Advanced persistent threats (APTs) are not only a very prominent buzzword, but often come with a costly impact. A popular approach how to deal with APTs is the kill chain concept. We propose an extension to the kill chain, where the attacker is allowed to continue his attack even after being discovered by defenders. Meanwhile, observing defenders collect valuable intelligence which is to be used to counter future attacks. Benefits and negatives of postponed remediation are presented and related issues are discussed.
CITATION STYLE
Bukac, V., Lorenc, V., & Matyáš, V. (2014). Red queen-s race: apt win-win game. Lecture Notes in Computer Science (Including Subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 8809, 55–61. https://doi.org/10.1007/978-3-319-12400-1_7
Mendeley helps you to discover research relevant for your work.