Cyber threat predictive analytics for improving cyber supply chain security

Yeboah-Ofori, Abel ORCID: https://orcid.org/0000-0001-8055-9274, Islam, Shareeful, Lee, Sin Wee, Shamszaman, Zia Ush, Muhammad, Khan, Altaf, Meteb and Al-Rakhami, Mabrook S. (2021) Cyber threat predictive analytics for improving cyber supply chain security. IEEE Access.

[thumbnail of Cyber_Threat_Predictive_Analytics_for_Improving_Cyber_Supply_Chain_Security.pdf]
Preview
PDF
Cyber_Threat_Predictive_Analytics_for_Improving_Cyber_Supply_Chain_Security.pdf - Published Version
Available under License Creative Commons Attribution.

Download (2MB) | Preview

Abstract

Cyber Supply Chain(CSC) system is complex which involves different sub-systems performing various tasks. Security in supply chain is challenging due to the inherent vulnerabilities and threats from any part of the system can be exploited at any point within the supply chain. This can cause a severe disruption on the overall business continuity. Therefore, it is paramount important to understand and predicate the threats so that organization can undertake necessary control measures for the supply chain security. Cyber Threat Intelligence (CTI) provides an intelligence analysis to discover unknown to known threats using various properties including threat actor skill and motivation, Tactics, Techniques, Procedure (TTP), and Indicator of Compromise (IoC). This paper aims to analyse and predicate threats to improve cyber supply chain security. We have applied Cyber Threat Intelligence (CTI) with Machine Learning (ML) techniques to analyse and predict the threats based on the CTI properties. That allows to identify the inherent CSC vulnerabilities so that appropriate control actions can be undertaken for the overall cybersecurity improvement. To demonstrate the applicability of our approach, CTI data is gathered and a number of ML algorithms, i.e., Logistic Regression (LG), Support Vector Machine (SVM), Random Forest (RF) and Decision Tree (DT), are used to develop predictive analytics using the Microsoft Malware Prediction dataset. The experiment considers attack and TTP as input parameters and vulnerabilities and Indicators of compromise (IoC) as output parameters. The results relating to the prediction reveal that Spyware/Ransomware and spear phishing are the most predictable threats in CSC. We have also recommended relevant controls to tackle these threats. We advocate using CTI data for the ML predicate model for the overall CSC cyber security improvement.

Item Type: Article
Identifier: 10.1109/access.2021.3087109
Keywords: Cyber Threat Intelligence, Machine Learning, Cyber Supply Chain, Predictive Analytic, Cyber Security, Tactic Techniques Procedures
Subjects: Computing > Information security > Cyber security
Related URLs:
Depositing User: Dr Abel Yeboah-Ofori
Date Deposited: 18 Jun 2021 15:35
Last Modified: 04 Nov 2024 11:03
URI: https://repository.uwl.ac.uk/id/eprint/8016

Downloads

Downloads per month over past year

Actions (login required)

View Item View Item

Menu