A process-oriented evaluation framework for cyber-attacker's capability
Baofeng Luo, Junhu Zhu
Available Online November 2012.
- https://doi.org/10.2991/citcs.2012.247How to use a DOI?
- cyber-attack; cyber-attack process; capability; evaluation framework
- Accurately and reasonably evaluating cyber-attacker's capability can help to scientifically forecast following attacks in order to give tailor-made defense tactics. At present, the evaluation measures of cyber-attacker's capability are primarily based on attack effect and the related achievements are few. In this paper, we begin with the study of attack process, and then divide cyber-attacker's capability according to attack stages after analyzing each stage's features within the cyber-attack process. Subsequently, a process-oriented evaluation framework for cyber-attacker's capability is proposed. With the validation of an experiment, it is proved that this evaluation framework can make precise and reasonable evaluations of cyber-attackers' capability
- Open Access
- This is an open access article distributed under the CC BY-NC license.
Cite this article
TY - CONF AU - Baofeng Luo AU - Junhu Zhu PY - 2012/11 DA - 2012/11 TI - A process-oriented evaluation framework for cyber-attacker's capability BT - 2012 National Conference on Information Technology and Computer Science PB - Atlantis Press SP - 970 EP - 973 SN - 1951-6851 UR - https://doi.org/10.2991/citcs.2012.247 DO - https://doi.org/10.2991/citcs.2012.247 ID - Luo2012/11 ER -