Skip to main content
Book Chapter

Cyber-deception and attribution in capture-the-flag exercises

Springer International Publishing, (2016), 149-165
DOI: 10.1007/978-3-319-32699-3_7
8Citations
Citations of this article
54Readers
Mendeley users who have this article in their library.
Get full text

Abstract

Attributing the culprit of a cyber-attack is widely considered one of the major technical and policy challenges of cyber-security. The lack of ground truth for an individual responsible for a given attack has limited previous studies. Here, we overcome this limitation by leveraging DEFCON capture-the-flag (CTF) exercise data where the actual ground-truth is know. In this work, we use various classification techniques to identify the culprit in a cyberattack and find that deceptive activities account for the majority of misclassified samples. We also explore several heuristics to alleviate some of the misclassification caused by deception.

Cite

CITATION STYLE

APA

Nunes, E., Kulkarni, N., Shakarian, P., Ruef, A., & Little, J. (2016). Cyber-deception and attribution in capture-the-flag exercises. In Cyber Deception: Building the Scientific Foundation (pp. 149–165). Springer International Publishing. https://doi.org/10.1007/978-3-319-32699-3_7

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free