A Framework for Threat Detection in Communication Systems

被引:2
|
作者
Sisiaridis, Dimitrios [1 ]
Carcillo, Fabrizio [2 ]
Markowitch, Olivier [1 ]
机构
[1] Univ Libre Bruxelles, Dept Informat, QualSec Grp, Brussels, Belgium
[2] Univ Libre Bruxelles, Dept Informat, Machine Learning Grp, Brussels, Belgium
来源
20TH PAN-HELLENIC CONFERENCE ON INFORMATICS (PCI 2016) | 2016年
关键词
threat detection; Big Data; pattern matching; kill chain model; machine learning;
D O I
10.1145/3003733.3003759
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
We propose a modular framework which deploys state-of-the art techniques in dynamic pattern matching as well as machine learning algorithms for Big Data predictive and behavioural analytics to detect threats and attacks in Managed File Transfer and collaboration platforms. We leverage the use of the kill chain model by looking for indicators of compromise either for long-term attacks as Advanced Persistent Threats, zero-day attacks or DDoS attacks. The proposed engine can act complimentary to existing security services as SIEMs, IDS, IPS and firewalls.
引用
收藏
页数:6
相关论文
共 50 条
  • [1] Threat modeling framework for mobile communication systems
    Rao, Siddharth Prakash
    Chen, Hsin-Yi
    Aura, Tuomas
    COMPUTERS & SECURITY, 2023, 125
  • [2] A Framework for the Evaluation of the Theoretical Threat Coverage Provided by Intrusion Detection Systems
    Creech, Gideon
    2017 MILITARY COMMUNICATIONS AND INFORMATION SYSTEMS CONFERENCE (MILCIS), 2017,
  • [3] A Parallel and Scalable Framework for Insider Threat Detection
    Diop, Abdoulaye
    Emad, Nahid
    Winter, Thierry
    2020 IEEE 27TH INTERNATIONAL CONFERENCE ON HIGH PERFORMANCE COMPUTING, DATA, AND ANALYTICS (HIPC 2020), 2020, : 101 - 110
  • [4] A Threat Hunting Framework for Industrial Control Systems
    Jadidi, Zahra
    Lu, Yi
    IEEE ACCESS, 2021, 9 : 164118 - 164130
  • [5] A Framework for Threat Assessment in Access Control Systems
    Khambhammettu, Hemanth
    Boulares, Sofiene
    Adi, Kamel
    Logrippo, Luigi
    INFORMATION SECURITY AND PRIVACY RESEARCH, 2012, 376 : 187 - 198
  • [6] Information architecture for threat detection systems
    Schiefelbein, M. Curran
    2008 IEEE CONFERENCE ON TECHNOLOGIES FOR HOMELAND SECURITY, VOLS 1 AND 2, 2008, : 589 - 592
  • [7] MicroSensors systems: Detection of a dismounted threat
    Davis, B
    Berglund, V
    Falkofske, D
    Krantz, B
    Unattended Ground Sensor Technologies and Applications VII, 2005, 5796 : 351 - 362
  • [8] MicroSensors Systems: Detection of a dismounted threat
    Shimazu, R
    Berglund, V
    Falkofske, D
    Krantz, B
    UNMANNED/UNATTENDED SENSORS AND SENSOR NETWORKS, 2004, 5611 : 144 - 155
  • [9] Real-time IRC Threat Detection Framework
    Shao, Sicong
    Tunc, Cihan
    Satam, Pratik
    Hariri, Salim
    2017 IEEE 2ND INTERNATIONAL WORKSHOPS ON FOUNDATIONS AND APPLICATIONS OF SELF* SYSTEMS (FAS*W), 2017, : 318 - 323
  • [10] An Effective Threat Detection Framework for Advanced Persistent Cyberattacks
    Jeon, So-Eun
    Lee, Sun-Jin
    Lee, Eun-Young
    Lee, Yeon-Ji
    Ryu, Jung-Hwa
    Moon, Jung-Hyun
    Yi, Sun -Min
    Lee, Il-Gu
    CMC-COMPUTERS MATERIALS & CONTINUA, 2023, 75 (02): : 4231 - 4253
12345