English
Related papers

Related papers: Analysis of Attacker Behavior in Compromised Hosts…

200 papers

We implemented and evaluated an automated cyber defense agent. The agent takes security alerts as input and uses reinforcement learning to learn a policy for executing predefined defensive measures. The defender policies were trained in an…

Cryptography and Security · Computer Science 2023-04-24 Jakob Nyberg , Pontus Johnson

In the very last years, cybersecurity attacks have increased at an unprecedented pace, becoming ever more sophisticated and costly. Their impact has involved both private/public companies and critical infrastructures. At the same time, due…

Cryptography and Security · Computer Science 2023-09-25 Filippo Sobrero , Beatrice Clavarezza , Daniele Ucci , Federica Bisio

This paper explores deploying a cyber honeypot system to learn how cyber defenders can use a honeypot system as a deception mechanism to gather intelligence. Defenders can gather intelligence about an attacker such as the autonomous system…

Cryptography and Security · Computer Science 2023-01-03 Daniel Zielinski , Hisham A. Kholidy

The increasingly sophisticated environment in which attackers operate makes software security an even greater challenge in open-source projects, where malicious packages are prevalent. Static analysis tools, such as Malcontent, are highly…

Cryptography and Security · Computer Science 2026-01-27 Duc-Ly Vu , Thanh-Cong Nguyen , Minh-Khanh Vu , Ngoc-Thanh Nguyen , Kim-Anh Do Thi

Enterprise networks that host valuable assets and services are popular and frequent targets of distributed network attacks. In order to cope with the ever-increasing threats, industrial and research communities develop systems and methods…

Cryptography and Security · Computer Science 2024-07-08 Minzhao Lyu , Hassan Habibi Gharakheili , Vijay Sivaraman

The ever-increasing security vulnerabilities in the Internet-of-Things (IoT) systems require improved threat detection approaches. This paper presents a compact and efficient approach to detect botnet attacks by employing an integrated…

Cryptography and Security · Computer Science 2026-02-12 Amna Naeem , Jawad Ahmad , Muazzam A. Khan , Aizaz Ahmad Khattak , Muhammad Shahbaz Khan

Adversarial attacks present a significant threat to modern machine learning systems. Yet, existing detection methods often lack the ability to detect unseen attacks or detect different attack types with a high level of accuracy. In this…

Cryptography and Security · Computer Science 2025-10-06 Chinthana Wimalasuriya , Spyros Tragoudas

We investigate an efficient context-dependent clustering technique for recommender systems based on exploration-exploitation strategies through multi-armed bandits over multiple users. Our algorithm dynamically groups users based on their…

Machine Learning · Statistics 2016-05-03 Shuai Li , Claudio Gentile , Alexandros Karatzoglou

Network systems often contain vulnerabilities that remain unfixed in a network for various reasons, such as the lack of a patch or knowledge to fix them. With the presence of such residual vulnerabilities, the network administrator should…

Cryptography and Security · Computer Science 2022-11-04 Narges Khakpour , David Parker

Cyber-security analysts face an increasingly large number of alerts received on any given day. This is mainly due to the low precision of many existing methods to detect threats, producing a substantial number of false positives. Usually,…

Cryptography and Security · Computer Science 2022-09-28 Iwona Hawryluk , Henrique Hoeltgebaum , Cole Sodja , Tyler Lalicker , Joshua Neil

The side-channel attack is an attack method based on the information gained about implementations of computer systems, rather than weaknesses in algorithms. Information about system characteristics such as power consumption, electromagnetic…

Cryptography and Security · Computer Science 2020-08-04 Guanlin Li , Chang Liu , Han Yu , Yanhong Fan , Libang Zhang , Zongyue Wang , Meiqin Wang

Adversaries (hackers) attempting to infiltrate networks frequently face uncertainty in their operational environments. This research explores the ability to model and detect when they exhibit ambiguity aversion, a cognitive bias reflecting…

Cryptography and Security · Computer Science 2025-12-22 Stephan Carney , Soham Hans , Sofia Hirschmann , Stacey Marsella , Yvonne Fonken , Peggy Wu , Nikolos Gurney

Attackers are perpetually modifying their tactics to avoid detection and frequently leverage legitimate credentials with trusted tools already deployed in a network environment, making it difficult for organizations to proactively identify…

Cryptography and Security · Computer Science 2021-02-18 Konstantinos Demertzis , Konstantinos Tsiknas , Dimitrios Takezis , Charalabos Skianis , Lazaros Iliadis

We consider a multi-armed bandit setting that is inspired by real-world applications in e-commerce. In our setting, there are a few types of users, each with a specific response to the different arms. When a user enters the system, his type…

Machine Learning · Computer Science 2015-03-20 Loc Bui , Ramesh Johari , Shie Mannor

Cyber attacks have become serious threats to Industrial Control systems as well. It becomes important to develop a serious threat defense system against such vulnerabilities. For such process control systems, safety should also be assured…

Computers and Society · Computer Science 2019-02-26 Manikanta Reddy Dornala

Many techniques have been proposed for quickly detecting and containing malware-generated network attacks such as large-scale denial of service attacks; unfortunately, much damage is already done within the first few minutes of an attack,…

Cryptography and Security · Computer Science 2021-02-04 Zainab Abaid , Dilip Sarkar , Mohamed Ali Kaafar , Sanjay Jha

The extensive damage caused by malware requires anti-malware systems to be constantly improved to prevent new threats. The current trend in malware detection is to employ machine learning models to aid in the classification process. We…

Cryptography and Security · Computer Science 2023-01-31 Marcus Carpenter , Chunbo Luo

In the face of large-scale automated social engineering attacks to large online services, fast detection and remediation of compromised accounts are crucial to limit the spread of new attacks and to mitigate the overall damage to users,…

Cryptography and Security · Computer Science 2018-01-29 Hassan Halawa , Matei Ripeanu , Konstantin Beznosov , Baris Coskun , Meizhu Liu

We study the problem of identifying botnets and the IP addresses which they comprise, based on the observation of a fraction of the global email spam traffic. Observed mailing campaigns constitute evidence for joint botnet membership, they…

Cryptography and Security · Computer Science 2012-06-22 Peter Haider , Tobias Scheffer

Simulating hostile attacks of physical autonomous systems can be a useful tool to examine their robustness to attack and inform vulnerability-aware design. In this work, we examine this through the lens of multi-robot patrol, by presenting…

Robotics · Computer Science 2025-09-16 James C. Ward , Alex Bott , Connor York , Edmund R. Hunt