通过行为观察管理关键基础设施

2012 IEEE 3rd International Conference on Networked Embedded Systems for Every Application (NESEA) Pub Date : 2012-12-13 DOI:10.1109/NESEA.2012.6474015

William Hurst, M. Merabti, P. Fergus

{"title":"通过行为观察管理关键基础设施","authors":"William Hurst, M. Merabti, P. Fergus","doi":"10.1109/NESEA.2012.6474015","DOIUrl":null,"url":null,"abstract":"Managing critical infrastructures under the growing cyber-threat is becoming a matter of international urgency. The volume and frequency of cyber-related incidents on the rise yearly, and the level of sophistication is increasing. Critical infrastructures are key service providers and heavily interconnected, meaning any damaging impact would result in devastating consequences and potential cascading failure. In this paper, our system, which uses behavioural observation techniques to offer a level of critical infrastructure support, is detailed. Our approach monitors the operation of an infrastructure and identifies any abnormalities which occur by detecting changes in patterns of behaviour. This is done through the development of a model of correct behaviour which then acts as inference model for expected system behaviour. Using this inference model, we then highlight a threat to our simulation environment by observing changes in patterns of activity. Related research and the results of our implementation is discussed.","PeriodicalId":245642,"journal":{"name":"2012 IEEE 3rd International Conference on Networked Embedded Systems for Every Application (NESEA)","volume":"25 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2012-12-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Managing critical infrastructures through behavioural observation\",\"authors\":\"William Hurst, M. Merabti, P. Fergus\",\"doi\":\"10.1109/NESEA.2012.6474015\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Managing critical infrastructures under the growing cyber-threat is becoming a matter of international urgency. The volume and frequency of cyber-related incidents on the rise yearly, and the level of sophistication is increasing. Critical infrastructures are key service providers and heavily interconnected, meaning any damaging impact would result in devastating consequences and potential cascading failure. In this paper, our system, which uses behavioural observation techniques to offer a level of critical infrastructure support, is detailed. Our approach monitors the operation of an infrastructure and identifies any abnormalities which occur by detecting changes in patterns of behaviour. This is done through the development of a model of correct behaviour which then acts as inference model for expected system behaviour. Using this inference model, we then highlight a threat to our simulation environment by observing changes in patterns of activity. Related research and the results of our implementation is discussed.\",\"PeriodicalId\":245642,\"journal\":{\"name\":\"2012 IEEE 3rd International Conference on Networked Embedded Systems for Every Application (NESEA)\",\"volume\":\"25 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2012-12-13\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2012 IEEE 3rd International Conference on Networked Embedded Systems for Every Application (NESEA)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/NESEA.2012.6474015\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2012 IEEE 3rd International Conference on Networked Embedded Systems for Every Application (NESEA)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/NESEA.2012.6474015","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

摘要

在日益增长的网络威胁下管理关键基础设施正成为国际社会的当务之急。网络相关事件的数量和频率每年都在上升，复杂程度也在提高。关键基础设施是关键的服务提供商，并且高度互联，这意味着任何破坏性影响都将导致毁灭性后果和潜在的级联故障。本文详细介绍了我们的系统，该系统使用行为观察技术来提供一定程度的关键基础设施支持。我们的方法监控基础设施的运行，并通过检测行为模式的变化来识别任何异常情况。这是通过开发正确行为的模型来完成的，然后该模型充当预期系统行为的推理模型。使用这个推理模型，我们然后通过观察活动模式的变化来突出对模拟环境的威胁。讨论了相关研究和我们实施的结果。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Managing critical infrastructures through behavioural observation

Managing critical infrastructures under the growing cyber-threat is becoming a matter of international urgency. The volume and frequency of cyber-related incidents on the rise yearly, and the level of sophistication is increasing. Critical infrastructures are key service providers and heavily interconnected, meaning any damaging impact would result in devastating consequences and potential cascading failure. In this paper, our system, which uses behavioural observation techniques to offer a level of critical infrastructure support, is detailed. Our approach monitors the operation of an infrastructure and identifies any abnormalities which occur by detecting changes in patterns of behaviour. This is done through the development of a model of correct behaviour which then acts as inference model for expected system behaviour. Using this inference model, we then highlight a threat to our simulation environment by observing changes in patterns of activity. Related research and the results of our implementation is discussed.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2012 IEEE 3rd International Conference on Networked Embedded Systems for Every Application (NESEA)

自引率

0.00%

发文量