International Symposium on Parallel and Distributed Processing with Applications (2008)
Dec. 10, 2008 to Dec. 12, 2008
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ISPA.2008.33
Security incident response is a major activity to guarantee the protection of information systems. We develop in this paper a methodology for automatically determining responses to security incidents based on a new category of cognitive maps, referred to as incident response probabilistic cognitive map. The main issue addressed in this paper is the development of a methodology using mathematical tools for reasoning about the constructed cognitive map to identify the attack, to reduce its complexity, and to search for the decision responding to the detected attack. The main features have been highlighted showing the complexity of the incident response team role.
Incident response, attack scenarios, cognitive maps, decision support.
J. Krichene and N. Boudriga, "Incident Response Probabilistic Cognitive Maps," 2008 IEEE International Symposium on Parallel and Distributed Processing with Applications(ISPA), Sydney, NSW, 2008, pp. 689-694.