Add to collection(s) Add to saved
  1. Engineering & Technology
  2. Computer Science
  3. Information Security

an internal intrusion detection and protection[new][ieee]

advertisement 
An Internal Intrusion Detection and Protection
System by Using Data Mining and
Forensic Techniques
ABSTRACT
Over the past several years, the Internet environment has become more
complex and untrusted. Enterprise networked systems are inevitably exposed to
the increasing threats posed by hackers as well as malicious users internal to a
network. IDS technology is one of the important tools used now-a-days, to
counter such threats. Various IIDS techniques has been proposed, which
identifies and alarms for such threats or attacks. IIDS are an essential component
of the network to be secured. The traditional IIDS are unable to manage various
newly arising attacks. To deal with these new problems of networks, data mining
based IIDS are opening new research avenues. Data mining provides a wide range
of techniques to classify these attacks. The paper provides a study on the various
data mining based intrusion detection techniques.
In this paper, we propose a security system, named the Internal Intrusion
Detection and Protection System (IIDPS for short) at system call level, which
creates personal profiles for users to keep track of their usage habits as the
forensic features, and determines whether a legally login users is the owner of the
account or not by comparing his/her current computer usage behaviors with the
user’s computer usage habits collected in the account holder’s personal profile.
The IIDPS uses a local computational grid to detect malicious behaviors in a realtime manner. Our experimental results show that the IIDPS’s user identification
accuracy is 93%, the accuracy on detecting its internal malicious attempts is up
to 99% and the response time is less than 0.45 sec., implying that it can prevent a
protected system from internal attacks effectively and efficiently.
SYSTEM REQUIREMENTS
Hardware Requirements
 Processor
: Any Processor above 500 MHz
 RAM
: 512 MB.
 Hard Disk
: 320 GB.
 Input Device
: Standard Keyboard & Mouse.
 Output Device
: VGA & High Resolution Monitor.
Software Requirements
 Domain
: Cloud Computing
 Operating System
: Windows XP.
 Front End
: C# .NET
Back End
: SQLServer 2008R2
Related documents
Abstract Intrusion detection system has become an important component of a... protection mechanism. There are generally two main methods or techniques...
Abstract Intrusion detection system has become an important component of a... protection mechanism. There are generally two main methods or techniques...
Ch10
Ch10
Lecture 3
Lecture 3
URBAN SETTLEMENT PATTERNS
URBAN SETTLEMENT PATTERNS
REFERENCES Ayushi., Sharma, A., Bansal, R. (2010). Detection of Malicious Transactions... International Journal of Information Technology and Knowledge
REFERENCES Ayushi., Sharma, A., Bansal, R. (2010). Detection of Malicious Transactions... International Journal of Information Technology and Knowledge
Chapter 2 - Department of Accounting and Information Systems
Chapter 2 - Department of Accounting and Information Systems
Collaborative Filtering for Community Threats Robert P. Goldman Mark S. Boddy
Collaborative Filtering for Community Threats Robert P. Goldman Mark S. Boddy
Distributed Detection In Mobile Access Wireless Sensor Networks
Distributed Detection In Mobile Access Wireless Sensor Networks
Business Plan Scope Sheet - Cleveland Clinic Academy
Business Plan Scope Sheet - Cleveland Clinic Academy
Malicious Attacks
Malicious Attacks
What is Innovation Engineering?
What is Innovation Engineering?
Managing Threats in a Changing World
Managing Threats in a Changing World
How Cities Work - Urban Systems Collaborative
How Cities Work - Urban Systems Collaborative
A Secure Communication in Mobile Agent System Maryam Mahmoodi Mohammad Mahmoodi Varnamkhasti
A Secure Communication in Mobile Agent System Maryam Mahmoodi Mohammad Mahmoodi Varnamkhasti
Introduction to Information Security
Introduction to Information Security
Why do we need mining?
Why do we need mining?
Chapter02 - MCST-CS
Chapter02 - MCST-CS
INTERNET SECURITY.doc
INTERNET SECURITY.doc
DECOYnetTM What is an Insider Threat?
DECOYnetTM What is an Insider Threat?
An Intrusion Detection System Using Singular Average Dependency Estimator in Data Mining
An Intrusion Detection System Using Singular Average Dependency Estimator in Data Mining
A Novel Approach of Intrusion Detection System Through SADE in Data Mining
A Novel Approach of Intrusion Detection System Through SADE in Data Mining
International Journal of Application or Innovation in Engineering & Management... Web Site: www.ijaiem.org Email: Volume 3, Issue 4, April 2014
International Journal of Application or Innovation in Engineering & Management... Web Site: www.ijaiem.org Email: Volume 3, Issue 4, April 2014
Download
advertisement