Skip to the main content

Original scientific paper

https://doi.org/10.2498/cit.1002388

Application of Case-based Methodology for Early Diagnosis of Computer Attacks

Gulnara Yakhyaeva ; Department of Information Technologies, Novosibirsk State University
Olga Yasinskaya orcid id orcid.org/0000-0002-5695-575X ; Department of Information Technologies, Novosibirsk State University


Full text: english PDF 586 Kb

page 145-150

downloads: 534

cite


Abstract

In this article we consider the mathematical foundations and software implementation of the early diagnosis of computer attacks. For this we used the JSM method of automatic hypothesis generation and the theory of case-based models.

This software outputs hypotheses about the properties and expected consequences of a new computer attack. The system analyses a set of properties of the computer attack known to the user. For this we use the Base of the cyber attack’s precedents, described in the language of fuzzification of Boolean-valued models. Each potential property of the new attack is studied by using the JSM method. This process builds sets of positive and negative hypotheses concerning each property, giving a set of properties and consequences characteristic of the attack that has yet not happened at the time of analysis.

The developed algorithm has polynomial complexity.

Keywords

information security; computer attack; case of the computer attack; case-based model; fuzzification of the case-based model; JSM-method; JSM-reasoning

Hrčak ID:

129190

URI

https://hrcak.srce.hr/129190

Publication date:

31.10.2014.

Visits: 1.336 *