2011

DHSS 2011 Proceeding

Exploratory Sequential Data Analysis of a Cyber Defence Exercise

Authors:   Dennis Andersson, Magdalena Granåsen, Thomas Sundmark, Hannes Holm, Jonas Hallberg

Abstract

Baltic Cyber Shield 2010 (BCS), a multi-national civil- military cyber defence exercise (CDX), aimed to improve the capability of performing a CDX and investigate how IT attacks and defence of critical infrastructure can be studied. The exercise resulted in a massive dataset to be analyzed and many lessons learned in planning and executing a large-scale multi- national CDX. A reconstruction & exploration (R&E) approach was used to capture incidents such as attacks and defensive counter-measures during the exercise. This paper introduces the usage of R&E combined with exploratory sequential data analysis (ESDA) and discusses benefits and limitations of using these methods for analyzing multi-national cyber defence exercises. Using ESDA we were able to generate statistical data on attacks from BCS, such as number of reported attacks by the attackers and the defenders on different type of services. Initial results from these explorations will be analyzed and discussed.

Download Proceeding

 Back to Proceedings List

I3M  Scientific Sponsors

unige
liophant
Inderscience
imcs
unical
msc-les
mscoe
rtu_mik
tes_uab_es
lsis
mimos
mitim_perugia
lamce
mitim
msnet
lss
esisa
ull
cifasis
insticc
honm
fceia
cea_ifac
dbss

I3M  Industrial Sponsors

Mast
Cal-Tek SRL
Liotech
Sim4future

I3M  Media Sponsors

Inderscience
IJSPM
Sage
IJSCOM
Igi-global
Igi-global
Halldale Group
MST
Med Sim
Sage
Euromerci
Degruyter
Degruyter