Analysis of the Cyber Kill Chain Model Focused on Computer Security Through Virtualized Controlled Processes

Edison Alexander Velasco Cabrera; Javier Guaña-Moya

doi:10.1007/978-3-031-74751-9_48

Analysis of the Cyber Kill Chain Model Focused on Computer Security Through Virtualized Controlled Processes

Edison Alexander Velasco Cabrera^*, Javier Guaña-Moya

^*Corresponding author for this work

Faculty of Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

The term Cyber Kill Chain refers to the seven stages that a computer criminal must go through to achieve an effective attack, that is, it is a model that determines what cybercriminals must complete to achieve the objective. Therefore, the opportunity to stop them at any of these stages means breaking the attack chain. Its importance arises from the fact that currently the growth in the scale and complexity of cyberattacks directed at the data of organizations and people has registered an accelerated increase, with very elaborate patterns that have begun to be called Advanced Persistent Threat (APT). According to an analysis corresponding to 2023, the global average cost of data breach was $4.45 million, representing an increase of 15% in 3 years. Therefore, understanding each of these phases is essential to develop computer security programs, because defense teams will be able to anticipate the activities of attackers, taking effective measures to prevent, discover or minimize attacks in each phase. Consequently, applying knowledge of the various stages of a cyberattack allows the infrastructure to be prepared to counteract data breaches in the widest possible range of tools, means and controlled processes applied by users, both at a personal and business level.

Original language	English
Title of host publication	Perspectives and Trends in Education and Technology - Selected Papers from ICITED24
Editors	João Vidal Carvalho, António Abreu, Eusébio Ferreira da Costa, Enrique Vázquez-Justo, Hernán Viguera Figueroa
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	506-516
Number of pages	11
ISBN (Print)	9783031747502
DOIs	https://doi.org/10.1007/978-3-031-74751-9_48
State	Published - 30 Nov 2024
Event	International Conference in Information Technology and Education, ICITED 2024 - Recife, Brazil Duration: 11 Jul 2024 → 13 Jul 2024

Publication series

Name	Lecture Notes in Networks and Systems
Volume	858 LNNS
ISSN (Print)	2367-3370
ISSN (Electronic)	2367-3389

Conference

Conference	International Conference in Information Technology and Education, ICITED 2024
Country/Territory	Brazil
City	Recife
Period	11/07/24 → 13/07/24

Bibliographical note

Publisher Copyright:
© The Author(s), under exclusive license to Springer Nature Switzerland AG 2025.

Keywords

advanced persistent threats
computer attacks
controlled processes
Cyber Kill Chain
cybersecurity

Access to Document

10.1007/978-3-031-74751-9_48

Cite this

Cabrera, E. A. V., & Guaña-Moya, J. (2024). Analysis of the Cyber Kill Chain Model Focused on Computer Security Through Virtualized Controlled Processes. In J. V. Carvalho, A. Abreu, E. Ferreira da Costa, E. Vázquez-Justo, & H. Viguera Figueroa (Eds.), Perspectives and Trends in Education and Technology - Selected Papers from ICITED24 (pp. 506-516). (Lecture Notes in Networks and Systems; Vol. 858 LNNS). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-031-74751-9_48

Cabrera, Edison Alexander Velasco ; Guaña-Moya, Javier. / Analysis of the Cyber Kill Chain Model Focused on Computer Security Through Virtualized Controlled Processes. Perspectives and Trends in Education and Technology - Selected Papers from ICITED24. editor / João Vidal Carvalho ; António Abreu ; Eusébio Ferreira da Costa ; Enrique Vázquez-Justo ; Hernán Viguera Figueroa. Springer Science and Business Media Deutschland GmbH, 2024. pp. 506-516 (Lecture Notes in Networks and Systems).

@inproceedings{46f14cec8239463ca6b6fc58743340f2,

title = "Analysis of the Cyber Kill Chain Model Focused on Computer Security Through Virtualized Controlled Processes",

abstract = "The term Cyber Kill Chain refers to the seven stages that a computer criminal must go through to achieve an effective attack, that is, it is a model that determines what cybercriminals must complete to achieve the objective. Therefore, the opportunity to stop them at any of these stages means breaking the attack chain. Its importance arises from the fact that currently the growth in the scale and complexity of cyberattacks directed at the data of organizations and people has registered an accelerated increase, with very elaborate patterns that have begun to be called Advanced Persistent Threat (APT). According to an analysis corresponding to 2023, the global average cost of data breach was $4.45 million, representing an increase of 15% in 3 years. Therefore, understanding each of these phases is essential to develop computer security programs, because defense teams will be able to anticipate the activities of attackers, taking effective measures to prevent, discover or minimize attacks in each phase. Consequently, applying knowledge of the various stages of a cyberattack allows the infrastructure to be prepared to counteract data breaches in the widest possible range of tools, means and controlled processes applied by users, both at a personal and business level.",

keywords = "advanced persistent threats, computer attacks, controlled processes, Cyber Kill Chain, cybersecurity",

author = "Cabrera, {Edison Alexander Velasco} and Javier Gua{\~n}a-Moya",

note = "Publisher Copyright: {\textcopyright} The Author(s), under exclusive license to Springer Nature Switzerland AG 2025.; International Conference in Information Technology and Education, ICITED 2024 ; Conference date: 11-07-2024 Through 13-07-2024",

year = "2024",

month = nov,

day = "30",

doi = "10.1007/978-3-031-74751-9_48",

language = "English",

isbn = "9783031747502",

series = "Lecture Notes in Networks and Systems",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "506--516",

editor = "Carvalho, {Jo{\~a}o Vidal} and Ant{\'o}nio Abreu and {Ferreira da Costa}, Eus{\'e}bio and Enrique V{\'a}zquez-Justo and {Viguera Figueroa}, Hern{\'a}n",

booktitle = "Perspectives and Trends in Education and Technology - Selected Papers from ICITED24",

