Cyber Situational Awareness: Issues and Research

Overview

Editors:

Sushil Jajodia⁰,
Peng Liu¹,
Vipin Swarup²,
…
Cliff Wang³

Sushil Jajodia
1. Ctr. Secure Information Systems, George Mason University, Fairfax, U.S.A.
View editor publications

You can also search for this editor in PubMed Google Scholar
Peng Liu
1. College of Information Sciences &, Pennsylvania State University, University Park, U.S.A.
View editor publications

You can also search for this editor in PubMed Google Scholar
Vipin Swarup
1. MITRE Corporation, McLean, U.S.A.
View editor publications

You can also search for this editor in PubMed Google Scholar
Cliff Wang
1. Computing and Information Science Div., US Army Research Office, Research Triangle Park, U.S.A.
View editor publications

You can also search for this editor in PubMed Google Scholar

Covers fundamental challenges facing this research community
Identifies promising solutions paths
Includes case studies based on real world examples
Includes supplementary material: sn.pub/extras

Part of the book series: Advances in Information Security (ADIS, volume 46)

40k Accesses
3 Altmetric

This is a preview of subscription content, log in via an institution to check access.

Access this book

Subscribe and save

Springer+ Basic

£29.99 /Month

Get 10 units per month
Download Article/Chapter or eBook
1 Unit = 1 Article or 1 Chapter
Cancel anytime

Buy Now

eBook GBP 71.50

Price includes VAT (United Kingdom)

Softcover Book GBP 89.99

Price includes VAT (United Kingdom)

Hardcover Book GBP 89.99

Price includes VAT (United Kingdom)

Tax calculation will be finalised at checkout

Other ways to access

Licence this eBook for your library

Institutional subscriptions

About this book

Motivation for the Book This book seeks to establish the state of the art in the cyber situational awareness area and to set the course for future research. A multidisciplinary group of leading researchers from cyber security, cognitive science, and decision science areas elab orate on the fundamental challenges facing the research community and identify promising solution paths. Today, when a security incident occurs, the top three questions security admin istrators would ask are in essence: What has happened? Why did it happen? What should I do? Answers to the ?rst two questions form the core of Cyber Situational Awareness. Whether the last question can be satisfactorily answered is greatly de pendent upon the cyber situational awareness capability of an enterprise. A variety of computer and network security research topics (especially some sys tems security topics) belong to or touch the scope of Cyber Situational Awareness. However, the Cyber Situational Awareness capability of an enterprise is still very limited for several reasons: • Inaccurate and incomplete vulnerability analysis, intrusion detection, and foren sics. • Lack of capability to monitor certain microscopic system/attack behavior. • Limited capability to transform/fuse/distill information into cyber intelligence. • Limited capability to handle uncertainty. • Existing system designs are not very “friendly” to Cyber Situational Awareness.

Keywords

Table of contents (11 chapters)

Front Matter

Pages i-xii

Download chapter PDF
Overview of Cyber Situational Awareness
1. Front Matter
  
  Pages 1-1
  
  Download chapter PDF
Part I Overview of Cyber Situational Awareness
1. Cyber SA: Situational Awareness for Cyber Defense
  
  Paul Barford, Marc Dacier, Thomas G. Dietterich, Matt Fredrikson, Jon Giffin, Sushil Jajodia et al.
  
  Pages 3-13
2. Overview of Cyber Situation Awareness
  
  George P. Tadda, John S. Salerno
  
  Pages 15-35
The Reasoning and Decision Making Aspects
1. Front Matter
  
  Pages 38-38
  
  Download chapter PDF
Part II The Reasoning and Decision Making Aspects
1. RPD-based Hypothesis Reasoning for Cyber Situation Awareness
  
  John Yen, Michael McNeese, Tracy Mullen, David Hall, Xiaocong Fan, Peng Liu
  
  Pages 39-49
2. Uncertainty and Risk Management in Cyber Situational Awareness
  
  Jason Li, Xinming Ou, Raj Rajagopalan
  
  Pages 51-68
Macroscopic Cyber Situational Awareness
1. Front Matter
  
  Pages 70-70
  
  Download chapter PDF
Part III Macroscopic Cyber Situational Awareness
1. Employing Honeynets For Network Situational Awareness
  
