Personal tools
You are here: Home Events Detection of Advanced Persistent Threats (APT) with Formal Concept Analysis (FCA): first steps

Detection of Advanced Persistent Threats (APT) with Formal Concept Analysis (FCA): first steps

— filed under:

Speaker: Ghita Berrada

What
  • Lab Lunch
When Jun 20, 2017
from 01:00 PM to 02:00 PM
Where Mini Forum 2 (MF2) Level 4
Add event to calendar vCal
iCal


Abstract:

Sony hack in 2011, JP Morgan Chase data breach in 2014 and Office of Personnel Management data breach in 2016: data breaches such as these frequently make the headlines and are the result of so-called "advanced persistent threats" (APT).  APTs are long-running, stealthy cyberattacks on a specific target, whose primary aim is to steal valuable/sensitive data from the target. Such attacks are designed to mimic normal business behaviour and evade detection by traditional means (such as antiviruses or anti-malwares) for as long as is required to accomplish the attack's  goal. The earlier such attacks are detected, the less damage incurred by the organization targeted by the attack.

In this talk, I will briefly describe why applying Formal Concept Analysis on graphs that record system activity might help in detecting anomalous system activity and hopefully APTs.

Document Actions