On Aggregation and Prediction of Cybersecurity Incident Reports

被引：2

作者：

Carriegos, Miguel, V ^{[1
]}

Munoz Castaneda, Angel L. ^{[1
]}

Trobajo, M. T. ^{[1
]}

Asterio De Zaballa, Diego ^{[2
]}

机构：

[1] Univ Leon, Dept Matemat, Leon 24007, Spain

[2] Univ Leon, Inst Ciencias Aplicadas Ciberseguridad, Leon 24007, Spain

来源：

IEEE ACCESS | 2021年 / 9卷

关键词：

Computer security; Time series analysis; Aggregates; Forecasting; Databases; Predictive models; Time measurement; Cybersecurity; extended dynamic mode decomposition; Koopman operator; time series forecasting; threat prediction MSC[2010; DYNAMIC-MODE DECOMPOSITION; KOOPMAN OPERATOR; SYSTEMS; VALIDATION; REDUCTION; SECURITY;

D O I：

10.1109/ACCESS.2021.3097834

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

The study of cybersecurity incidents is an active research field. The purpose of this work is to determine accurate measures of cybersecurity incidents. An effective method to aggregate cybersecurity incident reports is defined to set these measures. As a result we are able to make predictions and, therefore, to deploy security policies. Forecasting time-series of those cybersecurity aggregates is performed based on Koopman's method and Dynamic Mode Decomposition algorithm. Both techniques have shown to be accurate for a wide variety of dynamical systems ranging from fluid dynamics to social sciences. We have performed some experiments on public databases. We show that the measure of the risk trend can be effectively forecasted.

引用

页码：102636 / 102648

页数：13

共 50 条

[31] Semantics for incident identification and resolution reports
Borrego-Diaz, Joaquin
Chavez-Gonzalez, Antonia M.
Pro-Martin, Jose L.
Matos-Arana, Virginia
LOGIC JOURNAL OF THE IGPL, 2016, 24 (06) : 916 - 932
[32] USE OF INCIDENT REPORTS TO PROVE NEGLIGENCE
不详
CURRENT MEDICINE FOR ATTORNEYS, 1977, 24 (95) : 21 - 23
[33] Predicting Incident Reports for IT Help Desk
Andrews, Anneliese
Lucente, Joseph
2014 44TH ANNUAL IEEE/IFIP INTERNATIONAL CONFERENCE ON DEPENDABLE SYSTEMS AND NETWORKS (DSN), 2014, : 678 - 683
[34] THE CLASSIFICATION AND ANALYSIS OF RAILWAY INCIDENT REPORTS
Gibson, W. Huw
Mills, Ann
Hesketh, Sarah
RAIL HUMAN FACTORS AROUND THE WORLD: IMPACTS ON AND OF PEOPLE FOR SUCCESSFUL RAIL OPERATIONS, 2012, : 11 - 19
[35] DISTURBING BEHAVIOR - STUDY OF INCIDENT REPORTS
EVENSON, RC
ALTMAN, H
SLETTEN, IW
BROWN, ML
PSYCHIATRIC QUARTERLY, 1974, 48 (02) : 266 - 275
[36] PNEUMOTHORAX - AN ANALYSIS OF 2000 INCIDENT REPORTS
WILLIAMSON, JA
WEBB, RK
VANDERWALT, JH
RUNCIMAN, WB
ANAESTHESIA AND INTENSIVE CARE, 1993, 21 (05) : 642 - 645
[37] Who should be reading incident reports?
Hendershot, DC
PROCESS SAFETY PROGRESS, 1999, 18 (02) : S2 - S3
[38] Improving the quality of medication incident reports
Cavell, G.
Hinckley, R.
PHARMACY WORLD & SCIENCE, 2008, 30 (04): : 396 - 397
[39] INCIDENT REPORTS - FOR YOUR EYES ONLY
CUSHING, M
AMERICAN JOURNAL OF NURSING, 1985, 85 (08) : 873 - 874
[40] INDUSTRY BASF awaits incident reports
Roberts, Kathryn
CHEMISTRY & INDUSTRY, 2016, 80 (10) : 5 - 5

← 1 2 3 4 5 →