BUKAČ, Vít, Václav LORENC and Václav MATYÁŠ. Red Queen's Race: APT win-win game. In Bruce CHRISTIANSON, James MALCOLM, Václav MATYÁŠ, Petr ŠVENDA, Frank STAJANO, Jon ANDERSON. Security Protocols XXII - 22nd International Workshop, Revised Selected Papers. Heidelberg: Springer, 2014, p. 55-61. ISBN 978-3-319-12399-8. Available from: https://dx.doi.org/10.1007/978-3-319-12400-1_7.
Other formats:   BibTeX LaTeX RIS
Basic information
Original name Red Queen's Race: APT win-win game
Authors BUKAČ, Vít (203 Czech Republic, guarantor, belonging to the institution), Václav LORENC (203 Czech Republic, belonging to the institution) and Václav MATYÁŠ (203 Czech Republic, belonging to the institution).
Edition Heidelberg, Security Protocols XXII - 22nd International Workshop, Revised Selected Papers, p. 55-61, 7 pp. 2014.
Publisher Springer
Other information
Original language English
Type of outcome Proceedings paper
Field of Study 10201 Computer sciences, information science, bioinformatics
Country of publisher Germany
Confidentiality degree is not subject to a state or trade secret
Publication form printed version "print"
Impact factor Impact factor: 0.402 in 2005
RIV identification code RIV/00216224:14330/14:00074020
Organization unit Faculty of Informatics
ISBN 978-3-319-12399-8
ISSN 0302-9743
Doi http://dx.doi.org/10.1007/978-3-319-12400-1_7
UT WoS 000354862400007
Keywords in English advanced persistant threats;APT;kill chain;honeypot
Tags International impact, Reviewed
Changed by Changed by: RNDr. Pavel Šmerk, Ph.D., učo 3880. Changed: 27/4/2015 06:06.
Abstract
Advanced persistent threats (APTs) are not only a very prominent buzzword, but often come with a costly impact. A popular approach how to deal with APTs is the kill chain concept. We propose an extension to the kill chain, where the attacker is allowed to continue his attack even after being discovered by defenders. Meanwhile, observing defenders collect valuable intelligence which is to be used to counter future attacks. Benefits and negatives of postponed remediation are presented and related issues are discussed.
Links
GAP202/11/0422, research and development projectName: Bezpečnostní protokoly podporující soukromí a detekce průniku v bezdrátových senzorových sítích (Acronym: P202/11/0422)
Investor: Czech Science Foundation
PrintDisplayed: 14/10/2024 13:38