Early Staged Cyber Incidents Detection in Critical Infrastructures

The aim of the research is to create cyber incidents early detection model based on network traffic and OS-based system analyses. Developed cyber attacks detection model is based on anomalies measurements. With the 11 selected parameters and measurement software for real-time data traffic analyze, anomalies in traffic observed during cyber-attack simulation process. For OS-based system similar approach used with 4 selected parameters and Neural-networks classification method. This measurement solution detects anomalies in parameters sets and indicates cyber incidents