ICT Critical Infrastructures and Society

Volume 386 of the series IFIP Advances in Information and Communication Technology pp 226-236

Mapping the Most Significant Computer Hacking Events to a Temporal Computer Attack Model

  • Renier van HeerdenAffiliated withCouncil for Scientific and Industrial ResearchRhodes University
  • , Heloise PieterseAffiliated withCouncil for Scientific and Industrial Research
  • , Barry IrwinAffiliated withRhodes University


This paper presents eight of the most significant computer hacking events (also known as computer attacks). These events were selected because of their unique impact, methodology, or other properties. A temporal computer attack model is presented that can be used to model computer based attacks. This model consists of the following stages: Target Identification, Reconnaissance, Attack, and Post-Attack Reconnaissance stages. The Attack stage is separated into: Ramp-up, Damage and Residue. This paper demonstrates how our eight significant hacking events are mapped to the temporal computer attack model. The temporal computer attack model becomes a valuable asset in the protection of critical infrastructure by being able to detect similar attacks earlier.


computer attack model ontology network attack prediction