A Markov multi-phase transferable belief model: An application for predicting data exfiltration APTs | IEEE Conference Publication | IEEE Xplore

A Markov multi-phase transferable belief model: An application for predicting data exfiltration APTs


Abstract:

eXfiltration Advanced Persistent Threats (XAPTs) increasingly account for incidents concerned with intelligence information gathering by malicious adversaries. This resea...Show More

Abstract:

eXfiltration Advanced Persistent Threats (XAPTs) increasingly account for incidents concerned with intelligence information gathering by malicious adversaries. This research exploits the multi-phase nature of an XAPT, mapping its phases into a cyber attack kill chain. A novel Markov Multi-Phase Transferable Belief Model (MM-TBM) is proposed and demonstrated for fusing incoming evidence from a variety of sources which takes into account conflicting information. The MM-TBM algorithm predicts a cyber attacker's actions against a computer network and provides a visual representation of their footsteps.
Date of Conference: 09-12 July 2013
Date Added to IEEE Xplore: 21 October 2013
ISBN Information:
Conference Location: Istanbul, Turkey

References

References is not available for this document.