On Aggregation and Prediction of Cybersecurity Incident Reports

被引：2

作者：

Carriegos, Miguel, V ^{[1
]}

Munoz Castaneda, Angel L. ^{[1
]}

Trobajo, M. T. ^{[1
]}

Asterio De Zaballa, Diego ^{[2
]}

机构：

[1] Univ Leon, Dept Matemat, Leon 24007, Spain

[2] Univ Leon, Inst Ciencias Aplicadas Ciberseguridad, Leon 24007, Spain

来源：

IEEE ACCESS | 2021年 / 9卷

关键词：

Computer security; Time series analysis; Aggregates; Forecasting; Databases; Predictive models; Time measurement; Cybersecurity; extended dynamic mode decomposition; Koopman operator; time series forecasting; threat prediction MSC[2010; DYNAMIC-MODE DECOMPOSITION; KOOPMAN OPERATOR; SYSTEMS; VALIDATION; REDUCTION; SECURITY;

D O I：

10.1109/ACCESS.2021.3097834

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

The study of cybersecurity incidents is an active research field. The purpose of this work is to determine accurate measures of cybersecurity incidents. An effective method to aggregate cybersecurity incident reports is defined to set these measures. As a result we are able to make predictions and, therefore, to deploy security policies. Forecasting time-series of those cybersecurity aggregates is performed based on Koopman's method and Dynamic Mode Decomposition algorithm. Both techniques have shown to be accurate for a wide variety of dynamical systems ranging from fluid dynamics to social sciences. We have performed some experiments on public databases. We show that the measure of the risk trend can be effectively forecasted.

引用

页码：102636 / 102648

页数：13

共 50 条

[1] Data-Driven Cybersecurity Incident Prediction: A Survey
Sun, Nan
Zhang, Jun
Rimba, Paul
Gao, Shang
Zhang, Leo Yu
Xiang, Yang
IEEE COMMUNICATIONS SURVEYS AND TUTORIALS, 2019, 21 (02): : 1744 - 1772
[2] Cybersecurity incident response
Garzón, Fabian
ISACA Journal, 2020, 4 : 49 - 54
[3] SOTER: A Playbook for Cybersecurity Incident Management
Onwubiko, Cyril
Ouazzane, Karim
IEEE TRANSACTIONS ON ENGINEERING MANAGEMENT, 2022, 69 (06) : 3771 - 3791
[4] INCIDENT REPORTS
DOLLE, R
JOURNAL OF ENVIRONMENTAL HEALTH, 1993, 56 (05) : 43 - 44
[5] The Design of Messages to Improve Cybersecurity Incident Reporting
Briggs, Pam
Jeske, Debora
Coventry, Lynne
HUMAN ASPECTS OF INFORMATION SECURITY, PRIVACY AND TRUST (HAS 2017), 2017, 10292 : 3 - 13
[6] ICS Cybersecurity Incident Response and the Troubleshooting Process
Takano, Masatoshi
2014 Proceedings of the SICE Annual Conference (SICE), 2014, : 827 - 832
[7] A collaborative approach for national cybersecurity incident management
Oriola, Oluwafemi
Adeyemo, Adesesan Barnabas
Papadaki, Maria
Kotze, Eduan
INFORMATION AND COMPUTER SECURITY, 2021, 29 (03) : 457 - 484
[8] Cybersecurity incident reporting laws in the Asia Pacific
Nicholas Seng
International Cybersecurity Law Review, 2023, 4 (3): : 325 - 346
[9] Multimodel-Based Incident Prediction and Risk Assessment in Dynamic Cybersecurity Protection for Industrial Control Systems
Zhang, Qi
Zhou, Chunjie
Xiong, Naixue
Qin, Yuanqing
Li, Xuan
Huang, Shuang
IEEE TRANSACTIONS ON SYSTEMS MAN CYBERNETICS-SYSTEMS, 2016, 46 (10): : 1429 - 1444
[10] DEMYSTIFYING INCIDENT REPORTS
GOBIS, L
AMERICAN JOURNAL OF NURSING, 1994, 94 (04) : 20 - 21

← 1 2 3 4 5 →