BASIC APPROACHES OF DEVELOPMENT OF DATA CENTER PROTECTION SYSTEMS
Journal Title: Наукові доповіді НУБіП України - Year 2018, Vol 2, Issue 2
Abstract
Data Center cyber- protection methods based on host-based intrusion prevention systems and network based intrusion prevention systems were considered. Basic algorithm of intrusion prevention system functioning and operational readiness evaluation which includes objects of analysis, procedures and evaluation indicators was discussed. It was shown that procedures to be done by Data Center cyber-protection system are identification of the event, signatures database management and denial management. Evaluation of intrusion prevention system efficiency was proved to be based on errors’ numbers and scalability. Thereby it should include accuracy, robustness, performance and scalability parameters. Main prevention systems which show model of detection systems interaction with monitored environment events were discussed. Specifically detection strategy based classification which includes cyber- attack signatures analysis, anomalies analysis, hybrid strategy, detection system behavior based classification which includes active behavior, passive behavior, monitored environment based classification which includes local network, global network, hybrid environment, detection system architecture based classification which includes centralized architecture, distributed architecture, hierarchical architecture, detection system performance based classification which includes real time analysis, offline analysis were analyzed. It was mentioned that anomaly-based systems development has to be supervised by operators and adapted to the parameters of the Data Center network. They were divided to three groups: statistical modeling, knowledge based modeling and modeling based on machine learning techniques. It was mentioned that cyber-threats could be modeled as process of transmission of data in hidden channel that change state of some functional node of Data Center. Unified mathematical model of intrusion detection system work which includes states of the infrastructure functional nodes, events involved in a system and transition between the states caused by those events was proposed.
Authors and Affiliations
A. V. KROPACHEV, D. O. ZUEV
Keywords
Related Articles
- EP ID EP294951
- DOI -
- Views 109
- Downloads 0
INFLUENCE OF GROWTH REGULATORS AND MINERAL NUTRITION ON NUTRIENT STATUS OF SUNFLOWER
. Recently it was proved that the sunflower is an agricultural plant, which compensates taking out the high amount of macro - and micronutrients from the soil by returning them to the soil the waste after the harvesting....
THE FEATURES OF THE EPIDEMIC AND EPISOOTIC SITUATION OF THE PSEUDOMONAS AERUGINOSA
According to the actual current strategy of interdisciplinary collaboration concept «One Health», attention is focused on health research pathogens dangerous to humans and animals. One Health is an emerging concept that...
CORRECTION OF THE INNATE IMMUNITY OF INTACT AND VACCINATED AGAINST NEWCASTLE DISEASE CHICKENS WITH THE USE OF PROBIOTIC NANOMETAL GLOBULIN PREPARATION
The development of effective complex drugs for increasing the viability of young farm animals by stimulating the activity of immunity, studying the biological effects of these drugs on the expression of cytokine genes an...
SPECIES COMPOSITION, ECOLOGICAL AND BIOLOGICAL FEATURES OF DOTHIDEOMYCETES OF THE NATIONAL NATURE PARK «BILOBEREZHZHYA SVIATOSLAVA»
The article considers the species composition of the Dothideomycetes and its structural characteristics in conditions of the National Natural Park «Biloberezhzhya Sviatoslava». The materials of the work were the original...
IRRIGATION EFFECT ON THE PRODUCTIVITY OF WINTER WHEAT DIFFERENT VARIETIES IN THE CONDITION OF THE SOUTHERN STEPPE OF UKRAINE
Aim – to determine the adaptive characteristics of winter wheat varieties of the selection which was developed in the Irrigated Agriculture NAAS, suitable for cultivation in conditions of irrigation and waterless valleys...