TY - GEN
T1 - Multi-agent system for APT detection
AU - Mees, Wim
AU - Debatty, Thibault
N1 - Publisher Copyright:
© 2014 IEEE.
PY - 2014/12/12
Y1 - 2014/12/12
N2 - Advanced Persistent Threats (APTs) are targeted cyber attacks committed over a long period of time by highly skilled attackers. The ever increasing number of successful attacks indicates that classical network protection solutions (firewalls, Intrusion Detections Systems, proxies etc.) are no longer sufficient. Therefore, in this paper we propose a new system that combines multiples approaches using advanced aggregation techniques to achieve a better detection performance. We also test the system on real data from a small corporate network, and show that our system is able to attain a high probability of detection to probability of false alarm ratio.
AB - Advanced Persistent Threats (APTs) are targeted cyber attacks committed over a long period of time by highly skilled attackers. The ever increasing number of successful attacks indicates that classical network protection solutions (firewalls, Intrusion Detections Systems, proxies etc.) are no longer sufficient. Therefore, in this paper we propose a new system that combines multiples approaches using advanced aggregation techniques to achieve a better detection performance. We also test the system on real data from a small corporate network, and show that our system is able to attain a high probability of detection to probability of false alarm ratio.
UR - http://www.scopus.com/inward/record.url?scp=84922598659&partnerID=8YFLogxK
U2 - 10.1109/ISSREW.2014.86
DO - 10.1109/ISSREW.2014.86
M3 - Conference contribution
AN - SCOPUS:84922598659
T3 - Proceedings - IEEE 25th International Symposium on Software Reliability Engineering Workshops, ISSREW 2014
SP - 401
EP - 406
BT - Proceedings - IEEE 25th International Symposium on Software Reliability Engineering Workshops, ISSREW 2014
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 25th IEEE International Symposium on Software Reliability Engineering Workshops, ISSREW 2014
Y2 - 3 November 2014 through 6 November 2014
ER -