We found a match
Your institution may have access to this item. Find your institution then sign in to continue.
- Title
Cyber security incidents analysis and classification in a case study of Korean enterprises.
- Authors
Mohasseb, Alaa; Aziz, Benjamin; Jung, Jeyong; Lee, Julak
- Abstract
The increasing amount and complexity of Cyber security attacks in recent years have made text analysis and data mining techniques an important factor in discovering features of such attacks and detecting future security threats. In this paper, we report on the results of a recent case study that involved the analysis of a community data set collected from five small and medium companies in Korea. The data set represents Cyber security incidents and response actions. We investigated in the study the kind of problems concerned with the prediction of response actions to future incidents from features of past incidents. Our analysis is based on text mining methods, such as n-gram and bag-of-words, as well as on machine learning algorithms for the classification of incidents and their response actions. Based on the results of the study, we also suggest an experience-sharing model, which we use to demonstrate how companies may share their trained classifiers without the sharing of their individual data sets in a collaborative environment.
- Subjects
SOUTH Korea; INTERNET security; DATA mining; CASE studies; MACHINE learning; CYBER intelligence (Computer security); COMPUTER crime prevention
- Publication
Knowledge & Information Systems, 2020, Vol 62, Issue 7, p2917
- ISSN
0219-1377
- Publication type
Article
- DOI
10.1007/s10115-020-01452-5