English
Related papers

Related papers: Characterizing Honeypot-Captured Cyber Attacks: St…

200 papers

Cyber threat intelligence is one of the emerging areas of focus in information security. Much of the recent work has focused on rule-based methods and detection of network attacks using Intrusion Detection algorithms. In this paper we…

Machine Learning · Computer Science 2024-09-05 Soham Deshmukh , Rahul Rade , Faruk Kazi

Characterizing attacker behavior with respect to Cyber-Physical Systems is important to assuring the security posture and resilience of these systems. Classical cyber vulnerability assessment approaches rely on the knowledge and experience…

Cryptography and Security · Computer Science 2021-03-18 Christopher Deloglos , Carl Elks , Ashraf Tantawy

A cyber-attack is a malicious attempt by experienced hackers to breach the target information system. Usually, the cyber-attacks are characterized as hybrid TTPs (Tactics, Techniques, and Procedures) and long-term adversarial behaviors,…

Cryptography and Security · Computer Science 2021-12-17 Mingqi Lv , Chengyu Dong , Tieming Chen , Tiantian Zhu , Qijie Song , Yuan Fan

Cyber resilience is the ability of a system to resist and recover from a cyber attack, thereby restoring the system's functionality. Effective design and development of a cyber resilient system requires experimental methods and tools for…

Cryptography and Security · Computer Science 2024-12-31 Michael J. Weisman , Alexander Kott , Jason E. Ellis , Brian J. Murphy , Travis W. Parker , Sidney Smith , Joachim Vandekerckhove

Statistical approaches to cyber-security involve building realistic probability models of computer network data. In a data pre-processing phase, separating automated events from those caused by human activity should improve statistical…

Applications · Statistics 2017-07-04 Matthew Price-Williams , Nick Heard , Melissa Turcotte

Honeypots are decoy systems mimicking real system components designed to defend against cyber attacks. Recently, LLMs increasingly serve as simulation backbones for honeypots. They enable defenders to construct high-interaction honeypots…

Cryptography and Security · Computer Science 2026-05-29 Mark Vero , Fabian Kaczmarczyck , Ivan Petrov , Ilia Shumailov , Jamie Hayes , Niels Heinen , Tianqi Fan , Luca Invernizzi , Martin Vechev

The growing cybersecurity threats make it essential to use high-quality data to train Machine Learning (ML) models for network traffic analysis, without noisy or missing data. By selecting the most relevant features for cyber-attack…

Cryptography and Security · Computer Science 2024-07-09 João Vitorino , Miguel Silva , Eva Maia , Isabel Praça

Honeypots are designed to trap the attacker with the purpose of investigating its malicious behavior. Owing to the increasing variety and sophistication of cyber attacks, how to capture high-quality attack data has become a challenge in the…

Cryptography and Security · Computer Science 2024-02-12 Wenjun Fan , Zhihui Du , Max Smith-Creasey , David Fernández

Recent studies reveal that local differential privacy (LDP) protocols are vulnerable to data poisoning attacks where an attacker can manipulate the final estimate on the server by leveraging the characteristics of LDP and sending carefully…

Cryptography and Security · Computer Science 2025-01-28 Xiaoguang Li , Zitao Li , Ninghui Li , Wenhai Sun

This paper introduces a comprehensive framework designed to analyze and secure decision-support systems trained with Deep Reinforcement Learning (DRL), prior to deployment, by providing insights into learned behavior patterns and…

Machine Learning · Computer Science 2025-05-28 Brett Bissey , Kyle Gatesman , Walker Dimon , Mohammad Alam , Luis Robaina , Joseph Weissman

We develop a queueing-theoretic framework to model the temporal evolution of cyber-attack surfaces, where the number of active vulnerabilities is represented as the backlog of a queue. Vulnerabilities arrive as they are discovered or…

Cryptography and Security · Computer Science 2026-04-17 Jihyeon Yun , Abdullah Yasin Etcibasi , Ming Shi , C. Emre Koksal

Threat hunting analyzes large, noisy, high-dimensional data to find sparse adversarial behavior. We believe adversarial activities, however they are disguised, are extremely difficult to completely obscure in high dimensional space. In this…

Artificial Intelligence · Computer Science 2024-11-12 Alaric Hartsock , Luiz Manella Pereira , Glenn Fink

Reconnaissance activities precedent other attack steps in the cyber kill chain. Zero-day attacks exploit unknown vulnerabilities and give attackers the upper hand against conventional defenses. Honeypots have been used to deceive attackers…

Computer Science and Game Theory · Computer Science 2023-07-27 Md Abu Sayed , Ahmed H. Anwar , Christopher Kiekintveld , Branislav Bosansky , Charles Kamhoua

Data breaches and ransomware attacks occur so often that they have become part of our daily news cycle. This is due to a myriad of factors, including the increasing number of internet-of-things devices, shift to remote work during the…

This paper explores deploying a cyber honeypot system to learn how cyber defenders can use a honeypot system as a deception mechanism to gather intelligence. Defenders can gather intelligence about an attacker such as the autonomous system…

Cryptography and Security · Computer Science 2023-01-03 Daniel Zielinski , Hisham A. Kholidy

With the rapid development of Internet and the sharp increase of network crime, network security has become very important and received a lot of attention. We model security issues as stochastic systems. This allows us to find weaknesses in…

Cryptography and Security · Computer Science 2018-06-26 Lu Yu , Richard R. Brooks

Cyber resilience is the ability of a system to recover from an attack with minimal impact on system operations. However, characterizing a network's resilience under a cyber attack is challenging, as there are no formal definitions of…

Cryptography and Security · Computer Science 2025-09-08 Xavier Cadet , Simona Boboila , Edward Koh , Peter Chin , Alina Oprea

There has been considerable and growing interest in applying machine learning for cyber defenses. One promising approach has been to apply natural language processing techniques to analyze logs data for suspicious behavior. A natural…

Machine Learning · Computer Science 2020-07-30 Kai Steverson , Jonathan Mullin , Metin Ahiskali

With the rapid growth of mobile applications and cloud computing, mobile cloud computing has attracted great interest from both academia and industry. However, mobile cloud applications are facing security issues such as data integrity,…

Cryptography and Security · Computer Science 2017-12-19 Khoi Khac Nguyen , Dinh Thai Hoang , Dusit Niyato , Ping Wang , Diep Nguyen , Eryk Dutkiewicz

With the rapid growth of Internet of Things (IoT) devices, it is imperative to proactively understand the real-world cybersecurity threats posed to them. This paper describes our initial efforts towards building a honeypot ecosystem as a…

Cryptography and Security · Computer Science 2020-03-04 Armin Ziaie Tabari , Xinming Ou