Application of the JDL data fusion process model for cyber security

January 1, 1900

It was proposed1  that data fusion techniques should be used to enhance situational awareness into network security events. However, since then, there have been few successes in adopting multi-sensor data fusion technologies for cyber security. This may be due to limited understanding of the entire data fusion process and it can and should be applied in cyber security. Researchers appear to be focused on using network-based intrusion detection systems and fusing their outputs to gain a more full understanding of undesired activities on the network. While there has been some success in this effort, overall awareness of the current status of the network and projection of future actions of adversaries has still not been achieved. The problem is much more complex and requires the fusion of data from widely varied sources, using multiple algorithms to achieve fusion and awareness at different levels and contexts. Most importantly, it must be understood that these tools are situational awareness aids. Their objective is to assist the human cyber security analyst and therefore must take into account human cognitive capabilities. The goals of this research, therefore, are to describe the JDL Data Fusion Process Model in cyber security terms (Section 2), categorize and describe the efforts of previous research in this domain (Section 3) and suggest areas for future work (Section 4).

Spotlight

CDW

In every organization, there are people who get technology. And people who don't. This is where CDW comes in. CDW is a leading provider of technology solutions for business, government, education and healthcare in the US and Canada. We're a 6,000-plus-member team.

OTHER WHITEPAPERS
news image

INDUSTRIAL CYBER RISK MANAGEMENT

whitePaper | May 21, 2021

Critical infrastructure owners and operators have managed industrial risk for hundreds of years. This risk is usually measured in impact to health, safety, and reliability. As these industrial systems become increasingly digitized, so does the risk. What were once seen as isolated, manual processes have become reliant on communication networks and digital devices.

Read More
news image

Google Cloud security foundations guide

whitePaper | April 19, 2021

This guide presents an opinionated view of Google Cloud security best practices, organized to allow users to adopt or adapt them and then automatically deploy them for their estates on Google Cloud. This document can be useful to you if you are a CISO, security practitioner, risk or compliance officer.

Read More
news image

Cybersecurity: Experience and best practices during COVID-19 pandemic

whitePaper | July 6, 2020

With this white paper focused on the emerging cyber threat that we world is facing during the COVID-19 crisis, NETIA wish to share his experience, his initiatives and his knowledge on those topics.

Read More
news image

Avoiding the Security Pitfalls of Digital Transformation

whitePaper | April 1, 2020

Avoiding the Security Pitfalls of Digital Transformation is a webinar that will explore how organizations can cut through the noise and make a success of cloud transformation, leveraging the benefits of cloud technologies including efficiency, agility and scalability while avoiding the pitfalls.

Read More
news image

Understanding Ransomware and Strategies to Defeat it

whitePaper | March 5, 2020

Held Hostage in Hollywood: In February 2016 the Hollywood Presbyterian Medical Center, in Los Angeles, paid a ransom of about US$17,000 to hackers who infiltrated and disabled its computer network with ransomware. The hospital paid the ransom of 40 Bitcoins (currently worth about $16,664) after a “network infiltration” began on February 5, when employees reported being unable to access the hospital’s network and electronic medical records system. “The malware locked access to certain computer systems and prevented us from sharing communications electronically,” said hospital CEO Allen Stefanek.

Read More
news image

Network Traffic Analysis (NTA): A Cybersecurity ‘Quick Win’

whitePaper | February 27, 2020

According to research from ESG and the Information Systems Security Association (ISSA), 91% of cybersecurity professionals believe that most organizations are either extremely or somewhat vulnerable to a significant cyber-attack or data breach.1 This level of cyber-risk demands immediate attention and action from CISOs, CIOs, and business executives. As a result, 62% of organizations plan to increase cybersecurity spending in 2020.2 Here’s the problem: Increasing security budgets alone isn’t enough. CISOs need quick and easy wins that can greatly bolster security efficacy and streamline operations without demanding massive projects and vast resources. There is a lot of work ahead. This white paper concludes.

Read More

Spotlight

CDW

In every organization, there are people who get technology. And people who don't. This is where CDW comes in. CDW is a leading provider of technology solutions for business, government, education and healthcare in the US and Canada. We're a 6,000-plus-member team.

Events