Print Email Facebook Twitter Anomaly Detection Beyond the Research Setting: An exploration of the use of statistics and machine learning to detect cyber attacks Title Anomaly Detection Beyond the Research Setting: An exploration of the use of statistics and machine learning to detect cyber attacks Author Sæmundsson, G.D. Contributor Hadziosmanovic, D. (mentor) Asghari, H. (mentor) Van Eeten, M.J.G. (mentor) Faculty Technology, Policy and Management Department Multi Actor Systems Programme SEPAM IA Date 2015-10-06 Abstract In this work we approach the problem of deploying anomaly detection techniques for detecting cyber attacks in an organisational environment. Anomaly detection has been an active research area for almost three decades with promising results. However, few such systems have been successfully im- plemented in an operational environment for improving cyber security. Researchers have attempted to identify the reasons for this gap between research and operational success, and provide guidelines on how to overcome it. In this work we use these guidelines to guide us in the exploration of how business organisations approach anomaly detection. We compare the insights from practice with theory in an effort to better understand the main discrepancies between the two settings. Subject anomaly detectioncyber securityintrusion detectionusabilityorganisational challenges To reference this document use: http://resolver.tudelft.nl/uuid:8b3cc7b9-e2c0-43c4-92cf-b8bde8cbbedf Part of collection Student theses Document type master thesis Rights (c) 2015 Sæmundsson, G.D. Files PDF GD_Saemundsson_Scientific ... rticle.pdf 345.68 KB PDF GD_Saemundsson_Thesis_pub ... ersion.pdf 1.06 MB Close viewer /islandora/object/uuid:8b3cc7b9-e2c0-43c4-92cf-b8bde8cbbedf/datastream/OBJ1/view