Modeling and Analysis of Advanced Intrusion Prevention System Using Distributed Host Datasets for Anomaly Detection

Shashank Sharma, Shaligram Prajapat, Nitin Naik

Research output: Chapter in Book/Published conference outputConference publication

Abstract

This study proposes implementing a comprehensive framework for digital infrastructure, designed for securing large Enterprise networks. This study aims to analyze the existing mechanisms for preventing emerging cyber-attacks by analyzing the patterns associated with potential cyber-attacks, leading insights for future behavior and detection of those attacks, with the use of customized open-source security tools and the development of a few new tools and self-developed scripts/code for centralized solution for infrastructure security needs. This research further proposes data analysis approaches and tools to evaluate datasets derived from Honeynets and from actual servers/machines, specifically focusing on attackers and malicious traffic from hosts. The ultimate goal is to provide additional critical information to IT and security administrators i.e.: motives behind attacks, communication methods, attack mechanism, the timing of system attacks, and the subsequent actions performed by attackers after compromising a system.

Original languageEnglish
Title of host publicationContributions Presented at The International Conference on Computing, Communication, Cybersecurity and AI, July 3–4, 2024, London, UK: The C3AI 2024
EditorsNitin Naik, Paul Jenkins, Shaligram Prajapat, Paul Grace
Pages625-634
Edition1
ISBN (Electronic)9783031744433
DOIs
Publication statusE-pub ahead of print - 19 Dec 2024

Publication series

NameLecture Notes in Networks and Systems (LNNS)
ISSN (Print)2367-3370
ISSN (Electronic)2367-3389

Fingerprint

Dive into the research topics of 'Modeling and Analysis of Advanced Intrusion Prevention System Using Distributed Host Datasets for Anomaly Detection'. Together they form a unique fingerprint.

Cite this