首页> 美国政府科技报告 >Identifying and Embedding Common Indicators of Compromise in Virtual Machines for Lab-Based Incident Response Education.

【24h】

Identifying and Embedding Common Indicators of Compromise in Virtual Machines for Lab-Based Incident Response Education.

机译：识别和嵌入虚拟机中的妥协常见指标，用于基于实验室的事件响应教育。

获取原文

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

Though typical malware delivery vectors, behaviors, and general "attack craft" can be verbally explained and even illustrated, greater familiarity and confidence is imbued in the cyber defender when such theoretical explanations are followed by guided practical exercises that provide realistic scenarios. To demonstrate this, we created seven scenarios utilizing common attack types combined with prominent artifacts for indicators of compromise and prominent incident investigative tools. These scenarios will help facilitate the educational experience for students as well as instill confidence, resulting in more proficient incident response across the field. Should this type of education become a part of the NPS curriculum, additional research can be conducted to reaffirm its true capacity.

著录项

作者
Van Dusen, M. S.;
展开▼
作者单位

展开▼
年度 2015
页码 1-83
总页数 83
原文格式 PDF
正文语种 eng
中图分类工业技术;
关键词
Education; Artifacts; Attack; Computer viruses; Confidence level; Indicators; Machines; Students; Cyber incident response; Information technology education;

机译：教育;文物;攻击;计算机病毒;信心水平;指标;机器;学生;网络事件响应;信息技术教育;

相似文献

外文文献
中文文献
专利

1. Identifying management factors for digital incident responses on Machine-to-Machine services [J] . Lim Sung Ryel Digital investigation . 2015,第SEPa期

机译：确定机器对机器服务的数字事件响应的管理因素
2. Virtual-world hospital simulation for real-world disaster response: Design and validation of a virtual reality simulator for mass casualty incident management [J] . PucherP.H., BatrickN., TaylorD., The journal of trauma and acute care surgery . 2014,第2期

机译：用于现实世界灾难响应的虚拟世界医院模拟：用于大规模伤亡事件管理的虚拟现实模拟器的设计和验证
3. A machine learning-based FinTech cyber threat attribution framework using high-level indicators of compromise [J] . Noor Umara, Anwar Zahid, Amjad Tehmina, Future generation computer systems . 2019,第JULa期

机译：基于机器学习的FinTech网络威胁归因框架，使用了高级危害指标
4. TOWARDS MORE SECURE VIRTUAL ORGANIZATIONS BY IMPLEMENTING A COMMON SCHEME FOR INCIDENT RESPONSE MANAGEMENT [C] . Stig Ole Johnsen, Annette Askildsen International Conference on Probabilistic Safety Assessment and Management . 2006

机译：通过实现事件响应管理的共同方案来实现更安全的虚拟组织
5. A study to identify common curriculum elements in technology education. [D] . Meng, Hsiang-Jen. 1995

机译：确定技术教育中常见课程内容的研究。
6. Mitigating Latent Threats Identified through an Embedded In Situ Simulation Program and Their Comparison to Patient Safety Incidents: A Retrospective Review [O] . Philip Knight, Helen MacGloin, Mary Lane, 2017

机译：通过嵌入式原位模拟程序确定的缓解潜在威胁及其与患者安全事件的比较：回顾性回顾
7. Identifying and embedding common indicators of compromise in virtual machines for lab-based incident response education [O] . Van Dusen Matthew S. 2015

机译：在基于实验室的事件响应教育中，在虚拟机中识别和嵌入常见危害指标

Identifying and Embedding Common Indicators of Compromise in Virtual Machines for Lab-Based Incident Response Education.

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