add rules overview

2023-10-09 11:44:07 -04:00 · 2023-10-09 11:44:07 -04:00 · edfba9c1e9
commit edfba9c1e9
parent 450c1c6702
2 changed files with 276 additions and 6 deletions
--- a/DSD/qrs/presentation/presentation.typ
+++ b/DSD/qrs/presentation/presentation.typ
@ -118,20 +118,40 @@
 // add overview of the experiment pipeline
 ]

-#slide(title: "Case Study 2")[
-#figure(
-        image("images/2w_experiment.svg", width: 100%)
-    )

+#slide(title: "Case Study 2")[
+#image("images/rules_pipeline.svg", width:100%)
 ]
-#slide(title: "Case Study 2 - Results")[
+
+#slide(title: "Case Study 2")[
+#align(center)[
+#image("images/2w_experiment.svg", width: 90%)
+
+#tablex(
+    columns: (auto, auto, auto),
+    auto-vlines: false,
+    repeat-header: false,
+    align: (left+horizon,right+horizon,right+horizon),
+    [#text(weight:"bold")[Rule ID]], [#text(weight: "bold")[Rule]], [#text(weight: "bold")[Threat]],
+    [1], ["SLEEP" state only], [Machine takeover, Botnet, Rogue employee],
+    [2], [No "SLEEP" for more than 8m], [System malfunction],
+    [3], [One "REBOOT"], [APT, Backdoors],
+    [4], [No "HIGH" for more than 30s], [Crypto mining, Ransomware, Botnet],
+)
+]
+]
+
+
+#slide(title: "Case Study 2")[
 #figure(
        image("images/preds.svg", height: 100%)
    )

 ]

-#slide(title: "Futur Work")[]
+
+#slide(title: "Futur Work")[
+]

 #slide(title: "Conclusion")[
 ]