}

Cabrera, EAV & Guaña-Moya, J 2024, Analysis of the Cyber Kill Chain Model Focused on Computer Security Through Virtualized Controlled Processes. in JV Carvalho, A Abreu, E Ferreira da Costa, E Vázquez-Justo & H Viguera Figueroa (eds), Perspectives and Trends in Education and Technology - Selected Papers from ICITED24. Lecture Notes in Networks and Systems, vol. 858 LNNS, Springer Science and Business Media Deutschland GmbH, pp. 506-516, International Conference in Information Technology and Education, ICITED 2024, Recife, Brazil, 11/07/24. https://doi.org/10.1007/978-3-031-74751-9_48

Analysis of the Cyber Kill Chain Model Focused on Computer Security Through Virtualized Controlled Processes. / Cabrera, Edison Alexander Velasco; Guaña-Moya, Javier.
Perspectives and Trends in Education and Technology - Selected Papers from ICITED24. ed. / João Vidal Carvalho; António Abreu; Eusébio Ferreira da Costa; Enrique Vázquez-Justo; Hernán Viguera Figueroa. Springer Science and Business Media Deutschland GmbH, 2024. p. 506-516 (Lecture Notes in Networks and Systems; Vol. 858 LNNS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Analysis of the Cyber Kill Chain Model Focused on Computer Security Through Virtualized Controlled Processes

AU - Cabrera, Edison Alexander Velasco

AU - Guaña-Moya, Javier

N1 - Publisher Copyright: © The Author(s), under exclusive license to Springer Nature Switzerland AG 2025.

PY - 2024/11/30

Y1 - 2024/11/30

N2 - The term Cyber Kill Chain refers to the seven stages that a computer criminal must go through to achieve an effective attack, that is, it is a model that determines what cybercriminals must complete to achieve the objective. Therefore, the opportunity to stop them at any of these stages means breaking the attack chain. Its importance arises from the fact that currently the growth in the scale and complexity of cyberattacks directed at the data of organizations and people has registered an accelerated increase, with very elaborate patterns that have begun to be called Advanced Persistent Threat (APT). According to an analysis corresponding to 2023, the global average cost of data breach was $4.45 million, representing an increase of 15% in 3 years. Therefore, understanding each of these phases is essential to develop computer security programs, because defense teams will be able to anticipate the activities of attackers, taking effective measures to prevent, discover or minimize attacks in each phase. Consequently, applying knowledge of the various stages of a cyberattack allows the infrastructure to be prepared to counteract data breaches in the widest possible range of tools, means and controlled processes applied by users, both at a personal and business level.

AB - The term Cyber Kill Chain refers to the seven stages that a computer criminal must go through to achieve an effective attack, that is, it is a model that determines what cybercriminals must complete to achieve the objective. Therefore, the opportunity to stop them at any of these stages means breaking the attack chain. Its importance arises from the fact that currently the growth in the scale and complexity of cyberattacks directed at the data of organizations and people has registered an accelerated increase, with very elaborate patterns that have begun to be called Advanced Persistent Threat (APT). According to an analysis corresponding to 2023, the global average cost of data breach was $4.45 million, representing an increase of 15% in 3 years. Therefore, understanding each of these phases is essential to develop computer security programs, because defense teams will be able to anticipate the activities of attackers, taking effective measures to prevent, discover or minimize attacks in each phase. Consequently, applying knowledge of the various stages of a cyberattack allows the infrastructure to be prepared to counteract data breaches in the widest possible range of tools, means and controlled processes applied by users, both at a personal and business level.

KW - advanced persistent threats

KW - computer attacks

KW - controlled processes

KW - Cyber Kill Chain

KW - cybersecurity

UR - http://www.scopus.com/inward/record.url?scp=85211381696&partnerID=8YFLogxK

U2 - 10.1007/978-3-031-74751-9_48

DO - 10.1007/978-3-031-74751-9_48

M3 - Conference contribution

AN - SCOPUS:85211381696

SN - 9783031747502

T3 - Lecture Notes in Networks and Systems

SP - 506

EP - 516

BT - Perspectives and Trends in Education and Technology - Selected Papers from ICITED24

A2 - Carvalho, João Vidal

A2 - Abreu, António

A2 - Ferreira da Costa, Eusébio

A2 - Vázquez-Justo, Enrique

A2 - Viguera Figueroa, Hernán

PB - Springer Science and Business Media Deutschland GmbH

T2 - International Conference in Information Technology and Education, ICITED 2024

Y2 - 11 July 2024 through 13 July 2024

ER -

Cabrera EAV, Guaña-Moya J. Analysis of the Cyber Kill Chain Model Focused on Computer Security Through Virtualized Controlled Processes. In Carvalho JV, Abreu A, Ferreira da Costa E, Vázquez-Justo E, Viguera Figueroa H, editors, Perspectives and Trends in Education and Technology - Selected Papers from ICITED24. Springer Science and Business Media Deutschland GmbH. 2024. p. 506-516. (Lecture Notes in Networks and Systems). doi: 10.1007/978-3-031-74751-9_48

Analysis of the Cyber Kill Chain Model Focused on Computer Security Through Virtualized Controlled Processes

Abstract

Publication series

Conference

Bibliographical note

Keywords

Access to Document

Other files and links

Cite this