A Framework for Threat Detection in Communication Systems
| Title | A Framework for Threat Detection in Communication Systems |
| Publication Type | Conference Paper |
| Year of Publication | 2016 |
| Authors | Sisiaridis, Dimitrios, Carcillo, Fabrizio, Markowitch, Olivier |
| Conference Name | Proceedings of the 20th Pan-Hellenic Conference on Informatics |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-4789-1 |
| Keywords | advanced persistent threat, advanced persistent threats, Big Data, Chained Attacks, Collaboration, composability, Human Behavior, kill chain model, machine learning, Metrics, Pattern matching, pubcrawl, Resiliency, Scalability, threat detection |
| Abstract | We propose a modular framework which deploys state-of-the art techniques in dynamic pattern matching as well as machine learning algorithms for Big Data predictive and be-havioural analytics to detect threats and attacks in Managed File Transfer and collaboration platforms. We leverage the use of the kill chain model by looking for indicators of compromise either for long-term attacks as Advanced Persistent Threats, zero-day attacks or DDoS attacks. The proposed engine can act complimentary to existing security services as SIEMs, IDS, IPS and firewalls. |
| URL | http://doi.acm.org/10.1145/3003733.3003759 |
| DOI | 10.1145/3003733.3003759 |
| Citation Key | sisiaridis_framework_2016 |