Simulating adversarial interactions between intruders and system administrators using OODA-RR

Autor:	Jan H. P. Eloff, Hein S. Venter, T. J. Grant
Rok vydání:	2007
Předmět:	System administrator Adversarial system Computer science Digital forensics OODA loop Information system Security management Intrusion detection system Adversary Computer security computer.software_genre computer
Zdroj:	SAICSIT
DOI:	10.1145/1292491.1292497
Popis:	Intrusion in information systems is a major problem in security management. Present-day intrusion detection systems detect attacks too late to counter them in real-time. Several authors in the digital forensics literature have proposed using Boyd's Observe-Orient-Decide-Act (OODA) model for intrusion protection, but none have taken these proposals further. This paper reports on hand-simulation of the adversarial interaction between an intruder and a system administrator intended to demonstrate the feasibility of implementing a rationally reconstructed OODA (OODA-RR) model. An OODA-RR test-bed is currently being implemented.
Databáze:	OpenAIRE
Externí odkaz:	https://explore.openaire.eu/search/publication?articleId=doi_________::bf72f7aaf214585aa2485a81a59a82b7 https://doi.org/10.1145/1292491.1292497 Zobrazit plný text záznamu