Abstract
Deploying security solutions to defend against known security attacks could fail not only due to policy, design, or implementation flaws in the designed solutions, but also due to lack of data regarding the environment under which the attack is executed, or the security solution supervising the malicious behavior. To this end, we develop in this paper a new cyber defense system that assesses the efficiency of a cyber security solution when faced to attack scenarios occurring under different contexts (the configuration and location of distributed security solutions, called observer agents, the used reaction system, and the information visibility of attacks). The work also considers the development of a model for describing the concept of global, local and observable executable scenarios, which allows to observe step by step the execution of an attack scenario, and the observer agents’ behavior and their reactions to the attack execution. The model allows also to identify the step at which an attack scenario can be blocked. A case study is presented to exemplify the proposal.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Notes
- 1.
CERTbe, Petya/NotPetya Malware Report on worldwide infection, June 2017.
- 2.
Symantec Internet Security Threat Report ISTR, Ransomware 2017, July 2017.
References
Mohurle, S., Patil, M.: A brief study of wannacry threat: ransomware attack 2017. Int. J. Adv. Res. Comput. Sci. 8(5) (2017)
Razzaq, A., Hur, A., Ahmad, H.F., Masood, M.: Cyber security: threats, reasons, challenges, methodologies and state of the art solutions for industrial applications. In: IEEE Eleventh International Symposium on Autonomous Decentralized Systems (ISADS), Mexico, 06–08 March 2013
Shinde, P.S., Ardhapurkar, S.B.: Cyber security analysis using vulnerability assessment and penetration testing. In: IEEE Sponsored World Conference on Futuristic Trends in Research and Innovation for Social Welfare (2016)
Lakhdhar, Y., Rekhis, S., Boudriga, N.: An approach to a graph-based active cyber defense model. In: The 14th International Conference on Advances in Mobile Computing & Multimedia (MoMM 2016), Singapore, 28–30 November 2016
Guezguez, M.J., Rekhis, S., Boudriga, N.: Observation-based detection of femtocell attacks in wireless mobile networks. In: Proceedings of the Symposium on Applied Computing, Morocco, 03–07 April 2017
Derfouf, M., Eleuldj, M., Enniari, S., Diouri, O.: Smart intrusion detection model for the cloud computing. In: Rocha, Á., Serrhini, M., Felgueiras, C. (eds.) Europe and MENA Cooperation Advances in Information and Communication Technologies, vol. 520, pp. 411–421. Springer, Heidelberg (2017). https://doi.org/10.1007/978-3-319-46568-5_42
Lakhdhar, Y., Rekhis, S., Boudriga, N.: Proactive damage assessment of cyber attacks using mobile observer agents. In: The 15th International Conference on Advances in Mobile Computing & Multimedia (MoMM 2017), Salzburg, Austria, 04–06 December 2017
Vasilomanolakis, E., Karuppayah, S., Mühlhäuser, M., Fischer, M.: Taxonomy and survey of collaborative intrusion detection. ACM Comput. Surv. (CSUR) 47(4), 55 (2015)
Ganame, K., Allaire, M.A., Zagdene, G., Boudar, O.: Network behavioral analysis for zero-day malware detection-a case study. In: Proceedings of International Conference on Intelligent, Secure, and Dependable Systems in Distributed and Cloud Environments (2017)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2018 Springer Nature Switzerland AG
About this paper
Cite this paper
Lakhdhar, Y., Rekhis, S., Boudriga, N. (2018). A Context-Based Model for Validating the Ability of Cyber Systems to Defend Against Attacks. In: Boudriga, N., Alouini, MS., Rekhis, S., Sabir, E., Pollin, S. (eds) Ubiquitous Networking. UNet 2018. Lecture Notes in Computer Science(), vol 11277. Springer, Cham. https://doi.org/10.1007/978-3-030-02849-7_27
Download citation
DOI: https://doi.org/10.1007/978-3-030-02849-7_27
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-02848-0
Online ISBN: 978-3-030-02849-7
eBook Packages: Computer ScienceComputer Science (R0)