Science of Cyber Security as a System of Models and Problems
Alexander Kott
TL;DR
This paper aims to formalize the science of cyber security by defining its core artifacts, phenomena, and relationships, focusing on malicious software and its role in cyber attacks, and proposing a systematic classification of related problems.
Contribution
It introduces a formal framework for cyber security science centered on malicious software, defining key objects and systematically classifying primary problem classes.
Findings
Defined the domain of cyber security as phenomena involving malicious software.
Proposed a formalism for key objects in cyber science.
Derived a classification of primary problem classes.
Abstract
Terms like "Science of Cyber" or "Cyber Science" have been appearing in literature with growing frequency, and influential organizations initiated research initiatives toward developing such a science even though it is not clearly defined. We propose to define the domain of the science of cyber security by noting the most salient artifact within cyber security -- malicious software -- and defining the domain as comprised of phenomena that involve malicious software (as well as legitimate software and protocols used maliciously) used to compel a computing device or a network of computing devices to perform actions desired by the perpetrator of malicious software (the attacker) and generally contrary to the intent (the policy) of the legitimate owner or operator (the defender) of the computing device(s). We further define the science of cyber security as the study of relations --…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsNetwork Security and Intrusion Detection · Information and Cyber Security · Advanced Malware Detection Techniques