PROJECT RELATED DOCUMENTS |
| Project
Proposal Document: This is the Main Project
Proposal Document.
Capability Development Document (CDD) for the Virtual Integrated Support for the Information Operations Environment (VISION)
Research on Deception in Defense of Information Systems: The paper is a part of the software decoy project and intends to research on the various deception techniques which could be used to design effective deception mechanisms to defend high security information systems. The use of fake directory interface and random context data in those fake directories are some solutions suggested. Reference is made to building tools which would automatically modify software to insert “wrappers” around key code which would trigger deception on suspicion. Authors: Neil C. Rowe, Mikhail Auguston, Doron Drusinsky, J. Bret Michael Reference:
2008 Data Breach Investigations Report: The paper has done intensive forensic research for a period of 4 years on the data compromise cases and come up with loads of statistical data to comprehend and investigate the cyber crime patterns. The statistical data collected was sub divided according to various specifications which made it easier for the investigators to implement various statistical analyses and predict the characteristics of the various forms of cyber attacks possible. The comprehensive study has come up with very significant findings supporting the fact that almost 85% of the cyber attacks are of lower complexity and most of the cyber attacks could be stopped with the right vigilance mechanisms in place. Author: A Study conducted by the Verizon Business Risk Team Reference: Verizonbusiness, 2008.
A Model of Deception during Cyber-Attacks on Information Systems: Deception is a two way psychological problem which could be used as a defense tool to confuse the attacker and protect important and confidential data and also to help the attackers fool the information systems to give away important information. According to the author the deceptive defensive system is very capable of thwarting attacks both to the attackers and to script kiddies. The paper researches on the generic excuses which could be designed to successfully thwart attacks. The probabilities of how the generic excuses could be used with applications to counter attacks are optimized and solved. Author: Neil C. Rowe Reference: IEEE, 2004.
Graph-Theoretic Approach to Modeling Propagation and Control of Network Worms: In the recent past the menace and the danger of malicious worm attacks has increased drastically. According to the author there has been no comprehensive solution for epidemical worm attacks yet. The author therefore offers a five-fold method to analyze worm attacks and to determine the various algorithms and applications to detect worm scanning activities and then simulate and develop large scale models. The author tries to determine certain characteristics of the cop-and-robber game and tries to relate it to the cyber warfare. Author: Zoran Nikoloski Reference:
Impact Analysis, Early Detection and Mitigation of Large-Scale Internet Attacks: As the name suggests, this paper deals with the analysis and early detection mechanisms which could be employed to the increasingly internet dependent world of today. The authors claim to have developed the first comprehensive economic damage model for DDoS (Distributed Denial of Service) Attacks. This model assesses the economic damage which is caused by various internet attacks. The research concentrates on network worm Blaster.A and e-mail worm Sobig.F in particular. According to the authors, "Traffic ownership" would pave the way to data privacy thereby making it possible for the operators to incorporate adaptive or active networks in their network systems. Author: Thomas P. Dubendorfer Reference: A dissertation submitted to the Swiss Federal Institute of Technology, 2005.
Experiments with a Testbed for Automated Defensive Deception Planning for Cyber-Attacks: Vast information has been collected on the attacks on systems in the field of cyber warfare but little information is available on the types of counter mechanisms which were used to counter such attacks. The present paper researches on the various types of defence deception mechanisms which could be developed and this is done using a honeypot which is a term generally referred to systems which are designed to attract cyber attacks. The results of the attacks on the honeypot were statistically analysed and the response of attackers towards various deceptive mechanisms of the honeypot were recorded. Authors: Neil C. Rowe, Han C. Goh, Sze L. Lim, and Binh T. Duong Reference:
CYBER DEFENSE: ART TO SCIENCE: Cyber warfare has extremely increased in complexity in the recent years. With new attacks surfacing very often the Cyber defenders are facing a tough time to counteract such attacks. The author's opinion is that instead of concentrating on thwarting such attacks which take years to design, the defenders should concentrate on strong defense mechanisms which can deviate the attention of the attacker by creating sweet-spots. The author explains in detail how the various defense systems have to improved to counter attacks. He thus takes us through the transition of cyber defense from art to science. Author: O.SAMI SAYDJARI Reference: Communications of the ACM, March 2004.
