The Role of Datasets when Building Next Generation Intrusion Detection Systems

被引:0
作者
Nazarov, A. N. [1 ]
Sychev, A. K. [2 ]
Voronkov, I. M. [3 ]
机构
[1] Russian Acad Sci, Fed Res Ctr Comp Sci & Control, Moscow, Russia
[2] LLC SSEC Serv, Moscow, Russia
[3] Int Ctr Informat & Elect InterEVM, Moscow, Russia
来源
2019 WAVE ELECTRONICS AND ITS APPLICATION IN INFORMATION AND TELECOMMUNICATION SYSTEMS (WECONF) | 2019年
关键词
dataset; IDS; machine learning; computer attack; modeling;
D O I
暂无
中图分类号
O59 [应用物理学];
学科分类号
摘要
The article describes the shortcomings of the modern datasets used in the development of next-generation intrusion detection systems and proposed new requirements for datasets. Based on the requirements, new software architecture has been proposed, which allows to model modern computer attacks and at the same time "mark up" logs generated on hosts and by network traffic. Using the proposed software architecture, it is possible to create datasets that will contain tagged instances with features both from host logs and from network traffic. This will allow using collected dataset when building next-generation intrusion detection systems (IDS).
引用
收藏
页数:4
相关论文
共 12 条
  • [1] Anderson H. S., 2018, ARXIV PREPRINT ARXIV
  • [2] [Anonymous], 2015, Comprehensive, Multi-Source Cyber-Security Events
  • [3] Dionisio N, 2019, ARXIV PREPRINT ARXIV
  • [4] A Supervised Machine Learning Based Approach for Automatically Extracting High-Level Threat Intelligence from Unstructured Sources
    Ghazi, Yumna
    Anwar, Zahid
    Mumtaz, Rafia
    Saleem, Shahzad
    Tahir, Ali
    [J]. 2018 INTERNATIONAL CONFERENCE ON FRONTIERS OF INFORMATION TECHNOLOGY (FIT 2018), 2018, : 129 - 134
  • [5] Detecting Attacks on Web Applications using Autoencoder
    Hieu Mac
    Dung Truong
    Lam Nguyen
    Hoa Nguyen
    Hai Anh Tran
    Duc Tran
    [J]. PROCEEDINGS OF THE NINTH INTERNATIONAL SYMPOSIUM ON INFORMATION AND COMMUNICATION TECHNOLOGY (SOICT 2018), 2018, : 416 - 421
  • [6] Jafari H, 2018, IEEE MILIT COMMUN C, P913
  • [7] Transport or Store? Synthesizing Flow-based Microfluidic Biochips using Distributed Channel Storage
    Liu, Chunfeng
    Li, Bing
    Yao, Hailong
    Pop, Paul
    Ho, Tsung-Yi
    Schlichtmann, Ulf
    [J]. PROCEEDINGS OF THE 2017 54TH ACM/EDAC/IEEE DESIGN AUTOMATION CONFERENCE (DAC), 2017,
  • [8] Luh Robert, 2019, COMPUT SECUR
  • [9] Ronen R., 2018, ARXIV PREPRINT ARXIV
  • [10] Toward Generating a New Intrusion Detection Dataset and Intrusion Traffic Characterization
    Sharafaldin, Iman
    Lashkari, Arash Habibi
    Ghorbani, Ali A.
    [J]. ICISSP: PROCEEDINGS OF THE 4TH INTERNATIONAL CONFERENCE ON INFORMATION SYSTEMS SECURITY AND PRIVACY, 2018, : 108 - 116
12