| DC 欄位 |
值 |
語言 |
| DC.contributor | 資訊工程學系 | zh_TW |
| DC.creator | 廖子杰 | zh_TW |
| DC.creator | ZIJIE LIAO | en_US |
| dc.date.accessioned | 2022-8-3T07:39:07Z | |
| dc.date.available | 2022-8-3T07:39:07Z | |
| dc.date.issued | 2022 | |
| dc.identifier.uri | http://ir.lib.ncu.edu.tw:444/thesis/view_etd.asp?URN=109522043 | |
| dc.contributor.department | 資訊工程學系 | zh_TW |
| DC.description | 國立中央大學 | zh_TW |
| DC.description | National Central University | en_US |
| dc.description.abstract | MITRE ATT&CK 是一個全球可訪問的基於真實世界觀察的對手戰術和技術知識庫。這些收集到的知識可以詳細代表整個攻擊殺傷鏈階段的駭客組織、惡意軟 體、戰術和技術的信息,並有助於對網絡威脅情報(CTI) 技術的調查。然而, MITRE 提供取得資訊的方式: Website、Navigator 不足以搜索複雜的相關信息,以 至於花費大量的時間與人力在查尋。在本文中,我們提出了一種基於 MITRE ATT&CK 框架的資安本體庫,能夠有效地獲取資安的相關知識,並且,我們根據安 全研究人員可能的需求,提供推理路徑,以深入分析資安威脅情資(CTI)的技術,並設計了基於惡意軟體、組織和技術的正向查詢與反向查詢,以更有效地生成完整 的情報。 | zh_TW |
| dc.description.abstract | MITRE ATT&CK is a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations. These collected data uncover the information about adversary group, software, tactic, and technique that can represent whole kill chain phases in detail, and facilitate the investigation of cyber threat intelligence (CTI) techniques. However, the existed interfaces of ATT&CK such as website and Navigator are not enough to search for complex related information. In this paper, we present an ontology based on MITRE ATT&CK to efficiently gain the knowledge. Based on the requirement of security researchers, we derive inference paths to infer techniques that are leveraged to deeply analyze the technology of CTI, and we also design forward- and backward- query based on software, group and technique that are of great significance to the security domain for generating the completed intelligence more efficiency. | en_US |
| DC.subject | MITRE ATT&CK | zh_TW |
| DC.subject | 資訊萃取 | zh_TW |
| DC.subject | 本體庫 | zh_TW |
| DC.subject | MITRE ATT&CK | en_US |
| DC.subject | Information Extraction | en_US |
| DC.subject | Ontology | en_US |
| DC.title | COMAT: 基於MITRE ATT&CK框架的資安本體庫 | zh_TW |
| dc.language.iso | zh-TW | zh-TW |
| DC.title | COMAT: A Cybersecurity Ontology based on MITRE ATT&CK | en_US |
| DC.type | 博碩士論文 | zh_TW |
| DC.type | thesis | en_US |
| DC.publisher | National Central University | en_US |