Publications

BibTex format

@unpublished{Karafili:2019,
author = {Karafili, E and Wang, L and Lupu, EC},
title = {An Argumentation-Based Reasoner to Assist Digital Investigation and  Attribution of Cyber-Attacks},
url = {http://arxiv.org/abs/1904.13173v2},
year = {2019}
}

Download

RIS format (EndNote, RefMan)

TY - UNPB
AB - We expect an increase in the frequency and severity of cyber-attacks thatcomes along with the need for efficient security countermeasures. The processof attributing a cyber-attack helps to construct efficient and targetedmitigating and preventive security measures. In this work, we propose anargumentation-based reasoner (ABR) as a proof-of-concept tool that can help aforensics analyst during the analysis of forensic evidence and the attributionprocess. Given the evidence collected from a cyber-attack, our reasoner canassist the analyst during the investigation process, by helping him/her toanalyze the evidence and identify who performed the attack. Furthermore, itsuggests to the analyst where to focus further analyses by giving hints of themissing evidence or new investigation paths to follow. ABR is the firstautomatic reasoner that can combine both technical and social evidence in theanalysis of a cyber-attack, and that can also cope with incomplete andconflicting information. To illustrate how ABR can assist in the analysis andattribution of cyber-attacks we have used examples of cyber-attacks and theiranalyses as reported in publicly available reports and online literature. We donot mean to either agree or disagree with the analyses presented therein orreach attribution conclusions.
AU - Karafili,E
AU - Wang,L
AU - Lupu,EC
PY - 2019///
TI - An Argumentation-Based Reasoner to Assist Digital Investigation and Attribution of Cyber-Attacks
UR - http://arxiv.org/abs/1904.13173v2
ER -

Download

Professor Emil Lupu

Contact

Location

Summary

Citation

BibTex format

RIS format (EndNote, RefMan)