English
Related papers

Related papers: Securing Sideways: Thwarting Lateral Movement by I…

200 papers

Lateral movement attacks are a serious threat to enterprise security. In these attacks, an attacker compromises a trusted user account to get a foothold into the enterprise network and uses it to attack other trusted users, increasingly…

Cryptography and Security · Computer Science 2019-05-06 Pin-Yu Chen , Sutanay Choudhury , Luke Rodriguez , Alfred Hero , Indrajit Ray

Active Directory (AD) is the default security management system for Windows domain networks. An AD environment naturally describes an attack graph where nodes represent computers/accounts/security groups, and edges represent existing…

Cryptography and Security · Computer Science 2022-12-09 Mingyu Guo , Max Ward , Aneta Neumann , Frank Neumann , Hung Nguyen

Advances in AI are widely understood to have implications for cybersecurity. Articles have emphasized the effect of AI on the cyber offense-defense balance, and commentators can be found arguing either that cyber will privilege attackers or…

Cryptography and Security · Computer Science 2025-08-25 Benjamin Murphy , Twm Stone

Given a large enterprise network of devices and their authentication history (e.g., device logons), how can we quantify network vulnerability to lateral attack and identify at-risk devices? We systematically address these problems through…

Social and Information Networks · Computer Science 2020-01-31 Scott Freitas , Andrew Wicker , Duen Horng Chau , Joshua Neil

This paper addresses a significant gap in Autonomous Cyber Operations (ACO) literature: the absence of effective edge-blocking ACO strategies in dynamic, real-world networks. It specifically targets the cybersecurity vulnerabilities of…

Cryptography and Security · Computer Science 2024-07-01 Diksha Goel , Kristen Moore , Mingyu Guo , Derui Wang , Minjune Kim , Seyit Camtepe

Active Directory (AD) is the default security management system for Windows domain networks. We study a Stackelberg game model between one attacker and one defender on an AD attack graph. The attacker initially has access to a set of entry…

Neural and Evolutionary Computing · Computer Science 2023-01-05 Diksha Goel , Max Ward , Aneta Neumann , Frank Neumann , Hung Nguyen , Mingyu Guo

"Distributed Identity" refers to the transition from centralized identity systems using Decentralized Identifiers (DID) and Verifiable Credentials (VC) for secure and privacy-preserving authentications. With distributed identity, control of…

Cryptography and Security · Computer Science 2025-01-17 Sina Ahmadi

Lateral movement is a crucial component of advanced persistent threat (APT) attacks in networks. Attackers exploit security vulnerabilities in internal networks or IoT devices, expanding their control after initial infiltration to steal…

Cryptography and Security · Computer Science 2024-11-18 Jiajun Zhou , Jiacheng Yao , Xuanze Chen , Shanqing Yu , Qi Xuan , Xiaoniu Yang

Agentic AI systems can plan, call tools, inspect code, interact with web applications, and coordinate multi-step workflows. These same capabilities change the economics of cyber offense. The central near-term risk is not that every…

Cryptography and Security · Computer Science 2026-05-11 Christopher Koch

The rapid development of information and network technologies motivates the emergence of various new computing paradigms, such as distributed computing, and edge computing. This also enables more and more network enterprises to provide…

Cryptography and Security · Computer Science 2021-02-01 Jinyong Chen , Reiner Dojen , Anca Jurcut

Due to its crucial role in identity and access management in modern enterprise networks, Active Directory (AD) is a top target of Advanced Persistence Threat (APT) actors. Conventional intrusion detection systems (IDS) excel at identifying…

Cryptography and Security · Computer Science 2026-05-01 Qi Liu , Kaibin Bao , Wajih Ul Hassan , Veit Hagenmeyer

Authentication in TLS is predominately carried out with X.509 digital certificates issued by certificate authorities (CA). The centralized nature of current public key infrastructures, however, comes along with severe risks, such as single…

Cryptography and Security · Computer Science 2025-01-14 Sandro Rodriguez Garzon , Dennis Natusch , Artur Philipp , Axel Küpper , Hans Joachim Einsiedler , Daniela Schneider

Threat information sharing is considered as one of the proactive defensive approaches for enhancing the overall security of trusted partners. Trusted partner organizations can provide access to past and current cybersecurity threats for…

Cryptography and Security · Computer Science 2021-12-21 Hisham Ali , Pavlos Papadopoulos , Jawad Ahmad , Nikolaos Pitropakis , Zakwan Jaroucheh , William J. Buchanan

Lateral Movement refers to methods by which threat actors gain initial access to a network and then progressively move through said network collecting key data about assets until they reach the ultimate target of their attack. Lateral…

Active Directory is the most popular service to manage users and devices on the network. Its widespread deployment in the corporate world has made it a popular target for threat actors. While there are many attacks that target Active…

Cryptography and Security · Computer Science 2023-01-03 Thomas Grippo , Hisham A. Kholidy

Security vulnerabilities in Windows Active Directory (AD) systems are typically modeled using an attack graph and hardening AD systems involves an iterative workflow: security teams propose an edge to remove, and IT operations teams…

Artificial Intelligence · Computer Science 2025-05-05 Huy Q. Ngo , Mingyu Guo , Hung Nguyen

Trusted execution environments (TEEs) provide an environment for running workloads in the cloud without having to trust cloud service providers, by offering additional hardware-assisted security guarantees. However, main memory encryption…

Cryptography and Security · Computer Science 2023-09-25 Jan Wichelmann , Anna Pätschke , Luca Wilke , Thomas Eisenbarth

The digital age, driven by the AI revolution, brings significant opportunities but also conceals security threats, which we refer to as cyber shadows. These threats pose risks at individual, organizational, and societal levels. This paper…

Cryptography and Security · Computer Science 2025-01-29 Marc Schmitt , Pantelis Koutroumpis

Security situational awareness refers to identifying, mitigating, and preventing digital cyber threats by gathering information to understand the current situation. With awareness, the basis for decisions is present, particularly in complex…

Cryptography and Security · Computer Science 2025-03-07 Daniela Pöhn , Heiner Lüken

The modern enterprise is facing an unprecedented surge in digital identities, with machine identities now significantly outnumbering human identities. This paper examines the cybersecurity risks emerging from what we define as the…

Cryptography and Security · Computer Science 2025-03-25 Kush Janani
‹ Prev 1 2 3 10 Next ›