Endre søk
RefereraExporteraLink to record
Permanent link

Direct link
Referera
Referensformat
  • apa
  • harvard-cite-them-right
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annet format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annet språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
Towards a Framework to Detect Multi-Stage Advanced Persistent Threats Attacks
Instituto Tecnológico de Aeronáutica, Brasilien.
Instituto Tecnológico de Aeronáutica, Brasilien.
Försvarshögskolan, Militärvetenskapliga institutionen (MVI), Ledningsvetenskapliga avdelningen (LVA).
2014 (engelsk)Inngår i: Service Oriented System Engineering (SOSE), 2014 IEEE 8th International Symposium, IEEE Computer Society, 2014Konferansepaper, Publicerat paper (Fagfellevurdert)
Abstract [en]

Detecting and defending against Multi-Stage Advanced Persistent Threats (APT) Attacks is a challenge for mechanisms that are static in its nature and are based on blacklisting and malware signature techniques. Blacklists and malware signatures are designed to detect known attacks. But multi-stage attacks are dynamic, conducted in parallel and use several attack paths and can be conducted in multi-year campaigns, in order to reach the desired effect. In this paper the design principles of a framework are presented that model Multi-Stage Attacks in a way that both describes the attack methods as well as the anticipated effects of attacks. The foundation to model behaviors is by the combination of the Intrusion Kill-Chain attack model and defense patterns (i.e. a hypothesis based approach of known patterns). The implementation of the framework is made by using Apache Hadoop with a logic layer that supports the evaluation of a hypothesis.

sted, utgiver, år, opplag, sider
IEEE Computer Society, 2014.
HSV kategori
Forskningsprogram
Ledningsvetenskap
Identifikatorer
URN: urn:nbn:se:fhs:diva-5128ISBN: 978-1-4799-2504-9 (tryckt)OAI: oai:DiVA.org:fhs-5128DiVA, id: diva2:777874
Konferanse
Service Oriented System Engineering (SOSE), 2014 IEEE 8th International Symposium
Tilgjengelig fra: 2015-01-09 Laget: 2015-01-09 Sist oppdatert: 2016-05-10bibliografisk kontrollert

Open Access i DiVA

Fulltekst mangler i DiVA

Av organisasjonen

Søk utenfor DiVA

GoogleGoogle Scholar

isbn
urn-nbn

Altmetric

isbn
urn-nbn
Totalt: 223 treff
RefereraExporteraLink to record
Permanent link

Direct link
Referera
Referensformat
  • apa
  • harvard-cite-them-right
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annet format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annet språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf