Afficher la notice abrégée

dc.contributor.authorSánchez, Raúl 
dc.contributor.authorHerrero Cosío, Álvaro 
dc.contributor.authorCorchado, Emilio 
dc.date.accessioned2023-01-18T12:03:50Z
dc.date.available2023-01-18T12:03:50Z
dc.date.issued2017-02
dc.identifier.issn1367-0751
dc.identifier.urihttp://hdl.handle.net/10259/7266
dc.description.abstractMuch effort has been devoted to research on intrusion detection (ID) in recent years because intrusion strategies and technologies are constantly and quickly evolving. As an innovative solution based on visualization, MObile VIsualisation Connectionist Agent-Based IDS was previously proposed, conceived as a hybrid-intelligent ID System. It was designed to analyse continuous network data at a packet level and is extended in present paper for the analysis of flow-based traffic data. By incorporating clustering techniques to the original proposal, network flows are investigated trying to identify different types of attacks. The analysed real-life data (the well-known dataset from the University of Twente) come from a honeypot directly connected to the Internet (thus ensuring attack-exposure) and is analysed by means of clustering and neural techniques, individually and in conjunction. Promising results are obtained, proving the validity of the proposed extension for the analysis of network flow dataen
dc.format.mimetypeapplication/pdf
dc.language.isoenges
dc.publisherOxford University Presses
dc.relation.ispartofLogic Journal of the IGPL. 2017, V. 25, n. 1, p. 83-102es
dc.subjectNetwork intrusion detectionen
dc.subjectNetwork flowen
dc.subjectNeural projectionen
dc.subjectClusteringen
dc.subjectMOVICAB-IDSen
dc.subject.otherInformáticaes
dc.subject.otherComputer scienceen
dc.titleClustering extension of MOVICAB-IDS to distinguish intrusions in flow-based dataen
dc.typeinfo:eu-repo/semantics/articlees
dc.rights.accessRightsinfo:eu-repo/semantics/openAccesses
dc.relation.publisherversionhttps://doi.org/10.1093/jigpal/jzw047es
dc.identifier.doi10.1093/jigpal/jzw047
dc.identifier.essn1368-9894
dc.journal.titleLogic Journal of IGPLes
dc.volume.number25es
dc.issue.number1es
dc.page.initial83es
dc.page.final102es
dc.type.hasVersioninfo:eu-repo/semantics/publishedVersiones


Fichier(s) constituant ce document

Thumbnail

Ce document figure dans la(les) collection(s) suivante(s)

Afficher la notice abrégée