FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W4220954340> ?p ?o ?g. }

• W4220954340 endingPage "103370" @default.
• W4220954340 startingPage "103370" @default.
• W4220954340 abstract "A wide variety of Cyber Threat Information (CTI) is used by Security Operation Centres (SOCs) to perform validation of security incidents and alerts. Security experts manually define different types of rules and scripts based on CTI to perform validation tasks. These rules and scripts need to be updated continuously due to evolving threats, changing SOCs’ requirements and dynamic nature of CTI. The manual process of updating rules and scripts delays the response to attacks. To reduce the burden of human experts and accelerate response, we propose a novel Artificial Intelligence (AI) based framework, SmartValidator. SmartValidator leverages Machine Learning (ML) techniques to enable automated validation of alerts. It consists of three layers to perform the tasks of data collection, model building and alert validation. It projects the validation task as a classification problem. Instead of building and saving models for all possible requirements, we propose to automatically construct the validation models based on SOC’s requirements and CTI. We built a Proof of Concept (PoC) system with eight ML algorithms, two feature engineering techniques and 18 requirements to investigate the effectiveness and efficiency of SmartValidator. The evaluation results showed that when prediction models were built automatically for classifying cyber threat data, the F1-score of 75% of the models were above 0.8, which indicates adequate performance of the PoC for use in a real-world organization. The results further showed that dynamic construction of prediction models required 99% less models to be built than pre-building models for all possible requirements. Thus, SmartValidator is much more efficient to use when SOCs’ requirements and threat behaviour are constantly evolving. The framework can be followed by various industries to accelerate and automate the validation of alerts and incidents based on their CTI and SOC’s preferences." @default.
• W4220954340 created "2022-04-03" @default.
• W4220954340 creator A5012225295 @default.
• W4220954340 creator A5035745103 @default.
• W4220954340 creator A5040400519 @default.
• W4220954340 creator A5058693284 @default.
• W4220954340 date "2022-06-01" @default.
• W4220954340 modified "2023-09-27" @default.
• W4220954340 title "SmartValidator: A framework for automatic identification and classification of cyber threat data" @default.
• W4220954340 cites W2129018774 @default.
• W4220954340 cites W2278186031 @default.
• W4220954340 cites W2498993573 @default.
• W4220954340 cites W2563320891 @default.
• W4220954340 cites W2586235276 @default.
• W4220954340 cites W2607204512 @default.
• W4220954340 cites W2760313715 @default.
• W4220954340 cites W2772199294 @default.
• W4220954340 cites W2781981343 @default.
• W4220954340 cites W2908520504 @default.
• W4220954340 cites W2911183593 @default.
• W4220954340 cites W2911829052 @default.
• W4220954340 cites W2943546107 @default.
• W4220954340 cites W2996806689 @default.
• W4220954340 cites W3024317787 @default.
• W4220954340 cites W3033777149 @default.
• W4220954340 cites W3047132966 @default.
• W4220954340 cites W3081936891 @default.
• W4220954340 cites W3102476541 @default.
• W4220954340 doi "https://doi.org/10.1016/j.jnca.2022.103370" @default.
• W4220954340 hasPublicationYear "2022" @default.
• W4220954340 type Work @default.
• W4220954340 citedByCount "2" @default.
• W4220954340 countsByYear W42209543402022 @default.
• W4220954340 crossrefType "journal-article" @default.
• W4220954340 hasAuthorship W4220954340A5012225295 @default.
• W4220954340 hasAuthorship W4220954340A5035745103 @default.
• W4220954340 hasAuthorship W4220954340A5040400519 @default.
• W4220954340 hasAuthorship W4220954340A5058693284 @default.
• W4220954340 hasBestOaLocation W42209543402 @default.
• W4220954340 hasConcept C111919701 @default.
• W4220954340 hasConcept C116834253 @default.
• W4220954340 hasConcept C119857082 @default.
• W4220954340 hasConcept C124101348 @default.
• W4220954340 hasConcept C127413603 @default.
• W4220954340 hasConcept C138885662 @default.
• W4220954340 hasConcept C154945302 @default.
• W4220954340 hasConcept C199360897 @default.
• W4220954340 hasConcept C201995342 @default.
• W4220954340 hasConcept C2776401178 @default.
• W4220954340 hasConcept C2780451532 @default.
• W4220954340 hasConcept C2780801425 @default.
• W4220954340 hasConcept C41008148 @default.
• W4220954340 hasConcept C41895202 @default.
• W4220954340 hasConcept C59822182 @default.
• W4220954340 hasConcept C61423126 @default.
• W4220954340 hasConcept C86803240 @default.
• W4220954340 hasConcept C98045186 @default.
• W4220954340 hasConceptScore W4220954340C111919701 @default.
• W4220954340 hasConceptScore W4220954340C116834253 @default.
• W4220954340 hasConceptScore W4220954340C119857082 @default.
• W4220954340 hasConceptScore W4220954340C124101348 @default.
• W4220954340 hasConceptScore W4220954340C127413603 @default.
• W4220954340 hasConceptScore W4220954340C138885662 @default.
• W4220954340 hasConceptScore W4220954340C154945302 @default.
• W4220954340 hasConceptScore W4220954340C199360897 @default.
• W4220954340 hasConceptScore W4220954340C201995342 @default.
• W4220954340 hasConceptScore W4220954340C2776401178 @default.
• W4220954340 hasConceptScore W4220954340C2780451532 @default.
• W4220954340 hasConceptScore W4220954340C2780801425 @default.
• W4220954340 hasConceptScore W4220954340C41008148 @default.
• W4220954340 hasConceptScore W4220954340C41895202 @default.
• W4220954340 hasConceptScore W4220954340C59822182 @default.
• W4220954340 hasConceptScore W4220954340C61423126 @default.
• W4220954340 hasConceptScore W4220954340C86803240 @default.
• W4220954340 hasConceptScore W4220954340C98045186 @default.
• W4220954340 hasLocation W42209543401 @default.
• W4220954340 hasLocation W42209543402 @default.
• W4220954340 hasOpenAccess W4220954340 @default.
• W4220954340 hasPrimaryLocation W42209543401 @default.
• W4220954340 hasRelatedWork W1530957558 @default.
• W4220954340 hasRelatedWork W1536358758 @default.
• W4220954340 hasRelatedWork W2018584086 @default.
• W4220954340 hasRelatedWork W2056593505 @default.
• W4220954340 hasRelatedWork W2086733238 @default.
• W4220954340 hasRelatedWork W2351571780 @default.
• W4220954340 hasRelatedWork W2372778180 @default.
• W4220954340 hasRelatedWork W2761417937 @default.
• W4220954340 hasRelatedWork W2961085424 @default.
• W4220954340 hasRelatedWork W4245549600 @default.
• W4220954340 hasVolume "202" @default.
• W4220954340 isParatext "false" @default.
• W4220954340 isRetracted "false" @default.
• W4220954340 workType "article" @default.