Using Bayesian Networks for Cyber Security Analysis
Capturing the uncertain aspects in cyber security is important for security analysis in enterprise networks. However, there has been insufficient effort in studying what modeling approaches correctly capture such uncertainty, and how to construct the models to make them useful in practice. This paper present the work on justifying uncertainty modeling for cyber security, and initial evidence indicating that it is a useful approach. The work is centered on near real-time security analysis such as intrusion response.