How to aggregate scores in a multi-heuristic detection system : A comparison between WOWA and Neural Networks

Apr 24, 2020 by Thibault Debatty | 1540 views

APT Detection

https://cylab.be/blog/75/how-to-aggregate-scores-in-a-multi-heuristic-detection-system-a-comparison-between-wowa-and-neural-networks

Cyber-attacks are becoming increasingly complex and therefore require more sophisticated detection systems. A lot of these are actually combine multiple detection algorithms. A crucial step is then to aggregate all detection scores correctly.

Today we released a short paper where we compare two aggregation approaches:

  1. train a Weighted Ordered Weighted Average (WOWA) operator using a genetic algorithm and
  2. train a Neural Network using backpropagation.

Download the paper: How to aggregate scores in a multi-heuristic detection system : A comparison between WOWA and Neural Networks [PDF]

This blog post is licensed under CC BY-SA 4.0

Webinar RMA
A few weeks ago, we had the opportunity to present a short webinar on two topics currently under research in our department:
Jul 4, 2024 | 242 views
What is Situation Awareness?
The constant stream of data produced daily, the complicated environment and the need for quick reaction to malicious attacks make the life of cyber defense analyst a living nightmare. Many wonder how are we supposed to be able to review the gigabytes of logs produced daily, how can we manage to analyze them all and extract valuable insight into what is happening in the network?
Oct 20, 2023 | 593 views
MITRE ATT&CK and the ATT&CK Matrix
Defining cyber attacks is a difficult task. They vary in origins, goals and, at first glance, the techniques used might seem very different. Luckily a popular model was defined by Lockheed Martin, still used to this day, which illustrates very well the lifecycle of a typical cyber attack. The Cyber Kill Chain, popular but controversial, defines the 7 principal steps of an attack. There have been many advances, since its original conception, one of which is the wildly acclaimed ATT&CK Matrix for Enterprise.
Apr 7, 2022 | 2495 views