Server Monitoring Application for Insider Attack Detection and Prevention
Journal Title: Gazi Üniversitesi Fen Bilimleri Dergisi Part C: Tasarım ve Teknoloji - Year 2018, Vol 6, Issue 3
Abstract
Although insider attacks have increased rapidly in recent years and cause enormous damages, there are very few academic studies that have investigated this problem and proposed a solution. Many of these attacks are kept private for reasons such as loss of prestige and advantage of competing companies. The main difference between insider attacks and external attacks is that in the former case, attackers are authorized users in the organization. This causes countermeasures against external attacks to be useless and facilitates the exploitation of weaknesses. In the detection of insider attacks, all unusual events need to be scrutinized. Therefore, risk assessment should be done first to determine vulnerabilities against insider attacks and necessary precautions should be taken in this direction. In this study, general insider attack features and past attacks were investigated, and a server monitoring application was developed to detect suspicious activities. Organizations using this system will be informed about their level of risk, and improve their level of preparation and ability to identify potential attackers by analyzing the collected data.
Authors and Affiliations
Halil İbrahim ULUS, Mehmet DEMİRCİ
Keywords
Related Articles
- EP ID EP490828
- DOI 10.29109/gujsc.351365
- Views 79
- Downloads 0
Protection Modelling and Analysis of Energy Transmission Lines and Implementation for Ankara Region
Providing transmission of energy continuously, reliably and high in quality is aim of transmission system operator. In order to achieve this short circuit faults in the power system should be detected by protection relay...
A comparative study and a proposal of a decision support system for the pull systems
Pull system is a production approach that material movement is triggered by a signal. Although the pull system is usually used as a synonym of kanban system, it has been seen that kanban does not work well in some produc...
An Investigation of The Effects of Mn Amount on Wear Behaviors of 7075Al Alloy Produced by Powder Metallurgy Method
In this study, microstructure, hardness and wear behaviors of 7075 Al alloy with adding different amount of Mn were investigated produced by powder metallurgy method. In the scope of the study, four different amount of M...
Fabrication of Topologically Optimized Parts via Direct 3D Printing
Within the scope of this study, machine codes are generated to fabricate topologically optimized parts directly, conveyed to the design and fabrication pipeline, utilizing 3 dimensional printers employing Fused Depositio...
The Effects of Shallow Cryogenic Process On The Mechanical Properties of AISI 4140 Steel
In this study, shallow cryogenic treatments were carried out for various holding time to AISI 4140 steel and the effects of heat treatment parameters on wear behavior, impact strength and tensile strength were investigat...