Cyber situational awareness enhancement with regular expressions and an evaluation methodology

Hyun Kyoo Park, Min Sik Kim, Moosung Park, Kyung Ho Lee

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Citation (Scopus)

Abstract

Cybersecurity is one of critical issues in modern military operations. In cyber operations, security professionals depend on various information and security systems to mitigate cyber threats through enhanced cyber situational awareness. Cyber situational awareness can give decision makers mission completeness and providing appropriate timely decision support for proactive response. The crucial information for cyber situational awareness can be collected at network boundaries through deep packet inspection with security systems. Regular expression is regarded as a practical method for deep packet inspection that is considering a next generation intrusion detection and prevention, however, it is not commonly used by the reason of its resource intensive characteristics. In this paper, we describe our effort and achievement on regular expression processing capability in real time and an evaluation method with experimental result.

Original languageEnglish
Title of host publicationMILCOM 2017 - 2017 IEEE Military Communications Conference
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages406-411
Number of pages6
Volume2017-October
ISBN (Electronic)9781538605950
DOIs
Publication statusPublished - 2017 Dec 7
Event2017 IEEE Military Communications Conference, MILCOM 2017 - Baltimore, United States
Duration: 2017 Oct 232017 Oct 25

Other

Other2017 IEEE Military Communications Conference, MILCOM 2017
CountryUnited States
CityBaltimore
Period17/10/2317/10/25

Fingerprint

Security systems
Inspection
Military operations
Intrusion detection
Information systems
Processing

Keywords

  • Cyber Operations
  • Cyber Situational Awareness
  • Cybersecurity
  • PCRE
  • Regexbench
  • Regular Expressions
  • Sniffles

ASJC Scopus subject areas

  • Electrical and Electronic Engineering

Cite this

Park, H. K., Kim, M. S., Park, M., & Lee, K. H. (2017). Cyber situational awareness enhancement with regular expressions and an evaluation methodology. In MILCOM 2017 - 2017 IEEE Military Communications Conference (Vol. 2017-October, pp. 406-411). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/MILCOM.2017.8170859

Cyber situational awareness enhancement with regular expressions and an evaluation methodology. / Park, Hyun Kyoo; Kim, Min Sik; Park, Moosung; Lee, Kyung Ho.

MILCOM 2017 - 2017 IEEE Military Communications Conference. Vol. 2017-October Institute of Electrical and Electronics Engineers Inc., 2017. p. 406-411.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Park, HK, Kim, MS, Park, M & Lee, KH 2017, Cyber situational awareness enhancement with regular expressions and an evaluation methodology. in MILCOM 2017 - 2017 IEEE Military Communications Conference. vol. 2017-October, Institute of Electrical and Electronics Engineers Inc., pp. 406-411, 2017 IEEE Military Communications Conference, MILCOM 2017, Baltimore, United States, 17/10/23. https://doi.org/10.1109/MILCOM.2017.8170859
Park HK, Kim MS, Park M, Lee KH. Cyber situational awareness enhancement with regular expressions and an evaluation methodology. In MILCOM 2017 - 2017 IEEE Military Communications Conference. Vol. 2017-October. Institute of Electrical and Electronics Engineers Inc. 2017. p. 406-411 https://doi.org/10.1109/MILCOM.2017.8170859
Park, Hyun Kyoo ; Kim, Min Sik ; Park, Moosung ; Lee, Kyung Ho. / Cyber situational awareness enhancement with regular expressions and an evaluation methodology. MILCOM 2017 - 2017 IEEE Military Communications Conference. Vol. 2017-October Institute of Electrical and Electronics Engineers Inc., 2017. pp. 406-411
@inproceedings{f62b6a0009ed45baa1f3f7de35d418d7,
title = "Cyber situational awareness enhancement with regular expressions and an evaluation methodology",
abstract = "Cybersecurity is one of critical issues in modern military operations. In cyber operations, security professionals depend on various information and security systems to mitigate cyber threats through enhanced cyber situational awareness. Cyber situational awareness can give decision makers mission completeness and providing appropriate timely decision support for proactive response. The crucial information for cyber situational awareness can be collected at network boundaries through deep packet inspection with security systems. Regular expression is regarded as a practical method for deep packet inspection that is considering a next generation intrusion detection and prevention, however, it is not commonly used by the reason of its resource intensive characteristics. In this paper, we describe our effort and achievement on regular expression processing capability in real time and an evaluation method with experimental result.",
keywords = "Cyber Operations, Cyber Situational Awareness, Cybersecurity, PCRE, Regexbench, Regular Expressions, Sniffles",
author = "Park, {Hyun Kyoo} and Kim, {Min Sik} and Moosung Park and Lee, {Kyung Ho}",
year = "2017",
month = "12",
day = "7",
doi = "10.1109/MILCOM.2017.8170859",
language = "English",
volume = "2017-October",
pages = "406--411",
booktitle = "MILCOM 2017 - 2017 IEEE Military Communications Conference",
publisher = "Institute of Electrical and Electronics Engineers Inc.",

}

TY - GEN

T1 - Cyber situational awareness enhancement with regular expressions and an evaluation methodology

AU - Park, Hyun Kyoo

AU - Kim, Min Sik

AU - Park, Moosung

AU - Lee, Kyung Ho

PY - 2017/12/7

Y1 - 2017/12/7

N2 - Cybersecurity is one of critical issues in modern military operations. In cyber operations, security professionals depend on various information and security systems to mitigate cyber threats through enhanced cyber situational awareness. Cyber situational awareness can give decision makers mission completeness and providing appropriate timely decision support for proactive response. The crucial information for cyber situational awareness can be collected at network boundaries through deep packet inspection with security systems. Regular expression is regarded as a practical method for deep packet inspection that is considering a next generation intrusion detection and prevention, however, it is not commonly used by the reason of its resource intensive characteristics. In this paper, we describe our effort and achievement on regular expression processing capability in real time and an evaluation method with experimental result.

AB - Cybersecurity is one of critical issues in modern military operations. In cyber operations, security professionals depend on various information and security systems to mitigate cyber threats through enhanced cyber situational awareness. Cyber situational awareness can give decision makers mission completeness and providing appropriate timely decision support for proactive response. The crucial information for cyber situational awareness can be collected at network boundaries through deep packet inspection with security systems. Regular expression is regarded as a practical method for deep packet inspection that is considering a next generation intrusion detection and prevention, however, it is not commonly used by the reason of its resource intensive characteristics. In this paper, we describe our effort and achievement on regular expression processing capability in real time and an evaluation method with experimental result.

KW - Cyber Operations

KW - Cyber Situational Awareness

KW - Cybersecurity

KW - PCRE

KW - Regexbench

KW - Regular Expressions

KW - Sniffles

UR - http://www.scopus.com/inward/record.url?scp=85042369541&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85042369541&partnerID=8YFLogxK

U2 - 10.1109/MILCOM.2017.8170859

DO - 10.1109/MILCOM.2017.8170859

M3 - Conference contribution

AN - SCOPUS:85042369541

VL - 2017-October

SP - 406

EP - 411

BT - MILCOM 2017 - 2017 IEEE Military Communications Conference

PB - Institute of Electrical and Electronics Engineers Inc.

ER -