Early Detection of Cybersecurity Threats Using Collaborative Cognition
| dc.contributor.author | Narayanan, Sandeep Nair | |
| dc.contributor.author | Ganesan, Ashwinkumar | |
| dc.contributor.author | Joshi, Karuna | |
| dc.contributor.author | Oates, Tim | |
| dc.contributor.author | Joshi, Anupam | |
| dc.contributor.author | Finin, Tim | |
| dc.date.accessioned | 2020-07-23T17:00:27Z | |
| dc.date.available | 2020-07-23T17:00:27Z | |
| dc.date.issued | 2018-11-19 | |
| dc.description | 2018 IEEE 4th International Conference on Collaboration and Internet Computing (CIC), 18-20 Oct. 2018, Philadelphia, PA, USA | en_US |
| dc.description.abstract | The early detection of cybersecurity events such as attacks is challenging given the constantly evolving threat landscape. Even with advanced monitoring, sophisticated attackers can spend more than 100 days in a system before being detected. This paper describes a novel, collaborative framework that assists a security analyst by exploiting the power of semantically rich knowledge representation and reasoning integrated with different machine learning techniques. Our Cognitive Cybersecurity System ingests information from various textual sources and stores them in a common knowledge graph using terms from an extended version of the Unified Cybersecurity Ontology. The system then reasons over the knowledge graph that combines a variety of collaborative agents representing host and network-based sensors to derive improved actionable intelligence for security administrators, decreasing their cognitive load and increasing their confidence in the result. We describe a proof of concept framework for our approach and demonstrate its capabilities by testing it against a custom-built ransomware similar to WannaCry. | en_US |
| dc.description.sponsorship | This research was conducted in the UMBC Accelerated Cognitive Computing Lab (ACCL), which is supported in part by a gift from IBM. We thank the other members of the ACCL Lab for their input in developing this system. | en_US |
| dc.description.uri | https://ieeexplore.ieee.org/document/8537852 | en_US |
| dc.format.extent | 10 pages | en_US |
| dc.genre | conference papers and proceedings preprints | en_US |
| dc.identifier | doi:10.13016/m2gl8p-ccyt | |
| dc.identifier.citation | S. N. Narayanan, A. Ganesan, K. Joshi, T. Oates, A. Joshi and T. Finin, "Early Detection of Cybersecurity Threats Using Collaborative Cognition," 2018 IEEE 4th International Conference on Collaboration and Internet Computing (CIC), Philadelphia, PA, 2018, pp. 354-363, doi: 10.1109/CIC.2018.00054. | en_US |
| dc.identifier.uri | 10.1109/CIC.2018.00054 | |
| dc.identifier.uri | http://hdl.handle.net/11603/19228 | |
| dc.language.iso | en_US | en_US |
| dc.publisher | IEEE | en_US |
| dc.relation.isAvailableAt | The University of Maryland, Baltimore County (UMBC) | |
| dc.relation.ispartof | UMBC Computer Science and Electrical Engineering Department Collection | |
| dc.relation.ispartof | UMBC Faculty Collection | |
| dc.relation.ispartof | UMBC Student Collection | |
| dc.relation.ispartof | UMBC Information Systems Department | |
| dc.rights | This item is likely protected under Title 17 of the U.S. Copyright Law. Unless on a Creative Commons license, for uses protected by Copyright Law, contact the copyright holder or the author. | |
| dc.rights | © 2018 IEEE | |
| dc.subject | UMBC Ebiquity Research Group | |
| dc.title | Early Detection of Cybersecurity Threats Using Collaborative Cognition | en_US |
| dc.type | Text | en_US |