Show simple item record

dc.contributor.authorKokkonen, Tero
dc.date.accessioned2016-11-30T07:45:45Z
dc.date.available2016-11-30T07:45:45Z
dc.date.issued2016
dc.identifier.isbn978-951-39-6832-8
dc.identifier.otheroai:jykdok.linneanet.fi:1643746
dc.identifier.urihttps://jyx.jyu.fi/handle/123456789/52075
dc.description.abstractAlmost all the organisations and even individuals rely on complex structures of data networks and networked computer systems. That complex data ensemble, the cyber domain, provides great opportunities, but at the same time it offers many possible attack vectors that can be abused for cyber vandalism, cyber crime, cyber espionage or cyber terrorism. Those threats produce requirements for cyber security situational awareness and intrusion detection capability. This dissertation concentrates on research and development of anomaly-based network intrusion detection system as a sensor for a situational awareness system. In this dissertation, several models of intrusion detection systems are developed using clustering-based data-mining algorithms for creating a model of normal user behaviour and finding similarities and dissimilarities compared to that model. That information can be used as a sensor feed in a situational awareness system in cyber security. A model of cyber security situational awareness system with multisensor fusion capability is presented in this thesis. Also a model for exchanging the information of cyber security situational awareness is generated. The constructed intrusion detection system schemes are tested with different scenarios even in online mode with real user data.
dc.format.extent1 verkkoaineisto (81 sivua, 99 sivua useina numerointijaksoina)
dc.language.isoeng
dc.publisherUniversity of Jyväskylä
dc.relation.ispartofseriesJyväskylä studies in computing
dc.subject.othertunkeilijan havaitsemisjärjestelmät
dc.subject.otheranomaly detection
dc.subject.otherclustering
dc.subject.othercyber security
dc.subject.otherearly warning
dc.subject.otherinformation sharing
dc.subject.otherintrusion detection system
dc.subject.othernetwork security
dc.subject.othersituational awareness
dc.titleAnomaly-based online intrusion detection system as a sensor for cyber security situational awareness system
dc.identifier.urnURN:ISBN:978-951-39-6832-8
dc.type.dcmitypeTexten
dc.type.ontasotVäitöskirjafi
dc.type.ontasotDoctoral dissertationen
dc.contributor.tiedekuntaInformaatioteknologian tiedekuntafi
dc.contributor.yliopistoUniversity of Jyväskyläen
dc.contributor.yliopistoJyväskylän yliopistofi
dc.contributor.oppiaineTietotekniikkafi
dc.relation.issn1456-5390
dc.relation.numberinseries251
dc.rights.accesslevelopenAccessfi
dc.subject.ysokyberturvallisuus
dc.subject.ysotietoverkot
dc.subject.ysopääsynvalvonta
dc.subject.ysovalvontajärjestelmät
dc.subject.ysotilannekuva
dc.subject.ysotiedonlouhinta
dc.subject.ysoklusterianalyysi


Files in this item

Thumbnail

This item appears in the following Collection(s)

Show simple item record