Host Based Detection Approach using Time Based Module for Fast Attack Detection Behavior
Abstract-Intrusion Detection System (IDS) is an important component in a network security infrastructure. IDS need to be accurate and reliable in order to detect the intrusive behaviour of a packet that travelling through the network. With the current technological advancement attack on network inf...
Saved in:
| Main Authors: | , , , , , |
|---|---|
| Format: | Conference or Workshop Item |
| Language: | English |
| Published: |
2011
|
| Subjects: | |
| Online Access: | http://eprints.utem.edu.my/id/eprint/122/1/354.pdf http://eprints.utem.edu.my/id/eprint/122/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| id |
my.utem.eprints.122 |
|---|---|
| record_format |
eprints |
| spelling |
my.utem.eprints.1222015-05-28T02:16:51Z http://eprints.utem.edu.my/id/eprint/122/ Host Based Detection Approach using Time Based Module for Fast Attack Detection Behavior Abdollah, M. F. Mas’ud, M. Z. Sahib, S. Yaacub, A. H. Yusof, R. Selamat, S. R. Q Science (General) Abstract-Intrusion Detection System (IDS) is an important component in a network security infrastructure. IDS need to be accurate and reliable in order to detect the intrusive behaviour of a packet that travelling through the network. With the current technological advancement attack on network infrastructure has evolve to a new level and to make IDS sensitive enough to detect the new attack, the detection framework need to be frequently updated. Both the fast attack and slow attack mechanism has become the subset of phases inside the anatomy of attack. Each of the attack mechanism has their own criteria and fast attack is the important type of attack that need to be considered as any late detection of the fast attack can cause a major bad impact to the organization. Therefore, there is a need to identify a suitable technique to detect the fast attack and based on this, this paper introduce a static threshold using statistical and observation technique for detecting the fast attack intrusion that is within one second time interval. The Threshold selected was based on the real network traffic dataset and verified using classification table on a real network traffic. 2011-03-11 Conference or Workshop Item PeerReviewed application/pdf en http://eprints.utem.edu.my/id/eprint/122/1/354.pdf Abdollah, M. F. and Mas’ud, M. Z. and Sahib, S. and Yaacub, A. H. and Yusof, R. and Selamat, S. R. (2011) Host Based Detection Approach using Time Based Module for Fast Attack Detection Behavior. In: 2011 First IRAST International Conference on Data Engineering and Internet Technology, 15-17 March 2011, Bali Dynasty Resort, Bali, Indonesia. |
| institution |
Universiti Teknikal Malaysia Melaka |
| building |
UTEM Library |
| collection |
Institutional Repository |
| continent |
Asia |
| country |
Malaysia |
| content_provider |
Universiti Teknikal Malaysia Melaka |
| content_source |
UTEM Institutional Repository |
| url_provider |
http://eprints.utem.edu.my/ |
| language |
English |
| topic |
Q Science (General) |
| spellingShingle |
Q Science (General) Abdollah, M. F. Mas’ud, M. Z. Sahib, S. Yaacub, A. H. Yusof, R. Selamat, S. R. Host Based Detection Approach using Time Based Module for Fast Attack Detection Behavior |
| description |
Abstract-Intrusion Detection System (IDS) is an important
component in a network security infrastructure. IDS need to be accurate and reliable in order to detect the intrusive behaviour of a packet that travelling through the network. With the current technological advancement attack on network infrastructure has evolve to a new level and to make IDS sensitive enough to detect the new attack, the detection framework need to be frequently updated.
Both the fast attack and slow attack mechanism has become the subset of phases inside the anatomy of attack. Each of the attack mechanism has their own criteria and fast attack is the important type of attack that need to be considered as any late detection of the fast attack can cause a major bad impact to the organization.
Therefore, there is a need to identify a suitable technique to detect the fast attack and based on this, this paper introduce a static threshold using statistical and observation technique for detecting the fast attack intrusion that is within one second time interval. The
Threshold selected was based on the real network traffic dataset and verified using classification table on a real network traffic. |
| format |
Conference or Workshop Item |
| author |
Abdollah, M. F. Mas’ud, M. Z. Sahib, S. Yaacub, A. H. Yusof, R. Selamat, S. R. |
| author_facet |
Abdollah, M. F. Mas’ud, M. Z. Sahib, S. Yaacub, A. H. Yusof, R. Selamat, S. R. |
| author_sort |
Abdollah, M. F. |
| title |
Host Based Detection Approach using Time Based
Module for Fast Attack Detection Behavior |
| title_short |
Host Based Detection Approach using Time Based
Module for Fast Attack Detection Behavior |
| title_full |
Host Based Detection Approach using Time Based
Module for Fast Attack Detection Behavior |
| title_fullStr |
Host Based Detection Approach using Time Based
Module for Fast Attack Detection Behavior |
| title_full_unstemmed |
Host Based Detection Approach using Time Based
Module for Fast Attack Detection Behavior |
| title_sort |
host based detection approach using time based
module for fast attack detection behavior |
| publishDate |
2011 |
| url |
http://eprints.utem.edu.my/id/eprint/122/1/354.pdf http://eprints.utem.edu.my/id/eprint/122/ |
| _version_ |
1665905232178053120 |
| score |
13.19449 |