Stiawan, Deris and Idris, Mohd. Yazid and Abdullah, Abdullah Hanan (2010) Classification of Habitual Activities in Behavior-based Network Detection. Journal of Computing, 2 (8). pp. 1-7. ISSN 2151-9617
Preview |
Text
accuracy_J_computing.pdf Download (470kB) | Preview |
Abstract
This paper presents a new method to detect network traffic threats based on packet classification which is result from the identification of insider?s habitual activities. We assess the habitual activities by examining regular expression of web applications use by insiders together with the existing server activities log and rules pattern from global update. We capture the packets, analyze the packet and finally, categorize into three main categories whether it is normal, suspicious or malicious. Our method is able to detect threat with low false alarm rate and provides event list handler to rate the risk for prevention purposes. We apply our method to evaluate system security for help security officer (IT Manager and Administrator) to be aware of status network activities.
| Item Type: | Article |
|---|---|
| Subjects: | Q Science > QA Mathematics > QA75-76.95 Calculating machines > QA75 Electronic computers. Computer science |
| Divisions: | 09-Faculty of Computer Science > 56401-Computer Engineering (D3) |
| Depositing User: | Dr. Deris Stiawan |
| Date Deposited: | 25 Sep 2019 07:31 |
| Last Modified: | 25 Sep 2019 07:31 |
| URI: | http://repository.unsri.ac.id/id/eprint/8338 |
Actions (login required)
 |
View Item |