Towards a roadmap for development of intelligent data analysis based cyber attack detection systems

Master thesis (2012)

Authors

J.A. De Vries

Contributors

Y.H. Tan (mentor)

J. Van den Berg (mentor)

M.E. Warnier (mentor)

H. Hoogstraaten (mentor)

Programme

System engineering, Policy Analysis and Management () (TU Delft)

Machine learning Intrusion detection Cyber espionage Intelligent data analysis

To reference this document use:

http://resolver.tudelft.nl/uuid:090446d3-7562-41ce-94d3-ab7153cd05d5

More Info

expand_more

Published Date

05-07-2012

Reuse Rights

Other than for strictly personal use, it is not permitted to download, forward or distribute the text or part of it, without the consent of the author(s) and/or copyright holder(s), unless the work is under an open content license such as Creative Commons.

Programme

System engineering, Policy Analysis and Management

Abstract

Cyber-attacks against companies and governments are seeing an increase in complexity and persistence. These more complex attacks are aimed at penetrating corporate and government networks to obtain classified information. Common intrusion detection methods lack in their ability to detect such complex attacks. A framework is proposed to relate attack characteristics to analysis methods and business criteria. Traditional signature based detection algorithms still remain useful but the advanced approach of the attackers requires the use of intelligent data analysis. The framework is used as a roadmap to design a system capable of detection advanced persistent threats.

Files

Scientific_paper_J.A._de_Vries... (pdf)

(pdf | 0.411 Mb)

Master_Thesis_J.A._de_Vries.pd... (pdf)

(pdf | 1.12 Mb)