A situation assessment and prediction mechanism for network security situation awareness

dc.contributor.authorLeau Yu Beng
dc.date.accessioned2022-04-18T08:54:03Z
dc.date.available2022-04-18T08:54:03Z
dc.date.issued2016-07
dc.description.abstractNetwork intrusion attempts have reached an alarming level. Cisco's 2014 Security Report indicated that 50,000 network intrusions were detected and 80 million suspicious web requests were blocked daily. Hence, Intrusion Prevention System (IPS) had been chosen as a defence mechanism in many organizations. However, the University of South Wales reported that seven big-brand IPS had failed to detect and block 34% - 49% of attacks in web-based applications. The accuracy of IPS can be improved if the network situation is also considered in preventing intrusion attempts. Knowledge about current and incoming network security situation is required before any precaution can be taken. Situation assessment and prediction are two main phases of Network Security Situation Awareness. The existing assessment models do not consider cost factor as an assessment criterion. Moreover, there has been a lack of standard guidelines to determine the importance of network assets. On prediction, training self-learning detectors are difficult due to incomplete and insufficient data. Furthermore, First-order One-variable grey model (GM(l, 1 )) has not been suitable to predict non-stationary random sequence. In addition, mean generation sequence depresses the model precision with delay error.en_US
dc.identifier.urihttp://hdl.handle.net/123456789/15161
dc.publisherUniversiti Sains Malaysiaen_US
dc.subjectComputer networksen_US
dc.subjectSecurity measuresen_US
dc.subjectComputer securityen_US
dc.titleA situation assessment and prediction mechanism for network security situation awarenessen_US
dc.typeThesisen_US
Files
License bundle
Now showing 1 - 1 of 1
Loading...
Thumbnail Image
Name:
license.txt
Size:
1.71 KB
Format:
Item-specific license agreed upon to submission
Description: