A Survey on Cyber Situation-awareness Systems: Framework, Techniques, and Insights

被引：9

作者：

Alavizadeh, Hooman ^{[1
]}

Jang-Jaccard, Julian ^{[2
]}

Enoch, Simon Yusuf ^{[3
]}

Al-Sahaf, Harith ^{[4
]}

Welch, Ian ^{[4
]}

Camtepe, Seyit A. ^{[5
]}

Kim, Dan Dongseong ^{[6
]}

机构：

[1] Univ New South Wales UNSW, UNSW Inst Cyber Secur, Canberra, ACT 2612, Australia

[2] Massey Univ, Sch Informat Technol & Elect Engn, Cybersecur Lab, Auckland 0632, New Zealand

[3] Fed Univ Kashere, Gombe, Nigeria

[4] Victoria Univ Wellington VUW, Sch Engn & Comp Sci, Wellington 6012, New Zealand

[5] CSIRO Data61, Sydney, NSW, Australia

[6] Univ Queensland UQ, Sch InformationTechnol & Elect Engn, Brisbane, Qld 4072, Australia

来源：

ACM COMPUTING SURVEYS | 2023年 / 55卷 / 05期

关键词：

Cyber Situation Awareness; AI-powered threats; cyber system monitoring; abnormal activity monitoring; damage assessment; ATTACK GRAPH; SECURITY; NETWORK; GAME; DISCOVERY; HASH;

D O I：

10.1145/3530809

中图分类号：

TP301 [理论、方法];

学科分类号：

081202 ;

摘要：

Cyberspace is full of uncertainty in terms of advanced and sophisticated cyber threats that are equipped with novel approaches to learn the system and propagate themselves, such as AI-powered threats. To debilitate these types of threats, a modern and intelligent Cyber Situation Awareness (SA) system needs to be developed that has the ability of monitoring and capturing various types of threats, analyzing, and devising a plan to avoid further attacks. This article provides a comprehensive study on the current state-of-the-art in the cyber SA to discuss the following aspects of SA: key design principles, framework, classifications, data collection, analysis of the techniques, and evaluation methods. Last, we highlight misconceptions, insights, and limitations of this study and suggest some future work directions to address the limitations.

引用

页数：37

共 50 条

[1] Situation-Awareness in Model of Cyber Physical System
Horvath, Laszlo
[J]. 2020 IEEE 18TH WORLD SYMPOSIUM ON APPLIED MACHINE INTELLIGENCE AND INFORMATICS (SAMI 2020), 2020, : 17 - 22
[2] Situation-awareness for adaptive coordination in service-based systems
Yau, SS
Huang, D
Gong, H
Davulcu, H
[J]. PROCEEDINGS OF THE 29TH ANNUAL INTERNATIONAL COMPUTER SOFTWARE AND APPLICATIONS CONFERENCE, 2005, : 107 - 112
[3] Context-aware framework to support situation-awareness for disaster management
Aid, Aicha
Rassoul, Idir
[J]. INTERNATIONAL JOURNAL OF AD HOC AND UBIQUITOUS COMPUTING, 2017, 25 (03) : 120 - 132
[4] Mobile situation-awareness within the project map
Balfanz, D
Schirmer, E
Grimm, M
Tazari, MR
[J]. COMPUTERS & GRAPHICS-UK, 2003, 27 (06): : 893 - 898
[5] Context- and situation-awareness in information logistics
Meissen, U
Pfennigschmidt, S
Voisard, A
Wahnfried, T
[J]. CURRENT TRENDS IN DATABASE TECHNOLOGY - EDBT 2004 WORKSHOPS, PROCEEDINGS, 2004, 3268 : 335 - 344
[6] On Detection and Visualization Techniques for Cyber Security Situation Awareness
Yu, Wei
Wei, Sixiao
Shen, Dan
Blowers, Misty
Blasch, Erik P.
Pham, Khanh D.
Chen, Genshe
Zhang, Hanlin
Lu, Chao
[J]. SENSORS AND SYSTEMS FOR SPACE APPLICATIONS VI, 2013, 8739
[7] Situation-awareness Overheating Protection Solution for Mobile Devices
Jeon, ChangKyun
Kim, NeungHoe
In, Hoh Peter
[J]. 2015 IEEE INTERNATIONAL CONFERENCE ON CONSUMER ELECTRONICS (ICCE), 2015, : 618 - 619
[8] Sol: An Agent-Based Framework for Cyber Situation Awareness
Bradshaw, Jeffrey M.
Carvalho, Marco
Bunch, Larry
Eskridge, Tom
Feltovich, Paul J.
Johnson, Matt
Kidwell, Dan
[J]. KUNSTLICHE INTELLIGENZ, 2012, 26 (02): : 127 - 140
[9] Sol: An Agent-Based Framework for Cyber Situation Awareness
Jeffrey M. Bradshaw
Marco Carvalho
Larry Bunch
Tom Eskridge
Paul J. Feltovich
Matt Johnson
Dan Kidwell
[J]. KI - Künstliche Intelligenz, 2012, 26 (2) : 127 - 140
[10] Reactive, proactive, and extensible situation-awareness in ambient assisted living
Machado, Alencar
Maran, Vinicius
Augustin, Iara
Wives, Leandro Krug
Moreira de Oliveira, Jose Palazzo
[J]. EXPERT SYSTEMS WITH APPLICATIONS, 2017, 76 : 21 - 35

← 1 2 3 4 5 →