{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,4]],"date-time":"2025-12-04T10:01:19Z","timestamp":1764842479428,"version":"build-2065373602"},"reference-count":46,"publisher":"MDPI AG","issue":"5","license":[{"start":{"date-parts":[[2021,5,3]],"date-time":"2021-05-03T00:00:00Z","timestamp":1620000000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Symmetry"],"abstract":"<jats:p>As the development of technology accelerates, the Fourth Industrial Revolution, which combines various technologies and provides them as one service, has been in the spotlight, and services using big data, Artificial Intelligence (AI) and Internet of Things (IoT) are becoming more intelligent and helpful to users. As these services are used in various fields, attacks by attackers also occur in various areas and ways. However, cyberattacks by attackers may vary depending on the attacking pattern of the attacker, and the same vulnerability can be attacked from different perspectives. Therefore, in this study, by constructing a cyberattack framework based on preemptive prediction, we can collect vulnerability information based on big data existing on the network and increase the accuracy by applying machine learning to the mapping of keywords frequently mentioned in attack strategies. We propose an attack strategy prediction framework.<\/jats:p>","DOI":"10.3390\/sym13050793","type":"journal-article","created":{"date-parts":[[2021,5,5]],"date-time":"2021-05-05T22:51:42Z","timestamp":1620255102000},"page":"793","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":5,"title":["Preemptive Prediction-Based Automated Cyberattack Framework Modeling"],"prefix":"10.3390","volume":"13","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-8723-2861","authenticated-orcid":false,"given":"Sungwook","family":"Ryu","sequence":"first","affiliation":[{"name":"Master\u2019s Program in Future Strategy, Korea Advanced Institute of Science and Technology, Daejeon 34141, Korea"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jinsu","family":"Kim","sequence":"additional","affiliation":[{"name":"Department of Convergence Information Security, Graduate School, Jeju National University, Jeju 63293, Korea"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4434-8933","authenticated-orcid":false,"given":"Namje","family":"Park","sequence":"additional","affiliation":[{"name":"Department of Computer Education, Teachar\u2019s College, Jeju National University, Jeju 63293, Korea"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yongseok","family":"Seo","sequence":"additional","affiliation":[{"name":"Department of Future Strategy, Graduate School, Korea Advanced Institute of Science and Technology, Daejeon 34141, Korea"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"1968","published-online":{"date-parts":[[2021,5,3]]},"reference":[{"key":"ref_1","doi-asserted-by":"crossref","unstructured":"Yasasin, E., Prester, J., Wagner, G., and Schryen, G. (2020). Forecasting IT security vulnerabilities\u2014An empirical analysis. Comput. Secur., 88.","DOI":"10.1016\/j.cose.2019.101610"},{"key":"ref_2","doi-asserted-by":"crossref","unstructured":"Caporale, G.M., Kang, W.-Y., Spagnolo, F., and Spagnolo, N. (2020). Non-linearities cyber attacks and cryptocurrencies. Financ. Res. Lett., 32.","DOI":"10.1016\/j.frl.2019.09.012"},{"key":"ref_3","doi-asserted-by":"crossref","first-page":"3","DOI":"10.1007\/s00779-017-1017-1","article-title":"Electronic identity information hiding methods using a secret sharing scheme in multimedia-centric internet of things environment","volume":"22","author":"Park","year":"2018","journal-title":"Pers. Ubiquitous Comput."},{"key":"ref_4","doi-asserted-by":"crossref","unstructured":"Kim, J., and Park, N. (2019). Lightweight knowledge-based authentication model for intelligent closed circuit television in mobile personal computing. Pers. Ubiquitous Comput., 1\u20139.","DOI":"10.1007\/s00779-019-01299-w"},{"key":"ref_5","doi-asserted-by":"crossref","first-page":"394","DOI":"10.1016\/j.jocs.2017.10.020","article-title":"A cyber kill chain based taxonomy of banking Trojans for evolutionary computational intelligence","volume":"27","author":"Kiwia","year":"2018","journal-title":"Comput. Sci."