An Expert System for Mitigation Actions

Ilkka Karanta, Mika Rautila

    Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

    2 Citations (Scopus)

    Abstract

    This paper describes an approach, based on ontologies and expert system technology, for assisting the mitigation of advanced persistent threat (APT) attacks against critical infrastructures. We describe the approach, and a prototype expert system based on it. We delineate a case study, involving an APT against a financial information infrastructure. Finally, we outline some conclusions and recommendations for future work.
    Original languageEnglish
    Title of host publicationProceedings of the 20th Conference of Open Innovations Association, FRUCT 2017
    EditorsAlla Levina, Sergey Balandin, Tatiana Tyutina
    Place of PublicationPiscataway
    PublisherIEEE Institute of Electrical and Electronic Engineers
    Pages125-130
    ISBN (Electronic)978-9-5268-6530-0, 978-9-5268-6531-7
    ISBN (Print)978-1-5090-6487-8
    DOIs
    Publication statusPublished - 18 Oct 2017
    MoE publication typeA4 Article in a conference publication
    Event20th Conference on Fruct Association, FRUCT'20 - Saint-Petersburg, Russian Federation
    Duration: 3 Apr 20177 Apr 2017

    Publication series

    SeriesConference of Open Innovation Association FRUCT
    Volume20
    ISSN2305-7254

    Conference

    Conference20th Conference on Fruct Association, FRUCT'20
    Abbreviated titleFRUCT'20
    Country/TerritoryRussian Federation
    CitySaint-Petersburg
    Period3/04/177/04/17

    Funding

    This work was funded by the European Union FP7 project ECOSSIAN (607577).

    Keywords

    • network security
    • computer security
    • advanced persistent threat
    • mitigation
    • expert system
    • ontologies

    Fingerprint

    Dive into the research topics of 'An Expert System for Mitigation Actions'. Together they form a unique fingerprint.

    Cite this