Computer network attacks differ in the motivation of the entity behind the attack, the execution and the end result. The diversity of attacks has the consequence that no standard classification exists. The benefit of automated classification of attacks, means that an attack could be mitigated accordingly. The authors extend a previous, initial taxonomy of computer network attacks which forms the basis of a proposed network attack ontology in this paper. The objective of this ontology is to automate the classification of a network attack during its early stages. Most published taxonomies present an attack from either the attacker's or defender's point of view. The authors’ taxonomy presents both these points of view. The framework for an ontology was developed using a core class, the “Attack Scenario”, which can be used to characterize and classify computer network attacks.
Reference:
Van Heerden, R.P, Irwin, B, Burke, I.D and Leenen, L. 2012. A computer network attack taxonomy and ontology. vol. 2(3), pp 12-25
Van Heerden, R. P., Irwin, B., Burke, I. D., & Leenen, L. (2012). A computer network attack taxonomy and ontology. http://hdl.handle.net/10204/7217
Van Heerden, Renier P, B Irwin, Ivan D Burke, and L Leenen "A computer network attack taxonomy and ontology." (2012) http://hdl.handle.net/10204/7217
Van Heerden RP, Irwin B, Burke ID, Leenen L. A computer network attack taxonomy and ontology. 2012; http://hdl.handle.net/10204/7217.
Copyright: 2012 IGI Global. This is an pre/post print version of the work. The definitive version is published in International Journal of Cyber Warfare and Terrorism, vol. 2(3), pp 12-25