Abstract
Computer networks are ubiquitous systems growing exponentially with a predicted 50 billion devices connected by 2050. This dramatically increases the potential attack surface of Internet networks. A key issue in cyber defense is to detect, categorize and identify these attacks, the way they are propagated and their potential impacts on the systems affected. The research presented in this paper models cyber attacks at large by considering the Internet as a complex system in which attacks are propagated over a network. We model an attack as a path from a source to a target, and where each attack is categorized according to its intention. We setup an experimental testbed with the concept of honeypot that evaluates the spatiotemporal distribution of these Internet attacks. The preliminary results show a series of patterns in space and time that illustrate the potential of the approach, and how cyber attacks can be categorized according to the concept and measure of entropy.
| Original language | English |
|---|---|
| Title of host publication | Proceedings of the 26th ACM SIGSPATIAL International Conference on Advances in Geographic Information Systems |
| Place of Publication | Seattle, Washington |
| Publisher | Association for Computing Machinery (ACM) |
| Pages | 564-567 |
| Number of pages | 4 |
| ISBN (Electronic) | 9781450358897 |
| DOIs | |
| Publication status | Published - 6 Nov 2018 |
| Event | 26th ACM SIGSPATIAL: International Conference on Advances in Geographic Information Systems - Seattle, United States Duration: 6 Nov 2018 → 9 Nov 2018 http://sigspatial2018.sigspatial.org/ |
Conference
| Conference | 26th ACM SIGSPATIAL |
|---|---|
| Abbreviated title | ACM SIGSPATIAL 2018 |
| Country/Territory | United States |
| City | Seattle |
| Period | 6/11/18 → 9/11/18 |
| Internet address |
Keywords
- Cyber attacks
- Entropy
- Spatial analysis