%0 Journal Article
%T The Classic Cyber Defense Methods Have Failed - What Comes Next
%A Amir Averbuch
%A Gabi Siboni
%J Military and Strategic Affairs
%D 2013
%I Institute for National Security Studies
%X The classic defense methods employed throughout the world in recent decades are proving unsuccessful in halting modern malware attacks that exploit unknown security breaches called "zero-day vulnerabilities." Solving this problem requires different thinking and solutions. This article proposes an up-to-date approach, based on an analysis of sensitive information that must be protected, for the purpose of identifying anomalous behavior. The analyzed information includes an organization's data silos as a means of understanding unusual (anomalous) activity that in most cases indicates the presence of malware in the system. This article further proposes relying on the data to be protected as a source of knowledge for developing the defense system. An analytical analysis of massive data (big data analytics) will make it possible to identify such malware, while constructing a model that will provide a high degree of reliability in identifying an minimizing false positives, which pose a challenge to every defense system.
%K cyber attack
%K viruses
%K Trojan horses
%K malware
%K advanced persistent threats
%K APTs
%K social networks
%K antivirus software
%K defense system
%K anomalies
%K zero-day attacks
%K SIEM
%K big data
%K kernel method
%U http://www.inss.org.il.cdn.reblaze.com/upload/(FILE)1369733755.pdf