Soteria: An Approach for Detecting Multi-Institution Attacks

被引:1
|
作者
Zabarah, Saif [1 ]
Naman, Omar [1 ]
Salahuddin, Mohammad A. [1 ]
Boutaba, Raouf [1 ]
Al-Kiswany, Samer [1 ,2 ]
机构
[1] Univ Waterloo, Waterloo, ON, Canada
[2] Acronis Res, Vancouver, BC, Canada
来源
2023 26TH CONFERENCE ON INNOVATION IN CLOUDS, INTERNET AND NETWORKS AND WORKSHOPS, ICIN | 2023年
关键词
D O I
10.1109/ICIN56760.2023.10073491
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
We present Soteria, a data processing pipeline for detecting multi-institution attacks. Soteria uses a set of Machine Learning techniques to detect future attacks, predict their future targets, and ranks attacks based on their predicted severity. Our evaluation with real data from Canada wide academic institution networks shows that Soteria can predict future attacks with 95% recall rate, predict the next targets of an attack with 97% recall rate, and detect attacks in the first 20% of their life span. Soteria is deployed in production and is in use by tens of Canadian academic institutions that are part of the CANARIE IDS project.
引用
收藏
页数:8
相关论文
共 50 条
  • [1] An approach for detecting multi-institution attacks
    Saif Zabarah
    Omar Naman
    Mohammad A. Salahuddin
    Raouf Boutaba
    Samer Al-Kiswany
    Annals of Telecommunications, 2024, 79 : 257 - 270
  • [2] An approach for detecting multi-institution attacks
    Zabarah, Saif
    Naman, Omar
    Salahuddin, Mohammad A.
    Boutaba, Raouf
    Al-Kiswany, Samer
    ANNALS OF TELECOMMUNICATIONS, 2024, 79 (3-4) : 257 - 270
  • [3] SALG and POGIL: A multi-institution assessment
    Bressette, Andrew R.
    Simons, Emily
    Straumanis, Andrei
    ABSTRACTS OF PAPERS OF THE AMERICAN CHEMICAL SOCIETY, 2006, 231
  • [4] Designing a multi-institution electronic radiology practice
    Honeyman, JC
    Frost, MM
    MEDICAL IMAGING 2001: PACS AND INTEGRATED MEDICAL INFORMATION SYSTEMS: DESIGN AND EVALUATION, 2001, 4323 : 265 - 270
  • [5] Design and implementation of a multi-institution immunization registry
    Jenders, RA
    Dasgupta, B
    Mercedes, D
    Clayton, PD
    MEDINFO '98 - 9TH WORLD CONGRESS ON MEDICAL INFORMATICS, PTS 1 AND 2, 1998, 52 : 45 - 49
  • [6] A Multi-Institution Comparison of Identity Development as an Engineer
    Matusovich, Holly M.
    Barry, Brock E.
    Meyers, Kerry
    Louis, Rachel
    2011 ASEE ANNUAL CONFERENCE & EXPOSITION, 2011,
  • [7] A Multi-institution Exploration of Peer Instruction in Practice
    Taylor, Cynthia
    Spacco, Jaime
    Bunde, David P.
    Petersen, Andrew
    Liao, Soohyun Nam
    Porter, Leo
    ITICSE'18: PROCEEDINGS OF THE 23RD ANNUAL ACM CONFERENCE ON INNOVATION AND TECHNOLOGY IN COMPUTER SCIENCE EDUCATION, 2018, : 308 - 313
  • [8] A Multi-Institution Exploration of Peer Instruction in Practice
    Bunde, David P.
    Taylor, Cynthia
    Spacco, Jaime
    Petersen, Andrew
    Liao, Soohyun Nam
    Porter, Leo
    SIGCSE'18: PROCEEDINGS OF THE 49TH ACM TECHNICAL SYMPOSIUM ON COMPUTER SCIENCE EDUCATION, 2018, : 1079 - 1080
  • [9] A multi-institution collaborative policy on medical futility
    Halevy, A
    Brody, BA
    JAMA-JOURNAL OF THE AMERICAN MEDICAL ASSOCIATION, 1996, 276 (07): : 571 - 574
  • [10] A multi-institution deformable registration accuracy study
    Brock, K. K.
    INTERNATIONAL JOURNAL OF RADIATION ONCOLOGY BIOLOGY PHYSICS, 2007, 69 (03): : S44 - S44
12345