Proceedings of the 2012 National Conference on Information Technology and Computer Science

A process-oriented evaluation framework for cyber-attacker's capability

Authors
Baofeng Luo, Junhu Zhu
Corresponding Author
Baofeng Luo
Available Online November 2012.
DOI
10.2991/citcs.2012.247How to use a DOI?
Keywords
cyber-attack; cyber-attack process; capability; evaluation framework
Abstract

Accurately and reasonably evaluating cyber-attacker's capability can help to scientifically forecast following attacks in order to give tailor-made defense tactics. At present, the evaluation measures of cyber-attacker's capability are primarily based on attack effect and the related achievements are few. In this paper, we begin with the study of attack process, and then divide cyber-attacker's capability according to attack stages after analyzing each stage's features within the cyber-attack process. Subsequently, a process-oriented evaluation framework for cyber-attacker's capability is proposed. With the validation of an experiment, it is proved that this evaluation framework can make precise and reasonable evaluations of cyber-attackers' capability

Copyright
© 2012, the Authors. Published by Atlantis Press.
Open Access
This is an open access article distributed under the CC BY-NC license (http://creativecommons.org/licenses/by-nc/4.0/).

Download article (PDF)

Volume Title
Proceedings of the 2012 National Conference on Information Technology and Computer Science
Series
Advances in Intelligent Systems Research
Publication Date
November 2012
ISBN
978-94-91216-39-8
ISSN
1951-6851
DOI
10.2991/citcs.2012.247How to use a DOI?
Copyright
© 2012, the Authors. Published by Atlantis Press.
Open Access
This is an open access article distributed under the CC BY-NC license (http://creativecommons.org/licenses/by-nc/4.0/).

Cite this article

TY  - CONF
AU  - Baofeng Luo
AU  - Junhu Zhu
PY  - 2012/11
DA  - 2012/11
TI  - A process-oriented evaluation framework for cyber-attacker's capability
BT  - Proceedings of the 2012 National Conference on Information Technology and Computer Science
PB  - Atlantis Press
SP  - 970
EP  - 973
SN  - 1951-6851
UR  - https://doi.org/10.2991/citcs.2012.247
DO  - 10.2991/citcs.2012.247
ID  - Luo2012/11
ER  -