On Coverage-Based Attack Profiles
| Title | On Coverage-Based Attack Profiles |
| Publication Type | Conference Proceedings |
| Year of Publication | 2014 |
| Authors | Rivers, Anthony T., Vouk, Mladen A., Williams, Laurie |
| Conference Name | Eight International Conference on Software Security and Reliability (SERE) |
| Series Title | Fast Abstracts |
| Pagination | 5-6 |
| Conference Location | San Francisco, CA |
| Keywords | NCSU, Vulnerability and Resilience Prediction Models |
| Abstract | Automated cyber attacks tend to be schedule and resource limited. The primary progress metric is often "coverage" of pre-determined "known" vulnerabilities that may not have been patched, along with possible zero-day exploits (if such exist). We present and discuss a hypergeometric process model that describes such attack patterns. We used web request signatures from the logs of a production web server to assess the applicability of the model. |
| Citation Key | node-22647 |
| Refereed Designation | Refereed |
Groups: