FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W2959653735> ?p ?o ?g. }

• W2959653735 endingPage "99520" @default.
• W2959653735 startingPage "99508" @default.
• W2959653735 abstract "Cyber security has become a matter of a global interest, and several attacks target industrial companies and governmental organizations. The advanced persistent threats (APTs) have emerged as a new and complex version of multi-stage attacks (MSAs), targeting selected companies and organizations. Current APT detection systems focus on raising the detection alerts rather than predicting APTs. Forecasting the APT stages not only reveals the APT life cycle in its early stages but also helps to understand the attacker's strategies and aims. This paper proposes a novel intrusion detection system for APT detection and prediction. This system undergoes two main phases; the first one achieves the attack scenario reconstruction. This phase has a correlation framework to link the elementary alerts that belong to the same APT campaign. The correlation is based on matching the attributes of the elementary alerts that are generated over a configurable time window. The second phase of the proposed system is the attack decoding. This phase utilizes the hidden Markov model (HMM) to determine the most likely sequence of APT stages for a given sequence of correlated alerts. Moreover, a prediction algorithm is developed to predict the next step of the APT campaign after computing the probability of each APT stage to be the next step of the attacker. The proposed approach estimates the sequence of APT stages with a prediction accuracy of at least 91.80%. In addition, it predicts the next step of the APT campaign with an accuracy of 66.50%, 92.70%, and 100% based on two, three, and four correlated alerts, respectively." @default.
• W2959653735 created "2019-07-23" @default.
• W2959653735 creator A5009232291 @default.
• W2959653735 creator A5022234595 @default.
• W2959653735 creator A5030234358 @default.
• W2959653735 creator A5043400886 @default.
• W2959653735 creator A5046799023 @default.
• W2959653735 creator A5055981395 @default.
• W2959653735 creator A5059687788 @default.
• W2959653735 date "2019-01-01" @default.
• W2959653735 modified "2023-10-16" @default.
• W2959653735 title "Hidden Markov Models and Alert Correlations for the Prediction of Advanced Persistent Threats" @default.
• W2959653735 cites W1973240709 @default.
• W2959653735 cites W1976413307 @default.
• W2959653735 cites W1981294881 @default.
• W2959653735 cites W1991906836 @default.
• W2959653735 cites W1994920437 @default.
• W2959653735 cites W2021998574 @default.
• W2959653735 cites W2073036619 @default.
• W2959653735 cites W2084416457 @default.
• W2959653735 cites W2093135704 @default.
• W2959653735 cites W2113152757 @default.
• W2959653735 cites W2125838338 @default.
• W2959653735 cites W2155011304 @default.
• W2959653735 cites W2185537293 @default.
• W2959653735 cites W2256845964 @default.
• W2959653735 cites W2258636546 @default.
• W2959653735 cites W2314121694 @default.
• W2959653735 cites W2486441280 @default.
• W2959653735 cites W2501070846 @default.
• W2959653735 cites W2501259350 @default.
• W2959653735 cites W2560932476 @default.
• W2959653735 cites W2615376404 @default.
• W2959653735 cites W2814139629 @default.
• W2959653735 cites W2818789173 @default.
• W2959653735 cites W2887561884 @default.
• W2959653735 cites W4246318679 @default.
• W2959653735 doi "https://doi.org/10.1109/access.2019.2930200" @default.
• W2959653735 hasPublicationYear "2019" @default.
• W2959653735 type Work @default.
• W2959653735 sameAs 2959653735 @default.
• W2959653735 citedByCount "39" @default.
• W2959653735 countsByYear W29596537352020 @default.
• W2959653735 countsByYear W29596537352021 @default.
• W2959653735 countsByYear W29596537352022 @default.
• W2959653735 countsByYear W29596537352023 @default.
• W2959653735 crossrefType "journal-article" @default.
• W2959653735 hasAuthorship W2959653735A5009232291 @default.
• W2959653735 hasAuthorship W2959653735A5022234595 @default.
• W2959653735 hasAuthorship W2959653735A5030234358 @default.
• W2959653735 hasAuthorship W2959653735A5043400886 @default.
• W2959653735 hasAuthorship W2959653735A5046799023 @default.
• W2959653735 hasAuthorship W2959653735A5055981395 @default.
• W2959653735 hasAuthorship W2959653735A5059687788 @default.
• W2959653735 hasBestOaLocation W29596537351 @default.
• W2959653735 hasConcept C105795698 @default.
• W2959653735 hasConcept C119857082 @default.
• W2959653735 hasConcept C120665830 @default.
• W2959653735 hasConcept C121332964 @default.
• W2959653735 hasConcept C124101348 @default.
• W2959653735 hasConcept C154945302 @default.
• W2959653735 hasConcept C165064840 @default.
• W2959653735 hasConcept C192209626 @default.
• W2959653735 hasConcept C23224414 @default.
• W2959653735 hasConcept C2778112365 @default.
• W2959653735 hasConcept C33923547 @default.
• W2959653735 hasConcept C35525427 @default.
• W2959653735 hasConcept C41008148 @default.
• W2959653735 hasConcept C54355233 @default.
• W2959653735 hasConcept C68859911 @default.
• W2959653735 hasConcept C86803240 @default.
• W2959653735 hasConcept C98763669 @default.
• W2959653735 hasConceptScore W2959653735C105795698 @default.
• W2959653735 hasConceptScore W2959653735C119857082 @default.
• W2959653735 hasConceptScore W2959653735C120665830 @default.
• W2959653735 hasConceptScore W2959653735C121332964 @default.
• W2959653735 hasConceptScore W2959653735C124101348 @default.
• W2959653735 hasConceptScore W2959653735C154945302 @default.
• W2959653735 hasConceptScore W2959653735C165064840 @default.
• W2959653735 hasConceptScore W2959653735C192209626 @default.
• W2959653735 hasConceptScore W2959653735C23224414 @default.
• W2959653735 hasConceptScore W2959653735C2778112365 @default.
• W2959653735 hasConceptScore W2959653735C33923547 @default.
• W2959653735 hasConceptScore W2959653735C35525427 @default.
• W2959653735 hasConceptScore W2959653735C41008148 @default.
• W2959653735 hasConceptScore W2959653735C54355233 @default.
• W2959653735 hasConceptScore W2959653735C68859911 @default.
• W2959653735 hasConceptScore W2959653735C86803240 @default.
• W2959653735 hasConceptScore W2959653735C98763669 @default.
• W2959653735 hasFunder F4320334627 @default.
• W2959653735 hasLocation W29596537351 @default.
• W2959653735 hasLocation W29596537352 @default.
• W2959653735 hasLocation W29596537353 @default.
• W2959653735 hasLocation W29596537354 @default.
• W2959653735 hasLocation W29596537355 @default.
• W2959653735 hasLocation W29596537356 @default.
• W2959653735 hasOpenAccess W2959653735 @default.
• W2959653735 hasPrimaryLocation W29596537351 @default.

• next