Exploratory Sequential Data Analysis of a Cyber Defence ExerciseVise andre og tillknytning
2011 (engelsk)Inngår i: Proceedings of the International Defense and Homeland Security Simulation Workshop (DHSS) 2011, Caltek s.r.l. , 2011, s. 27-32Konferansepaper, Publicerat paper (Fagfellevurdert)
Abstract [en]
Baltic Cyber Shield 2010 (BCS), a multi-national civilmilitary cyber defence exercise (CDX), aimed to improve the capability of performing a CDX and investigate how IT attacks and defence of critical infrastructure can be studied. The exercise resulted in a massive dataset to be analyzed and many lessons learned in planning and executing a large-scale multinational CDX. A reconstruction & exploration (R&E) approach was used to capture incidents such as attacks and defensive counter-measures during the exercise. This paper introduces the usage of R&E combined with exploratory sequential data analysis (ESDA) and discusses benefits and limitations of using these methods for analyzing multi-national cyber defence exercises. Using ESDA we were able to generate statistical data on attacks from BCS, such as number of reported attacks by the attackers and the defenders on different type of services. Initial results from these explorations will be analyzed and discussed.
sted, utgiver, år, opplag, sider
Caltek s.r.l. , 2011. s. 27-32
Emneord [en]
cyber defence exercise, data analysis, experimentation, reconstruction and exploration
HSV kategori
Forskningsprogram
SRA - Informations- och kommunikationsteknik
Identifikatorer
URN: urn:nbn:se:kth:diva-100916ISI: 000392603200005Scopus ID: 2-s2.0-84898778855OAI: oai:DiVA.org:kth-100916DiVA, id: diva2:545816
Konferanse
The International Defense and Homeland Security Simulation Workshop (DHSS) 2011, Rome, Italy, September 12-14, 2011.
Merknad
QC 20120919
2012-08-212012-08-212022-06-24bibliografisk kontrollert