HUSÁK, Martin, Giovanni APRUZZESE, Shanchieh YANG and Gordon WERNER. Towards an Efficient Detection of Pivoting Activity. Online. In 2021 IFIP/IEEE International Symposium on Integrated Network Management (IM). Bordeaux: IEEE, 2021, p. 980-985. ISBN 978-3-903176-32-4.
Other formats:   BibTeX LaTeX RIS
Basic information
Original name Towards an Efficient Detection of Pivoting Activity
Authors HUSÁK, Martin, Giovanni APRUZZESE, Shanchieh YANG and Gordon WERNER.
Edition Bordeaux, 2021 IFIP/IEEE International Symposium on Integrated Network Management (IM), p. 980-985, 6 pp. 2021.
Publisher IEEE
Other information
Original language English
Type of outcome Proceedings paper
Country of publisher United States of America
Confidentiality degree is not subject to a state or trade secret
Publication form electronic version available online
WWW URL
Organization Ústav výpočetní techniky – Repository – Repository
ISBN 978-3-903176-32-4
UT WoS 000696801700148
Keywords in English Pivoting;Lateral Movement;Machine Learning;Flow Inspection;Intrusion Detection
Links EF16_019/0000822, research and development project.
Changed by Changed by: RNDr. Daniel Jakubík, učo 139797. Changed: 26/3/2022 03:32.
Abstract
Pivoting is a technique used by cyber attackers to exploit the privileges of compromised hosts in order to reach their final target. Existing research on countering this menace is only effective for pivoting activities spanning within the internal network perimeter. When applying existing methods to include external traffic, the detection algorithm produces overwhelming entries, most of which unrelated to pivoting. We address this problem by identifying the major characteristics that are specific to potentially malicious pivoting. Our analysis combines human expertise with machine learning and is based on the inspection of real network traffic generated by a large organization. The final goal is the reduction of the unacceptable amounts of false positives generated by the state of the art methods. This paper paves the way for future researches aimed at countering the critical menace of illegitimate pivoting activities.
Type Name Uploaded/Created by Uploaded/Created Rights
2021-IM-GraSec-Towards-Efficient-Pivoting-Detection-paper.pdf   File version 19/5/2021

Properties

Name
2021-IM-GraSec-Towards-Efficient-Pivoting-Detection-paper.pdf
Address within IS
https://repozitar.cz/auth/repo/44228/1065062/
Address for the users outside IS
https://repozitar.cz/repo/44228/1065062/
Address within Manager
https://repozitar.cz/auth/repo/44228/1065062/?info
Address within Manager for the users outside IS
https://repozitar.cz/repo/44228/1065062/?info
Uploaded/Created
Wed 19/5/2021 02:00

Rights

Right to read
  • anyone on the Internet
Right to upload
 
Right to administer:
  • a concrete person Mgr. Lucie Vařechová, uco 106253
  • a concrete person RNDr. Daniel Jakubík, uco 139797
  • a concrete person Mgr. Jolana Surýnková, uco 220973
Attributes
 
2021-IM-GraSec-Towards-Efficient-Pivoting-Detection-slides.pdf  19/5/2021

Properties

Name
2021-IM-GraSec-Towards-Efficient-Pivoting-Detection-slides.pdf
Address within IS
https://repozitar.cz/auth/repo/44228/1065063/
Address for the users outside IS
https://repozitar.cz/repo/44228/1065063/
Address within Manager
https://repozitar.cz/auth/repo/44228/1065063/?info
Address within Manager for the users outside IS
https://repozitar.cz/repo/44228/1065063/?info
Uploaded/Created
Wed 19/5/2021 02:01

Rights

Right to read
  • anyone on the Internet
Right to upload
 
Right to administer:
  • a concrete person Mgr. Lucie Vařechová, uco 106253
  • a concrete person RNDr. Daniel Jakubík, uco 139797
  • a concrete person Mgr. Jolana Surýnková, uco 220973
Attributes
 
Print
Add to clipboard Displayed: 26/6/2024 19:41