Abstract
| Original language | English |
|---|---|
| Title of host publication | Proceedings of the 26th ACM SIGSPATIAL International Conference on Advances in Geographic Information Systems |
| Place of Publication | Seattle, Washington |
| Publisher | Association for Computing Machinery (ACM) |
| Pages | 564-567 |
| Number of pages | 4 |
| ISBN (Electronic) | 9781450358897 |
| DOIs | |
| Publication status | Published - 6 Nov 2018 |
| Event | 26th ACM SIGSPATIAL: International Conference on Advances in Geographic Information Systems - Seattle, United States Duration: 6 Nov 2018 → 9 Nov 2018 http://sigspatial2018.sigspatial.org/ |
Conference
| Conference | 26th ACM SIGSPATIAL |
|---|---|
| Abbreviated title | ACM SIGSPATIAL 2018 |
| Country | United States |
| City | Seattle |
| Period | 6/11/18 → 9/11/18 |
| Internet address |
Fingerprint
Cite this
}
A spatio-temporal entropy-based approach for the analysis of cyber attacks (demo paper). / Mérien, Thibaud; Bellekens, Xavier; Brosset, David ; Claramunt, Christophe .
Proceedings of the 26th ACM SIGSPATIAL International Conference on Advances in Geographic Information Systems. Seattle, Washington : Association for Computing Machinery (ACM), 2018. p. 564-567.Research output: Chapter in Book/Report/Conference proceeding › Conference contribution
TY - GEN
T1 - A spatio-temporal entropy-based approach for the analysis of cyber attacks (demo paper)
AU - Mérien, Thibaud
AU - Bellekens, Xavier
AU - Brosset, David
AU - Claramunt, Christophe
PY - 2018/11/6
Y1 - 2018/11/6
N2 - Computer networks are ubiquitous systems growing exponentially with a predicted 50 billion devices connected by 2050. This dramatically increases the potential attack surface of Internet networks. A key issue in cyber defense is to detect, categorize and identify these attacks, the way they are propagated and their potential impacts on the systems affected. The research presented in this paper models cyber attacks at large by considering the Internet as a complex system in which attacks are propagated over a network. We model an attack as a path from a source to a target, and where each attack is categorized according to its intention. We setup an experimental testbed with the concept of honeypot that evaluates the spatiotemporal distribution of these Internet attacks. The preliminary results show a series of patterns in space and time that illustrate the potential of the approach, and how cyber attacks can be categorized according to the concept and measure of entropy.
AB - Computer networks are ubiquitous systems growing exponentially with a predicted 50 billion devices connected by 2050. This dramatically increases the potential attack surface of Internet networks. A key issue in cyber defense is to detect, categorize and identify these attacks, the way they are propagated and their potential impacts on the systems affected. The research presented in this paper models cyber attacks at large by considering the Internet as a complex system in which attacks are propagated over a network. We model an attack as a path from a source to a target, and where each attack is categorized according to its intention. We setup an experimental testbed with the concept of honeypot that evaluates the spatiotemporal distribution of these Internet attacks. The preliminary results show a series of patterns in space and time that illustrate the potential of the approach, and how cyber attacks can be categorized according to the concept and measure of entropy.
U2 - 10.1145/3274895.3274921
DO - 10.1145/3274895.3274921
M3 - Conference contribution
SP - 564
EP - 567
BT - Proceedings of the 26th ACM SIGSPATIAL International Conference on Advances in Geographic Information Systems
PB - Association for Computing Machinery (ACM)
CY - Seattle, Washington
ER -