Improving cyber-attack predictions through information foraging

This paper describes how information foraging is useful in the implementation of new algorithms to anticipate cyber attacks. The exploration of publicly available data has been used to predict events in the socio-political domain, but the adversarial and covert behavior of actors in cyber security creates additional challenges. This paper describes a framework for Information Foraging for Algorithm Discovery (IFAD) that addresses standard data-science issues of volume and variety, by balancing human intuition with automation, and thus taking initial steps toward supporting the increasing need for rapid analysis of, and tool development for, big data. Our results demonstrate that cognitive augmentation, and information foraging in particular, is useful in the development of tools to anticipate cyber attacks using publicly available data.

[1]  J. Manyika Big data: The next frontier for innovation, competition, and productivity , 2011 .

[2]  Gary Marchionini,et al.  Exploratory search , 2006, Commun. ACM.

[3]  Peter Fankhauser,et al.  Boilerplate detection using shallow text features , 2010, WSDM '10.

[4]  Vannevar Bush,et al.  As we may think , 1945, INTR.

[5]  Richard Bejtlich,et al.  The Tao of Network Security Monitoring: Beyond Intrusion Detection , 2004 .

[6]  Chang-Tien Lu,et al.  EMBERS at 4 years: Experiences operating an Open Source Indicators Forecasting System , 2016, KDD.

[7]  Michael D. Iannacone,et al.  PACE: Pattern Accurate Computationally Efficient Bootstrapping for Timely Discovery of Cyber-security Concepts , 2013, 2013 12th International Conference on Machine Learning and Applications.

[8]  Michael D. Iannacone,et al.  Automatic Labeling for Entity Extraction in Cyber Security , 2013, ArXiv.

[9]  I. Good THE POPULATION FREQUENCIES OF SPECIES AND THE ESTIMATION OF POPULATION PARAMETERS , 1953 .

[10]  Kenneth M. Ford,et al.  Cognitive Orthoses: Toward Human-Centered AI , 2015, AI Mag..

[11]  Aravind Srinivasan,et al.  'Beating the news' with EMBERS: forecasting civil unrest using open source indicators , 2014, KDD.

[12]  P. Pirolli Information Foraging Theory: Adaptive Interaction with Information , 2007 .

[13]  Shanchieh Jay Yang,et al.  Predicting cyber attacks with bayesian networks using unconventional signals , 2017, CISRC.

[14]  Chang-Tien Lu,et al.  Forecasting Significant Societal Events Using The Embers Streaming Predictive Analytics System , 2014, Big Data.