@inproceedings{0c8369fd359f4ce89d17207d9c8c3256,
title = "Graph-based APT detection",
abstract = "In this paper we propose a new algorithm to detect Advanced Persistent Threats (APT's) that relies on a graph model of HTTP traffic. We also implement a complete detection system with a web interface that allows to interactively analyze the data. We perform a complete parameter study and experimental evaluation using data collected on a real network. The results show that the performance of our system is comparable to currently available antiviruses, although antiviruses use signatures to detect known malwares while our algorithm solely uses behavior analysis to detect new undocumented attacks.",
keywords = "RMA-CISS-RUCD",
author = "Thibault Debatty and Wim Mees and Thomas Gilon",
note = "Publisher Copyright: {\textcopyright} 2018 IEEE.; 2018 International Conference on Military Communications and Information Systems, ICMCIS 2018 ; Conference date: 22-05-2018 Through 23-05-2018",
year = "2018",
month = jun,
day = "27",
doi = "10.1109/ICMCIS.2018.8398708",
language = "English",
series = "2018 International Conference on Military Communications and Information Systems, ICMCIS 2018",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
pages = "1--8",
booktitle = "2018 International Conference on Military Communications and Information Systems, ICMCIS 2018",
}