Visible to the public Biblio

Filters: Keyword is kill chain model  [Clear All Filters]
2017-09-05
Sisiaridis, Dimitrios, Carcillo, Fabrizio, Markowitch, Olivier.  2016.  A Framework for Threat Detection in Communication Systems. Proceedings of the 20th Pan-Hellenic Conference on Informatics. :68:1–68:6.

We propose a modular framework which deploys state-of-the art techniques in dynamic pattern matching as well as machine learning algorithms for Big Data predictive and be-havioural analytics to detect threats and attacks in Managed File Transfer and collaboration platforms. We leverage the use of the kill chain model by looking for indicators of compromise either for long-term attacks as Advanced Persistent Threats, zero-day attacks or DDoS attacks. The proposed engine can act complimentary to existing security services as SIEMs, IDS, IPS and firewalls.