Forecasting of Information Security Related Incidents: Amount of Spam Messages as a Case Study
スポンサーリンク
概要
- 論文の詳細を見る
With the increasing demand for services provided by communication networks, quality and reliability of such services as well as confidentiality of data transfer are becoming ones of the highest concerns. At the same time, because of growing hacker's activities, quality of provided content and reliability of its continuous delivery strongly depend on integrity of data transmission and availability of communication infrastructure, thus on information security of a given IT landscape. But, the amount of resources allocated to provide information security (like security staff, technical countermeasures and etc.) must be reasonable from the economic point of view. This fact, in turn, leads to the need to employ a forecasting technique in order to make planning of IT budget and short-term planning of potential bottlenecks. In this paper we present an approach to make such a forecasting for a wide class of information security related incidents (ISRI) — unambiguously detectable ISRI. This approach is based on different auto regression models which are widely used in financial time series analysis but can not be directly applied to ISRI time series due to specifics related to information security. We investigate and address this specifics by proposing rules (special conditions) of collection and storage of ISRI time series, adherence to which improves forecasting in this subject field. We present an application of our approach to one type of unambiguously detectable ISRI — amount of spam messages which, if not mitigated properly, could create additional load on communication infrastructure and consume significant amounts of network capacity. Finally we evaluate our approach by simulation and actual measurement.
- 電子情報通信学会の論文
- 2010-06-01
著者
関連論文
- Proposal for New E-cash System Using Message Recovery Signature (特集 情報セキュリティの理論と応用)
- Some Efficient Algorithms for the Final Exponentiation of ηT Pairing
- Forecasting of Information Security Related Incidents: Amount of Spam Messages as a Case Study
- Special Section on Discrete Mathematics and Its Applications
- An Approach to Perform Quantitative Information Security Risk Assessment in IT Landscapes
- Detection of Unexpected Services and Communication Paths in Networked Systems
- Detection of Unexpected Services and Communication Paths in Networked Systems