On Aggregation and Prediction of Cybersecurity Incident Reports

被引:2
|
作者
Carriegos, Miguel, V [1 ]
Munoz Castaneda, Angel L. [1 ]
Trobajo, M. T. [1 ]
Asterio De Zaballa, Diego [2 ]
机构
[1] Univ Leon, Dept Matemat, Leon 24007, Spain
[2] Univ Leon, Inst Ciencias Aplicadas Ciberseguridad, Leon 24007, Spain
来源
IEEE ACCESS | 2021年 / 9卷
关键词
Computer security; Time series analysis; Aggregates; Forecasting; Databases; Predictive models; Time measurement; Cybersecurity; extended dynamic mode decomposition; Koopman operator; time series forecasting; threat prediction MSC[2010; DYNAMIC-MODE DECOMPOSITION; KOOPMAN OPERATOR; SYSTEMS; VALIDATION; REDUCTION; SECURITY;
D O I
10.1109/ACCESS.2021.3097834
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The study of cybersecurity incidents is an active research field. The purpose of this work is to determine accurate measures of cybersecurity incidents. An effective method to aggregate cybersecurity incident reports is defined to set these measures. As a result we are able to make predictions and, therefore, to deploy security policies. Forecasting time-series of those cybersecurity aggregates is performed based on Koopman's method and Dynamic Mode Decomposition algorithm. Both techniques have shown to be accurate for a wide variety of dynamical systems ranging from fluid dynamics to social sciences. We have performed some experiments on public databases. We show that the measure of the risk trend can be effectively forecasted.
引用
收藏
页码:102636 / 102648
页数:13
相关论文
共 50 条
  • [21] A Case-Based Reasoning Approach for the Cybersecurity Incident Recording and Resolution
    Nunes, Raul Ceretta
    Colome, Marcelo
    Barcelos, Fabio Andre
    Garbin, Marcelo
    Paulus, Gustavo Bathu
    De Lima Silva, Luis Alvaro
    INTERNATIONAL JOURNAL OF SOFTWARE ENGINEERING AND KNOWLEDGE ENGINEERING, 2019, 29 (11-12) : 1607 - 1627
  • [22] Development and evaluation of information elements for simplified cyber-incident reports
    Lif, Patrik
    Sommestad, Teodor
    Granasen, Dennis
    2018 INTERNATIONAL CONFERENCE ON CYBER SITUATIONAL AWARENESS, DATA ANALYTICS AND ASSESSMENT (CYBER SA), 2018,
  • [23] Automatic Narrative Summarization for Visualizing Cyber Security Logs and Incident Reports
    Gove, Robert
    IEEE TRANSACTIONS ON VISUALIZATION AND COMPUTER GRAPHICS, 2022, 28 (01) : 1182 - 1190
  • [24] Online Metro Origin-Destination Prediction via Heterogeneous Information Aggregation
    Liu, Lingbo
    Zhu, Yuying
    Li, Guanbin
    Wu, Ziyi
    Bai, Lei
    Lin, Liang
    IEEE TRANSACTIONS ON PATTERN ANALYSIS AND MACHINE INTELLIGENCE, 2023, 45 (03) : 3574 - 3589
  • [25] Evaluating incident reporting in cybersecurity. From threat detection to policy learning
    Busetti, Simone
    Scanni, Francesco Maria
    GOVERNMENT INFORMATION QUARTERLY, 2025, 42 (01)
  • [26] An Assessment of Capabilities Required for Effective Cybersecurity Incident Management - A Systematic Literature Review
    Falowo, Olufunsho I.
    Koshoedo, Kehinde
    Ozer, Murat
    2023 INTERNATIONAL CONFERENCE ON DATA SECURITY AND PRIVACY PROTECTION, DSPP, 2023, : 1 - 11
  • [27] Dynamic Prediction of the Incident Duration Using Adaptive Feature Set
    Ghosh, Banishree
    Asif, Muhammad Tayyab
    Dauwels, Justin
    Fastenrath, Ulrich
    Guo, Hongliang
    IEEE TRANSACTIONS ON INTELLIGENT TRANSPORTATION SYSTEMS, 2019, 20 (11) : 4019 - 4031
  • [28] Cybersecurity and Risk Prediction Based on Machine Learning Algorithms
    Yang, Haoliang
    Zhu, Jianan
    Li, Jiaqing
    Applied Mathematics and Nonlinear Sciences, 2024, 9 (01)
  • [29] Prediction Using Propagation: From Flu Trends to Cybersecurity
    Prakash, B. Aditya
    IEEE INTELLIGENT SYSTEMS, 2016, 31 (01) : 84 - 88
  • [30] Assembling cybersecurity: The politics and materiality of technical malware reports and the case of Stuxnet
    Stevens, Clare
    CONTEMPORARY SECURITY POLICY, 2020, 41 (01) : 129 - 152
12345