Visible to the public Autonomic and Integrated Management for Proactive Cyber Security (AIM-PSC)

TitleAutonomic and Integrated Management for Proactive Cyber Security (AIM-PSC)
Publication TypeConference Paper
Year of Publication2017
AuthorsDe La Peña Montero, Fabian, Hariri, Salim
Conference NameCompanion Proceedings of the10th International Conference on Utility and Cloud Computing
Date PublishedDecember 2017
PublisherACM
Conference LocationNew York, NY, USA
ISBN Number978-1-4503-5195-9
KeywordsAutomation, Autonomic Security, behavior analysis, cyber security, data analytics, information technology, machine learning, Metrics, Network security, pubcrawl, Resiliency, Scalability
Abstract

The complexity, multiplicity, and impact of cyber-attacks have been increasing at an alarming rate despite the significant research and development investment in cyber security products and tools. The current techniques to detect and protect cyber infrastructures from these smart and sophisticated attacks are mainly characterized as being ad hoc, manual intensive, and too slow. We present in this paper AIM-PSC that is developed jointly by researchers at AVIRTEK and The University of Arizona Center for Cloud and Autonomic Computing that is inspired by biological systems, which can efficiently handle complexity, dynamism and uncertainty. In AIM-PSC system, an online monitoring and multi-level analysis are used to analyze the anomalous behaviors of networks, software systems and applications. By combining the results of different types of analysis using a statistical decision fusion approach we can accurately detect any types of cyber-attacks with high detection and low false alarm rates and proactively respond with corrective actions to mitigate their impacts and stop their propagation.

URLhttps://dl.acm.org/doi/10.1145/3147234.3148137
DOI10.1145/3147234.3148137
Citation Keyde_la_pena_montero_autonomic_2017