Security analytics on asset vulnerability for information abstraction and risk analysis

Authors: Flanagan, K., Fallon, E., Awad, A. and Connolly, P.

Journal: Proceedings - 2016 UKSim-AMSS 18th International Conference on Computer Modelling and Simulation, UKSim 2016

Pages: 9-15

DOI: 10.1109/UKSim.2016.33

Abstract:

Protecting intellectual property and confidential customer details from network based attacks is becoming increasingly difficult in modern times due to a dramatic increase in online based attacks. For companies such as The NPD Group, protecting this confidential information is key in keeping a positive perceived image while also doing its utmost to protect vital I.P. This paper proposes an architecture that will enable a company to perform a proactive risk assessment of their network to mitigate any possible chance of data leaks or damage to the network. It also performs an abstraction of the performance metrics gained from various data providers to allow for easily understandable metrics pertaining to the risk level of the network at large while also maintaining a level of granularity that can be used by technical experts within the company. SAVIOR is one algorithm within this architecture that uses machine learning mechanisms to perform abstraction of performance metrics gained from a data provider, Nexpose, while also performing an analysis of assets in terms of one area of risk, vulnerability.

Source: Scopus