Leveraging Intra-Day Temporal Variations to Predict Daily Cyberattack Activity
作者: Gordon Werner , Shanchieh Yang , Katie McConky
关键词:
摘要: Cyber attacks against organizations are occurring with increasing regularity. Defensive systems in place that can detect malicious traffic within a network. However, these only provide analysis after activity has occurred. What if one forecast the number of cyberattacks expected for future day reasonable accuracies? This paper investigates use Auto-Regressive Integrated Moving Average (ARIMA) models to daily counts different cyberattack types multiple targets. Smaller measurement periods used better capture temporal trends attack data and increase forecasting accuracy, reducing error by over 14% compared naive predictions based on average historical occurrence rates. Aggregation techniques employed construct using smaller predictions, providing 11% more accuracy than standard ARIMA counts. Temporal intensity variations leveraged as regressors further improve model aggregated forecasts. The intensity-based were put into testing perform up 7 days advance, achieved 15% improvement baseline. is able reduce approaches, showing cyber incidents do not occur completely randomly could be captured modeled statistical time series techniques.
sci-hub.se 参考文章(11)
Ekta Gandotra, Divya Bansal, Sanjeev Sofat, Computational Techniques for Predicting Cyber Threats Advances in Intelligent Systems and Computing. pp. 247- 253 ,(2015) , 10.1007/978-81-322-2012-1_26
Azween Bin Abdullah, Thulasyammal Ramiah Pillai, Long Zheng Cai, Intrusion Detection Forecasting Using Time Series for Improving Cyber Defence International Journal of Intelligent Systems and Applications in Engineering. ,vol. 3, pp. 28- 33 ,(2015) , 10.18201/IJISAE.83441
F. Guillaume Blanchet, Pierre Legendre, Daniel Borcard, FORWARD SELECTION OF EXPLANATORY VARIABLES Ecology. ,vol. 89, pp. 2623- 2632 ,(2008) , 10.1890/07-0986.1
Zhenxin Zhan, Maochao Xu, Shouhuai Xu, Predicting Cyber Attack Rates With Extreme Values IEEE Transactions on Information Forensics and Security. ,vol. 10, pp. 1666- 1677 ,(2015) , 10.1109/TIFS.2015.2422261
Martin Martens, Forecasting daily exchange rate volatility using intraday returns Journal of International Money and Finance. ,vol. 20, pp. 1- 23 ,(2001) , 10.1016/S0261-5606(00)00047-4
Zhenxin Zhan, Maochao Xu, Shouhuai Xu, Characterizing Honeypot-Captured Cyber Attacks: Statistical Framework and Case Study IEEE Transactions on Information Forensics and Security. ,vol. 8, pp. 1775- 1789 ,(2013) , 10.1109/TIFS.2013.2279800
Aimin Sang, San-qi Li, A predictability analysis of network traffic Computer Networks. ,vol. 39, pp. 329- 345 ,(2002) , 10.1016/S1389-1286(01)00304-8
Jan G. De Gooijer, Rob J. Hyndman, 25 Years of Time Series Forecasting International Journal of Forecasting. ,vol. 22, pp. 443- 473 ,(2006) , 10.1016/J.IJFORECAST.2006.01.001
Gordon Werner, Shanchieh Yang, Katie McConky, Time series forecasting of cyber attack intensity Proceedings of the 12th Annual Conference on Cyber and Information Security Research. pp. 18- ,(2017) , 10.1145/3064814.3064831
Ahmet Okutan, Shanchieh Jay Yang, Katie McConky, Predicting cyber attacks with bayesian networks using unconventional signals Proceedings of the 12th Annual Conference on Cyber and Information Security Research. pp. 13- ,(2017) , 10.1145/3064814.3064823