{"title":"基于风险感知问题领域本体的多视角APT攻击风险评估框架","authors":"Sihn-Hye Park, Ji-Wook Jung, Seok-Won Lee","doi":"10.1109/REW53955.2021.00071","DOIUrl":null,"url":null,"abstract":"Cyber-attacks, which affect a wide range of areas such as political, economic, and social organizations, continue to evolve along with rapid changes in the IT environment, becoming more intelligent and complex. Especially, APT attacks have specific targets with obvious goals and use complex strategies from multiple perspectives. To proactively defend against these potential attacks, it is important to assess security risks based on a comprehensive and systematic understanding of APT attacks. In this paper, we propose the APT Attack Risk Assessment Framework to evaluate the security risks for specific APT attacks, using Risk-Aware Problem Domain Ontology. The proposed framework can assess the risks in which a specific APT attack affects an organization within a domain.","PeriodicalId":393646,"journal":{"name":"2021 IEEE 29th International Requirements Engineering Conference Workshops (REW)","volume":"82 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"Multi-perspective APT Attack Risk Assessment Framework using Risk-Aware Problem Domain Ontology\",\"authors\":\"Sihn-Hye Park, Ji-Wook Jung, Seok-Won Lee\",\"doi\":\"10.1109/REW53955.2021.00071\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Cyber-attacks, which affect a wide range of areas such as political, economic, and social organizations, continue to evolve along with rapid changes in the IT environment, becoming more intelligent and complex. Especially, APT attacks have specific targets with obvious goals and use complex strategies from multiple perspectives. To proactively defend against these potential attacks, it is important to assess security risks based on a comprehensive and systematic understanding of APT attacks. In this paper, we propose the APT Attack Risk Assessment Framework to evaluate the security risks for specific APT attacks, using Risk-Aware Problem Domain Ontology. The proposed framework can assess the risks in which a specific APT attack affects an organization within a domain.\",\"PeriodicalId\":393646,\"journal\":{\"name\":\"2021 IEEE 29th International Requirements Engineering Conference Workshops (REW)\",\"volume\":\"82 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-09-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2021 IEEE 29th International Requirements Engineering Conference Workshops (REW)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/REW53955.2021.00071\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 IEEE 29th International Requirements Engineering Conference Workshops (REW)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/REW53955.2021.00071","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Multi-perspective APT Attack Risk Assessment Framework using Risk-Aware Problem Domain Ontology
Cyber-attacks, which affect a wide range of areas such as political, economic, and social organizations, continue to evolve along with rapid changes in the IT environment, becoming more intelligent and complex. Especially, APT attacks have specific targets with obvious goals and use complex strategies from multiple perspectives. To proactively defend against these potential attacks, it is important to assess security risks based on a comprehensive and systematic understanding of APT attacks. In this paper, we propose the APT Attack Risk Assessment Framework to evaluate the security risks for specific APT attacks, using Risk-Aware Problem Domain Ontology. The proposed framework can assess the risks in which a specific APT attack affects an organization within a domain.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
