This paper is based in the field of System Dynamics (SD) Modelling. Recent research of Advanced Persistent Threats (APTs) has focused on development of tools, tactics, and procedures (TTP). However, developing an understanding of the managing bodies and bureaucracies that drive these actors and their computer network operations (CNOs) is just as significant as understanding their TTP. This paper proposes a model that focusses on how the APTs allocate and utilize their resources. The assumption is that in this allocation there is an optimal way to operate to either attack or defend infrastructure. This model strives to explain the optimal resource allocation of APTs and targets based on the feedback loops present in SD.
Recent graduate of the Information Security Policy and Management program at the Heinz College at Carnegie Mellon University. Studies and research experiences focused on threat intelligence and modelling.