Data leakage triage : quantitative measure of effectiveness of containment plan

Increasingly organisations' deployed security defences are challenged by persistent malware attacks. There are many risks induced by successful malicious assaults against an organisation. One of the significant risks is data leakage. This risk has significant impacts to organisations and nation...

全面介紹

Saved in:
書目詳細資料
主要作者: Pan, Jonathan
其他作者: Wee Kim Wee School of Communication and Information
格式: Article
語言:English
出版: 2020
主題:
在線閱讀:https://hdl.handle.net/10356/144714
標簽: 添加標簽
沒有標簽, 成為第一個標記此記錄!
實物特徵
總結:Increasingly organisations' deployed security defences are challenged by persistent malware attacks. There are many risks induced by successful malicious assaults against an organisation. One of the significant risks is data leakage. This risk has significant impacts to organisations and nations. To mitigate the likely occurrence of such risk, adequate preparation and response are needed. Epidemiological modelling of such malware outbreaks can aid in the development of mitigation plans. Most of these models used the number of infected hosts or time duration to analyse malware behaviours or the effectiveness of response plan. This paper proposes an extension of the agent-based malware containment model (AMCM) to provide a quantitative measurement of the amount of data leakage from malware infected hosts in order to evaluate the effectiveness of the response containment plan. It is believed that this form of measurement will enhance the preparation of incident response plans to deal with malware outbreak.