Back-Propagating System Dependency Impact for Attack Investigation.
Pengcheng Fang*, Peng Gao* (* equal contribution), Changlin Liu, Erman Ayday, Kangkook Jee, Ting Wang, Yanfang (Fanny) Ye, Zhuotao Liu, Xusheng Xiao
In Preceedings of the 31th USENIX Security Symposium (USENIX Security 2022), Boston, Aug 2022
A system that identifies the critical component of a dependency graph (i.e., a subgraph) built from system audit logs by properly assigning weights to edges and performing causality analysis.