Ponencia
Advanced Detection of Cybersecurity Threat Mutations through Machine Learning and Behavioural Analysis [Póster]
Autor/es | Domenech Fons, Jordi
Ortiz Rabella, Nil Calvo Ibañez, Albert Mhiri, Saber |
Coordinador/Director | Varela Vaca, Ángel Jesús
![]() ![]() ![]() ![]() ![]() ![]() ![]() Ceballos Guerrero, Rafael ![]() ![]() ![]() ![]() ![]() ![]() ![]() Reina Quintero, Antonia María ![]() ![]() ![]() ![]() ![]() ![]() ![]() |
Fecha de publicación | 2024 |
Fecha de depósito | 2024-07-18 |
Publicado en |
|
ISBN/ISSN | 978-84-09-62140-8 |
Resumen | For years, Security Operation Centres (SOC) have relied on detection tools that are becoming less effective in the cybersecurity industry, where sophisticated campaigns made by cybercriminals are not being noticed. ... For years, Security Operation Centres (SOC) have relied on detection tools that are becoming less effective in the cybersecurity industry, where sophisticated campaigns made by cybercriminals are not being noticed. Particularly, the detection of cybersecurity threat mutations– where attackers modify their techniques to evade detection– has emerged as a key challenge for organizations seeking to protect their data and systems. Through an extensive analysis of cybersecurity incidents and real network data, we propose a novel methodology and taxonomy in the field to detect threat mutations by combining a supervised machine learning algorithm with behavioural analysis. Our f indings reveal the likelihood of a threat being a mutation of a known threat, including a novel representation of user behaviour profiles and an extended analysis of their properties. This study contributes to advancing detection and prevention techniques in the cybersecurity domain, paving the way for more resilient and adaptive defence systems. |
Cita | Domenech Fons, J., Ortiz Rabella, N., Calvo Ibañez, A. y Mhiri, S. (2024). Advanced Detection of Cybersecurity Threat Mutations through Machine Learning and Behavioural Analysis [Póster]. En Jornadas Nacionales de Investigación en Ciberseguridad (JNIC) (9ª.2024. Sevilla) (458-459), Sevilla: Universidad de Sevilla. Escuela Técnica Superior de Ingeniería Informática. |
Ficheros | Tamaño | Formato | Ver | Descripción |
---|---|---|---|---|
JNIC24_476.pdf | 1.390Mb | ![]() | Ver/ | |