Sélection de la langue

Gouvernement du Canada / Government of Canada

Recherche

Analyzing the usefulness of the DARPA OpTC dataset in cyber threat detection research

Par Conseil national de recherches du Canada

Téléchargement
  1. (PDF, 501 Kio)
DOITrouver le DOI : https://doi.org/10.1145/3450569.3463573
AuteurRechercher : 1; Rechercher : 1; Rechercher :
Affiliation
  1. Conseil national de recherches du Canada. Technologies numériques
FormatTexte, Article
ConférenceSACMAT '21: The 26th ACM Symposium on Access Control Models and Technologies, June 16-18, 2021, Virtual Event Spain
Résumé
Maintaining security and privacy in real-world enterprise networks is becoming more and more challenging. Cyber actors are increasingly employing previously unreported and state-of-the-art techniques to break into corporate networks. To develop novel and effective methods to thwart these sophisticated cyber attacks, we need datasets that reflect real-world enterprise scenarios to a high degree of accuracy. However, precious few such datasets are publicly available. Researchers still predominantly use the decade-old KDD datasets, however, studies showed that these datasets do not adequately reflect modern attacks like Advanced Persistent Threats (APT). In this work, we analyze the usefulness of the recently introduced DARPA Operationally Transparent Cyber (OpTC) dataset in this regard. We describe the content of the dataset in detail and present a qualitative analysis. We show that the OpTC dataset is an excellent candidate for advanced cyber threat detection research while also highlighting its limitations. Additionally, we propose several research directions where this dataset can be useful.
Date de publication
Maison d’éditionACM
Dans
Langueanglais
Publications évaluées par des pairsOui
Exporter la noticeExporter en format RIS
Signaler une correctionSignaler une correction (s'ouvre dans un nouvel onglet)
Identificateur de l’enregistrement258e6cfb-8da9-4251-aaad-002142ccdb4a
Enregistrement créé2021-07-27
Enregistrement modifié2021-09-22
Date de modification :