Diamond Model of Intrusion Analysis

Integrating Cyber-Intelligence Analysis and Active Cyber-Defence Operations

Abstract:

The world is experiencing a continuous state of cyber insecurity. Despite continual development of cyber-security technology, the power balance between attacker and network defender has remained largely unchanged. While the cyber-security community is attempting to change this stalemate by developing active cyber-defence tactics and emphasizing cyber-threat intelligence, these efforts remain incomplete. A synthesis of the Diamond Model of Intrusion Analysis  and  Robert  Lee’s  Active  Cyber  Defense  Cycle  will  demonstrate  that  integrating structured intelligence-analysis techniques into active cyber-defence operations has the potential to alter the power balance between attacker and defender.

Journal of Information Warfare

The definitive publication for the best and latest research and analysis on information warfare, information operations, and cyber crime. Available in traditional hard copy or online.

Keywords

A

AI
APT

C

C2
C2S
CDX
CIA
CIP
CPS

D

DNS
DoD
DoS

I

IA
ICS

M

P

PDA

S

SOA

X

XRY

Quill Logo

The definitive publication for the best and latest research and analysis on information warfare, information operations, and cyber crime. Available in traditional hard copy or online.

SUBSCRIBE NOW

Get in touch

Registered Agent and Mailing Address

  • Journal of Information Warfare
  •  ArmisteadTEC
  • Dr Leigh Armistead, President
  • 1624 Wakefield Drive
  • Virginia Beach, VA 23455

 757.510.4574

 JIW@ArmisteadTec.com