On Aggregation and Prediction of Cybersecurity Incident Reports

Miguel V. Carriegos; Angel L. Munoz Castaneda; M. T. Trobajo; Diego Asterio De Zaballa

doi:10.1109/ACCESS.2021.3097834

IEEE Access (Jan 2021)

On Aggregation and Prediction of Cybersecurity Incident Reports

Miguel V. Carriegos,
Angel L. Munoz Castaneda,
M. T. Trobajo,
Diego Asterio De Zaballa

Affiliations

Miguel V. Carriegos: ORCiD; Departamento de Matemáticas, Universidad de León, León, Spain
Angel L. Munoz Castaneda: ORCiD; Departamento de Matemáticas, Universidad de León, León, Spain
M. T. Trobajo: Departamento de Matemáticas, Universidad de León, León, Spain
Diego Asterio De Zaballa: ORCiD; Instituto de Ciencias Aplicadas a Ciberseguridad, Universidad de León, León, Spain

DOI: https://doi.org/10.1109/ACCESS.2021.3097834
Journal volume & issue: Vol. 9
pp. 102636 – 102648

Abstract

Read online

The study of cybersecurity incidents is an active research field. The purpose of this work is to determine accurate measures of cybersecurity incidents. An effective method to aggregate cybersecurity incident reports is defined to set these measures. As a result we are able to make predictions and, therefore, to deploy security policies. Forecasting time-series of those cybersecurity aggregates is performed based on Koopman’s method and Dynamic Mode Decomposition algorithm. Both techniques have shown to be accurate for a wide variety of dynamical systems ranging from fluid dynamics to social sciences. We have performed some experiments on public databases. We show that the measure of the risk trend can be effectively forecasted.

Published in IEEE Access

ISSN: 2169-3536 (Online)
Publisher: IEEE
Country of publisher: United States
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering
Website: https://ieeexplore.ieee.org/xpl/RecentIssue.jsp?punumber=6287639

About the journal

Abstract

Keywords