Evidential Cyber Threat Hunting

Add code
Apr 21, 2021
Frederico Araujo, Dhilung Kirat, Xiaokui Shu, Teryl Taylor, Jiyong Jang
Figure 1 for Evidential Cyber Threat Hunting
Figure 2 for Evidential Cyber Threat Hunting
Figure 3 for Evidential Cyber Threat Hunting
Figure 4 for Evidential Cyber Threat Hunting

Share this with someone who'll enjoy it:

Twitter IconFacebook IconLinkedin IconWhatsapp IconMessenger Icon

A formal cyber reasoning framework for automating the threat hunting process is described. The new cyber reasoning methodology introduces an operational semantics that operates over three subspaces -- knowledge, hypothesis, and action -- to enable human-machine co-creation of threat hypotheses and protective recommendations. An implementation of this framework shows that the approach is practical and can be used to generalize evidence-based multi-criteria threat investigations.

* In Proceedings of the 2021 SIAM AI/ML for Cybersecurity Workshop (AI4CS)  * 5 pages, SDM AI4CS 2021  
View paper onarxiv icon

Share this with someone who'll enjoy it:

Twitter IconFacebook IconLinkedin IconWhatsapp IconMessenger Icon