Intrusion Detection Forecasting Using Time Series for Improving Cyber Defence
Journal Title: International Journal of Intelligent Systems and Applications in Engineering - Year 2015, Vol 3, Issue 1
Abstract
The strength of time series modeling is generally not used in almost all current intrusion detection and prevention systems. By having time series models, system administrators will be able to better plan resource allocation and system readiness to defend against malicious activities. In this paper, we address the knowledge gap by investigating the possible inclusion of a statistical based time series modeling that can be seamlessly integrated into existing cyber defense system. Cyber-attack processes exhibit long range dependence and in order to investigate such properties a new class of Generalized Autoregressive Moving Average (GARMA) can be used. In this paper, GARMA (1, 1; 1, ±) model is fitted to cyber-attack data sets. Two different estimation methods are used. Point forecasts to predict the attack rate possibly hours ahead of time also has been done and the performance of the models and estimation methods are discussed. The investigation of the case-study will confirm that by exploiting the statistical properties, it is possible to predict cyber-attacks (at least in terms of attack rate) with good accuracy. This kind of forecasting capability would provide sufficient early-warning time for defenders to adjust their defense configurations or resource allocations.
Authors and Affiliations
Azween Abdullah *| School of Computing and IT, Taylors University, Subang Jaya, Selangor, Malaysia, Thulasy Ramiah Pillai| School of Computing and IT, Taylors University, Subang Jaya, Selangor, Malaysia, Cai Long Zheng| Unitar International University, Petaling Jaya, Selangor, Malaysia, Vahideh Abaeian| School of Business, Taylors University, Subang Jaya, Selangor, Malaysia
Keywords
Related Articles
- EP ID EP765
- DOI -
- Views 400
- Downloads 23
Intrusion Detection Forecasting Using Time Series for Improving Cyber Defence
The strength of time series modeling is generally not used in almost all current intrusion detection and prevention systems. By having time series models, system administrators will be able to better plan resource alloca...
Neural Boundary Conditions in Optic Guides
In this study, the boundary coefficients of Transverse Electric (TE) and Transverse Magnetic (TM) modes at a planar slab optic guides are modeled by Neural Networks (NN). After modal analysis, train and test files are pr...
BAT algorithm for Cryptanalysis of Feistel cryptosystems
Recent cryptosystems constitute an effective task for cryptanalysis algorithms due to their internal structure based on nonlinearity. This problem can be formulated as NP-Hard. It has long been subject to various attacks...
Process modelling and simulation of a Simple Water Treatment Plant
Water treatment plants are likely to experience problems such as the water level both in the filter cells and in the tanks tend to fluctuate widely. These create the potential for partial drainage, overflow, and potentia...
Predicting Student Success in Courses via Collaborative Filtering
Based on their skills and interests, students’ success in courses may differ greatly. Predicting student success in courses before they take them may be important. For instance, students may choose elective courses that...