date.issued 2007-07-09
dc.identifier.citation Proceedings of the ISIF/IEEE 10th International on Information Fusion, Quebec City, Canada, July 9-12, 2007 en_US
dc.identifier.uri http://hdl.handle.net/1850/10749
dc.description.abstract Contributions from the information fusion community have enabled comprehensible traces of intrusion alerts occurring on computer networks. Traced or tracked cyber attacks are the bases for threat projection in this work. Due to its complexity, we separate threat projection into two subtasks: predicting likely next targets and predicting attacker behavior. A virtual cyber terrain is proposed for identifying likely targets. Overlaying traced alerts onto the cyber terrain reveals exposed vulnerabilities, services, and hosts. Meanwhile, a novel attempt to extract cyber attack behavior is discussed. Leveraging traditional work on prediction and compression, this work identifies behavior patterns from traced cyber attack data. The extracted behavior patterns are expected to further refine projections deduced from the cyber terrain. en_US
dc.language.iso en_US en_US
dc.publisher ISIF/IEEE en_US
dc.title Terrain and behavior modeling for projecting multistage cyber attaacks en_US
dc.type Proceedings en_US

Files in this item

Files Size Format View
SYangConfProc07-9-2007.pdf 196.8Kb PDF View/Open

This item appears in the following Collection(s)

Show simple item record

Search RIT DML


Advanced Search

Browse