Title :
Automated classification of computer network attacks
Author :
van Heerden, Renier ; Leenen, Louise ; Irwin, Barry
Author_Institution :
Cyber Defence, CSIR, Pretoria, South Africa
Abstract :
In this paper we demonstrate how an automated reasoner, HermiT, is used to classify instances of computer network based attacks in conjunction with a network attack ontology. The ontology describes different types of network attacks through classes and inter-class relationships and has previously been implemented in the Protege ontology editor. Two significant recent instances of network based attacks are presented as individuals in the ontology and correctly classified by the automated reasoner according to the relevant types of attack scenarios depicted in the ontology. The two network attack instances are the Distributed Denial of Service attack on SpamHaus in 2013 and the theft of 42 million Rand ($6.7 million) from South African Postbank in 2012.
Keywords :
banking; computer network security; ontologies (artificial intelligence); pattern classification; HermiT; Protégé ontology editor; South African postbank; SpamHaus; automated computer network-based attack instance classification; automated reasoner; distributed denial of service attack; interclass relationships; network attack ontology; Computational modeling; Computer crime; Computers; OWL; Ontologies; Taxonomy; Network Attack Ontology;
Conference_Titel :
Adaptive Science and Technology (ICAST), 2013 International Conference on
Conference_Location :
Pretoria
DOI :
10.1109/ICASTech.2013.6707510