  Paul Barford, Yan Chen, Anup Goyal, Zhichun Li, Vern Paxson, Vinod Yegneswaran
  
  Pages 71-102
2. Assessing Cybercrime Through the Eyes of the WOMBAT
  
  Marc Dacier, Corrado Leita, Olivier Thonnard, Hau Van Pham, Engin Kirda
  
  Pages 103-136
Enterprise Cyber Situational Awareness
1. Front Matter
  
  Pages 138-138
  
  Download chapter PDF
Part IV Enterprise Cyber Situational Awareness
1. Topological Vulnerability Analysis
  
  Sushil Jajodia, Steven Noel
  
  Pages 139-154
2. Cross-Layer Damage Assessment for Cyber Situational Awareness
  
  Peng Liu, Xiaoqi Jia, Shengzhi Zhang, Xi Xiong, Yoon-Chan Jhi, Kun Bai et al.
  
  Pages 155-176
Microscopic Cyber Situational Awareness
1. Front Matter
  
  Pages 178-178
  
  Download chapter PDF
Part V Microscopic Cyber Situational Awareness
1. A Declarative Framework for Intrusion Analysis
  
  Matt Fredrikson, Mihai Christodorescu, Jonathon Giffin, Somesh Jhas
  
  Pages 179-200
2. Automated Software Vulnerability Analysis
  
  Emre C. Sezer, Chongkyung Kil, Peng Ning
  
  Pages 201-223
The Machine Learning Aspect
1. Front Matter
  
  Pages 226-226
  
  Download chapter PDF
Part VI The Machine Learning Aspect
1. Machine Learning Methods for High Level Cyber Situation Awareness
  
  Thomas G. Dietterich, Xinlong Bao, Victoria Keiser, Jianqiang Shen
  
  Pages 227-247
Back Matter

Pages 1-1

Download chapter PDF

Editors and Affiliations

Ctr. Secure Information Systems, George Mason University, Fairfax, U.S.A.

Sushil Jajodia
College of Information Sciences &, Pennsylvania State University, University Park, U.S.A.

Peng Liu
MITRE Corporation, McLean, U.S.A.

Vipin Swarup
Computing and Information Science Div., US Army Research Office, Research Triangle Park, U.S.A.

Cliff Wang

Bibliographic Information

Book Title: Cyber Situational Awareness
Book Subtitle: Issues and Research
Editors: Sushil Jajodia, Peng Liu, Vipin Swarup, Cliff Wang
Series Title: Advances in Information Security
DOI: https://doi.org/10.1007/978-1-4419-0140-8
Publisher: Springer New York, NY
eBook Packages: Computer Science, Computer Science (R0)
Hardcover ISBN: 978-1-4419-0139-2Published: 28 October 2009
Softcover ISBN: 978-1-4614-2475-8Published: 25 February 2012
eBook ISBN: 978-1-4419-0140-8Published: 03 October 2009
Series ISSN: 1568-2633
Series E-ISSN: 2512-2193
Edition Number: 1
Number of Pages: XII, 252
Number of Illustrations: 20 b/w illustrations
Topics: Systems and Data Security, Computer Communication Networks, IT in Business, Cryptology, Information Systems Applications (incl. Internet), Data Structures and Information Theory

Publish with us

Policies and ethics

Cyber Situational Awareness

Overview

Access this book

Subscribe and save

Buy Now

Other ways to access

About this book

Similar content being viewed by others

Keywords

Table of contents (11 chapters)

Front Matter

Overview of Cyber Situational Awareness

Front Matter

Part I Overview of Cyber Situational Awareness

The Reasoning and Decision Making Aspects

Front Matter

Part II The Reasoning and Decision Making Aspects

Macroscopic Cyber Situational Awareness

Front Matter

Part III Macroscopic Cyber Situational Awareness

Enterprise Cyber Situational Awareness

Front Matter

Part IV Enterprise Cyber Situational Awareness

Microscopic Cyber Situational Awareness

Front Matter

Part V Microscopic Cyber Situational Awareness

The Machine Learning Aspect

Front Matter

Part VI The Machine Learning Aspect

Back Matter

Editors and Affiliations

Ctr. Secure Information Systems, George Mason University, Fairfax, U.S.A.

College of Information Sciences &, Pennsylvania State University, University Park, U.S.A.

MITRE Corporation, McLean, U.S.A.

Computing and Information Science Div., US Army Research Office, Research Triangle Park, U.S.A.

Bibliographic Information

Publish with us

Search

Navigation