Design of adaptive system of detection of cyber-attacks, based on the model of logical procedures and the coverage matrices of features

Lakhno, Valeriy; Kazmirchuk, Svitlana; Kovalenko, Yulia V.; Myrutenko, L.; Zhmurko, Tetyana

doi:10.15587/1729-4061.2016.71769

Cited by 17 publications

(43 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The results presented are a continuation of the research, results of which were described earlier in articles [10,18,23]. The prospects of further research include the enlargement of attributes knowledge base and the formation of BLM of ASR.…”

Section: Discussion Of Results Of Testing the Algorithms And Prospectsupporting

confidence: 71%

“…The rules of ASR learning, according to [1,2,14,23,24], are built based on the iteration procedure of searching for the maximum boundary magnitude of an information condition of functional effectiveness (ICFE):…”

Section: The Aim and Tasks Of Researchmentioning

confidence: 99%

“…The following constraints are imposed on expression (2): cr ct ct ⊕ among all classes for RO; RO are described by binary learning matrices (BLM) [21][22][23]. We accepted that ct a and ct b are the reference vectors of RO classes, in particular, by the KDD Cup 1999 Data [2,5,7].…”

Section: The Aim and Tasks Of Researchmentioning

confidence: 99%

See 2 more Smart Citations

Development of a system for the detection of cyber attacks based on the clustering and formation of reference deviations of attributes

Lakhno

Malyukov

Domrachev

et al. 2017

EEJET

Self Cite

View full text Add to dashboard Cite

Section: Discussion Of Results Of Testing the Algorithms And Prospectsupporting

confidence: 71%

Section: The Aim and Tasks Of Researchmentioning

confidence: 99%

See 1 more Smart Citation

Development of a system for the detection of cyber attacks based on the clustering and formation of reference deviations of attributes

Lakhno

Malyukov

Domrachev

et al. 2017

EEJET

Self Cite

View full text Add to dashboard Cite

“…Contemporary MCCS are usually well protected [1,3,17]. In order to succeed, those attacking have to switch off or overcome protection in the process of realization of different classes of cyberattacks, Fig.…”

Section: Model For Describing the Metaknowledge In Dss For The Provismentioning

confidence: 99%

“…Papers [17,18] examined deficiencies of existing DSS and ES in the area of IS. Such deficiencies include the need for the presence of highly qualified experts while compiling a knowledge base (KB) and the field of knowledge (FOK), difficulties in the algorithmization of separate methods and models, impossibility to estimate the effectiveness of specific DSS and others.…”

Section: Introductionmentioning

confidence: 99%

Designing a decision support system for the weakly formalized problems in the provision of cybersecurity

Akhmetov

Lakhno

Boiko

et al. 2017

EEJET

Self Cite

View full text Add to dashboard Cite

When complex situations of the guaranteed provision of OBCP IS arise, the decision-making process should be performed under condition of active interaction with experts; in this case, such an operation proves to be rather labor consuming without computer technologies. Even the initial problem of designing the integrated systems for information protection (ISIP) can be attributed to the weakly formalized problems with incomplete information. Similar tasks include the situations, connected with the recognition of prolonged targeted cyberattacks, which are not distinguished by explicit attributes. Therefore, the subject of the study that addresses the development of models and software (SW) of DSS in the weakly structured and difficult-to-formalize tasks in the provision of OBCP IS appears relevant. Literature review and problem statementAn increase in the number of cyberattacks on MCCS in recent years has generated interest towards the development IntroductionIn connection with the growing number of complex targeted cyberattacks directed at the mission critical computer systems (MCCS), one of the vital problems of society is the information security (IS) and its component -cybersecurity (CS). When conducting targeted attacks, cybercriminals frequently are used unique harmful programs and methods of penetrating the MCCS (objects of cyberprotection -OBCP). Resisting a constant increase in the complexity of illegitimate actions on MCCS is possible, in particular, using the systems for the intelligent recognition of cyberattacks (SIRCA), equipped with the modules for decision support system (DSS). The architecture of the latter implies, as a rule, a system for intelligent data analysis (SIDA or Data Mining). SIRCA make it possible to reveal regularities in the dynamics of development of the OBCP states, combining the knowledge and experience of decision making by experts, as well as the SIDA computational potential. INFORMATION TECHNOLOGY DESIGNING A DECISION SUPPORT SYSTEM FOR THE WEAKLY FORMALIZED PROBLEMS IN THE PROVISION OF CYBERSECURITY B . A k h m e t o v Y . B o i k oAssociate Professor Department of Information Technology Security* E-mail: julia_boyko2010@ukr.net A . M i s h c h e n k oAssociate Professor Department of Information Security Protection* E-mail: partpravo@i.ua *National Aviation University Kosmonavta Komarova ave., 1, Kyiv, Ukraine, 03058Розроблено систему підтримки при-йняття рішень (СППР) в слабко форма-лізуємих завданнях забезпечення кібер-безпеки. Система базується на моделях опису завдань кіберзахисту в понятійно-му і функціональному аспектах. Описано процес формування бази знань СППР для обставин, пов'язаних з виявленням важко пояснюваних ознак аномалій та атак. Запропонована СППР дозволяє підвищи-ти розуміння ситуації, яка підлягає ана-лізу в процесі кіберзахисту комп'ютерних систем Ключові слова: система підтримки прийняття рішень, кібербезпека, слабо формалізовані завдання, інтерпретація ситуації Разработана система поддержки при-нятия решений (СППР) в слабо формали-зуемых задачах обес...

show abstract

Algorithms for Forming a Knowledge Base for Decision Support Systems in Cybersecurity Tasks

Lakhno

2019

Advances in Computer Science for Engineering and Education II

View full text Add to dashboard Cite

Design of adaptive system of detection of cyber-attacks, based on the model of logical procedures and the coverage matrices of features

Cited by 17 publications

References 23 publications

Development of a system for the detection of cyber attacks based on the clustering and formation of reference deviations of attributes

Development of a system for the detection of cyber attacks based on the clustering and formation of reference deviations of attributes

Designing a decision support system for the weakly formalized problems in the provision of cybersecurity

Algorithms for Forming a Knowledge Base for Decision Support Systems in Cybersecurity Tasks

Contact Info

Product

Resources

About