NexComm 2022 Congress
April 24, 2022 to April 28, 2022 - Barcelona, Spain

  • ICDT 2022, The Seventeenth International Conference on Digital Telecommunications
  • SPACOMM 2022, The Fourteenth International Conference on Advances in Satellite and Space Communications
  • ICN 2022, The Twenty-First International Conference on Networks
  • ICONS 2022, The Seventeenth International Conference on Systems
  • MMEDIA 2022, The Fourteenth International Conference on Advances in Multimedia
  • PESARO 2022, The Twelfth International Conference on Performance, Safety and Robustness in Complex Systems and Applications
  • CTRQ 2022, The Fifteenth International Conference on Communication Theory, Reliability, and Quality of Service
  • ALLDATA 2022, The Eighth International Conference on Big Data, Small Data, Linked Data and Open Data
  • SOFTENG 2022, The Eighth International Conference on Advances and Trends in Software Engineering

ComputationWorld 2022 Congress
April 24, 2022 to April 28, 2022 - Barcelona, Spain

  • SERVICE COMPUTATION 2022, The Fourteenth International Conference on Advanced Service Computing
  • CLOUD COMPUTING 2022, The Thirteenth International Conference on Cloud Computing, GRIDs, and Virtualization
  • FUTURE COMPUTING 2022, The Fourteenth International Conference on Future Computational Technologies and Applications
  • COGNITIVE 2022, The Fourteenth International Conference on Advanced Cognitive Technologies and Applications
  • ADAPTIVE 2022, The Fourteenth International Conference on Adaptive and Self-Adaptive Systems and Applications
  • CONTENT 2022, The Fourteenth International Conference on Creative Content Technologies
  • PATTERNS 2022, The Fourteenth International Conference on Pervasive Patterns and Applications
  • COMPUTATION TOOLS 2022, The Thirteenth International Conference on Computational Logics, Algebras, Programming, Tools, and Benchmarking
  • BUSTECH 2022, The Twelfth International Conference on Business Intelligence and Technology

InfoSys 2022 Congress
May 22, 2022 to May 26, 2022 - Venice, Italy

  • ICNS 2022, The Eighteenth International Conference on Networking and Services
  • ICAS 2022, The Eighteenth International Conference on Autonomic and Autonomous Systems
  • ENERGY 2022, The Twelfth International Conference on Smart Grids, Green Communications and IT Energy-aware Technologies
  • WEB 2022, The Tenth International Conference on Building and Exploring Web Based Environments
  • DBKDA 2022, The Fourteenth International Conference on Advances in Databases, Knowledge, and Data Applications
  • SIGNAL 2022, The Seventh International Conference on Advances in Signal, Image and Video Processing
  • BIOTECHNO 2022, The Fourteenth International Conference on Bioinformatics, Biocomputational Systems and Biotechnologies

InfoWare 2022 Congress
May 22, 2022 to May 26, 2022 - Venice, Italy

  • ICCGI 2022, The Seventeenth International Multi-Conference on Computing in the Global Information Technology
  • ICWMC 2022, The Eighteenth International Conference on Wireless and Mobile Communications
  • VEHICULAR 2022, The Eleventh International Conference on Advances in Vehicular Systems, Technologies and Applications
  • INTERNET 2022, The Fourteenth International Conference on Evolving Internet
  • COLLA 2022, The Twelfth International Conference on Advanced Collaborative Networks, Systems and Applications
  • INTELLI 2022, The Eleventh International Conference on Intelligent Systems and Applications
  • VISUAL 2022, The Seventh International Conference on Applications and Systems of Visual Paradigms
  • HUSO 2022, The Eighth International Conference on Human and Social Analytics
  • BRAININFO 2022, The Seventh International Conference on Neuroscience and Cognitive Brain Information

DataSys 2022 Congress
June 26, 2022 to June 30, 2022 - Porto, Portugal

  • AICT 2022, The Eighteenth Advanced International Conference on Telecommunications
  • ICIW 2022, The Seventeenth International Conference on Internet and Web Applications and Services
  • ICIMP 2022, The Seventeenth International Conference on Internet Monitoring and Protection
  • SMART 2022, The Eleventh International Conference on Smart Cities, Systems, Devices and Technologies
  • IMMM 2022, The Twelfth International Conference on Advances in Information Mining and Management
  • INFOCOMP 2022, The Twelfth International Conference on Advanced Communications and Computation
  • MOBILITY 2022, The Twelfth International Conference on Mobile Services, Resources, and Users
  • SPWID 2022, The Eighth International Conference on Smart Portable, Wearable, Implantable and Disability-oriented Devices and Systems
  • ACCSE 2022, The Seventh International Conference on Advances in Computation, Communications and Services

DigitalWorld 2022 Congress
June 26, 2022 to June 30, 2022 - Porto, Portugal

  • ICDS 2022, The Sixteenth International Conference on Digital Society
  • ACHI 2022, The Fifteenth International Conference on Advances in Computer-Human Interactions
  • GEOProcessing 2022, The Fourteenth International Conference on Advanced Geographic Information Systems, Applications, and Services
  • eTELEMED 2022, The Fourteenth International Conference on eHealth, Telemedicine, and Social Medicine
  • eLmL 2022, The Fourteenth International Conference on Mobile, Hybrid, and On-line Learning
  • eKNOW 2022, The Fourteenth International Conference on Information, Process, and Knowledge Management
  • ALLSENSORS 2022, The Seventh International Conference on Advances in Sensors, Actuators, Metering and Sensing
  • SMART ACCESSIBILITY 2022, The Seventh International Conference on Universal Accessibility in the Internet of Things and Smart Environments

