• DocumentCode
    672159
  • Title

    Automated classification of computer network attacks

  • Author

    van Heerden, Renier ; Leenen, Louise ; Irwin, Barry

  • Author_Institution
    Cyber Defence, CSIR, Pretoria, South Africa
  • fYear
    2013
  • fDate
    25-27 Nov. 2013
  • Firstpage
    1
  • Lastpage
    7
  • Abstract
    In this paper we demonstrate how an automated reasoner, HermiT, is used to classify instances of computer network based attacks in conjunction with a network attack ontology. The ontology describes different types of network attacks through classes and inter-class relationships and has previously been implemented in the Protege ontology editor. Two significant recent instances of network based attacks are presented as individuals in the ontology and correctly classified by the automated reasoner according to the relevant types of attack scenarios depicted in the ontology. The two network attack instances are the Distributed Denial of Service attack on SpamHaus in 2013 and the theft of 42 million Rand ($6.7 million) from South African Postbank in 2012.
  • Keywords
    banking; computer network security; ontologies (artificial intelligence); pattern classification; HermiT; Protégé ontology editor; South African postbank; SpamHaus; automated computer network-based attack instance classification; automated reasoner; distributed denial of service attack; interclass relationships; network attack ontology; Computational modeling; Computer crime; Computers; OWL; Ontologies; Taxonomy; Network Attack Ontology;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Adaptive Science and Technology (ICAST), 2013 International Conference on
  • Conference_Location
    Pretoria
  • Type

    conf

  • DOI
    10.1109/ICASTech.2013.6707510
  • Filename
    6707510
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=672159