Computer Hacking and Cyber Terrorism: The Real Threats in the New Millennium?: The author tries to foresee how cyber warfare could be used by terrorists to cause grave dangers in the new millennium. He exemplifies how the attacks in the past have created severe damage and what are the reasons terrorists would find alluring for attempting more attacks in the future. The author tries to show how hacking and cyber terrorism may cause immediate and long term threats to our society. Author: S.M.Furnell and M.J.Warren Reference: Computers and Security, 1999.
Pattern of global cyber war and crime: A conceptual framework: This paper seeks to research on the factors which motivate hackers to wage cyber wars. He tries to explain the psychological reasons the hackers are motivated by. The author takes the help of several examples of attacks in the past to study the psychological patterns responsible for the attacks. The paper tries to show the growing number of attacks each year. The paper also suggests a framework which could best explain such wars. Author: Nir Kshetri Reference: Journal of International Management, 2005.
Cyberwarfare and Cyberterrorism: Implications for Defense R&D: This paper discusses the initiatives and long term planning being taken up by the US Government to develop better risk management frameworks and techniques. The vast area of cyber warfare is being dealt in detail to design more accurate alert, warning and response systems. The author expresses his surprise of how adaptable the internet has become giving the example of Y2K warning. According to his opinion the R&D has to concentrate on assessing risks in the long run to build responsive cyber defense mechanisms. Author:Peter A. Wilson Reference:Delivered at 26th Annual AAAS Colloquium on Science and Technology Policy, May 2001.
A Workflow-based Non-intrusive Approach for Enhancing the Survivability of Critical Infrastructures in Cyber Environment: The paper concentrates on improving the security of the Supervisory Controls and Data Acquisition Systems (SCADA). The SCADA systems are widely used to perform significant functions in the power generation industry, transmission and railroads etc. The cyber layer of such an infrastructure consists of SCADA systems. The shift of SCADA from independent working systems to corporate connected working systems has provided several loose ends for cyber attacks on such critical systems. The paper talks about the protection of work flow layer of the SCADA systems using cause and effect relationship commands processed by the SCADA. Authors: Kun Xiao, Nianen Chen, Shangping Ren, Kevin Kwiat, Michael Macalik Reference: IEEE, 2007.
Understanding Multistage Attacks by Attack-Track based Visualization of Heterogeneous Event Streams: The computer operators have to keep track of a lot of events while performing administrative tasks and to control network traffic. In this heterogeneous task scenario, they often fail to see patterns of intrusion in a computer network. The following paper deals with the visualization of intrusion detection patterns through a tool they designed called Event Correlation for Cyber-Attack Recognition System (ECCARS). Authors: S.Mathew, R.Giomundo, S.Upadhyaya, M.Sudit, A.Stotz Reference: ACM, 2006.
Visualization for Security: The paper delineates the significance of visualization in presenting internet traffic data to detect cyber attacks. The various different ways in which visualization could be used to effectively decipher the probability of an intrusion into high class security systems are discussed. The author suggests some forms of visualization graphics to create interactive visualization. The various intricacies involved in designing such systems is also dealt in detail. Author: Kwan-Liu Ma Reference: Computer Graphics, November 2004.
Tracing the Development of Denial of Service Attacks: A Corporate Analogy: The author explains the different forms of DOS (Denial of Service) attacks and their varying intensity in their evolution. The transformation of DOS to DDOS (Distributed Denial of Service) attacks and DRDOS (Distributed DOS with Reflectors) is explained in great detail and the various characteristics of these three groups in discussed. The various financial losses in the past due to large scale DOS attacks are discussed. Authors: Yanet Manzano Reference: Crossroads, The ACM Student Magazine.
A Taxonomy of Computer Worms: It is very important to study the various subclasses of worms and their potential pay loads to design systems which can defend worm attacks effectually. Hence this paper makes a comprehensive effort to study the preliminary taxonomy on computer worms. The various varieties of worms and their evolution is explained in detail through this paper. Authors: Nicholas Weaver, Vern Paxson, Stuart Staniford, Robert Cunningham Reference: ACM, 2003.
|