Please use this identifier to cite or link to this item: https://hdl.handle.net/10356/83422
Title: A Dynamic Rule Creation Based Anomaly Detection Method for Identifying Security Breaches in Log Records
Authors: Breier, Jakub
Branišová, Jana
Keywords: Network security
Log analysis
Issue Date: 2015
Source: Breier, J., & Branišová, J. (2015). A Dynamic Rule Creation Based Anomaly Detection Method for Identifying Security Breaches in Log Records. Wireless Personal Communications, in press.
Series/Report no.: Wireless Personal Communications
Abstract: Evidence of security breaches can be found in log files, created by various network devices in order to provide information about their operation. Huge amount of data contained within these files usually prevents to analyze them manually, therefore it is necessary to utilize automatic methods capable of revealing potential attacks. In this paper we propose a method for anomaly detection in log files, based on data mining techniques for dynamic rule creation. To support parallel processing, we employ Apache Hadoop framework, providing distributed storage and distributed processing of data. Outcomes of our testing show potential to discover new types of breaches and plausible error rates below 10 %. Also, rule generation and anomaly detection speeds are competitive to currently used algorithms, such as FP-growth and apriori.
URI: https://hdl.handle.net/10356/83422
http://hdl.handle.net/10220/41427
ISSN: 0929-6212
DOI: 10.1007/s11277-015-3128-1
Rights: © 2015 Springer Science+Business Media New York. This is the author created version of a work that has been peer reviewed and accepted for publication by Wireless Personal Communications, Springer Science+Business Media New York. It incorporates referee’s comments but changes resulting from the publishing process, such as copyediting, structural formatting, may not be reflected in this document. The published version is available at: [http://dx.doi.org/10.1007/s11277-015-3128-1].
Fulltext Permission: open
Fulltext Availability: With Fulltext
Appears in Collections:TL Journal Articles

SCOPUSTM   
Citations 20

11
checked on Aug 31, 2020

WEB OF SCIENCETM
Citations

6
checked on Sep 25, 2020

Page view(s)

138
checked on Sep 30, 2020

Download(s)

202
checked on Sep 30, 2020

Google ScholarTM

Check

Altmetric


Plumx

Items in DR-NTU are protected by copyright, with all rights reserved, unless otherwise indicated.