Attack pattern ontology

A common language for attack information sharing between organizations

Master thesis (2015)

Authors

Y. Zhu

Contributors

M.F.W.H.A. Janssen (mentor)

W. Pieters (mentor)

M.A. Oey (mentor)

D. Hadiosmanovi? (mentor)

Department

Information and communication technology () (TU Delft)

Ontology Cyber security Information sharing Cyber attack Attack pattern

More Info

expand_more

To reference this document use:

http://resolver.tudelft.nl/uuid:611583f1-b200-4851-915e-76a43c42fd46

Published Date

24-09-2015

Reuse Rights

Other than for strictly personal use, it is not permitted to download, forward or distribute the text or part of it, without the consent of the author(s) and/or copyright holder(s), unless the work is under an open content license such as Creative Commons.

Faculty

Technology, Policy and Management

Department

Information and communication technology

Abstract

Cyber attack nowadays is increasingly being reported. Defenders need a good understanding of attacker’s perspective in order to accurately anticipate threats and effectively mitigate attacks. This understanding can be obtained through sharing attack pattern. However, in the existing researches the consideration about information sharing is not integrated into the attack pattern concept. In this paper, we propose an attack pattern ontology as a common language of information sharing; the goal is to demonstrate how this ontology may effectively support cyber security information sharing. Based on the existing theories about attack pattern, we developed an ontological model to present attack information. The research can be further developed to integrate attacker profile ontology with the attack pattern ontology, which enables more systematic analysis of cyber attacks.

Files

Thesis_Report_YZ.pdf

(pdf | 5.43 Mb)

Scientific_paper.pdf

(pdf | 0.708 Mb)