Show simple item record

A Data Driven Anomaly based behavior detection method for Advanced Persistent Threats (APT)

dc.contributor.authorEzefosie, Nkirue
dc.date.accessioned2017-09-12T12:03:13Z
dc.date.available2017-09-12T12:03:13Z
dc.date.issued2016-06-16
dc.identifier.urihttp://repository.aust.edu.ng:8080/xmlui/handle/123456789/621
dc.description.abstractAdvanced Persistent Threats (APTs), represent sophisticated and enduring network intrusion campaigns targeting sensitive information from targeted organizations and operating over a long period. These types of threats are much harder to detect using signature-based methods. Anomaly- based methods consist of monitoring system activity to determine whether an observed activity is normal or abnormal. This is done according to heuristic or statistical analysis, and can be used to detect unknown attacks. Despite all significant research efforts, such techniques still suffer from a high number of false positive detections. Detecting APTs is complex because it tends to follow a “low and slow” attack profile that is very difficult to distinguish from normal, legitimate activity. The volume of data that must be analyzed is overwhelming. One technology that holds promise for detecting this kind of attack that is nearly invisible is Big data analytics. In this work, I propose a data-driven anomaly based behavior detection method which aims to leverage big data methods, and capable of processing significant amounts of data from diverse or several data sources. Big data analytics will significantly enhance or improve the detection capabilities, enabling the detection of Advanced Persistent Threats (APTs) activities that pass under the radar of traditional security solutions.en_US
dc.description.sponsorshipAUST,ADB.en_US
dc.language.isoenen_US
dc.subjectEzefosie Nkirueen_US
dc.subjectProf Ekpe Okoraforen_US
dc.subject2016 Computer Science Thesesen_US
dc.subjectAdvanced Persistent Threats (APT)en_US
dc.subjectBig Dataen_US
dc.subjectBig data analyticsen_US
dc.subjectNetwork intrusionen_US
dc.subjectHadoopen_US
dc.titleA Data Driven Anomaly based behavior detection method for Advanced Persistent Threats (APT)en_US
dc.typeThesisen_US


Files in this item

Thumbnail

This item appears in the following Collection(s)

  • Computer Science105

    This collection contains Computer Science Student's Theses from 2009-2022

Show simple item record