Modelling Disruptive APTs targeting Critical Infrastructure using Military Theory.

Yoram J. Meijaard, Peter-Paul Meiler, Luca Allodi

Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

Abstract

Disruptive Advanced Persistent Threats (D-APTs) are a new sophisticated class of cyberattacks targeting critical infrastructures. Whereas regular APTs are well-described in the literature, no existing APT kill chain model incorporates the disruptive actions of D-APTs and can be used to represent DAPTs in data. To this aim, the contribution of this paper is twofold: first, we review the evolution of existing APT kill chain models. Second, we present a novel D-APT model based on existing ATP models and military theory. The model describes the strategic objective setting, the operational kill chain and the tactics of the attacker, as well as the defender's critical infrastructure, processes and societal function.

Original languageEnglish
Title of host publicationProceedings - 2021 IEEE European Symposium on Security and Privacy Workshops, Euro S and PW 2021
Pages178-190
Number of pages13
ISBN (Electronic)9781665410120
DOIs
Publication statusPublished - Sep 2021

Bibliographical note

DBLP License: DBLP's bibliographic metadata records provided through http://dblp.org/ are distributed under a Creative Commons CC0 1.0 Universal Public Domain Dedication. Although the bibliographic metadata records are provided consistent with CC0 1.0 Dedication, the content described by the metadata records is not. Content may be subject to copyright, rights of privacy, rights of publicity and other restrictions.

Keywords

  • Advanced Persistent Threat
  • Critical infrastructure
  • Cyber Situational Awareness
  • Data Model

Fingerprint

Dive into the research topics of 'Modelling Disruptive APTs targeting Critical Infrastructure using Military Theory.'. Together they form a unique fingerprint.

Cite this