all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Kairos: : Practical Intrusion Detection and Investigation using Whole-system Provenance. (arXiv:2308.05034v1 [cs.CR])

Add to bookmarks
Aug. 10, 2023, 1:11 a.m. | Zijun Cheng, Qiujian Lv, Jinyuan Liang, Yan Wang, Degang Sun, Thomas Pasquier, Xueyuan Han

cs.CR updates on arXiv.org arxiv.org

Provenance graphs are structured audit logs that describe the history of a
system's execution. Recent studies have explored a variety of techniques to
analyze provenance graphs for automated host intrusion detection, focusing
particularly on advanced persistent threats. Sifting through their design
documents, we identify four common dimensions that drive the development of
provenance-based intrusion detection systems (PIDSes): scope (can PIDSes detect
modern attacks that infiltrate across application boundaries?), attack
agnosticity (can PIDSes detect novel attacks without a priori knowledge of …

advanced advanced persistent threats audit automated design detection documents graphs history host identify intrusion intrusion detection investigation kairos logs persistent persistent threats provenance studies system techniques threats

Visit resource

More from arxiv.org / cs.CR updates on arXiv.org

Quantum $X$-Secure $B$-Byzantine $T$-Colluding Private Information Retrieval 16 hours ago | arxiv.org
arxiv capabilities context cs.cr +13
Approximation of Pufferfish Privacy for Gaussian Priors 16 hours ago | arxiv.org
adversary arxiv cs.cr cs.it +9
Polynomial XL: A Variant of the XL Algorithm Using Macaulay Matrices over Polynomial Rings 16 hours ago | arxiv.org
algorithm arxiv computer computer science +11
Families of sequences with good family complexity and cross-correlation measure 16 hours ago | arxiv.org
alphabet arxiv binary complexity +12
Terrapin Attack: Breaking SSH Channel Integrity By Sequence Number Manipulation 16 hours ago | arxiv.org
access arxiv attack breaking +26
Seeing Is Not Always Believing: Invisible Collision Attack and Defence on Pre-Trained Models 16 hours ago | arxiv.org
arxiv attack bert big +14
Proceedings of the 2nd International Workshop on Adaptive Cyber Defense 16 hours ago | arxiv.org
applications artificial artificial intelligence arxiv +16
Sharpness-Aware Data Poisoning Attack 16 hours ago | arxiv.org
aim arxiv attack attacks +18
Fant\^omas: Understanding Face Anonymization Reversibility 16 hours ago | arxiv.org
anonymization arxiv can claims +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Junior Cybersecurity Analyst - 3346195

@ TCG | 725 17th St NW, Washington, DC, USA
View on infosec-jobs.com

Cyber Intelligence, Senior Advisor

@ Peraton | Chantilly, VA, United States
View on infosec-jobs.com

Consultant Cybersécurité H/F - Innovative Tech

@ Devoteam | Marseille, France
View on infosec-jobs.com

Manager, Internal Audit (GIA Cyber)

@ Standard Bank Group | Johannesburg, South Africa
View on infosec-jobs.com

Staff DevSecOps Engineer

@ Raft | San Antonio, TX (Local Remote)
View on infosec-jobs.com

Domain Leader Cybersecurity

@ Alstom | Bengaluru, KA, IN
View on infosec-jobs.com
View more jobs