Analyzing Cyber-Attack Intention for Digital Forensics Using Case-Based Reasoning

TL;DR

This paper proposes a case-based reasoning model to analyze cyber-attack intentions, aiming to improve accuracy in digital forensics by linking attack steps with intent analysis.

Contribution

It introduces a novel case-based reasoning approach for cyber-attack intent analysis, enhancing accuracy over existing methods.

Findings

The model effectively analyzes attack intentions in case studies.

Results show improved accuracy compared to traditional methods.

The approach facilitates better attribution of cyber-attacks.

Abstract

Cyber-attacks are increasing and varying dramatically day by day. It has become challenging to control cyber-attacks and to identify the perpetrators and their intentions. In general, the analysis of the intentions of cyber-attacks is one of the main challenges in digital forensics. In many cases of cyber-attacks, the analysis of the intent of the attacks determines the strategy and tools used in the attack, thus facilitating the process of identifying the perpetrator of the attack with greater accuracy. In this paper a model will be proposed to analyze the intentions of cyber-attacks. In this proposal, a set of steps will be conceived by linking them with a case-based reasoning methodology. This model will be examined by analyzing the intent of attacks for some cases and comparing the results with other methods of analyzing the intent of attacks. Hopefully the results will determine the intent of cyber-attacks more accurately.