SYSTEM AND METHOD FOR PREDICTING CYBER THREAT
First Claim
1. A system for predicting a cyber threat, providing prediction information on the cyber threat and allowing a user to prepare against the cyber threat, the system comprising:
- an information collection/processing module for collecting and processing at least one of information on an intrusion detection event, statistical information on network traffic, cyber threat information of an Internet bulletin board, expert-opinion information on an occurrence of the cyber threat;
a prediction engine sub-system for predicting a frequency, possibility and time of the occurrence of the cyber threat using a time-series analysis method or a Delphi method according to the processed information;
a database (DB) management module for storing and managing the processed information and the prediction result of the prediction engine sub-system; and
a result display graphic user interface (GUI)/management module for displaying the prediction result of the prediction engine sub-system on a screen, and changing and managing configurations of the prediction engine sub-system and the information collection/processing module.
4 Assignments
0 Petitions
Accused Products
Abstract
Provided are a system and method for predicting a cyber threat. The system and method collect various variables and synthetically predict the frequency, dangerousness, possibility, and time of the occurrence of a cyber threat including hacking, a worm/virus, a Denial of Service (DoS) attack, illegal system access, a malicious code, a social engineering attack, system/data falsification, cyber terror/war, weakness exploitation, etc., using a time-series analysis method and a Delphi method, and inform a user in advance of the prediction result, thereby enabling the user to prepare against the cyber threat.
55 Citations
19 Claims
-
1. A system for predicting a cyber threat, providing prediction information on the cyber threat and allowing a user to prepare against the cyber threat, the system comprising:
-
an information collection/processing module for collecting and processing at least one of information on an intrusion detection event, statistical information on network traffic, cyber threat information of an Internet bulletin board, expert-opinion information on an occurrence of the cyber threat; a prediction engine sub-system for predicting a frequency, possibility and time of the occurrence of the cyber threat using a time-series analysis method or a Delphi method according to the processed information; a database (DB) management module for storing and managing the processed information and the prediction result of the prediction engine sub-system; and a result display graphic user interface (GUI)/management module for displaying the prediction result of the prediction engine sub-system on a screen, and changing and managing configurations of the prediction engine sub-system and the information collection/processing module. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method of predicting a cyber threat, providing prediction information on a cyber threat comprising at least one of hacking, a worm/virus, a Denial of Service (DoS) attack, illegal system access, a malicious code, a social engineering attack, system/data falsification, cyber terror/war, and weakness exploitation and allowing a user to prepare against the cyber threat, the method comprising the steps of:
-
(a) collecting cyber threat information required for predicting the cyber threat; (b) processing the collected cyber threat information into time-series data and quantitative data, and storing the time-series data and the quantitative data; (c) predicting information on an occurrence of the cyber threat using an optimum one of a time-series models and a Delphi method according to a type of the cyber threat; and (d) storing the prediction result and providing the stored prediction result using a graph or text according to the user'"'"'s request. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
Specification