The testbed for definition of the exploit’s execution features to detect and score cyber attacks

Sergei Verevkin; Elena Fedorchenko

doi:10.1051/e3sconf/202447104021

All issues

Volume 471 (2024)

E3S Web Conf., 471 (2024) 04021

Abstract

Open Access

Issue		E3S Web Conf. Volume 471, 2024 XIV International Conference on Transport Infrastructure: Territory Development and Sustainability (TITDS-XIV-2023)


Article Number		04021
Number of page(s)		6
Section		Information Technologies, Transportation Science and Technology Synergy
DOI		https://doi.org/10.1051/e3sconf/202447104021
Published online		04 January 2024

E3S Web of Conferences 471, 04021 (2024)

The testbed for definition of the exploit’s execution features to detect and score cyber attacks

Sergei Verevkin¹^,2 and Elena Fedorchenko¹^*

¹ St. Petersburg Institute for Informatics and Automation of the Russian Academy of Sciences (SPIIRAS), St. Petersburg Federal Research Center of the Russian Academy of Sciences (SPC RAS), 39, 14th Liniya, St. Petersburg, 199178, Russia
² A.F. Mozhaysky Military-Space Academy, 13, Zhdanovskaya str., St. Petersburg, Russia

^* Corresponding author: doynikova@comsec.spb.ru

Abstract

The paper considers the deployment of the testbed for definition of the exploit’s execution features to detect and score cyber-attacks. The paper describes the place of the proposed testbed in the approach to the cyber-attack detection and scoring. It defines the requirements to the testbed considering the introduced approach. The testbed infrastructure is defined and deployed considering the specified requirements. The introduced testbed infrastructure is justified. Finally, the technique of the testbed implementation for the feature extraction is introduced. The proposed testbed and technique allow combining advantages of the static and dynamic approaches to the exploits analysis and detecting and scoring known and previously unseen cyber-attacks.

This is an Open Access article distributed under the terms of the Creative Commons Attribution License 4.0, which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.

Current usage metrics show cumulative count of Article Views (full-text article views including HTML views, PDF and ePub downloads, according to the available data) and Abstracts Views on Vision4Press platform.

Data correspond to usage on the plateform after 2015. The current usage metrics is available 48-96 hours after online publication and is updated daily on week days.

Initial download of the metrics may take a while.