On Aggregation and Prediction of Cybersecurity Incident Reports

被引:2
|
作者
Carriegos, Miguel, V [1 ]
Munoz Castaneda, Angel L. [1 ]
Trobajo, M. T. [1 ]
Asterio De Zaballa, Diego [2 ]
机构
[1] Univ Leon, Dept Matemat, Leon 24007, Spain
[2] Univ Leon, Inst Ciencias Aplicadas Ciberseguridad, Leon 24007, Spain
来源
IEEE ACCESS | 2021年 / 9卷
关键词
Computer security; Time series analysis; Aggregates; Forecasting; Databases; Predictive models; Time measurement; Cybersecurity; extended dynamic mode decomposition; Koopman operator; time series forecasting; threat prediction MSC[2010; DYNAMIC-MODE DECOMPOSITION; KOOPMAN OPERATOR; SYSTEMS; VALIDATION; REDUCTION; SECURITY;
D O I
10.1109/ACCESS.2021.3097834
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The study of cybersecurity incidents is an active research field. The purpose of this work is to determine accurate measures of cybersecurity incidents. An effective method to aggregate cybersecurity incident reports is defined to set these measures. As a result we are able to make predictions and, therefore, to deploy security policies. Forecasting time-series of those cybersecurity aggregates is performed based on Koopman's method and Dynamic Mode Decomposition algorithm. Both techniques have shown to be accurate for a wide variety of dynamical systems ranging from fluid dynamics to social sciences. We have performed some experiments on public databases. We show that the measure of the risk trend can be effectively forecasted.
引用
收藏
页码:102636 / 102648
页数:13
相关论文
共 50 条
  • [1] Data-Driven Cybersecurity Incident Prediction: A Survey
    Sun, Nan
    Zhang, Jun
    Rimba, Paul
    Gao, Shang
    Zhang, Leo Yu
    Xiang, Yang
    IEEE COMMUNICATIONS SURVEYS AND TUTORIALS, 2019, 21 (02): : 1744 - 1772
  • [2] SOTER: A Playbook for Cybersecurity Incident Management
    Onwubiko, Cyril
    Ouazzane, Karim
    IEEE TRANSACTIONS ON ENGINEERING MANAGEMENT, 2022, 69 (06) : 3771 - 3791
  • [3] Multimodel-Based Incident Prediction and Risk Assessment in Dynamic Cybersecurity Protection for Industrial Control Systems
    Zhang, Qi
    Zhou, Chunjie
    Xiong, Naixue
    Qin, Yuanqing
    Li, Xuan
    Huang, Shuang
    IEEE TRANSACTIONS ON SYSTEMS MAN CYBERNETICS-SYSTEMS, 2016, 46 (10): : 1429 - 1444
  • [4] The Design of Messages to Improve Cybersecurity Incident Reporting
    Briggs, Pam
    Jeske, Debora
    Coventry, Lynne
    HUMAN ASPECTS OF INFORMATION SECURITY, PRIVACY AND TRUST (HAS 2017), 2017, 10292 : 3 - 13
  • [5] Cybersecurity incident reporting laws in the Asia Pacific
    Nicholas Seng
    International Cybersecurity Law Review, 2023, 4 (3): : 325 - 346
  • [6] ICS Cybersecurity Incident Response and the Troubleshooting Process
    Takano, Masatoshi
    2014 Proceedings of the SICE Annual Conference (SICE), 2014, : 827 - 832
  • [7] Developing decision support for cybersecurity threat and incident managers
    van der Kleij, Rick
    Schraagen, Jan Maarten
    Cadet, Beatrice
    Young, Heather
    COMPUTERS & SECURITY, 2022, 113
  • [8] Creating Cybersecurity Knowledge Graphs From Malware After Action Reports
    Piplai, Aritran
    Mittal, Sudip
    Joshi, Anupam
    Finin, Tim
    Holt, James
    Zak, Richard
    IEEE ACCESS, 2020, 8 : 211691 - 211703
  • [9] Improving Cybersecurity Incident Analysis Workflow with Analytical Provenance
    Rusnak, Vit
    Janeckova, Lenka
    Drgon, Filip
    Dombajova, Anna-Marie
    Kudelkova, Veronika
    2022 26TH INTERNATIONAL CONFERENCE INFORMATION VISUALISATION (IV), 2022, : 300 - 306
  • [10] GraphWeaver: Billion-Scale Cybersecurity Incident Correlation
    Freitas, Scott
    Gharib, Amir
    PROCEEDINGS OF THE 33RD ACM INTERNATIONAL CONFERENCE ON INFORMATION AND KNOWLEDGE MANAGEMENT, CIKM 2024, 2024, : 4479 - 4486
12345