Profiling cyber attackers using case-based reasoning
Kapetanakis, Stelios, Filippoupolitis, Avgoustinos, Loukas, George ORCID: https://orcid.org/0000-0003-3559-5182 and Al Murayziq, Tariq Saad (2014) Profiling cyber attackers using case-based reasoning. In: 19th UK Workshop on Case-Based Reasoning (UKCBR 2014), 9 December 2014, Peterhouse College, Cambridge, UK.
Preview |
PDF (Author's Accepted Manuscript)
14950_Loukas_Profiling cyber attackers (AAM) 2014.pdf - Accepted Version Download (585kB) | Preview |
Abstract
Computer security would arguably benefit from more information on the characteristics of the particular human attacker behind a security incident. Nevertheless, technical security mechanisms have always focused on the at- tack's characteristics rather than the attacker's. The latter is a challenging prob- lem, as relevant data cannot easily be found. We argue that the cyber traces left by a human attacker during an intrusion attempt can help towards building a profile of the particular person. To illustrate this concept, we have developed an approach using case-based reasoning that indirectly measures an attacker’s characteristics for given attack scenarios. Our results reveal that case-based rea- soning has the potential of being used to assist security and forensic investiga- tors in profiling human attackers.
Item Type: | Conference or Conference Paper (Paper) |
---|---|
Additional Information: | part of AI-2014 Thirty-fourth SGAI International Conference on Artificial Intelligence, Cambridge, UK 9-11 December 2014 |
Uncontrolled Keywords: | Cyber security, hacker profiling, case based reasoning |
Faculty / School / Research Centre / Research Group: | Faculty of Engineering & Science > School of Computing & Mathematical Sciences (CMS) Faculty of Engineering & Science |
Related URLs: | |
Last Modified: | 04 Mar 2022 13:07 |
URI: | http://gala.gre.ac.uk/id/eprint/14950 |
Actions (login required)
View Item |
Downloads
Downloads per month over past year