A graph-based system for network-vulnerability analysis
Proceedings of the 1998 workshop on New security paradigms
Intrusion detection systems and multisensor data fusion
Communications of the ACM
Rapid Development: Taming Wild Software Schedules
Rapid Development: Taming Wild Software Schedules
Correlating Intrusion Events and Building Attack Scenarios Through Attack Graph Distances
ACSAC '04 Proceedings of the 20th Annual Computer Security Applications Conference
Editorial: BeAware!-Situation awareness, the ontology-driven way
Data & Knowledge Engineering
Hi-index | 0.00 |
While there are multiple reference models for data fusion, there are no formal processes in which to design a complete fusion system. Even though high-level fusion, i.e., impact and threat assessment, is included in the various models, the majority of data fusion research has focused on low-level data fusion such as sensing and correlation. More importantly, low-level fusion technologies have been designed without detailed consideration of threat and impact assessment requirements. On the other hand, high-level designs are restricted by the available data from low-level systems. This disconnected practice has presented tremendous challenges for designing an effective overall fusion system that would truly enhance situation awareness. This paper proposes a top-down fusion system design process in which the elements needed for situation awareness will drive the design requirements for environment/terrain models, impact and threat assessment, event correlation and tracking, observable definitions, and sensing. The discussion will be complemented with examples from the cyber security domain.