作者: Zhenxin Zhan , Maochao Xu , Shouhuai Xu
DOI: 10.1007/978-3-319-27998-5_7
关键词:
摘要: Data-driven understanding of cybersecurity posture is an important problem that has not been adequately explored. In this paper, we analyze some real data collected by CAIDA's network telescope during the month March 2013. We propose to formalize concept from perspectives three kinds time series: number victims i.e., IP addresses are attacked, attackers observed telescope, and attacks telescope. Characterizing therefore becomes investigating phenomena statistical properties exhibited these series, explaining their meanings. For example, sweep-time, show sweep-time should be modeled stochastic process, rather than random variable. report a certain country dominates total also substantially smaller telescopes might as useful large