A. A. Grusho, M. I. Zabezhailo, A. A. Zatsarinny, E. E. Timonina, “On some possibilities of resource management for organizing active counteraction to computer attacks”, Inform. Primen., 2018, Volume 12, Issue 1,Pages <nobr>62

This article is cited in 4 papers

On some possibilities of resource management for organizing active counteraction to computer attacks

A. A. Grusho, M. I. Zabezhailo, A. A. Zatsarinny, E. E. Timonina

Institute of Informatics Problems, Federal Research Center “Computer Sciences and Control” of the Russian Academy of Sciences, 44-2 Vavilov Str., Moscow 119333, Russian Federation

Abstract: Rational counteraction to computer attacks, described as event sequences, is discussed. The approach is based on the mathematical technique of learning by precedents, formalizing similarity as a binary algebraic operation. Similarities of event sequences are analyzed. The learned classes of similarity (tolerance classes) are used to recognize computer attacks on initial steps of their life cycle. A problem-oriented resource management technology aimed at developing rational counteraction to attacks of the discussed type is presented.

Keywords: information security; data analysis; similarity as binary algebraic operation; similarity of sequences; resource management.

Received: 03.01.2018

DOI: 10.14357/19922264180108