An Advanced Persistent Threat Exemplar

Abstract

Security researchers do not have sufficient example systems for conducting research on advanced persistent threats, and companies and agencies that experience attacks in the wild are reluctant to release detailed information that can be examined. In this paper, we describe an Advanced Persistent Threat Exemplar that is intended to provide a real-world attack scenario with sufficient complexity for reasoning about defensive system adaptation, while not containing so much information as to be too complex. It draws from actual published attacks and experiences as a security engineer by the authors.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jul 01, 2017
Accession Number
AD1086847

Entities

People

  • David Garlan
  • Matthew Fredrikson
  • Ryan Wagner

Organizations

  • Carnegie Mellon University

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Advanced Persistent Threat
  • Application Protocols
  • Code Injection
  • Command And Control
  • Commerce
  • Computer Science
  • Computing System Architectures
  • Contractors
  • Cyberattacks
  • Cybersecurity
  • Databases
  • Governments
  • Information Systems
  • Materials
  • Network Architecture
  • Network Topology
  • Software Development

Fields of Study

  • Computer science

Readers

  • Educational Psychology
  • Missile Defense Systems.
  • Software Engineering.