},{"key":"ref_6","doi-asserted-by":"crossref","first-page":"227","DOI":"10.1016\/j.future.2019.02.013","article-title":"A machine learning-based FinTech cyber threat attribution framework using high-level indicators of compromise","volume":"96","author":"Noor","year":"2019","journal-title":"Future Gener. Comput. Syst."},{"key":"ref_7","unstructured":"(2021, April 20). Science of Security, Available online: https:\/\/www.nsa.gov\/What-We-Do\/Research\/Science-of-Security\/."},{"key":"ref_8","doi-asserted-by":"crossref","unstructured":"Smith, C.L., and Brooks, D.J. (2013). Security Science: The Theory and Practice of Security, Elsevier.","DOI":"10.1016\/B978-0-12-394436-8.00001-1"},{"key":"ref_9","first-page":"34","article-title":"Technological trends in cyber attack simulations","volume":"35","author":"Lee","year":"2020","journal-title":"Electron. Telecommun. Trends"},{"key":"ref_10","doi-asserted-by":"crossref","unstructured":"Lee, D., and Park, N. (2020). Blockchain based privacy preserving multimedia intelligent video surveillance using secure Merkle tree. Multimed. Tools Appl., 1\u201318.","DOI":"10.1007\/s11042-020-08776-y"},{"key":"ref_11","doi-asserted-by":"crossref","unstructured":"Khan, P.W., Bryun, Y.-C., and Park, N. (2020). A Data verification system for CCTV surveillance cameras using blockchain technology in smart cities. Electronics, 9.","DOI":"10.3390\/electronics9030484"},{"key":"ref_12","first-page":"438","article-title":"Technical aspects of cyber kill chain","volume":"536","author":"Yadav","year":"2015","journal-title":"Commun. Comput. Inf. Sci."},{"key":"ref_13","unstructured":"Fox, D.B., Arnoth, E.I., Skorupka, C.W., McCollum, C.D., and Bodeaou, D.J. (2018). Enhanced Cyber Threat Model for Financial Services Sector (FSS) Institutions, The Homeland Security Systems Engineering and Development Institute."},{"key":"ref_14","doi-asserted-by":"crossref","first-page":"1299","DOI":"10.1007\/s12083-018-0637-1","article-title":"De-identification of metering data for smart grid personal security in intelligent CCTV-based P2P cloud computing environment","volume":"11","author":"Lee","year":"2018","journal-title":"Peer-Peer Netw. Appl."},{"key":"ref_15","doi-asserted-by":"crossref","unstructured":"Hassanzadeh, A., and Burkett, R. (2018, January 29\u201330). SAMIIT: Spiral attack model in IIoT mapping security alerts to attack life cycle phases. Proceedings of the 5th International Symposium for ICS & SCADA Cyber Security Research 2018 (ICS-CSR 2018), Hamburg, Germany.","DOI":"10.14236\/ewic\/ICS2018.2"},{"key":"ref_16","unstructured":"(2021, April 28). Computers and Humans Exploring Software Security. Available online: https:\/\/www.darpa.mil\/program\/computers-and-humans-exploring-software-security."},{"key":"ref_17","doi-asserted-by":"crossref","unstructured":"Kim, J., Park, N., Kim, G., and Jin, S. (2019). CCTV video processing metadata security scheme using character order preserving-transformation in the emerging multimedia. Electronics, 8.","DOI":"10.3390\/electronics8040412"},{"key":"ref_18","doi-asserted-by":"crossref","unstructured":"Park, N., Sung, Y., Jeong, Y., Shin, S.-B., and Kim, C. (2018). The analysis of the appropriateness of information education curriculum standard model for elementary school in Korea. Int. Conf. Comput. Inf. Sci., 1\u201315.","DOI":"10.1007\/978-3-319-98693-7_1"},{"key":"ref_19","doi-asserted-by":"crossref","first-page":"39","DOI":"10.1016\/j.ijcip.2015.08.003","article-title":"A multi-layered and kill-chain based security analysis framework for cyber-physical systems","volume":"11","author":"Hahn","year":"2015","journal-title":"Int. J. Crit. Infrastruct. Prot."