Inicio  /  Information  /  Vol: 15 Par: 4 (2024)  /  Artículo
ARTÍCULO
TITULO

Automated Mapping of Common Vulnerabilities and Exposures to MITRE ATT&CK Tactics

Ioana Branescu    
Octavian Grigorescu and Mihai Dascalu    

Resumen

Effectively understanding and categorizing vulnerabilities is vital in the ever-evolving cybersecurity landscape, since only one exposure can have a devastating effect on the entire system. Given the increasingly massive number of threats and the size of modern infrastructures, the need for structured, uniform cybersecurity knowledge systems arose. To tackle this challenge, the MITRE Corporation set up two powerful sources of cyber threat and vulnerability information, namely the Common Vulnerabilities and Exposures (CVEs) list focused on identifying and fixing software vulnerabilities, and the MITRE ATT&CK Enterprise Matrix, which is a framework for defining and categorizing adversary actions and ways to defend against them. At the moment, the two are not directly linked, even if such a link would have a significant positive impact on the cybersecurity community. This study aims to automatically map CVEs to the corresponding 14 MITRE ATT&CK tactics using state-of-the-art transformer-based models. Various architectures, from encoders to generative large-scale models, are employed to tackle this multilabel classification problem. Our results are promising, with a SecRoBERTa model performing best with an F1 score of 77.81%, which is closely followed by SecBERT (78.77%), CyBERT (78.54%), and TARS (78.01%), while GPT-4 showed a weak performance in zero-shot settings (22.04%). In addition, we perform an in-depth error analysis to better understand the models? performance and limitations. We release the code used for all experiments as open source.

 Artículos similares

       
 
Matko Gluncic, Ines Vlahovic, Leo Mr?ic and Vladimir Paar    
Tandem repeats (TRs) are important components of eukaryotic genomes; they have both structural and functional roles: (i) they form essential chromosome structures such as centromeres and telomeres; (ii) they modify chromatin structure and affect transcri... ver más
Revista: Algorithms

 
Alexander MacGillivray and Christ de Jong    
Underwater sound mapping is increasingly being used as a tool for monitoring and managing noise pollution from shipping in the marine environment. Sound maps typically rely on tracking data from the Automated Information System (AIS), but information ava... ver más

 
Anna Spinosa, Alex Ziemba, Alessandra Saponieri, Leonardo Damiani and Ghada El Serafy    
Remote sensing and satellite imagery have become commonplace in efforts to monitor and model various biological and physical characteristics of the Earth. The land/water interface is a continually evolving landscape of high scientific and societal intere... ver más

 
Junjun Li, Jingyu Yang, Bowei Xu, Yongsheng Yang, Furong Wen and Haitao Song    
Aimed to improve the efficiency of port operations, Shanghai Zhenhua Heavy Industries Co., Ltd. (ZPMC) proposed a new U-shape trafficked automated terminal. The new U-shape trafficked automated terminal brings a new hybrid scheduling problem. A hybrid sc... ver más

 
Asdam Tambusay,Benny Suryanto,Priyo Suprobo     Pág. 6 - 12
This paper presents the application of a low-cost digital image correlation (DIC) system for automated crack mapping. The system employed makes use of a conventional digital camera, a remote image recording controller, and an open-source digital image co... ver más