Cyber threat analysis with structured probabilistic argumentation

Mario A. Leiva, Gerardo I. Simari, Guillermo R. Simari, Paulo Shakarian

Research output: Contribution to journalConference articlepeer-review

Abstract

Capturing the uncertain aspects in cyber threat analyses is an important part of a wide range of efforts, including diagnostics, threat evaluation, and preventing attacks. However, there has been insufficient research and development of modeling approaches that are able to correctly capture and handle such uncertainty. In this work, we present an application example of the DeLP3E framework - a formalism that extends structured argumentation based on logic programming - in the domain of cyber threat analysis; in particular, near real-time analyses such as incident response in enterprise networks. The DeLP3E framework provides a unique combination of dialectical reasoning, rule-based inference, and probabilistic modeling to not only offer suggested responses to given situations, but also to explain to the analyst why the system reaches its conclusions.

Original languageEnglish (US)
Pages (from-to)50-64
Number of pages15
JournalCEUR Workshop Proceedings
Volume2528
StatePublished - 2019
Event3rd Workshop on Advances In Argumentation In Artificial Intelligence, AI^3 2019 - Rende, Italy
Duration: Nov 19 2019Nov 22 2019

Keywords

  • Cyber threat analysis
  • Defeasible reasoning
  • Structured probabilistic argumentation

ASJC Scopus subject areas

  • Computer Science(all)

Fingerprint

Dive into the research topics of 'Cyber threat analysis with structured probabilistic argumentation'. Together they form a unique fingerprint.

Cite this