Abstract
Cybercriminals ramp up their efforts with sophisticated techniques
while defenders gradually update their typical security measures.
Attackers often have a long-term interest in their targets. Due to a number
of factors such as scale, architecture and nonproductive traffic however
it makes difficult to detect them using typical intrusion detection
techniques. Cyber early warning systems (CEWS) aim at alerting such
attempts in their nascent stages using preliminary indicators. Design and
implementation of such systems involves numerous research challenges
such as generic set of indicators, intelligence gathering, uncertainty reasoning
and information fusion. This paper discusses such challenges and
presents the reader with compelling motivation. A carefully deployed
empirical analysis using a real world attack scenario and a real network
traffic capture is also presented.
Original language | English |
---|---|
Title of host publication | Open Problems in Network Security |
Editors | Jan Camenisch, Doğan Kesdoğan |
Place of Publication | Switzerland |
Publisher | Springer Verlag |
Pages | 29-42 |
Volume | 9591 |
ISBN (Print) | 978-3-319-39027-7, 978-3-319-39028-4 |
DOIs | |
Publication status | Published - 2016 |
Event | IFIP WG 11.4 International Workshop - Zurich, Switzerland Duration: 29 Oct 2015 → 29 Oct 2015 |
Workshop
Workshop | IFIP WG 11.4 International Workshop |
---|---|
Abbreviated title | iNetSec 2015 |
Country/Territory | Switzerland |
City | Zurich |
Period | 29/10/15 → 29/10/15 |
Bibliographical note
The full text is not available on the repository.Keywords
- Bayesian inference
- Cyber defence
- Cyber warfare
- Future
- internet
- Early warning systems