},{"key":"ref_20","doi-asserted-by":"crossref","unstructured":"Yadav, T., and Rao, A.M. (2015). Technical aspects of cyber kill chain. International Symposium on Security in Computing and Communication. Security in Computing and Communications, Springer.","DOI":"10.1007\/978-3-319-22915-7_40"},{"key":"ref_21","doi-asserted-by":"crossref","unstructured":"Lee, D., and Park, N. (2017). Geocasting-based synchronization of Almanac on the maritime cloud for distributed smart surveillance. Supercomputing, 73.","DOI":"10.1007\/s11227-017-1967-0"},{"key":"ref_22","doi-asserted-by":"crossref","unstructured":"Kim, J., and Park, N. (2021). Role-based Access Control Video Surveillance Mechanism Modeling in Smart Contract Environment. Transactions on Emerging Telecommunications Technologies, John Wiley & Sons, Inc.","DOI":"10.1002\/ett.4227"},{"key":"ref_23","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1155\/2015\/809201","article-title":"Mutual authentication scheme in secure internet of things technology for comfortable lifestyle","volume":"16","author":"Park","year":"2015","journal-title":"J. Sens."},{"key":"ref_24","doi-asserted-by":"crossref","first-page":"1023","DOI":"10.1080\/07421222.2017.1394049","article-title":"Exploring emerging hacker assets and key hackers for proactive cyber threat intelligence","volume":"34","author":"Samtani","year":"2017","journal-title":"J. Manag. Inf. Syst."},{"key":"ref_25","doi-asserted-by":"crossref","unstructured":"Fang, Y., Liu, Y., Huang, C., and Liu, L. (2020). FastEmbed: Predicting vulnerability exploitation possibility based on ensemble machine learning algorithm. PLoS ONE, 15.","DOI":"10.1371\/journal.pone.0228439"},{"key":"ref_26","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3372823","article-title":"The AI-based cyber threat landscape: A survey","volume":"53","author":"Kaloudi","year":"2020","journal-title":"ACM Comput. Surv."},{"key":"ref_27","unstructured":"Paul, K. (2005, January 5\u20139). Multi-level security requirements for hypervisors. Proceedings of the 21st Annual Computer Security Applications Conference, Tucson, AZ, USA."},{"key":"ref_28","doi-asserted-by":"crossref","unstructured":"Park, N., Kwak, J., Kim, S., Won, D., and Kim, H. (2006). WIPI mobile platform with secure service for mobile RFID network environment. J. Adv. Web Netw. Technol. Appl., 741\u2013748.","DOI":"10.1007\/11610496_100"},{"key":"ref_29","doi-asserted-by":"crossref","unstructured":"Xu, M., Jiang, X., Sandhu, R., and Zhang, X. (2007, January 20\u201322). Towards a VMM-based usage control framework for OS kernel integrity protection. Proceedings of the 12th ACM Symposium on Access Control Models and Technologies, Sophia Antipolis, France.","DOI":"10.1145\/1266840.1266852"},{"key":"ref_30","doi-asserted-by":"crossref","first-page":"23461","DOI":"10.1007\/s11042-020-09016-z","article-title":"CCTV-RFID enabled multifactor authentication model for secure differential level video access control","volume":"79","author":"Kim","year":"2020","journal-title":"Multimed. Tools Appl."},{"key":"ref_31","doi-asserted-by":"crossref","first-page":"653","DOI":"10.1007\/s10586-014-0367-y","article-title":"Implementation of load management application system using smart grid privacy policy in energy management service environment","volume":"17","author":"Park","year":"2014","journal-title":"Clust. Comput."},{"key":"ref_32","doi-asserted-by":"crossref","first-page":"500","DOI":"10.1002\/sec.1108","article-title":"Mobile middleware platform for secure vessel traffic system in IoT service environment","volume":"9","author":"Park","year":"2016","journal-title":"Secur. Commun. Netw."},{"key":"ref_33","doi-asserted-by":"crossref","unstructured":"Park, N., Hu, H., and Jin, Q. (2016). Security and privacy mechanisms for sensor middleware and application in internet of things (IoT). J. Distrib. Sens. Netw., 12.","DOI":"10.1155\/2016\/2965438"},{"key":"ref_34","unstructured":"(2021, April 28). Keyword Eextraction and Key Sentence Extraction using TextRank (Implementation and Experiment). Available online: https:\/\/lovit.github.io\/nlp\/2019\/04\/30\/textrank\/."