Towards an Operational Semantic Theory of Cyber Defense Against Advanced Persistent Threats

Steven Meckl, Gheorghe Tecuci, Mihai Boicu, Dorin Marcu
2015 Semantic Technologies for Intelligence, Defense, and Security  
This paper presents current work on developing an operational semantic theory of cyber defense against advanced persistent threats (APTs), which is grounded in cyber threat analytics, science of evidence, knowledge engineering, and machine learning. After introducing advanced persistent threats, it overviews a systematic APT detection framework and the corresponding APT detection models, the formal representation and learning of these models in the knowledge base of a cognitive agent, and the
more » ... velopment and integration of such agents into a specific cyber security operation center.
dblp:conf/stids/MecklTBM15 fatcat:wrj35r4mlfcljlxt7kmyaq664i