Early Warning Systems for Cyber Defence - Open Problems in Network Security
Conference Papers Year : 2016

Early Warning Systems for Cyber Defence

Harsha Kalutarage
  • Function : Author
  • PersonId : 999317
Siraj Shaikh
  • Function : Author
  • PersonId : 999318
Bu-Sung Lee
  • Function : Author
  • PersonId : 999319
Chonho Lee
  • Function : Author
  • PersonId : 999320
Yeo Chai Kiat
  • Function : Author
  • PersonId : 999321

Abstract

Cybercriminals ramp up their efforts with sophisticated techniques while defenders gradually update their typical security measures. Attackers often have a long-term interest in their targets. Due to a number of factors such as scale, architecture and nonproductive traffic however it makes difficult to detect them using typical intrusion detection techniques. Cyber early warning systems (CEWS) aim at alerting such attempts in their nascent stages using preliminary indicators. Design and implementation of such systems involves numerous research challenges such as generic set of indicators, intelligence gathering, uncertainty reasoning and information fusion. This paper discusses such challenges and presents the reader with compelling motivation. A carefully deployed empirical analysis using a real world attack scenario and a real network traffic capture is also presented.
Fichier principal
Vignette du fichier
416270_1_En_3_Chapter.pdf (708.12 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01445791 , version 1 (25-01-2017)

Licence

Identifiers

Cite

Harsha Kalutarage, Siraj Shaikh, Bu-Sung Lee, Chonho Lee, Yeo Chai Kiat. Early Warning Systems for Cyber Defence. International Workshop on Open Problems in Network Security (iNetSec), Oct 2015, Zurich, Switzerland. pp.29-42, ⟨10.1007/978-3-319-39028-4_3⟩. ⟨hal-01445791⟩
172 View
712 Download

Altmetric

Share

More