Thumbnail
View/Open
Full record
Impact
Google Scholar
xmlui.dri2xhtml.METS-1.0.item-share
EmailLinkedinFacebookTwitter
Save the reference
Mendely

Zotero

untranslated

Mets

Mods

Rdf

Marc

Exportar a BibTeX
Title
A neural-visualization IDS for honeynet data
Author
Author (from another institution)
Research Group
Análisis de datos y ciberseguridad
Version
http://purl.org/coar/version/c_71e4c1898caa6e32
Rights
© 2012 World Scientific
Access
http://purl.org/coar/access_right/c_abf2
URI
https://hdl.handle.net/20.500.11984/5586
Publisher’s version
Published at
International Journal of Neural Systems  Vol. 22. Nº. 2. Pp 121-128, 2012
xmlui.dri2xhtml.METS-1.0.item-publicationfirstpage
121
xmlui.dri2xhtml.METS-1.0.item-publicationlastpage
128
Publisher
World Scientific
Keywords
Artificial Neural Networks
Unsupervised Learning
Projection Models
Network & Computer Security ... [+]
Artificial Neural Networks
Unsupervised Learning
Projection Models
Network & Computer Security
Intrusion Detection
Honeypots [-]
Abstract
Neural intelligent systems can provide a visualization of the network traffic for security staff, in order to reduce the widely known high false-positive rate associated with misuse-based Intrusion De ... [+]
Neural intelligent systems can provide a visualization of the network traffic for security staff, in order to reduce the widely known high false-positive rate associated with misuse-based Intrusion Detection Systems (IDSs). Unlike previous work, this study proposes an unsupervised neural models that generate an intuitive visualization of the captured traffic, rather than network statistics. These snapshots of network events are immensely useful for security personnel that monitor network behavior. The system is based on the use of different neural projection and unsupervised methods for the visual inspection of honeypot data, and may be seen as a complementary network security tool that sheds light on internal data structures through visual inspection of the traffic itself. Furthermore, it is intended to facilitate verification and assessment of Snort performance (a well-known and widely-used misuse-based IDS), through the visualization of attack patterns. Empirical verification and comparison of the proposed projection methods are performed in a real domain, where two different case studies are defined and analyzed. [-]
Collections