- CERES Home
- →
- Cranfield Defence and Security
- →
- Staff publications (CDS)
- →
- View Item
JavaScript is disabled for your browser. Some features of this site may not work without it.
| dc.contributor.author | Ioannou, Georgios | |
| dc.contributor.author | Louvieris, Panos | |
| dc.contributor.author | Clewley, Natalie | |
| dc.date.accessioned | 2019-05-13T15:37:49Z | |
| dc.date.available | 2019-05-13T15:37:49Z | |
| dc.date.issued | 2019-02-06 | |
| dc.identifier.citation | Ioannou G, Louvieris P, Clewley N. Markov multi-phase transferable belief model for cyber situational awareness. IEEE Access, Volume 7, 2019, pp. 39305-39320 | en_UK |
| dc.identifier.issn | 2169-3536 | |
| dc.identifier.uri | https://doi.org/10.1109/ACCESS.2019.2897923 | |
| dc.identifier.uri | http://dspace.lib.cranfield.ac.uk/handle/1826/14151 | |
| dc.description.abstract | eXfiltration Advanced Persistent Threats (XAPTs) increasingly account for incidents concerned with critical information exfiltration from High Valued Targets (HVTs). Existing Cyber Defence frameworks and data fusion models cannot cope with XAPTs due to a lack of provision for multi-phase attacks characterized by uncertainty and conflicting information. The Markov Multi-phase Transferable Belief Model (MM-TBM) extends the Transferable Belief Model to address the multi-phase nature of cyber-attacks and to obtain previously indeterminable Cyber SA. As a data fusion technique, MM-TBM constitutes a novel approach for performing hypothesis assessment and evidence combination across phases, by means of a new combination rule, called the Multi-phase Combination Rule with conflict Reset (MCR 2 ). The impact of MM-TBM as a Cyber Situational Awareness capability and its implications as a multi-phase data fusion theory have been empirically validated through a series of scenario-based Cyber SA experiments for detecting, tracking, and predicting XAPTs. | en_UK |
| dc.language.iso | en | en_UK |
| dc.publisher | IEEE | en_UK |
| dc.rights | Attribution-NonCommercial 4.0 International | * |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc/4.0/ | * |
| dc.subject | APT | en_UK |
| dc.subject | combination rule | en_UK |
| dc.subject | conflict | en_UK |
| dc.subject | cyberspace | en_UK |
| dc.subject | kill-chain | en_UK |
| dc.subject | Markov processes | en_UK |
| dc.subject | prediction | en_UK |
| dc.subject | sensor fusion | en_UK |
| dc.subject | situational awareness | en_UK |
| dc.subject | uncertainty | en_UK |
| dc.title | A Markov multi-phase transferable belief model for cyber situational awareness | en_UK |
| dc.type | Article | en_UK |
| dc.identifier.cris | 23140118 |
Files in this item
The following license files are associated with this item:
This item appears in the following Collection(s)
-
Staff publications (CDS) [1209]
Except where otherwise noted, this item's license is described as Attribution-NonCommercial 4.0 International