Retrospectively Using Multilayer Deception in Depth Against Advanced Persistent Threats

Thumbnail Image

Files

0092.pdf (641.49 KB)

Date

2024-01-03

Authors

Contributor

Advisor

Editor

Performer

Department

Instructor

Depositor

Speaker

Researcher

Consultant

Interviewer

Interviewee

Narrator

Transcriber

Annotator

Journal Title

Journal ISSN

Volume Title

Publisher

Journal Name

Volume

Number/Issue

Starting Page

944

Ending Page

Alternative Title

Abstract

Defensive cyber deception is useful in both the information and cognitive domains of warfare. Such deception works better when it is multilayer as a defense-in-depth strategy. We developed a tool to analyze the offensive tactics in the MITRE ATT&CK Enterprise framework that were popular with sixteen Advanced Persistent Threat (APT) groups, and identified deceptive defense methods that can counter each technique. With this knowledge defenders can make more informed decisions while planning the deception to use in different layers. We use as examples three recent high-profile APT events, and review how well the deception methods could interfere with them.

Description

Keywords

Cyber Deception and Cyberpsychology for Defense, advanced persistent threat, apt analysis, deception in depth, mitre att&ck, multilayer defense

Citation

URI

https://hdl.handle.net/10125/106492

DOI

https://doi.org/10.24251/HICSS.2024.115

Extent

10 pages

Format

Type

Conference Paper

Geographic Location

Time Period

Related To

Proceedings of the 57th Hawaii International Conference on System Sciences

Related To (URI)

Table of Contents

Rights

Attribution-NonCommercial-NoDerivatives 4.0 International

Rights Holder

Catalog Record

Local Contexts

Collections

Cyber Deception and Cyberpsychology for Defense
Email libraryada-l@lists.hawaii.edu if you need this content in ADA-compliant format.