University of Jyväskylä | JYX Digital Repository

 
View Item 

A Novel Deep Learning Stack for APT Detection

ThumbnailPublisher's PDF
443.9 Kb

Downloads:  
Show download detailsHide download details  
Bodström, T., & Hämäläinen, T. (2019). A Novel Deep Learning Stack for APT Detection. Applied Sciences, 9(6), Article 1055. https://doi.org/10.3390/app9061055
Published in
Applied Sciences
Authors
Bodström, Tero |
Hämäläinen, Timo
Date
2019
Discipline
TietotekniikkaMathematical Information Technology
Copyright
© 2019 by The Authors. Licensee MDPI, Basel, Switzerland.

 
We present a novel Deep Learning (DL) stack for detecting Advanced Persistent threat (APT) attacks. This model is based on a theoretical approach where an APT is observed as a multi-vector multi-stage attack with a continuous strategic campaign. To capture these attacks, the entire network flow and particularly raw data must be used as an input for the detection process. By combining different types of tailored DL-methods, it is possible to capture certain types of anomalies and behaviour. Our method essentially breaks down a bigger problem into smaller tasks, tries to solve these sequentially and finally returns a conclusive result. This concept paper outlines, for example, the problems and possible solutions for the tasks. Additionally, we describe how we will be developing, implementing and testing the method in the near future.
Publisher
MDPI AG
ISSN Search the Publication Forum
2076-3417
Keywords
DOI
https://doi.org/10.3390/app9061055
URI

http://urn.fi/URN:NBN:fi:jyu-201903201916

Publication in research information system

https://converis.jyu.fi/converis/portal/detail/Publication/28975218

Metadata
Show full item record
Collections
License
CC BY 4.0
Except where otherwise noted, this item's license is described as CC BY 4.0
Data Protection Description

Accessibility Statement

Unless otherwise specified, publicly available JYX metadata (excluding abstracts) may be freely reused under the CC0 waiver.