Enhancement of probabilistic attack graphs for accurate cyber security monitoring

Cyber crime is a serious threat for day-to-day transactions of the digital life. Overexposure of the personal details in social networks will lead to the cyber crime case. Therefore, detection and monitoring of cyber crime are challenging tasks. The cyber criminals are continually flooding the various intrusions all over the network. The cyber safety team should have a noteworthy challenge of filtering various such information. Continuous nonstop cyberattacks or intrusion examinations by security tools will significantly improve the threat alerts. However, cyber security becomes more expensive in the case of the above methods. The chapter provides systematic survey of various cyber security threats, evolution of intrusion detection systems, various monitoring mechanisms, open source cyber security monitoring tools, and various assessment techniques. The chapter also proposes a model of Cyber security detection and monitoring system and its challenges.

Download Full-text

Game Theory with Learning for Cyber Security Monitoring

2016 IEEE 17th International Symposium on High Assurance Systems Engineering (HASE) ◽

10.1109/hase.2016.48 ◽

2016 ◽

Cited By ~ 13

Author(s):

Keywhan Chung ◽

Charles A. Kamhoua ◽

Kevin A. Kwiat ◽

Zbigniew T. Kalbarczyk ◽

Ravishankar K. Iyer

Keyword(s):

Game Theory ◽

Cyber Security ◽

Security Monitoring

Download Full-text

A Predictive Framework For Cyber Security Analytics Using Attack Graphs

International journal of Computer Networks & Communications ◽

10.5121/ijcnc.2015.7101 ◽

2015 ◽

Vol 7 (1) ◽

pp. 01-17 ◽

Cited By ~ 22

Author(s):

Subil Abraham ◽

Suku Nair

Keyword(s):

Cyber Security ◽

Attack Graphs ◽

Security Analytics

Download Full-text

Design of Cyber Security Monitoring System for Smart Substation

Lecture Notes in Electrical Engineering - Genetic and Evolutionary Computing ◽

10.1007/978-981-16-8430-2_12 ◽

2022 ◽

pp. 125-136

Author(s):

Qiang Ma ◽

Zhipeng Cong ◽

Zhenyu Shi ◽

Fen Chen ◽

Jianpo Li

Keyword(s):

Monitoring System ◽

Cyber Security ◽

Security Monitoring ◽

Security Monitoring System ◽

Smart Substation

Download Full-text

Scalable min-max multi-objective cyber-security optimisation over probabilistic attack graphs

European Journal of Operational Research ◽

10.1016/j.ejor.2019.04.035 ◽

2019 ◽

Vol 278 (3) ◽

pp. 894-903 ◽

Cited By ~ 7

Author(s):

MHR. Khouzani ◽

Zhengliang Liu ◽

Pasquale Malacaria

Keyword(s):

Cyber Security ◽

Attack Graphs ◽

Multi Objective

Download Full-text

DESIGN INTEGRATED HONEYPOT UNTUK DETEKSI DAN IDENTIFIKASI SERANGAN SIBER

JURNAL IT ◽

10.37639/jti.v10i3.141 ◽

2020 ◽

Vol 10 (3) ◽

Author(s):

Melati Ayu Ratna Dewi ◽

Indra Adi Putra ◽

Sulistyo Sulistyo

Keyword(s):

Cyber Security ◽

Security Monitoring ◽

Monitoring Report

Tingkat ketergantungan Internet yang dapat motif timbulnya ancaman oleh pihak yang tidak berwenang untuk kepentingan pribadi melalui serangan siber. Berdasarkan laporan tahunan Badan Siber dan Sandi Negara Tahun 2018, Indonesia Cyber Security Monitoring Report 2018 dinyatakan bahwa indonesia terkena serangan siber sebanyak 232.447.974 kali. 122 juta diantaranya adalah serangan malware yang merupakan jenis serangan tertinggi. Selain itu, terdapat pula insiden defacement terhadap web aplikasi sebanyak 16.939 kali, yang 30,75% nya menyerang domain .go.id.. Hal ini juga didukung oleh Laporan Tahunan Honeynet Project BSSN-IHP tahun 2018 bahwa terdapat 513.863 malware yang menyerang ke Indonesia yang masuk melalui Honeynet System. Untuk mengantisipasi serangan malware dan serangan pada web aplikasi tersebut yang masuk ke Indonesia dengan membuat sistem honeynet terintegrasi sebagai salah satu solusi sistem deteksi dini, perangkat honeypot yang digunakan untuk collecting malware adalah jenis dionaea dan perangkat untuk analisa serangan pada web aplikasi adalah glastopf. Perangkat honeypot maupun server storage akan diintegrasikan kedalam mesin virtual sehingga diharapkan mampu memberikan perspektif baru dalam metode collecting malware dan analisa serangan pada web aplikasi untuk mendukung fungsi deteksi serangan siber.

Download Full-text

powerLang: a probabilistic attack simulation language for the power domain

Energy Informatics ◽

10.1186/s42162-020-00134-4 ◽

2020 ◽

Vol 3 (1) ◽

Author(s):

Simon Hacks ◽

Sotirios Katsikeas ◽

Engla Ling ◽

Robert Lagerström ◽

Mathias Ekstedt

Keyword(s):

Cyber Security ◽

Cyber Attacks ◽

Security Assessment ◽

Cyber Attack ◽

Industrial Control ◽

Attack Graphs ◽

Industrial Control Systems ◽

Domain Specific ◽

Simulation Language ◽

Power Domain

AbstractCyber-attacks these threats, the cyber security assessment of IT and OT infrastructures can foster a higher degree of safety and resilience against cyber-attacks. Therefore, the use of attack simulations based on system architecture models is proposed. To reduce the effort of creating new attack graphs for each system under assessment, domain-specific languages (DSLs) can be employed. DSLs codify the common attack logics of the considered domain.Previously, MAL (the Meta Attack Language) was proposed, which serves as a framework to develop DSLs and generate attack graphs for modeled infrastructures. In this article, powerLang as a MAL-based DSL for modeling IT and OT infrastructures in the power domain is proposed. Further, it allows analyzing weaknesses related to known attacks. To comprise powerLang, two existing MAL-based DSL are combined with a new language focusing on industrial control systems (ICS). Finally, this first version of the language was validated against a known cyber-attack.

Download Full-text

Cyber security monitoring and data analysis at IHEP

10.22323/1.351.0011 ◽

2019 ◽

Author(s):

Tian Yan ◽

Hao Hu ◽

Dehai An ◽

Fazhi Qi ◽

Chen Jiang

Keyword(s):

Data Analysis ◽

Cyber Security ◽

Security Monitoring

Download Full-text