English
Related papers

Related papers: MAAC: Novel Alert Correlation Method To Detect Mul…

200 papers

While digitization of distribution grids through information and communications technology brings numerous benefits, it also increases the grid's vulnerability to serious cyber attacks. Unlike conventional systems, attacks on many…

Cryptography and Security · Computer Science 2022-11-22 Ömer Sen , Chijioke Eze , Andreas Ulbig , Antonello Monti

Intrusion detection systems (IDS) reinforce cyber defense by autonomously monitoring various data sources for traces of attacks. However, IDSs are also infamous for frequently raising false positives and alerts that are difficult to…

Cryptography and Security · Computer Science 2024-09-04 Max Landauer , Florian Skopik , Markus Wurzenberger

A Network Intrusion Detection System (NIDS) is a network security technology for detecting intruder attacks. However, it produces a great amount of low-level alerts which makes the analysis difficult, especially to construct the attack…

Cryptography and Security · Computer Science 2021-10-19 Taqwa Ahmed Alhaj , Maheyzah Md Siraj , Anazida Zainal , Inshirah Idris , Anjum Nazir , Fatin Elhaj , Tasneem Darwish

The premise of automated alert correlation is to accept that false alerts from a low level intrusion detection system are inevitable and use attack models to explain the output in an understandable way. Several algorithms exist for this…

Artificial Intelligence · Computer Science 2010-07-05 Gianni Tedesco , Uwe Aickelin

Intrusion detection systems perform post-compromise detection of security breaches whenever preventive measures such as firewalls do not avert an attack. However, these systems raise a vast number of alerts that must be analysed and triaged…

Cryptography and Security · Computer Science 2025-01-22 Herbert Maosa , Karim Ouazzane , Mohamed Chahine Ghanem

Alert correlation is a system which receives alerts from heterogeneous Intrusion Detection Systems and reduces false alerts, detects high level patterns of attacks, increases the meaning of occurred incidents, predicts the future states of…

Cryptography and Security · Computer Science 2018-11-05 Seyed Ali Mirheidari , Sajjad Arshad , Rasool Jalili

Today, human security analysts collapse under the sheer volume of alerts they have to triage during investigations. The inability to cope with this load, coupled with a high false positive rate of alerts, creates alert fatigue. This results…

Cryptography and Security · Computer Science 2021-03-29 Florian Wilkens , Felix Ortmann , Steffen Haas , Matthias Vallentin , Mathias Fischer

Because of the threat of advanced multi-step attacks, it is often difficult for security operators to completely cover all vulnerabilities when deploying remediations. Deploying sensors to monitor attacks exploiting residual vulnerabilities…

Cryptography and Security · Computer Science 2016-06-30 Aguessy François-Xavier , Bettan Olivier , Blanc Grégory , Conan Vania , Debar Hervé

Network intrusion detection sensors are usually built around low level models of network traffic. This means that their output is of a similarly low level and as a consequence, is difficult to analyze. Intrusion alert correlation is the…

Cryptography and Security · Computer Science 2010-07-05 Gianni Tedesco , Uwe Aickelin

An Intrusion Detection System (IDS) to secure computer networks reports indicators for an attack as alerts. However, every attack can result in a multitude of IDS alerts that need to be correlated to see the full picture of the attack. In…

Cryptography and Security · Computer Science 2020-03-13 Steffen Haas , Florian Wilkens , Mathias Fischer

Complex multi-step attacks have caused significant damage to numerous critical infrastructures. To detect such attacks, graph neural network based methods have shown promising results by modeling the system's events as a graph. However,…

Cryptography and Security · Computer Science 2024-06-17 Wei Liu , Peng Gao , Haotian Zhang , Ke Li , Weiyong Yang , Xingshen Wei , Jiwu Shu

Advanced Persistent Threats (APTs) are sophisticated multi-step attacks, planned and executed by skilled adversaries targeting modern government and enterprise networks. Intrusion Detection Systems (IDSs) and User and Entity Behavior…

Cryptography and Security · Computer Science 2021-01-08 Hazem M. Soliman , Geoff Salmon , Dušan Sovilj , Mohan Rao

Microarchitectural attacks have become more threatening the hardware security than before with the increasing diversity of attacks such as Spectre and Meltdown. Vendor patches cannot keep up with the pace of the new threats, which makes the…

Cryptography and Security · Computer Science 2022-06-02 Debopriya Roy Dipta , Berk Gulmezoglu

The ever-evolving capabilities of cyber attackers force security administrators to focus on the early identification of emerging threats. Targeted cyber attacks usually consist of several phases, from initial reconnaissance of the network…

Cryptography and Security · Computer Science 2022-06-22 Lukáš Sadlek , Pavel Čeleda , Daniel Tovarňák

As LLMs advance into autonomous agents with tool-use capabilities, they introduce security challenges that extend beyond traditional content-based LLM safety concerns. This paper introduces Sequential Tool Attack Chaining (STAC), a novel…

Cryptography and Security · Computer Science 2026-02-03 Jing-Jing Li , Jianfeng He , Chao Shang , Devang Kulshreshtha , Xun Xian , Yi Zhang , Hang Su , Sandesh Swamy , Yanjun Qi

This paper proposes an active attack detection scheme for constrained cyber-physical systems. Despite passive approaches where the detection is based on the analysis of the input-output data, active approaches interact with the system by…

Systems and Control · Electrical Eng. & Systems 2021-01-26 Mehdi Hosseinzadeh , Bruno Sinopoli

The rise in frequency and complexity of malware attacks are viewed as a major threat to modern digital infrastructure, which means that traditional signature-based detection methods are becoming less effective. As cyber threats continue to…

Cryptography and Security · Computer Science 2026-01-13 Rakesh Keshava , Sathish Kuppan Pandurangan , M. Sakthivanitha , Sankaranainar Parmsivan , Goutham Sunkara , R. Maruthi

With the ever-increasing reliance on digital networks for various aspects of modern life, ensuring their security has become a critical challenge. Intrusion Detection Systems play a crucial role in ensuring network security, actively…

Cryptography and Security · Computer Science 2024-04-30 Hamdi Friji , Ioannis Mavromatis , Adrian Sanchez-Mompo , Pietro Carnelli , Alexis Olivereau , Aftab Khan

The research literature on cybersecurity incident detection & response is very rich in automatic detection methodologies, in particular those based on the anomaly detection paradigm. However, very little attention has been devoted to the…

Networking and Internet Architecture · Computer Science 2019-09-16 José Camacho , José Manuel García-Giménez , Noemí Marta Fuentes-García , Gabriel Maciá-Fernández

This paper studies the deployment of joint moving target defense (MTD) and deception against multi-stage cyberattacks. Given the system equipped with MTD that randomizes between different configurations, we investigate how to allocate a…

Cryptography and Security · Computer Science 2022-10-17 Lening Li , Haoxiang Ma , Shuo Han , Jie Fu
‹ Prev 1 2 3 10 Next ›