Using a prediction model to manage cyber security threats

Scientific World Journal

Volumn 2015, Issue , 2015, Pages

  Jaganathan, Venkatesh ^a   Cherurveettil, Priyesh ^a   Muthu Sivashanmugam, Premapriya ^a  

^a ANNA UNIVERSITY   (India)

Author keywords

[No Author keywords available]

Indexed keywords

ALGORITHM; ARTICLE; COMPUTER SECURITY; MATHEMATICAL MODEL; MULTIPLE REGRESSION; NULL HYPOTHESIS; PREDICTION; RISK ASSESSMENT; SIMULATION;

EID: 84929643171     PISSN: 23566140     EISSN: 1537744X     Source Type: Journal    
DOI: 10.1155/2015/703713     Document Type: Article

References (17)

1. O. Sheyner, J. Haines, S. Jha, R. Lippmann, and J. M. Wing, "Automated generation and analysis of attack graphs, " in Proceedings of the IEEE Symposium on Security and Privacy, pp. 273-284, May 2002.
2. L. Wang, A. Singhal, andS. Jajodia, "Towardmeasuringnetwork security using attack graphs, " in Proceedings of the ACM Workshop on Quality of Protection, pp. 49-54, October 2007.
3. M. E. Kuhl, J. Kistner, K. Costantini, and M. Sudit, "Cyber attack modeling and simulation for network security analysis, " in Proceedings of the Winter Simulation Conference (WSC '07), pp. 1180-1188, Washington, DC, USA, December 2007.
4. E. Tittel, Preventing and Avoiding Network SecurityThreats and Vulnerabilities, 2013, http://www. tomsitpro. com/articles/threat management-it security-firewall-it certification-network security, 2-477. html.
5. J. Wu, L. Yin, and Y. Guo, "Cyber attacks prediction model based on Bayesian network, " in Proceedings of the 18th IEEE International Conference on Parallel and Distributed Systems (ICPADS '12), pp. 730-731, Singapore, December 2012.
6. N. S. Anusha, T. S. Soujanya, and D. S. Vasavi, "Study on techniques for providing enhanced security during online exams, " International Journal of Engineering Inventions, vol. 1, no. 1, pp. 32-37, 2012.
7. E. T. Axelrad, P. J. Sticha, O. Brdiczka, and J. Shen, "A Bayesian network model for predicting insider threats, " in Proceedings of the 2nd IEEE Security and PrivacyWorkshops (SPW'13), pp. 82-89, May 2013.
8. M. A. Khan and M. Hussain, "Cyber security quantification model, " Bahria University Journal of Information and Communication Technology, vol. 3, no. 1, pp. 23-27, 2010.
9. A. P. Moore, D. A. Mundie, and M. L. Collins, "Asystem dynamics model for investigating early detection of insider threat risk, " Tech. Rep. DM-0000143, Program Software Engineering Institute, Carnegie Mellon University, 2013.
10. M. Mateski, C. M. Trevino, C. K. Veitch et al. , "Cyber threat metrics, " Sandia Report SAND2012-2427, 2012.
11. O. T. Oluwatosin and D. D. Samson, "Computer-based test security and result integrity, " International Journal of Computer and Information Technology, vol. 2, no. 2, pp. 324-329, 2013.
12. L. K. Shar, H. Beng Kuan Tan, and L. C. Briand, "Mining SQL injection and cross site scripting vulnerabilities using hybrid program analysis, " in Proceedings of the 35th International Conference on Software Engineering (ICSE '13), pp. 642-651, IEEE Press, May 2013.
13. P. Mell, K. Scarfone, and S. Romanosky, A Complete Guide to the Common Vulnerability Scoring System Version 2. 0, National Institute of Standards and Technology, Carnegie Mellon University, 2007.
14. P. Mell, K. Scarfone, and S. Romanosky, ACompleteGuide to the Common Vulnerability Scoring System, Version 2. 0, 2007.
15. Redhat, Bash Code Injection Vulnerability via Specially Crafted Environment Variables (CVE-2014-6271, CVE-2014-7169), Redhat, 2014, https://access. redhat. com/articles/1200223.
16. Sensitive Data Protection Vulnerability, OWASP, https://www. owasp. org/index. php/Category:Sensitive Data Protection Vulnerability.
17. https://www. owasp. org/index. php/Category:Vulnerability.