Recommending Similar Devices in Close Proximity for Network Security Management

Investor logo

Warning

This publication doesn't include Faculty of Economics and Administration. It includes Institute of Computer Science. Official publication website can be found on muni.cz.
Authors

BOUČEK Vladimír HUSÁK Martin

Year of publication 2023
Type Article in Proceedings
Conference 2023 19th International Conference on Wireless and Mobile Computing, Networking and Communications (WiMob)
MU Faculty or unit

Institute of Computer Science

Citation
Web https://ieeexplore.ieee.org/abstract/document/10187729
Doi http://dx.doi.org/10.1109/WiMob58348.2023.10187729
Keywords Recommendation;Network security;Vulnerability;Incident response
Attached files
Description This paper presents a prototype of a tool for network security management that recommends similar devices in close proximity to a given machine. The task of recommending similar devices helps in analyzing the impact of cyber attacks, providing early warning and mitigating a spreading infection, or investigating an attack. Our tool uses modern graph-based technologies to store and query the data and existing data models that interconnect heterogeneous information about computer networks. By traversing the graph of network entities and calculating similarity scores, the tool suggests which devices are most likely to be exploited along with or after the exploitation of a device in question. The advantage of our tool is that it considers multiple attack vectors, including social engineering.
Related projects:

You are running an old browser version. We recommend updating your browser to its latest version.