Attack Scenario Prediction Methodology

Author

Fayyad, Seraj ; Meinel, Christoph

Author_Institution

Internet Technol., Hasso Plattner Inst., Potsdam, Germany

fYear

2013

fDate

15-17 April 2013

Firstpage

53

Lastpage

59

Abstract

Intrusion detection system generates significant data about malicious activities run against network. Generated data by IDS are stored in IDS database. This data represent attacks scenarios history against network. Main goal of IDS system is to enhance network defense technologies. Other techniques are also used to enhance the defense of network such as Attack graph. Network attack graph are used for many goals such as attacker next attack step prediction. In this paper we propose a real time prediction methodology for predicting most possible attack steps and attack scenarios. Proposed methodology benefits from attacks history against network and from attack graph source data. it comes without considerable computation overload such as checking of attack plans library. It provides parallel prediction for parallel attack scenarios.

Keywords

graph theory; security of data; IDS database; IDS system; attack graph source data; attack scenario prediction methodology; attack step prediction; data generation; intrusion detection system; malicious activities; network defense technologies; objects oriented prediction model; Correlation; Data models; Databases; Libraries; Object oriented modeling; Predictive models; Real-time systems; attack graph; attack scenarios parallel prediction; learning from IDS database; new prediction methodology; objects oriented prediction model; real time prediction;

fLanguage

English

Publisher

ieee

Conference_Titel

Information Technology: New Generations (ITNG), 2013 Tenth International Conference on

Conference_Location

Las Vegas, NV

Print_ISBN

978-0-7695-4967-5

Type

conf

DOI

10.1109/ITNG.2013.16

Filename

6614288