Early warning systems for cyber defence

Harsha Kalutarage*, Siraj Shaikh, Bu Sung Lee, Chonho Lee, Yeo Chai Kiat

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference contribution

3 Citations (Scopus)

Abstract

Cybercriminals ramp up their efforts with sophisticated techniques while defenders gradually update their typical security measures. Attackers often have a long-term interest in their targets. Due to a number of factors such as scale, architecture and nonproductive traffic however it makes difficult to detect them using typical intrusion detection techniques. Cyber early warning systems (CEWS) aim at alerting such attempts in their nascent stages using preliminary indicators. Design and implementation of such systems involves numerous research challenges such as generic set of indicators, intelligence gathering, uncertainty reasoning and information fusion. This paper discusses such challenges and presents the reader with compelling motivation. A carefully deployed empirical analysis using a real world attack scenario and a real network traffic capture is also presented.

Original languageEnglish
Title of host publicationiNetSec 2015: Open Problems in Network Security
Subtitle of host publicationInternational Workshop on Open Problems in Network Security
PublisherSpringer Verlag
Pages29-42
Number of pages14
Volume9591
ISBN (Print)9783319390277
DOIs
Publication statusEarly online date - 01 May 2016
EventIFIP WG 11.4 International Workshop on Open Problems in Network Security, iNetSec 2015 - Zurich, Switzerland
Duration: 29 Oct 201529 Oct 2015

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume9591
ISSN (Print)03029743
ISSN (Electronic)16113349

Conference

ConferenceIFIP WG 11.4 International Workshop on Open Problems in Network Security, iNetSec 2015
Country/TerritorySwitzerland
CityZurich
Period29/10/201529/10/2015

Keywords

  • Bayesian inference
  • Cyber defence
  • Cyber warfare
  • Early warning systems
  • Future internet

ASJC Scopus subject areas

  • General Computer Science
  • Theoretical Computer Science

Fingerprint

Dive into the research topics of 'Early warning systems for cyber defence'. Together they form a unique fingerprint.

Cite this