Skip to main content
Journal ArticleOPEN ACCESS

A Causal Graph-Based Approach for APT Predictive Analytics

Electronics (Switzerland) (2023) 12(8)
DOI: 10.3390/electronics12081849
4Citations
Citations of this article
13Readers
Mendeley users who have this article in their library.

Abstract

In recent years, complex multi-stage cyberattacks have become more common, for which audit log data are a good source of information for online monitoring. However, predicting cyber threat events based on audit logs remains an open research problem. This paper explores advanced persistent threat (APT) audit log information and uses a combination of causal graphs and deep learning techniques to perform predictive analysis of APT. The study focuses on two different methods of constructing malicious activity scenarios, including those based on malicious entity evolving graphs and malicious entity neighborhood graphs. Deep learning networks are then utilized to learn from past malicious activity scenarios and predict specific malicious attack events. To validate the effectiveness of this approach, audit log data published by DARPA’s Transparent Computing Program and restored by ATLAS are used to demonstrate the confidence of the prediction results and recommend the most effective malicious event prediction by Top-N.

Author supplied keywords

References Powered by Scopus

Recent trends in deep learning based natural language processing [Review Article]

IEEE Computational Intelligence Magazine
2604Citations
N/AReaders
Get full text

DeepLog: Anomaly detection and diagnosis from system logs through deep learning

Proceedings of the ACM Conference on Computer and Communications Security
1243Citations
N/AReaders
Get full text

A graph-based system for network-vulnerability analysis

Proceedings New Security Paradigms Workshop
685Citations
N/AReaders
Get full text
View more at Scopus

Cited by Powered by Scopus

Financial Anti-Fraud Based on Dual-Channel Graph Attention Network

Journal of Theoretical and Applied Electronic Commerce Research
12Citations
N/AReaders
Get full text

LinTracer: An efficient tracking system for cyberattack chains fusing entity and event semantics

Computers and Security
0Citations
N/AReaders
Get full text

GRAIN: Graph neural network and reinforcement learning aided causality discovery for multi-step attack scenario reconstruction

Computers and Security
0Citations
N/AReaders
Get full text
View more at Scopus

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Cite

CITATION STYLE

APA

Liu, H., & Jiang, R. (2023). A Causal Graph-Based Approach for APT Predictive Analytics. Electronics (Switzerland), 12(8). https://doi.org/10.3390/electronics12081849

Readers over time

‘23‘24‘2502468

Readers' Seniority

Tooltip

PhD / Post grad / Masters / Doc 2

67%

Researcher 1

33%

Readers' Discipline

Tooltip

Computer Science 4

100%

Article Metrics

Tooltip
Mentions
News Mentions: 1

Save time finding and organizing research with Mendeley

Sign up for free
0