Knowledge Discovery from Network Logs

Sipola, Tuomo

doi:10.1007/978-3-319-18302-2_12

Final Draft

View/Open

134.6 Kb

Downloads:

Show download details Hide download details

Sipola, T. (2015). Knowledge Discovery from Network Logs. In M. Lehto, & P. Neittaanmäki (Eds.), Cyber Security: Analytics, Technology and Automation (pp. 195-203). Springer International Publishing. Intelligent Systems, Control and Automation: Science and Engineering, 78. https://doi.org/10.1007/978-3-319-18302-2_12

Date

2015

Discipline

Tietotekniikka Mathematical Information Technology

Copyright

Modern communications networks are complex systems, which facilitates malicious behavior. Dynamic web services are vulnerable to unknown intrusions, but traditional cyber security measures are based on fingerprinting. Anomaly detection differs from fingerprinting in that it finds events that differ from the baseline traffic. The anomaly detection methodology can be modelled with the knowledge discovery process. Knowledge discovery is a high-level term for the whole process of deriving actionable knowledge from databases. This article presents the theory behind this approach, and showcases research that has produced network log analysis tools and methods.

Publisher

Springer International Publishing

Parent publication ISBN

978-3-319-18301-5

Is part of publication

Cyber Security: Analytics, Technology and Automation

ISSN Search the Publication Forum

2213-8986

Keywords

cyber security kyberturvallisuus

DOI

https://doi.org/10.1007/978-3-319-18302-2_12

URI

http://urn.fi/URN:NBN:fi:jyu-202011236715

Publication in research information system

https://converis.jyu.fi/converis/portal/detail/Publication/24769601

Metadata

Show full item record

Collections

Informaatioteknologian tiedekunta [1859]

License

Except where otherwise noted, this item's license is described as In Copyright