},{"key":"ref_35","doi-asserted-by":"crossref","first-page":"1120","DOI":"10.1016\/j.ipm.2017.04.007","article-title":"DERIN: A data extraction method based on rendering information and n-gram","volume":"53","author":"Figueiredo","year":"2017","journal-title":"Inf. Process. Manag."},{"key":"ref_36","doi-asserted-by":"crossref","unstructured":"Park, N., Kim, B.G., and Kim, J. (2019). A Mechanism of masking identification information regarding moving objects recorded on visual surveillance systems by differentially implementing access permission. Electronics, 8.","DOI":"10.3390\/electronics8070735"},{"key":"ref_37","doi-asserted-by":"crossref","unstructured":"Kim, J., and Park, N. (2020). Blockchain-Based Data-Preserving AI Learning Environment Model for AI Cybersecurity Systems in IoT Service Environments. Appl. Sci., 10.","DOI":"10.3390\/app10144718"},{"key":"ref_38","first-page":"261","article-title":"Inter-Authentication and Session Key Sharing Procedure for Secure M2M\/IoT Environment","volume":"18","author":"Park","year":"2015","journal-title":"Int. Inf. Inst. (Tokyo) Inf."},{"key":"ref_39","unstructured":"Kotu, V., and Deshpande, B. (2019). Autoregressive integrated moving average. Data Sci."},{"key":"ref_40","doi-asserted-by":"crossref","first-page":"887","DOI":"10.32604\/cmc.2021.015172","article-title":"Network Log-Based SSH Brute-Force Attack Detection Model","volume":"68","author":"Park","year":"2021","journal-title":"CMC-COMPUTERS MATERIALS & CONTINUA"},{"key":"ref_41","doi-asserted-by":"crossref","unstructured":"Kim, J., and Park, N. (2020). A Face Image Virtualization Mechanism for Privacy Intrusion Prevention in Healthcare Video Surveillance Systems. Symmetry, 12.","DOI":"10.3390\/sym12060891"},{"key":"ref_42","first-page":"785","article-title":"The implementation of open embedded S\/W platform for secure mobile RFID reader","volume":"35","author":"Park","year":"2010","journal-title":"J. Korean Inst. Commun. Inf. Sci."},{"key":"ref_43","doi-asserted-by":"crossref","unstructured":"Park, N. (2011). Secure data access control scheme using type-based re-encryption in cloud environment. International Conference on Hybrid Information Technology, Springer.","DOI":"10.1007\/978-3-642-23418-7_28"},{"key":"ref_44","doi-asserted-by":"crossref","unstructured":"Park, N. (2011). Secure UHF\/HF dual-band RFID: strategic framework approaches and application solutions. International Conference on Computational Collective Intelligence, Springer.","DOI":"10.1007\/978-3-642-23935-9_48"},{"key":"ref_45","doi-asserted-by":"crossref","unstructured":"Park, N., and Song, Y. (2010). Secure RFID application data management using all-or-nothing transform encryption. International Conference on Wireless Algorithms, Systems, and Applications, Springer.","DOI":"10.1007\/978-3-642-14654-1_30"},{"key":"ref_46","doi-asserted-by":"crossref","unstructured":"Park, N., Kim, S., Won, D., and Kim, H. (2006). Security analysis and implementation leveraging globally networked RFIDs. IFIP International Conference on Personal Wireless Communications, Springer.","DOI":"10.1007\/11872153_43"}],"container-title":["Symmetry"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/2073-8994\/13\/5\/793\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,11]],"date-time":"2025-10-11T05:56:51Z","timestamp":1760162211000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/2073-8994\/13\/5\/793"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,5,3]]},"references-count":46,"journal-issue":{"issue":"5","published-online":{"date-parts":[[2021,5]]}},"alternative-id":["sym13050793"],"URL":"https:\/\/doi.org\/10.3390\/sym13050793","relation":{},"ISSN":["2073-8994"],"issn-type":[{"type":"electronic","value":"2073-8994"}],"subject":[],"published":{"date-parts":[[2021,5,3]]}}}