NetWare 2022 Congress
October 16, 2022 to October 20, 2022 - Lisbon, Portugal

  • SENSORCOMM 2022, The Sixteenth International Conference on Sensor Technologies and Applications
  • SENSORDEVICES 2022, The Thirteenth International Conference on Sensor Device Technologies and Applications
  • SECURWARE 2022, The Sixteenth International Conference on Emerging Security Information, Systems and Technologies
  • AFIN 2022, The Fourteenth International Conference on Advances in Future Internet
  • CENICS 2022, The Fifteenth International Conference on Advances in Circuits, Electronics and Micro-electronics
  • ICQNM 2022, The Sixteenth International Conference on Quantum, Nano/Bio, and Micro Technologies
  • FASSI 2022, The Eighth International Conference on Fundamentals and Advances in Software Systems Integration
  • GREEN 2022, The Seventh International Conference on Green Communications, Computing and Technologies

SoftNet 2022 Congress
October 16, 2022 to October 20, 2022 - Lisbon, Portugal

  • ICSEA 2022, The Seventeenth International Conference on Software Engineering Advances
  • ICSNC 2022, The Seventeenth International Conference on Systems and Networks Communications
  • CENTRIC 2022, The Fifteenth International Conference on Advances in Human-oriented and Personalized Mechanisms, Technologies, and Services
  • VALID 2022, The Fourteenth International Conference on Advances in System Testing and Validation Lifecycle
  • SIMUL 2022, The Fourteenth International Conference on Advances in System Simulation
  • SOTICS 2022, The Twelfth International Conference on Social Media Technologies, Communication, and Informatics
  • INNOV 2022, The Eleventh International Conference on Communications, Computation, Networks and Technologies
  • HEALTHINFO 2022, The Seventh International Conference on Informatics and Assistive Technologies for Health-Care, Medical Support and Wellbeing

NexTech 2022 Congress
November 13, 2022 to November 17, 2022 - Valencia, Spain

  • UBICOMM 2022, The Sixteenth International Conference on Mobile Ubiquitous Computing, Systems, Services and Technologies
  • ADVCOMP 2022, The Sixteenth International Conference on Advanced Engineering Computing and Applications in Sciences
  • SEMAPRO 2022, The Sixteenth International Conference on Advances in Semantic Processing
  • AMBIENT 2022, The Twelfth International Conference on Ambient Computing, Applications, Services and Technologies
  • EMERGING 2022, The Fourteenth International Conference on Emerging Networks and Systems Intelligence
  • DATA ANALYTICS 2022, The Eleventh International Conference on Data Analytics
  • GLOBAL HEALTH 2022, The Eleventh International Conference on Global Health Challenges
  • CYBER 2022, The Seventh International Conference on Cyber-Technologies and Cyber-Systems

TrendNews 2022 Congress
November 13, 2022 to November 17, 2022 - Valencia, Spain

  • CORETA 2022, Advances on Core Technologies and Applications
  • DIGITAL 2022, Advances on Societal Digital Transformation

 


ThinkMind // INTERNET 2020, The Twelfth International Conference on Evolving Internet // View article internet_2020_1_110_48001


Evaluation of a Multi-agent Anomaly-based Advanced Persistent Threat Detection Framework

Authors:
Georgi Nikolov
Thibault Debatty
Wim Mees

Keywords: anomaly-based analysis; command & control channel; advanced persistent threat; aggregation

Abstract:
Cyber attacks have become a major factor in the world today and their effect can be devastating. Protecting corporate and government networks has become an increasingly difficult challenge, when new persistent malware infections can remain undetected for long periods of time. In this paper, we introduce the Multi-agent ranking framework (MARK), a novel approach to Advanced Persistent Threat detection through the use of behavioral-analysis and pattern recognition. Such behavior-based mechanisms for discovering and eliminating new sophisticated threats are lacking in current detection systems, but research in this domain is gaining more importance and traction. Our goal is to take a on-hands approach in the detection by actively hunting for the threats, instead of passively waiting for events and alerts to signal abnormal behavior. We devise a framework that can be easily deployed as a stand-alone multi-agent system or to compliment many Security Information and Event Management systems. The MARK framework incorporates known and new beyond state-of-the-art detection techniques, in addition to facilitating incorporation of new data sources and detection agent modules through plug-ins. Throughout our testing and evaluation, impressive true detection rates and acceptable false positive rates were obtained, which proves the usefulness of the framework.

Pages: 61 to 67

Copyright: Copyright (c) IARIA, 2020

Publication date: October 18, 2020

Published in: conference

ISSN: 2308-443X

ISBN: 978-1-61208-796-2

Location: Porto, Portugal

Dates: from October 18, 2020 to October 22, 2020

SERVICES CONTACT
2010 - 2017 © ThinkMind. All rights reserved.
Read Terms of Service and Privacy Policy.