A Framework for Threat Detection in Communication Systems

被引:2
|
作者
Sisiaridis, Dimitrios [1 ]
Carcillo, Fabrizio [2 ]
Markowitch, Olivier [1 ]
机构
[1] Univ Libre Bruxelles, Dept Informat, QualSec Grp, Brussels, Belgium
[2] Univ Libre Bruxelles, Dept Informat, Machine Learning Grp, Brussels, Belgium
来源
20TH PAN-HELLENIC CONFERENCE ON INFORMATICS (PCI 2016) | 2016年
关键词
threat detection; Big Data; pattern matching; kill chain model; machine learning;
D O I
10.1145/3003733.3003759
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
We propose a modular framework which deploys state-of-the art techniques in dynamic pattern matching as well as machine learning algorithms for Big Data predictive and behavioural analytics to detect threats and attacks in Managed File Transfer and collaboration platforms. We leverage the use of the kill chain model by looking for indicators of compromise either for long-term attacks as Advanced Persistent Threats, zero-day attacks or DDoS attacks. The proposed engine can act complimentary to existing security services as SIEMs, IDS, IPS and firewalls.
引用
收藏
页数:6
相关论文
共 50 条
  • [31] Anomaly based malware threat detection on Linux Systems
    Ramamoorthy, Jayanthi
    Shashidhar, Narasimha K.
    Zhou, Bing
    2023 IEEE 22ND INTERNATIONAL CONFERENCE ON TRUST, SECURITY AND PRIVACY IN COMPUTING AND COMMUNICATIONS, TRUSTCOM, BIGDATASE, CSE, EUC, ISCI 2023, 2024, : 1744 - 1750
  • [32] Insider threat detection within embedded weapon systems
    Haan, Nicholas
    Grimaila, Michael
    Patel, Raju
    3RD INTERNATIONAL CONFERENCE ON INFORMATION WARFARE AND SECURITY, PROCEEDINGS, 2008, : 163 - +
  • [33] A formal framework to reduce communications in communication systems
    Nunez, Manuel
    Rodriguez, Ismael
    Rubio, Fernando
    INNOVATIVE INTERNET COMMUNITY SYSTEMS, 2006, 3473 : 69 - 80
  • [34] Framework for web integration of factory communication systems
    Wollschlaeger, M
    ETFA 2001: 8TH IEEE INTERNATIONAL CONFERENCE ON EMERGING TECHNOLOGIES AND FACTORY AUTOMATION, VOL 1, PROCEEDINGS, 2001, : 261 - 265
  • [35] Real-Time Automatic Framework for IRC Threat Information Detection
    Shao, Sicong
    2017 IEEE 2ND INTERNATIONAL WORKSHOPS ON FOUNDATIONS AND APPLICATIONS OF SELF* SYSTEMS (FAS*W), 2017, : 382 - 384
  • [36] A graph empowered insider threat detection framework based on daily activities
    Hong, Wei
    Yin, Jiao
    You, Mingshan
    Wang, Hua
    Cao, Jinli
    Li, Jianxin
    Liu, Ming
    Man, Chengyuan
    ISA TRANSACTIONS, 2023, 141 : 84 - 92
  • [37] A Framework for Data-Driven Physical Security and Insider Threat Detection
    Mavroeidis, Vasileios
    Vishi, Kamer
    Josang, Audun
    2018 IEEE/ACM INTERNATIONAL CONFERENCE ON ADVANCES IN SOCIAL NETWORKS ANALYSIS AND MINING (ASONAM), 2018, : 1108 - 1115
  • [38] HSDL-based intelligent threat detection framework for IoT network
    Santhadevi, D.
    Janet, B.
    JOURNAL OF INTELLIGENT & FUZZY SYSTEMS, 2023, 45 (01) : 1775 - 1790
  • [39] A Survey on Advanced Persistent Threat Detection: A Unified Framework, Challenges, and Countermeasures
    Zhang, Bo
    Gao, Yansong
    Kuang, Boyu
    Yu, Changlong
    Fu, Anmin
    Susilo, Willy
    ACM COMPUTING SURVEYS, 2025, 57 (03)
  • [40] Statistical framework for establishing defensibility of chemical threat detection and forensics methods
    Jarman, Kristin
    Wahl, Jon
    Wahl, Karen
    ABSTRACTS OF PAPERS OF THE AMERICAN CHEMICAL SOCIETY, 2017, 253
12345